$ rpki-client -vvf rpki.apnic.net/member_repository/A917CD31/75F57B10823A11EB8AE2360AC4F9AE02/A88A17FA823C11EBB35EF50FC4F9AE02.roa File: A88A17FA823C11EBB35EF50FC4F9AE02.roa (raw, json) Hash identifier: w4Og6ZXZfhcGLwCGrYKzyuX9/ySsrXuevHVn0ggUgdE= Subject key identifier: 87:E7:C2:55:61:36:16:DA:15:6C:34:ED:58:D7:F0:92:96:87:35:34 Certificate issuer: /CN=A917CD31/serialNumber=DC7C4674C96FB767EA97C078F680EF574EDEBBBF Certificate serial: 06AC Authority key identifier: DC:7C:46:74:C9:6F:B7:67:EA:97:C0:78:F6:80:EF:57:4E:DE:BB:BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3HxGdMlvt2fql8B49oDvV07eu78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CD31/75F57B10823A11EB8AE2360AC4F9AE02/A88A17FA823C11EBB35EF50FC4F9AE02.roa Signing time: Thu 02 Oct 2025 22:23:43 +0000 ROA not before: Thu 02 Oct 2025 22:23:43 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 133527 IP address blocks: 103.100.112.0/22 maxlen: 22 103.100.112.0/24 maxlen: 24 103.100.113.0/24 maxlen: 24 103.100.114.0/24 maxlen: 24 103.100.115.0/24 maxlen: 24 2401:bbc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CD31/75F57B10823A11EB8AE2360AC4F9AE02/3HxGdMlvt2fql8B49oDvV07eu78.crl rsync://rpki.apnic.net/member_repository/A917CD31/75F57B10823A11EB8AE2360AC4F9AE02/3HxGdMlvt2fql8B49oDvV07eu78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3HxGdMlvt2fql8B49oDvV07eu78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:43:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1708 (0x6ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CD31, serialNumber=DC7C4674C96FB767EA97C078F680EF574EDEBBBF Validity Not Before: Oct 2 22:23:43 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68defb6f-1378 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:1c:37:9f:da:99:f8:a7:b0:c1:b8:6e:29:67: 91:a8:99:5c:7c:66:67:61:ef:d5:71:42:aa:94:20: 09:6a:36:89:a2:d8:ff:be:b2:90:d8:63:bb:e6:99: 95:e4:85:83:27:69:df:2e:75:45:42:92:d5:99:9d: 05:b2:4f:99:4f:13:f6:ac:1f:aa:71:72:9f:de:61: c5:01:63:3a:fe:1c:e0:75:f2:4d:3e:55:f3:cf:33: ac:3c:1a:c9:93:c9:8a:dd:24:a8:3a:7b:3f:8f:1b: d6:1b:d4:26:06:2f:9d:77:b1:03:44:07:38:ff:fb: da:58:a8:ee:fc:1b:a8:8c:ab:d1:86:d1:96:37:31: a1:4f:6f:f2:cd:48:ca:a8:b4:37:bb:c1:c5:13:da: 58:11:c3:fc:28:0b:08:e0:0c:85:26:79:4a:f5:9a: ff:4f:95:08:64:51:c9:92:0c:0f:ca:d8:47:6c:ef: 07:04:1c:4d:c2:f2:64:72:ad:4e:2c:06:41:4b:d7: d6:87:9f:a3:ad:3a:50:ad:26:a6:ac:1c:d2:11:99: 39:92:40:55:46:55:90:f2:7a:6b:d8:78:9d:3c:25: 09:07:56:b0:da:93:36:24:ef:cc:2b:68:49:37:23: bd:9b:2e:74:4f:fc:74:b8:46:d3:af:ec:3b:9a:56: 28:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:E7:C2:55:61:36:16:DA:15:6C:34:ED:58:D7:F0:92:96:87:35:34 X509v3 Authority Key Identifier: keyid:DC:7C:46:74:C9:6F:B7:67:EA:97:C0:78:F6:80:EF:57:4E:DE:BB:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CD31/75F57B10823A11EB8AE2360AC4F9AE02/3HxGdMlvt2fql8B49oDvV07eu78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3HxGdMlvt2fql8B49oDvV07eu78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CD31/75F57B10823A11EB8AE2360AC4F9AE02/A88A17FA823C11EBB35EF50FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.100.112.0/22 IPv6: 2401:bbc0::/32 Signature Algorithm: sha256WithRSAEncryption 37:3e:08:5f:e4:83:0d:76:30:15:65:ae:6d:be:4b:7d:b8:d7: 9b:57:fe:3e:d3:fe:2c:b2:40:87:c1:99:c8:0a:07:01:d9:17: 4d:26:c9:6b:49:0a:f2:e3:84:f5:d4:29:83:28:79:36:66:9c: ab:7b:86:4f:65:84:18:e5:25:1d:7b:ac:b2:17:f8:9a:01:8a: 48:c0:28:a5:22:6d:7a:32:2d:8c:41:d2:d5:7d:5d:4d:76:8c: a9:41:da:5d:27:b3:59:75:4a:5b:b6:fe:f7:d1:f7:1f:3a:69: 1f:63:5a:1f:dd:be:36:06:e4:cb:f6:34:c8:fe:c7:d2:e2:b2: e0:20:60:ef:16:07:1e:c3:64:42:50:d4:ef:19:1a:22:15:f2: c9:a2:db:d5:e6:f8:07:32:1c:a3:5a:49:5d:9b:7c:bf:62:18: a6:3d:b9:fc:43:63:e6:75:00:ee:bf:e8:37:b6:8e:b0:a2:fb: b6:c7:10:a4:ad:64:7e:19:b5:38:17:d8:cf:c0:62:77:52:48: 91:5a:9c:0f:e7:8c:bc:10:55:4b:a1:62:a4:fe:1a:3e:f2:79: 36:c4:d8:8f:66:3e:7d:aa:37:d2:eb:68:aa:ea:f7:f9:b2:58: 56:34:09:df:77:f0:b4:57:fd:69:2b:94:c4:31:4e:33:b4:bc: de:5b:b6:a4 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBqwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NEMzExMTAvBgNVBAUTKERDN0M0Njc0Qzk2RkI3NjdFQTk3QzA3OEY2ODBFRjU3 NEVERUJCQkYwHhcNMjUxMDAyMjIyMzQzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRlZmI2Zi0xMzc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArxw3n9qZ+KewwbhuKWeRqJlcfGZnYe/VcUKqlCAJajaJotj/vrKQ2GO75pmV 5IWDJ2nfLnVFQpLVmZ0Fsk+ZTxP2rB+qcXKf3mHFAWM6/hzgdfJNPlXzzzOsPBrJ k8mK3SSoOns/jxvWG9QmBi+dd7EDRAc4//vaWKju/BuojKvRhtGWNzGhT2/yzUjK qLQ3u8HFE9pYEcP8KAsI4AyFJnlK9Zr/T5UIZFHJkgwPythHbO8HBBxNwvJkcq1O LAZBS9fWh5+jrTpQrSamrBzSEZk5kkBVRlWQ8npr2HidPCUJB1aw2pM2JO/MK2hJ NyO9my50T/x0uEbTr+w7mlYosQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFIfnwlVh NhbaFWw07VjX8JKWhzU0MB8GA1UdIwQYMBaAFNx8RnTJb7dn6pfAePaA71dO3ru/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0QzMS83NUY1N0IxMDgy M0ExMUVCOEFFMjM2MEFDNEY5QUUwMi8zSHhHZE1sdnQyZnFsOEI0OW9EdlYwN2V1 NzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNIeEdkTWx2dDJmcWw4QjQ5b0R2VjA3ZXU3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0NEMzEvNzVGNTdCMTA4MjNBMTFFQjhBRTIzNjBBQzRGOUFFMDIvQTg4QTE3RkE4 MjNDMTFFQkIzNUVGNTBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnZHAwDQQCAAIwBwMFACQBu8AwDQYJKoZIhvcNAQELBQAD ggEBADc+CF/kgw12MBVlrm2+S32415tX/j7T/iyyQIfBmcgKBwHZF00myWtJCvLj hPXUKYMoeTZmnKt7hk9lhBjlJR17rLIX+JoBikjAKKUibXoyLYxB0tV9XU12jKlB 2l0ns1l1Slu2/vfR9x86aR9jWh/dvjYG5Mv2NMj+x9LisuAgYO8WBx7DZEJQ1O8Z GiIV8smi29Xm+AcyHKNaSV2bfL9iGKY9ufxDY+Z1AO6/6De2jrCi+7bHEKStZH4Z tTgX2M/AYndSSJFanA/njLwQVUuhYqT+Gj7yeTbE2I9mPn2qN9LraKrq9/myWFY0 Cd938LRX/WkrlMQxTjO0vN5btqQ= -----END CERTIFICATE-----Generated at Mon Oct 20 21:35:19 2025 by rpki-client