$ rpki-client -vvf rpki.apnic.net/member_repository/A917419E/981EE9860B2111EC8421494DC4F9AE02/4A120466FC5F11EF9B1B9787C4F9AE02.roa File: 4A120466FC5F11EF9B1B9787C4F9AE02.roa (raw, json) Hash identifier: bvuY+EeyLyXt1PvBvBIc9rRMl/RouVTPwyDaiKXq6NM= Subject key identifier: 1B:08:21:07:CC:F2:AC:55:08:C0:50:6D:E0:6F:1D:77:DE:56:80:C0 Certificate issuer: /CN=A917419E/serialNumber=1445489FDD50AA44AC1D2A3C3A166E06C662AFD5 Certificate serial: 05F1 Authority key identifier: 14:45:48:9F:DD:50:AA:44:AC:1D:2A:3C:3A:16:6E:06:C6:62:AF:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FEVIn91QqkSsHSo8OhZuBsZir9U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917419E/981EE9860B2111EC8421494DC4F9AE02/4A120466FC5F11EF9B1B9787C4F9AE02.roa Signing time: Sun 28 Sep 2025 23:57:01 +0000 ROA not before: Sun 28 Sep 2025 23:57:01 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 27182 IP address blocks: 103.172.134.0/24 maxlen: 24 103.172.135.0/24 maxlen: 24 2407:d340::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917419E/981EE9860B2111EC8421494DC4F9AE02/FEVIn91QqkSsHSo8OhZuBsZir9U.crl rsync://rpki.apnic.net/member_repository/A917419E/981EE9860B2111EC8421494DC4F9AE02/FEVIn91QqkSsHSo8OhZuBsZir9U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FEVIn91QqkSsHSo8OhZuBsZir9U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:08:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1521 (0x5f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917419E, serialNumber=1445489FDD50AA44AC1D2A3C3A166E06C662AFD5 Validity Not Before: Sep 28 23:57:01 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68d9cb4d-176a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:6d:cd:37:f5:58:0e:ac:da:16:18:47:0b:c5: 11:1d:c2:a8:1a:26:91:9b:50:d7:f1:e4:0f:fb:47: cb:cc:67:29:64:87:f5:cb:52:ed:95:f4:e2:65:e7: 2c:87:fa:06:7f:dc:b6:73:e8:6d:f3:46:e4:46:17: dc:99:e7:f9:29:c9:fc:93:cc:95:df:cb:50:ee:fa: b9:29:eb:4a:e2:d7:a9:d9:aa:cb:6e:2f:c7:45:3b: 60:40:34:f9:3a:5e:d1:ef:b4:71:4a:29:1e:b0:f6: fb:f4:9b:39:f5:66:0c:ec:51:de:8d:14:8d:bf:50: ca:d2:c9:90:3a:b8:3b:3f:73:cd:28:6f:d5:9e:3f: fe:bc:0e:0e:c4:44:fd:39:ce:65:f4:ae:e6:bd:c9: 4c:c5:cf:6c:56:67:42:ae:26:0d:68:e8:a0:ed:20: 1e:5c:ff:79:2c:7c:8c:24:b6:bd:ea:cd:63:44:e8: 2f:2d:b5:31:29:08:b9:c8:27:64:16:af:27:5f:d6: 96:2b:75:31:6a:68:11:e3:87:35:2a:54:32:31:d0: db:37:ae:c0:08:f2:67:e0:f8:6e:09:30:a1:72:e1: 13:7f:63:4d:f2:0f:54:ca:ac:bf:7f:5d:d5:51:e5: 71:24:50:f8:f7:f4:35:4a:b5:31:cc:48:7b:c1:6f: 5e:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:08:21:07:CC:F2:AC:55:08:C0:50:6D:E0:6F:1D:77:DE:56:80:C0 X509v3 Authority Key Identifier: keyid:14:45:48:9F:DD:50:AA:44:AC:1D:2A:3C:3A:16:6E:06:C6:62:AF:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917419E/981EE9860B2111EC8421494DC4F9AE02/FEVIn91QqkSsHSo8OhZuBsZir9U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FEVIn91QqkSsHSo8OhZuBsZir9U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917419E/981EE9860B2111EC8421494DC4F9AE02/4A120466FC5F11EF9B1B9787C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.134.0/23 IPv6: 2407:d340::/32 Signature Algorithm: sha256WithRSAEncryption 51:62:47:1d:e5:f4:10:02:ab:07:bd:2d:69:7c:7d:07:a3:53: 45:50:a0:9f:af:75:a3:c8:b6:97:3e:7b:d6:0c:86:28:46:e0: 60:51:e2:7e:50:c3:d9:62:74:59:21:ec:f8:15:47:6f:50:70: 35:19:39:60:12:f5:fd:0b:dc:1c:21:9d:77:d7:ef:3c:ac:db: 7b:db:8f:f9:2b:a2:de:e0:c4:d3:fb:43:c8:58:4a:f7:d1:0e: e4:8a:db:c4:78:c2:f6:8c:f9:c5:07:fe:eb:e4:8e:11:06:ff: 16:6b:f6:37:67:89:12:9e:28:f4:dd:15:47:29:40:1d:ea:8f: eb:f6:21:d9:ae:17:b8:d2:cc:94:9c:c4:d0:f2:86:87:d3:8f: 06:55:6e:ba:45:95:5d:93:b4:61:ff:d2:53:e7:79:a8:0b:74: 73:3a:a8:3b:61:77:81:33:53:db:aa:dc:32:ba:a5:93:b9:cb: 44:47:b7:0a:29:db:f0:78:2a:b2:76:5c:74:03:3f:10:e4:fe: c7:d3:45:8a:85:98:00:98:18:f4:04:12:e6:a3:d8:ba:e4:6e: 1b:19:19:ac:5b:a2:0c:28:ac:3d:68:55:4c:28:74:e4:e8:5d: 6d:44:b6:81:8e:5c:d3:73:63:b9:5e:1f:8e:1e:3e:95:53:b8: 4c:43:49:7c -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBfEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQxOUUxMTAvBgNVBAUTKDE0NDU0ODlGREQ1MEFBNDRBQzFEMkEzQzNBMTY2RTA2 QzY2MkFGRDUwHhcNMjUwOTI4MjM1NzAxWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ5Y2I0ZC0xNzZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt23NN/VYDqzaFhhHC8URHcKoGiaRm1DX8eQP+0fLzGcpZIf1y1LtlfTiZecs h/oGf9y2c+ht80bkRhfcmef5Kcn8k8yV38tQ7vq5KetK4tep2arLbi/HRTtgQDT5 Ol7R77RxSikesPb79Js59WYM7FHejRSNv1DK0smQOrg7P3PNKG/Vnj/+vA4OxET9 Oc5l9K7mvclMxc9sVmdCriYNaOig7SAeXP95LHyMJLa96s1jROgvLbUxKQi5yCdk Fq8nX9aWK3UxamgR44c1KlQyMdDbN67ACPJn4PhuCTChcuETf2NN8g9Uyqy/f13V UeVxJFD49/Q1SrUxzEh7wW9euwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFBsIIQfM 8qxVCMBQbeBvHXfeVoDAMB8GA1UdIwQYMBaAFBRFSJ/dUKpErB0qPDoWbgbGYq/V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDE5RS85ODFFRTk4NjBC MjExMUVDODQyMTQ5NERDNEY5QUUwMi9GRVZJbjkxUXFrU3NIU284T2hadUJzWmly OVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZFVkluOTFRcWtTc0hTbzhPaFp1QnNaaXI5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzQxOUUvOTgxRUU5ODYwQjIxMTFFQzg0MjE0OTREQzRGOUFFMDIvNEExMjA0NjZG QzVGMTFFRjlCMUI5Nzg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnrIYwDQQCAAIwBwMFACQH00AwDQYJKoZIhvcNAQELBQAD ggEBAFFiRx3l9BACqwe9LWl8fQejU0VQoJ+vdaPItpc+e9YMhihG4GBR4n5Qw9li dFkh7PgVR29QcDUZOWAS9f0L3BwhnXfX7zys23vbj/krot7gxNP7Q8hYSvfRDuSK 28R4wvaM+cUH/uvkjhEG/xZr9jdniRKeKPTdFUcpQB3qj+v2IdmuF7jSzJScxNDy hofTjwZVbrpFlV2TtGH/0lPneagLdHM6qDthd4EzU9uq3DK6pZO5y0RHtwop2/B4 KrJ2XHQDPxDk/sfTRYqFmACYGPQEEuaj2LrkbhsZGaxbogworD1oVUwodOToXW1E toGOXNNzY7leH44ePpVTuExDSXw= -----END CERTIFICATE-----Generated at Tue Oct 21 05:58:14 2025 by rpki-client