$ rpki-client -vvf rpki.apnic.net/member_repository/A917B51E/59CDD54A0FE911EB9F30C725C4F9AE02/EFA17F260FEA11EB8FA8CB2AC4F9AE02.roa File: EFA17F260FEA11EB8FA8CB2AC4F9AE02.roa (raw, json) Hash identifier: H9hFCoLq76Z6Qqjigg7+UHgPrO1jNkvzVDxTFmuYUMk= Subject key identifier: DE:05:19:C9:E1:05:5F:C3:4D:83:3B:CE:2F:FF:2D:16:6F:48:2A:FB Certificate issuer: /CN=A917B51E/serialNumber=0C47EDE3048E35A6E6E8CB0CE44FC8437271EB3D Certificate serial: 07DB Authority key identifier: 0C:47:ED:E3:04:8E:35:A6:E6:E8:CB:0C:E4:4F:C8:43:72:71:EB:3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DEft4wSONabm6MsM5E_IQ3Jx6z0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B51E/59CDD54A0FE911EB9F30C725C4F9AE02/EFA17F260FEA11EB8FA8CB2AC4F9AE02.roa Signing time: Tue 14 Oct 2025 22:51:50 +0000 ROA not before: Tue 14 Oct 2025 22:51:50 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 141346 IP address blocks: 103.157.94.0/23 maxlen: 23 103.157.94.0/24 maxlen: 24 103.157.95.0/24 maxlen: 24 2406:9d40::/32 maxlen: 32 2406:9d40::/40 maxlen: 40 2406:9d40::/48 maxlen: 48 2406:9d40:100::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B51E/59CDD54A0FE911EB9F30C725C4F9AE02/DEft4wSONabm6MsM5E_IQ3Jx6z0.crl rsync://rpki.apnic.net/member_repository/A917B51E/59CDD54A0FE911EB9F30C725C4F9AE02/DEft4wSONabm6MsM5E_IQ3Jx6z0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DEft4wSONabm6MsM5E_IQ3Jx6z0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:29:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2011 (0x7db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B51E, serialNumber=0C47EDE3048E35A6E6E8CB0CE44FC8437271EB3D Validity Not Before: Oct 14 22:51:50 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=68eed406-84cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e9:58:3f:70:11:88:ab:1f:f6:74:5a:90:25: 3a:af:d2:c1:99:1a:62:e5:35:bf:4c:3f:69:bd:64: 16:04:72:98:d2:12:59:4d:45:48:2c:25:2e:52:e9: c2:f5:19:3f:c5:3c:5d:c1:70:67:01:98:85:5f:db: 5e:ff:c5:85:17:93:05:26:15:e9:06:16:db:43:68: 18:6a:0d:30:4e:82:09:7b:b9:7c:6a:06:f4:82:5f: 47:bd:8a:37:5f:01:bb:7b:c2:c1:b1:6a:0b:89:31: 43:19:00:69:54:c7:87:7c:5e:2d:7e:0b:f0:a8:a7: fc:fa:60:c7:df:22:38:21:d5:d4:4d:99:a5:98:4b: ef:3f:23:15:ee:91:20:c6:2f:8f:88:f1:94:78:49: fb:84:1a:d9:35:3b:dc:c9:18:74:d2:c6:25:cf:96: 53:80:14:ad:18:4a:27:27:ef:36:15:ed:f8:f0:72: 49:c1:96:40:ae:df:bd:8a:e3:f6:85:27:f2:da:c1: 14:3d:56:7c:0b:df:77:0e:95:a3:a0:fb:45:09:a1: 7b:17:07:82:17:af:c3:27:90:3c:4d:9a:94:0e:29: f4:58:72:71:9a:e4:90:8b:d4:04:10:3d:91:ef:12: 90:1e:04:96:c5:0d:fc:a4:98:98:ae:d6:e7:a1:a5: e1:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:05:19:C9:E1:05:5F:C3:4D:83:3B:CE:2F:FF:2D:16:6F:48:2A:FB X509v3 Authority Key Identifier: keyid:0C:47:ED:E3:04:8E:35:A6:E6:E8:CB:0C:E4:4F:C8:43:72:71:EB:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B51E/59CDD54A0FE911EB9F30C725C4F9AE02/DEft4wSONabm6MsM5E_IQ3Jx6z0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DEft4wSONabm6MsM5E_IQ3Jx6z0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B51E/59CDD54A0FE911EB9F30C725C4F9AE02/EFA17F260FEA11EB8FA8CB2AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.157.94.0/23 IPv6: 2406:9d40::/32 Signature Algorithm: sha256WithRSAEncryption c6:34:aa:30:bc:4c:74:81:be:b0:4a:62:e2:2d:f7:1c:51:cd: 64:04:73:57:59:fc:5c:26:a3:5b:50:a7:83:a5:d6:fe:17:b1: 93:09:53:0d:fb:7f:fb:64:2b:94:77:af:79:c1:21:cf:19:00: 9a:71:39:ff:9c:dd:44:de:3c:98:1b:3e:e8:f9:9b:02:36:9e: da:50:e4:dd:0d:51:c5:80:70:e9:11:33:aa:33:cb:b4:c7:42: 56:28:b6:46:83:c6:2b:ab:92:85:a1:61:69:3c:10:5e:2c:0e: 25:f6:59:8d:b2:5b:61:cf:8b:40:c4:82:c4:a6:96:55:bb:37: 5d:b1:94:25:25:f5:50:f5:c0:b4:d3:8e:a3:82:da:dc:14:00: 52:60:1e:7b:e2:3f:7c:0a:aa:56:db:fa:3a:9d:42:ec:0e:af: 8b:c8:a4:50:83:67:26:d0:4c:4a:b2:47:51:5f:54:73:8b:e7: 72:0e:cf:47:c7:01:68:68:33:31:f4:9a:53:c7:bf:ff:20:9d: fb:1c:14:65:3a:1e:43:25:97:30:f3:49:f6:af:bd:e2:6b:e3: 1a:3d:4c:04:05:6a:6d:0c:21:54:bb:1b:8d:1c:3e:de:21:6b: 0f:38:5a:b3:3d:b7:de:f3:c2:fd:9b:af:ff:c0:4b:b7:1f:6f: 9d:04:5c:78 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICB9swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MUUxMTAvBgNVBAUTKDBDNDdFREUzMDQ4RTM1QTZFNkU4Q0IwQ0U0NEZDODQz NzI3MUVCM0QwHhcNMjUxMDE0MjI1MTUwWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGVlZDQwNi04NGNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvelYP3ARiKsf9nRakCU6r9LBmRpi5TW/TD9pvWQWBHKY0hJZTUVILCUuUunC 9Rk/xTxdwXBnAZiFX9te/8WFF5MFJhXpBhbbQ2gYag0wToIJe7l8agb0gl9HvYo3 XwG7e8LBsWoLiTFDGQBpVMeHfF4tfgvwqKf8+mDH3yI4IdXUTZmlmEvvPyMV7pEg xi+PiPGUeEn7hBrZNTvcyRh00sYlz5ZTgBStGEonJ+82Fe348HJJwZZArt+9iuP2 hSfy2sEUPVZ8C993DpWjoPtFCaF7FweCF6/DJ5A8TZqUDin0WHJxmuSQi9QEED2R 7xKQHgSWxQ38pJiYrtbnoaXhqwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFN4FGcnh BV/DTYM7zi//LRZvSCr7MB8GA1UdIwQYMBaAFAxH7eMEjjWm5ujLDORPyENyces9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUxRS81OUNERDU0QTBG RTkxMUVCOUYzMEM3MjVDNEY5QUUwMi9ERWZ0NHdTT05hYm02TXNNNUVfSVEzSng2 ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RFZnQ0d1NPTmFibTZNc001RV9JUTNKeDZ6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I1MUUvNTlDREQ1NEEwRkU5MTFFQjlGMzBDNzI1QzRGOUFFMDIvRUZBMTdGMjYw RkVBMTFFQjhGQThDQjJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnnV4wDQQCAAIwBwMFACQGnUAwDQYJKoZIhvcNAQELBQAD ggEBAMY0qjC8THSBvrBKYuIt9xxRzWQEc1dZ/Fwmo1tQp4Ol1v4XsZMJUw37f/tk K5R3r3nBIc8ZAJpxOf+c3UTePJgbPuj5mwI2ntpQ5N0NUcWAcOkRM6ozy7THQlYo tkaDxiurkoWhYWk8EF4sDiX2WY2yW2HPi0DEgsSmllW7N12xlCUl9VD1wLTTjqOC 2twUAFJgHnviP3wKqlbb+jqdQuwOr4vIpFCDZybQTEqyR1FfVHOL53IOz0fHAWho MzH0mlPHv/8gnfscFGU6HkMllzDzSfavveJr4xo9TAQFam0MIVS7G40cPt4haw84 WrM9t97zwv2br//AS7cfb50EXHg= -----END CERTIFICATE-----Generated at Mon Oct 20 18:23:15 2025 by rpki-client