$ rpki-client -vvf rpki.apnic.net/member_repository/A916ED3C/306EE2600A7111EC9A163C1FC4F9AE02/90AEB6B26C0411EF903ED20BC4F9AE02.roa File: 90AEB6B26C0411EF903ED20BC4F9AE02.roa (raw, json) Hash identifier: xqj1Iz7t/A8a80aAwvGG6Txdmfyu0/4YD+uVRfrZJ7U= Subject key identifier: B7:ED:86:13:5F:49:2A:F6:3B:4E:A9:4F:2B:B0:06:9A:A1:41:1B:70 Certificate issuer: /CN=A916ED3C/serialNumber=B5F87AC892C5E7E924EA1850ADCE4FF01D0DBA2A Certificate serial: 0561 Authority key identifier: B5:F8:7A:C8:92:C5:E7:E9:24:EA:18:50:AD:CE:4F:F0:1D:0D:BA:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tfh6yJLF5-kk6hhQrc5P8B0Nuio.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916ED3C/306EE2600A7111EC9A163C1FC4F9AE02/90AEB6B26C0411EF903ED20BC4F9AE02.roa Signing time: Sat 04 Oct 2025 23:55:10 +0000 ROA not before: Sat 04 Oct 2025 23:55:10 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 147070 IP address blocks: 103.172.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916ED3C/306EE2600A7111EC9A163C1FC4F9AE02/tfh6yJLF5-kk6hhQrc5P8B0Nuio.crl rsync://rpki.apnic.net/member_repository/A916ED3C/306EE2600A7111EC9A163C1FC4F9AE02/tfh6yJLF5-kk6hhQrc5P8B0Nuio.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tfh6yJLF5-kk6hhQrc5P8B0Nuio.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:08:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1377 (0x561) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916ED3C, serialNumber=B5F87AC892C5E7E924EA1850ADCE4FF01D0DBA2A Validity Not Before: Oct 4 23:55:10 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68e1b3de-522f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:3f:da:5d:5d:a2:22:ae:f8:5e:2c:1e:0a:71: 9e:cd:da:df:5a:43:54:7c:c0:52:82:e4:c2:00:51: 53:96:53:bc:ab:44:78:de:54:17:91:c9:6e:dc:82: 38:ed:27:b3:73:33:ad:87:65:cc:2d:af:2e:95:ba: b5:16:0d:ac:e0:1f:04:e7:68:84:25:21:34:05:84: 63:a7:61:b9:6b:ca:77:64:0c:84:94:2f:cd:3d:96: d4:f0:23:80:ae:f8:53:49:0d:d1:61:01:3a:54:79: 4e:a4:f2:00:89:83:12:9d:2b:6c:c9:62:2f:b1:9a: fd:59:48:51:84:af:2b:92:2d:e3:6d:d9:a3:69:2b: f3:99:fd:46:06:83:12:ec:ae:4a:da:2b:55:a0:94: fb:93:ca:01:74:16:00:4b:e9:b2:04:e3:fd:9d:3d: 28:2e:83:d9:1e:70:f6:90:e4:af:0b:5e:e7:df:77: 62:a9:92:74:cd:8e:13:89:0c:6e:fc:e4:8c:bf:1c: 17:0e:62:95:d5:f1:67:ec:87:4a:56:f9:4f:01:37: d5:91:4d:53:fe:7f:8d:c7:13:af:1a:59:60:5c:bf: c2:0a:ae:e1:9f:13:fe:67:1d:e6:08:0f:67:45:4c: 35:b7:b1:d3:17:3f:ed:02:c5:cc:77:d0:24:2d:eb: 80:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:ED:86:13:5F:49:2A:F6:3B:4E:A9:4F:2B:B0:06:9A:A1:41:1B:70 X509v3 Authority Key Identifier: keyid:B5:F8:7A:C8:92:C5:E7:E9:24:EA:18:50:AD:CE:4F:F0:1D:0D:BA:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916ED3C/306EE2600A7111EC9A163C1FC4F9AE02/tfh6yJLF5-kk6hhQrc5P8B0Nuio.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tfh6yJLF5-kk6hhQrc5P8B0Nuio.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916ED3C/306EE2600A7111EC9A163C1FC4F9AE02/90AEB6B26C0411EF903ED20BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.114.0/24 Signature Algorithm: sha256WithRSAEncryption 11:05:d6:a2:27:fe:e6:a8:08:d5:29:ff:08:3b:e0:3f:b9:48: 97:ab:32:c9:95:53:b6:3e:94:37:fe:6e:52:79:fa:ac:9f:14: ad:bc:1f:d8:88:b3:6b:c2:0f:3b:66:ff:14:da:0f:17:bc:af: 0e:f8:f0:e8:2f:ee:12:6a:0b:6b:eb:aa:55:50:ce:4d:1b:15: 7b:c3:72:62:0f:d2:e1:aa:6e:65:16:5e:1a:61:db:14:18:f6: 3d:86:de:cf:5e:16:5c:31:51:ac:35:2b:80:0a:24:58:01:09: db:09:78:0d:6f:e4:60:17:49:20:74:b2:49:e9:8d:f4:f1:b0: 3e:c3:c5:76:d7:65:3b:2a:c2:47:f8:85:3f:99:7e:5e:22:1d: 52:c8:32:e9:86:73:f4:a1:1d:f0:91:f7:29:f4:ce:bd:4e:83: 78:4e:d2:f9:bc:9d:0e:f8:c5:05:b0:c9:fb:9f:ef:45:0f:2f: c1:f3:b7:fe:2c:d9:be:52:7a:de:3d:57:82:47:d0:59:d9:9b: 15:3a:72:d5:fa:0b:c1:4c:71:7f:b0:97:33:3c:bc:f4:00:7e: f3:ab:1e:44:74:f2:24:4e:1f:c7:e1:55:b4:f5:88:f2:78:ff: bd:c1:83:06:67:f3:35:4d:9b:06:60:5f:1d:c8:d0:63:59:dc: fc:1f:4e:1a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVEM0MxMTAvBgNVBAUTKEI1Rjg3QUM4OTJDNUU3RTkyNEVBMTg1MEFEQ0U0RkYw MUQwREJBMkEwHhcNMjUxMDA0MjM1NTEwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGUxYjNkZS01MjJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuz/aXV2iIq74XiweCnGezdrfWkNUfMBSguTCAFFTllO8q0R43lQXkclu3II4 7SezczOth2XMLa8ulbq1Fg2s4B8E52iEJSE0BYRjp2G5a8p3ZAyElC/NPZbU8COA rvhTSQ3RYQE6VHlOpPIAiYMSnStsyWIvsZr9WUhRhK8rki3jbdmjaSvzmf1GBoMS 7K5K2itVoJT7k8oBdBYAS+myBOP9nT0oLoPZHnD2kOSvC17n33diqZJ0zY4TiQxu /OSMvxwXDmKV1fFn7IdKVvlPATfVkU1T/n+NxxOvGllgXL/CCq7hnxP+Zx3mCA9n RUw1t7HTFz/tAsXMd9AkLeuA3wIDAQABo4IClTCCApEwHQYDVR0OBBYEFLfthhNf SSr2O06pTyuwBpqhQRtwMB8GA1UdIwQYMBaAFLX4esiSxefpJOoYUK3OT/AdDboq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RUQzQy8zMDZFRTI2MDBB NzExMUVDOUExNjNDMUZDNEY5QUUwMi90Zmg2eUpMRjUta2s2aGhRcmM1UDhCME51 aW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RmaDZ5SkxGNS1razZoaFFyYzVQOEIwTnVpby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkVEM0MvMzA2RUUyNjAwQTcxMTFFQzlBMTYzQzFGQzRGOUFFMDIvOTBBRUI2QjI2 QzA0MTFFRjkwM0VEMjBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnrHIwDQYJKoZIhvcNAQELBQADggEBABEF1qIn/uaoCNUp /wg74D+5SJerMsmVU7Y+lDf+blJ5+qyfFK28H9iIs2vCDztm/xTaDxe8rw748Ogv 7hJqC2vrqlVQzk0bFXvDcmIP0uGqbmUWXhph2xQY9j2G3s9eFlwxUaw1K4AKJFgB CdsJeA1v5GAXSSB0sknpjfTxsD7DxXbXZTsqwkf4hT+Zfl4iHVLIMumGc/ShHfCR 9yn0zr1Og3hO0vm8nQ74xQWwyfuf70UPL8Hzt/4s2b5Set49V4JH0FnZmxU6ctX6 C8FMcX+wlzM8vPQAfvOrHkR08iROH8fhVbT1iPJ4/73BgwZn8zVNmwZgXx3I0GNZ 3PwfTho= -----END CERTIFICATE-----Generated at Mon Oct 20 19:49:36 2025 by rpki-client