$ rpki-client -vvf rpki.apnic.net/member_repository/A917F116/8BCFFF066EDE11F091E02A21C4F9AE02/029780A8791D11F08A28C96CC4F9AE02.roa File: 029780A8791D11F08A28C96CC4F9AE02.roa (raw, json) Hash identifier: cIhq6sJcStnFPRCzrluGkX+gdeeTmy7R7VUY7+k19nE= Subject key identifier: 40:B7:7F:AC:12:59:E0:48:11:5B:F2:41:BE:AA:66:6C:DB:19:FE:C1 Certificate issuer: /CN=A917F116/serialNumber=DB2DD4FEFF37091257F6019D50A23930EC46E1FB Certificate serial: 3E Authority key identifier: DB:2D:D4:FE:FF:37:09:12:57:F6:01:9D:50:A2:39:30:EC:46:E1:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2y3U_v83CRJX9gGdUKI5MOxG4fs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F116/8BCFFF066EDE11F091E02A21C4F9AE02/029780A8791D11F08A28C96CC4F9AE02.roa Signing time: Thu 25 Sep 2025 14:52:35 +0000 ROA not before: Thu 25 Sep 2025 14:52:35 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 6453 IP address blocks: 203.105.176.0/23 maxlen: 23 203.105.176.0/24 maxlen: 24 203.105.177.0/24 maxlen: 24 203.105.178.0/23 maxlen: 23 203.105.178.0/24 maxlen: 24 203.105.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F116/8BCFFF066EDE11F091E02A21C4F9AE02/2y3U_v83CRJX9gGdUKI5MOxG4fs.crl rsync://rpki.apnic.net/member_repository/A917F116/8BCFFF066EDE11F091E02A21C4F9AE02/2y3U_v83CRJX9gGdUKI5MOxG4fs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2y3U_v83CRJX9gGdUKI5MOxG4fs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:14:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62 (0x3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F116, serialNumber=DB2DD4FEFF37091257F6019D50A23930EC46E1FB Validity Not Before: Sep 25 14:52:35 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=68d55733-9576 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:9b:3b:7c:fc:0e:ff:27:f7:ff:71:9d:ad:6b: f2:73:6a:4f:c7:1a:4a:dc:cf:c8:b4:c3:8c:fe:3a: 19:31:29:2c:b0:af:29:a6:61:eb:2c:6c:50:eb:09: 43:ad:76:f7:ab:c0:7f:c5:51:80:77:09:22:ed:b2: 81:ac:1a:95:d5:12:9a:c0:68:80:5d:39:7e:33:a8: 61:af:b2:95:c2:44:95:0e:cc:fd:2e:8a:c3:c0:3f: d8:18:52:60:7c:19:98:9b:19:8f:dc:f2:82:fa:93: 4c:70:2c:54:20:2b:34:ff:8f:7b:f6:99:62:7b:87: fe:e0:8b:dd:46:79:7f:8b:04:14:f9:15:b5:80:bf: 49:56:f1:c8:95:3b:1e:b1:4b:f4:dc:0e:13:48:26: c2:3b:7a:ba:e7:60:11:24:20:b9:55:19:34:89:bd: 41:66:78:0a:5f:fe:7e:56:0f:91:03:2d:6c:fe:86: 48:41:08:28:4f:e9:a0:f9:41:60:5b:f3:6e:fe:53: 9d:6b:cf:e2:0f:c7:0d:35:35:86:a9:31:5c:80:34: 8f:98:10:2f:f6:a0:60:3b:cd:f7:4a:fa:2c:aa:39: 6d:1e:87:21:43:21:66:87:a3:03:60:cd:02:cf:7d: 60:61:75:f1:c2:db:e2:0e:a5:ac:c4:a2:7c:e6:93: 3c:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:B7:7F:AC:12:59:E0:48:11:5B:F2:41:BE:AA:66:6C:DB:19:FE:C1 X509v3 Authority Key Identifier: keyid:DB:2D:D4:FE:FF:37:09:12:57:F6:01:9D:50:A2:39:30:EC:46:E1:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F116/8BCFFF066EDE11F091E02A21C4F9AE02/2y3U_v83CRJX9gGdUKI5MOxG4fs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2y3U_v83CRJX9gGdUKI5MOxG4fs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F116/8BCFFF066EDE11F091E02A21C4F9AE02/029780A8791D11F08A28C96CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.105.176.0/22 Signature Algorithm: sha256WithRSAEncryption 90:ed:81:f8:87:f5:ae:fc:91:9e:45:10:c6:15:1d:bb:13:20: 2f:b7:17:2b:de:d6:db:8e:16:49:ca:44:44:0e:69:8e:9f:8e: 67:23:e8:d8:27:ac:ab:43:c2:5d:fc:8a:99:22:b4:25:1e:5c: 4d:02:f4:e1:08:1c:62:1c:ec:5f:b0:a8:e9:90:68:78:85:9e: 24:49:f6:de:2c:b3:2d:26:c9:95:7c:db:20:04:06:2f:da:c5: 1c:df:cd:64:9c:cf:c4:a9:50:7f:48:79:b6:9e:5c:0c:5a:30: aa:aa:d8:c1:56:7b:9e:d5:e1:ca:6b:fd:09:13:5a:ad:df:f8: a4:50:a9:3a:8a:35:6b:f4:c0:c8:59:dd:b2:25:e3:ab:d4:f4: 9a:2c:11:38:9e:61:de:94:b3:02:b1:15:b1:1e:0c:1b:db:01: 9b:ee:ec:a3:22:ea:47:93:b1:d2:ab:5c:68:ef:00:01:86:4d: e9:fc:43:ca:f4:13:c1:cc:31:83:ab:8b:24:de:dd:b5:f9:01: ef:b2:1d:60:72:38:52:24:9b:4e:7a:a1:e1:b1:2e:a8:05:76: 5c:1b:5f:1c:13:0f:28:55:cf:3a:ca:e0:e0:2e:f1:af:e9:e9: b7:1e:67:39:8c:f2:c1:40:ab:fd:6d:de:12:3c:41:98:a1:3a: 19:51:ad:04 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBPjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RjExNjExMC8GA1UEBRMoREIyREQ0RkVGRjM3MDkxMjU3RjYwMTlENTBBMjM5MzBF QzQ2RTFGQjAeFw0yNTA5MjUxNDUyMzVaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZDU1NzMzLTk1NzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMmzt8/A7/J/f/cZ2ta/Jzak/HGkrcz8i0w4z+OhkxKSywrymmYessbFDrCUOt dverwH/FUYB3CSLtsoGsGpXVEprAaIBdOX4zqGGvspXCRJUOzP0uisPAP9gYUmB8 GZibGY/c8oL6k0xwLFQgKzT/j3v2mWJ7h/7gi91GeX+LBBT5FbWAv0lW8ciVOx6x S/TcDhNIJsI7errnYBEkILlVGTSJvUFmeApf/n5WD5EDLWz+hkhBCChP6aD5QWBb 827+U51rz+IPxw01NYapMVyANI+YEC/2oGA7zfdK+iyqOW0ehyFDIWaHowNgzQLP fWBhdfHC2+IOpazEonzmkzwlAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUQLd/rBJZ 4EgRW/JBvqpmbNsZ/sEwHwYDVR0jBBgwFoAU2y3U/v83CRJX9gGdUKI5MOxG4fsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdGMTE2LzhCQ0ZGRjA2NkVE RTExRjA5MUUwMkEyMUM0RjlBRTAyLzJ5M1VfdjgzQ1JKWDlnR2RVS0k1TU94RzRm cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMnkzVV92ODNDUkpYOWdHZFVLSTVNT3hHNGZzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjExNi84QkNGRkYwNjZFREUxMUYwOTFFMDJBMjFDNEY5QUUwMi8wMjk3ODBBODc5 MUQxMUYwOEEyOEM5NkNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAstpsDANBgkqhkiG9w0BAQsFAAOCAQEAkO2B+If1rvyRnkUQ xhUduxMgL7cXK97W244WScpERA5pjp+OZyPo2Cesq0PCXfyKmSK0JR5cTQL04Qgc YhzsX7Co6ZBoeIWeJEn23iyzLSbJlXzbIAQGL9rFHN/NZJzPxKlQf0h5tp5cDFow qqrYwVZ7ntXhymv9CRNard/4pFCpOoo1a/TAyFndsiXjq9T0miwROJ5h3pSzArEV sR4MG9sBm+7soyLqR5Ox0qtcaO8AAYZN6fxDyvQTwcwxg6uLJN7dtfkB77IdYHI4 UiSbTnqh4bEuqAV2XBtfHBMPKFXPOsrg4C7xr+nptx5nOYzywUCr/W3eEjxBmKE6 GVGtBA== -----END CERTIFICATE-----Generated at Mon Oct 20 13:59:44 2025 by rpki-client