$ rpki-client -vvf rpki.apnic.net/member_repository/A919337F/1E17E01CF25411E9AD3BFB61C4F9AE02/65674CAE2CC911F085E9B54FC4F9AE02.roa File: 65674CAE2CC911F085E9B54FC4F9AE02.roa (raw, json) Hash identifier: WfQhPmIZUh24j8d27BZmWadRYjUYQWfuUpvwsdxRVBY= Subject key identifier: 21:E9:0F:01:BB:C3:88:AE:E5:31:D9:C3:66:1A:5B:50:72:4F:9D:4A Certificate issuer: /CN=A919337F/serialNumber=33740622DF86B3BFE7BF4ABD5DF1361587F03912 Certificate serial: 0CFD Authority key identifier: 33:74:06:22:DF:86:B3:BF:E7:BF:4A:BD:5D:F1:36:15:87:F0:39:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M3QGIt-Gs7_nv0q9XfE2FYfwORI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919337F/1E17E01CF25411E9AD3BFB61C4F9AE02/65674CAE2CC911F085E9B54FC4F9AE02.roa Signing time: Mon 22 Sep 2025 18:38:48 +0000 ROA not before: Mon 22 Sep 2025 18:38:48 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 139623 IP address blocks: 103.93.232.0/22 maxlen: 24 103.142.158.0/23 maxlen: 23 2401:31c0::/32 maxlen: 32 2405:3cc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919337F/1E17E01CF25411E9AD3BFB61C4F9AE02/M3QGIt-Gs7_nv0q9XfE2FYfwORI.crl rsync://rpki.apnic.net/member_repository/A919337F/1E17E01CF25411E9AD3BFB61C4F9AE02/M3QGIt-Gs7_nv0q9XfE2FYfwORI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M3QGIt-Gs7_nv0q9XfE2FYfwORI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 18:38:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3325 (0xcfd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919337F, serialNumber=33740622DF86B3BFE7BF4ABD5DF1361587F03912 Validity Not Before: Sep 22 18:38:48 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68d197b8-356f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e5:94:47:f1:b5:2f:ca:d3:e9:5a:cd:a3:0d: b4:77:4b:1a:d3:cc:23:f3:61:83:bf:91:49:bb:66: 07:35:ae:80:a8:d5:29:75:48:c4:4d:23:40:c3:a4: 46:98:b7:80:78:ee:f2:83:38:fe:59:ff:1c:9c:ba: 91:bc:dc:f2:2e:5f:f9:f5:89:ee:d8:ca:68:8e:96: a8:54:bc:90:91:d5:00:2c:0b:e7:e4:4c:7a:80:a5: 08:07:4e:5c:d1:87:37:60:0b:e4:ec:98:c5:0b:f7: 98:a7:5d:e4:e9:e4:21:2c:8e:99:6f:bc:3a:29:d9: e2:13:59:3d:4b:a4:fc:ea:49:80:be:93:e3:74:ab: c9:a1:b7:e1:d8:51:f3:e1:e8:dc:e0:3f:10:91:e1: 90:e4:47:3c:23:04:5c:96:9b:69:43:2c:cf:37:59: 2a:07:1a:d1:f3:c8:bc:f3:d6:7e:fc:d8:91:10:0c: 9a:51:9f:54:81:2e:ba:f3:1d:03:92:69:f8:6b:71: b5:ee:1b:f8:b5:3b:5d:c6:a1:0b:f1:ca:bc:09:c3: 3c:69:a3:ca:1a:3f:c2:60:fb:d6:a9:66:b0:34:68: 68:56:c5:18:fd:ba:23:f9:3f:f8:e0:cf:7e:35:e6: 59:f9:3c:06:9e:45:d9:94:ff:6a:b2:70:a1:ce:83: 71:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:E9:0F:01:BB:C3:88:AE:E5:31:D9:C3:66:1A:5B:50:72:4F:9D:4A X509v3 Authority Key Identifier: keyid:33:74:06:22:DF:86:B3:BF:E7:BF:4A:BD:5D:F1:36:15:87:F0:39:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919337F/1E17E01CF25411E9AD3BFB61C4F9AE02/M3QGIt-Gs7_nv0q9XfE2FYfwORI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M3QGIt-Gs7_nv0q9XfE2FYfwORI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919337F/1E17E01CF25411E9AD3BFB61C4F9AE02/65674CAE2CC911F085E9B54FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.93.232.0/22 103.142.158.0/23 IPv6: 2401:31c0::/32 2405:3cc0::/32 Signature Algorithm: sha256WithRSAEncryption 9b:68:04:74:d7:c5:0d:e9:eb:16:9b:bf:4d:62:0f:fd:81:51: 19:d1:cf:f2:ad:9a:92:dd:f8:9a:8b:78:b7:dd:fd:bc:18:fe: c2:83:35:ae:5d:15:9e:4a:de:ce:f9:5d:78:9f:45:fd:19:bd: bb:57:1a:b5:cb:f7:1f:5f:9c:dc:3c:00:d8:08:47:51:a0:12: 2a:a1:30:cf:bb:2c:32:0a:c9:92:71:c3:6d:e3:35:99:42:e8: ae:5a:61:47:6e:00:1d:e4:74:1e:14:c0:ea:09:e7:00:46:c3: 69:57:df:f8:0c:47:c0:4b:94:d2:76:c0:2d:fb:f1:f5:db:76: 69:96:5d:b7:fa:b2:68:3f:4b:ce:a0:09:9d:25:b2:07:c3:34: 58:5f:b8:20:7b:0b:40:00:fe:30:6d:0c:cc:3c:17:4b:b4:66: 17:f1:47:60:74:5a:74:a9:03:94:45:d3:f7:f3:bd:3f:46:ba: 9d:1d:3c:0f:58:94:6f:17:a7:b5:f2:65:77:1b:63:d1:1e:4c: 50:6d:f5:2f:b4:31:dc:34:a5:a4:0a:9c:0c:53:26:10:28:c1: 03:f3:db:0d:30:e3:5a:bf:88:11:77:b5:2f:db:aa:6d:7a:ab: 21:47:b1:a4:3a:e4:7f:1c:e7:3a:66:3c:74:5f:9d:57:5c:dd: f6:b1:2a:03 -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICDP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTMzN0YxMTAvBgNVBAUTKDMzNzQwNjIyREY4NkIzQkZFN0JGNEFCRDVERjEzNjE1 ODdGMDM5MTIwHhcNMjUwOTIyMTgzODQ4WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQxOTdiOC0zNTZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAteWUR/G1L8rT6VrNow20d0sa08wj82GDv5FJu2YHNa6AqNUpdUjETSNAw6RG mLeAeO7ygzj+Wf8cnLqRvNzyLl/59Ynu2MpojpaoVLyQkdUALAvn5Ex6gKUIB05c 0Yc3YAvk7JjFC/eYp13k6eQhLI6Zb7w6KdniE1k9S6T86kmAvpPjdKvJobfh2FHz 4ejc4D8QkeGQ5Ec8IwRclptpQyzPN1kqBxrR88i889Z+/NiREAyaUZ9UgS668x0D kmn4a3G17hv4tTtdxqEL8cq8CcM8aaPKGj/CYPvWqWawNGhoVsUY/boj+T/44M9+ NeZZ+TwGnkXZlP9qsnChzoNx7QIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFCHpDwG7 w4iu5THZw2YaW1ByT51KMB8GA1UdIwQYMBaAFDN0BiLfhrO/579KvV3xNhWH8DkS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzM3Ri8xRTE3RTAxQ0Yy NTQxMUU5QUQzQkZCNjFDNEY5QUUwMi9NM1FHSXQtR3M3X252MHE5WGZFMkZZZndP UkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL00zUUdJdC1HczdfbnYwcTlYZkUyRllmd09SSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTMzN0YvMUUxN0UwMUNGMjU0MTFFOUFEM0JGQjYxQzRGOUFFMDIvNjU2NzRDQUUy Q0M5MTFGMDg1RTlCNTRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOwYIKwYBBQUHAQcBAf8E LDAqMBIEAgABMAwDBAJnXegDBAFnjp4wFAQCAAIwDgMFACQBMcADBQAkBTzAMA0G CSqGSIb3DQEBCwUAA4IBAQCbaAR018UN6esWm79NYg/9gVEZ0c/yrZqS3fiai3i3 3f28GP7CgzWuXRWeSt7O+V14n0X9Gb27Vxq1y/cfX5zcPADYCEdRoBIqoTDPuywy CsmSccNt4zWZQuiuWmFHbgAd5HQeFMDqCecARsNpV9/4DEfAS5TSdsAt+/H123Zp ll23+rJoP0vOoAmdJbIHwzRYX7ggewtAAP4wbQzMPBdLtGYX8UdgdFp0qQOURdP3 870/RrqdHTwPWJRvF6e18mV3G2PRHkxQbfUvtDHcNKWkCpwMUyYQKMED89sNMONa v4gRd7Uv26pteqshR7GkOuR/HOc6Zjx0X51XXN32sSoD -----END CERTIFICATE-----Generated at Tue Oct 21 00:40:56 2025 by rpki-client