$ rpki-client -vvf rpki.apnic.net/member_repository/A916D29F/691F74C4988811E991AF6636C4F9AE02/3FCD146C97D911F080901462C4F9AE02.roa File: 3FCD146C97D911F080901462C4F9AE02.roa (raw, json) Hash identifier: zFjZk2S9ws5t5ZdI9szHa+nHw5gtdNKIsc6poD8Md0k= Subject key identifier: DC:D1:6F:A8:E5:EB:C6:96:17:9B:A5:26:5F:08:E1:6F:76:F4:7B:52 Certificate issuer: /CN=A916D29F/serialNumber=AA85CCD2DD3E1C003BF72FF53E58C7200E7CF0A8 Certificate serial: 0ED3 Authority key identifier: AA:85:CC:D2:DD:3E:1C:00:3B:F7:2F:F5:3E:58:C7:20:0E:7C:F0:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qoXM0t0-HAA79y_1PljHIA588Kg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D29F/691F74C4988811E991AF6636C4F9AE02/3FCD146C97D911F080901462C4F9AE02.roa Signing time: Mon 22 Sep 2025 17:26:18 +0000 ROA not before: Mon 22 Sep 2025 17:26:18 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 11404 IP address blocks: 103.105.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D29F/691F74C4988811E991AF6636C4F9AE02/qoXM0t0-HAA79y_1PljHIA588Kg.crl rsync://rpki.apnic.net/member_repository/A916D29F/691F74C4988811E991AF6636C4F9AE02/qoXM0t0-HAA79y_1PljHIA588Kg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qoXM0t0-HAA79y_1PljHIA588Kg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:16:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3795 (0xed3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D29F, serialNumber=AA85CCD2DD3E1C003BF72FF53E58C7200E7CF0A8 Validity Not Before: Sep 22 17:26:18 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=68d186ba-271f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:8f:bd:f4:7a:7c:90:b4:1a:c8:74:c0:5b:30: ab:e6:d8:0f:fd:ae:f5:10:51:ce:8c:36:36:16:c4: 3a:c2:dc:df:68:3b:2d:0f:00:93:24:b5:c9:70:ca: 07:dd:5a:72:cd:c8:a2:07:b9:63:48:83:ea:36:c6: be:66:0e:e7:dc:45:b9:a5:fa:e8:3f:3b:61:de:b3: 9e:19:32:c5:e9:86:21:ee:ce:3d:ef:6a:db:0c:0e: 97:ee:de:20:36:55:cd:bd:64:2e:47:bc:7f:0a:40: 08:05:22:ba:27:a3:68:c1:2a:06:71:9b:27:18:c9: d2:4c:3c:52:11:d2:78:e4:8c:da:4b:62:cb:1c:84: 64:a0:b9:64:cd:59:03:a8:04:c4:ba:eb:d6:46:31: d1:27:16:4c:01:32:81:f6:1d:a6:6b:41:f6:7c:c8: be:2c:a0:8b:39:6c:95:1d:50:81:22:69:32:fd:06: 71:2e:b7:22:f7:7f:4e:34:03:7a:e2:4a:fa:a2:12: bd:e7:c4:8e:2a:23:22:56:d3:52:c9:c7:e4:1d:89: 98:eb:05:8d:fc:17:8f:23:bb:44:51:ac:2c:fc:6a: 4e:e5:29:4c:f6:c0:6c:fb:73:74:77:b6:55:8b:98: bf:8e:d9:12:29:72:ff:94:c9:84:f1:f7:cf:1a:12: 31:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:D1:6F:A8:E5:EB:C6:96:17:9B:A5:26:5F:08:E1:6F:76:F4:7B:52 X509v3 Authority Key Identifier: keyid:AA:85:CC:D2:DD:3E:1C:00:3B:F7:2F:F5:3E:58:C7:20:0E:7C:F0:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D29F/691F74C4988811E991AF6636C4F9AE02/qoXM0t0-HAA79y_1PljHIA588Kg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qoXM0t0-HAA79y_1PljHIA588Kg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D29F/691F74C4988811E991AF6636C4F9AE02/3FCD146C97D911F080901462C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.105.164.0/24 Signature Algorithm: sha256WithRSAEncryption 85:99:92:32:9e:63:b8:fc:dd:fb:6e:9a:be:e2:61:b2:bb:13: 00:47:22:f7:e0:43:54:07:6d:e0:47:45:68:68:01:86:ab:fc: 47:f6:f2:79:81:26:ca:0e:8a:45:f1:93:c9:91:f7:ef:6c:8f: d6:0d:4e:00:90:0f:df:78:1d:be:9e:26:32:c5:c7:6c:9f:7f: f2:2c:ad:0d:5a:4d:09:16:6a:7f:eb:2b:94:90:90:ac:34:38: 08:6a:98:c0:86:62:63:81:23:23:a4:9d:ca:9c:33:03:97:a6: 54:6b:09:4e:eb:05:39:41:a1:7a:a0:68:80:36:fe:19:17:e2: 66:69:29:c3:45:59:62:87:a5:69:87:aa:8c:3f:5b:4e:0c:15: a7:df:be:d6:b1:1f:ca:9b:99:a9:95:d2:6d:12:a1:7d:e0:34: 2c:a6:6b:24:d6:30:a9:3b:24:f2:47:ff:1d:e3:66:a0:d8:0d: c8:06:4a:e7:1c:81:b5:bc:6b:75:a2:38:13:1a:7a:e6:2d:01: e8:99:b7:13:6d:52:37:da:69:ec:c6:ab:f0:ff:7d:0c:2f:37: f9:88:08:6d:92:08:0c:1a:7f:e6:b5:ea:e0:b0:13:dd:c7:62: b5:d1:3b:0b:76:d3:bb:e5:c2:06:bd:51:88:a5:ed:24:f3:93: ed:e1:62:24 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDtMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQyOUYxMTAvBgNVBAUTKEFBODVDQ0QyREQzRTFDMDAzQkY3MkZGNTNFNThDNzIw MEU3Q0YwQTgwHhcNMjUwOTIyMTcyNjE4WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQxODZiYS0yNzFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuo+99Hp8kLQayHTAWzCr5tgP/a71EFHOjDY2FsQ6wtzfaDstDwCTJLXJcMoH 3VpyzciiB7ljSIPqNsa+Zg7n3EW5pfroPzth3rOeGTLF6YYh7s4972rbDA6X7t4g NlXNvWQuR7x/CkAIBSK6J6NowSoGcZsnGMnSTDxSEdJ45IzaS2LLHIRkoLlkzVkD qATEuuvWRjHRJxZMATKB9h2ma0H2fMi+LKCLOWyVHVCBImky/QZxLrci939ONAN6 4kr6ohK958SOKiMiVtNSycfkHYmY6wWN/BePI7tEUaws/GpO5SlM9sBs+3N0d7ZV i5i/jtkSKXL/lMmE8ffPGhIxrQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNzRb6jl 68aWF5ulJl8I4W929HtSMB8GA1UdIwQYMBaAFKqFzNLdPhwAO/cv9T5YxyAOfPCo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDI5Ri82OTFGNzRDNDk4 ODgxMUU5OTFBRjY2MzZDNEY5QUUwMi9xb1hNMHQwLUhBQTc5eV8xUGxqSElBNTg4 S2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FvWE0wdDAtSEFBNzl5XzFQbGpISUE1ODhLZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkQyOUYvNjkxRjc0QzQ5ODg4MTFFOTkxQUY2NjM2QzRGOUFFMDIvM0ZDRDE0NkM5 N0Q5MTFGMDgwOTAxNDYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnaaQwDQYJKoZIhvcNAQELBQADggEBAIWZkjKeY7j83ftu mr7iYbK7EwBHIvfgQ1QHbeBHRWhoAYar/Ef28nmBJsoOikXxk8mR9+9sj9YNTgCQ D994Hb6eJjLFx2yff/IsrQ1aTQkWan/rK5SQkKw0OAhqmMCGYmOBIyOkncqcMwOX plRrCU7rBTlBoXqgaIA2/hkX4mZpKcNFWWKHpWmHqow/W04MFaffvtaxH8qbmamV 0m0SoX3gNCymayTWMKk7JPJH/x3jZqDYDcgGSuccgbW8a3WiOBMaeuYtAeiZtxNt UjfaaezGq/D/fQwvN/mICG2SCAwaf+a16uCwE93HYrXROwt207vlwga9UYil7STz k+3hYiQ= -----END CERTIFICATE-----Generated at Mon Oct 20 10:10:27 2025 by rpki-client