$ rpki-client -vvf rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/A6A9297A366311EEB376DC3AC4F9AE02.roa File: A6A9297A366311EEB376DC3AC4F9AE02.roa (raw, json) Hash identifier: Hmr8S/+zRfVNlVeNeFTsCpcRPai2e0O/7MmkTTdg3qs= Subject key identifier: 47:3F:24:12:BC:78:17:8E:0D:E7:02:72:E9:BE:D9:C9:E0:AA:4D:75 Certificate issuer: /CN=A919536C/serialNumber=488970506264EF96D81EC12E6ABD256DB30FDCFA Certificate serial: 01DA Authority key identifier: 48:89:70:50:62:64:EF:96:D8:1E:C1:2E:6A:BD:25:6D:B3:0F:DC:FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SIlwUGJk75bYHsEuar0lbbMP3Po.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/A6A9297A366311EEB376DC3AC4F9AE02.roa Signing time: Fri 12 Sep 2025 05:40:36 +0000 ROA not before: Fri 12 Sep 2025 05:40:36 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 136393 IP address blocks: 103.14.10.0/24 maxlen: 24 119.110.227.0/24 maxlen: 24 2400:6280:18::/48 maxlen: 48 2400:6280:19::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/SIlwUGJk75bYHsEuar0lbbMP3Po.crl rsync://rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/SIlwUGJk75bYHsEuar0lbbMP3Po.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SIlwUGJk75bYHsEuar0lbbMP3Po.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:55:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 474 (0x1da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919536C, serialNumber=488970506264EF96D81EC12E6ABD256DB30FDCFA Validity Not Before: Sep 12 05:40:36 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68c3b254-dcf2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:54:ab:a3:9a:2a:ce:16:8c:12:59:d2:28:11: 43:a6:ab:1d:5c:ac:c6:ce:26:dd:af:5c:15:1e:b4: 29:2b:d2:9f:3f:76:d7:65:22:39:41:90:f3:ae:b2: 07:1a:fa:29:cc:1c:8b:32:e0:dd:c1:4e:e7:31:ef: ec:4c:39:fb:9b:8d:ca:5b:42:5e:7e:95:b4:6d:a7: ef:e1:d1:89:e6:a4:c7:0f:d3:80:e4:7d:2e:3a:9a: a0:00:91:7e:10:aa:e1:5e:22:68:d9:b7:5d:2b:3a: 44:44:63:7d:25:74:20:68:b7:33:19:88:7b:4d:f6: 81:8f:6a:fb:ab:e1:d3:5c:c2:75:36:3e:7f:3d:91: 96:b7:f2:e0:09:a1:45:78:6f:82:c4:c3:a2:f3:16: ff:ef:b5:50:e0:fe:5e:f2:ad:60:ae:4f:a8:df:7b: 9a:e7:5c:13:1c:e6:53:0f:11:a8:8a:39:7e:5e:82: cd:eb:39:c4:1a:aa:32:e9:1a:69:14:af:cd:8e:52: 5d:4c:e7:01:ce:06:45:d0:90:88:3e:7b:85:0b:4d: 8b:26:6e:95:2d:79:c1:99:b5:fe:0c:b2:1f:d1:1f: 7e:a8:c4:16:cf:54:3b:01:e1:0b:85:7b:5a:63:80: c8:e1:79:7f:65:46:f6:00:fa:c9:b8:9b:59:62:2a: fe:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:3F:24:12:BC:78:17:8E:0D:E7:02:72:E9:BE:D9:C9:E0:AA:4D:75 X509v3 Authority Key Identifier: keyid:48:89:70:50:62:64:EF:96:D8:1E:C1:2E:6A:BD:25:6D:B3:0F:DC:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/SIlwUGJk75bYHsEuar0lbbMP3Po.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SIlwUGJk75bYHsEuar0lbbMP3Po.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/A6A9297A366311EEB376DC3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.14.10.0/24 119.110.227.0/24 IPv6: 2400:6280:18::/47 Signature Algorithm: sha256WithRSAEncryption 09:fb:58:dc:6e:51:c2:52:63:56:5f:da:d6:9d:a7:5e:5e:0d: 18:d1:1a:75:bc:ce:5c:eb:93:af:a9:86:39:52:5a:fd:41:b3: ff:81:ad:bd:77:7e:bc:c9:e6:c5:43:a8:f7:05:53:ce:85:6b: fe:51:c3:1c:d6:69:c4:28:d1:9f:a8:fe:08:8b:96:68:2a:c3: 1f:a1:60:11:b1:75:88:c9:97:a9:a7:1b:77:ab:86:e7:36:84: 21:cc:a1:2c:2d:7c:a5:83:26:9d:4f:23:b1:18:b9:d9:d9:55: 79:f0:90:3f:05:c6:cc:5a:2c:75:12:14:3f:c9:2f:12:32:83: 10:61:b4:e0:0a:07:29:54:0b:a0:2a:44:26:78:9f:26:22:79: b8:a2:30:17:b7:16:d6:02:34:ed:63:86:31:af:15:11:38:f7: 29:83:ee:d3:e0:64:43:af:08:06:3d:cb:21:d2:fd:d9:17:dc: b7:59:68:02:7b:79:c2:46:70:c6:4d:20:ef:82:da:34:15:09: 1c:ad:e7:12:98:b4:cc:f6:be:5d:24:e0:4f:ca:72:0e:9f:35: 13:53:99:b7:b8:85:18:eb:e2:16:25:ca:71:fe:19:ae:0e:b7: 76:46:10:3f:4c:a4:17:56:ad:3d:e8:20:48:f1:89:f3:0b:99: e5:44:c2:c9 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICAdowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTUzNkMxMTAvBgNVBAUTKDQ4ODk3MDUwNjI2NEVGOTZEODFFQzEyRTZBQkQyNTZE QjMwRkRDRkEwHhcNMjUwOTEyMDU0MDM2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGMzYjI1NC1kY2YyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1FSro5oqzhaMElnSKBFDpqsdXKzGzibdr1wVHrQpK9KfP3bXZSI5QZDzrrIH GvopzByLMuDdwU7nMe/sTDn7m43KW0JefpW0bafv4dGJ5qTHD9OA5H0uOpqgAJF+ EKrhXiJo2bddKzpERGN9JXQgaLczGYh7TfaBj2r7q+HTXMJ1Nj5/PZGWt/LgCaFF eG+CxMOi8xb/77VQ4P5e8q1grk+o33ua51wTHOZTDxGoijl+XoLN6znEGqoy6Rpp FK/NjlJdTOcBzgZF0JCIPnuFC02LJm6VLXnBmbX+DLIf0R9+qMQWz1Q7AeELhXta Y4DI4Xl/ZUb2APrJuJtZYir+PQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFEc/JBK8 eBeODecCcum+2cngqk11MB8GA1UdIwQYMBaAFEiJcFBiZO+W2B7BLmq9JW2zD9z6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTM2Qy83RTREODQ2MDM2 NjAxMUVFODhFMEY1MzBDNEY5QUUwMi9TSWx3VUdKazc1YllIc0V1YXIwbGJiTVAz UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NJbHdVR0prNzViWUhzRXVhcjBsYmJNUDNQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTUzNkMvN0U0RDg0NjAzNjYwMTFFRTg4RTBGNTMwQzRGOUFFMDIvQTZBOTI5N0Ez NjYzMTFFRUIzNzZEQzNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnDgoDBAB3buMwDwQCAAIwCQMHASQAYoAAGDANBgkqhkiG 9w0BAQsFAAOCAQEACftY3G5RwlJjVl/a1p2nXl4NGNEadbzOXOuTr6mGOVJa/UGz /4GtvXd+vMnmxUOo9wVTzoVr/lHDHNZpxCjRn6j+CIuWaCrDH6FgEbF1iMmXqacb d6uG5zaEIcyhLC18pYMmnU8jsRi52dlVefCQPwXGzFosdRIUP8kvEjKDEGG04AoH KVQLoCpEJnifJiJ5uKIwF7cW1gI07WOGMa8VETj3KYPu0+BkQ68IBj3LIdL92Rfc t1loAnt5wkZwxk0g74LaNBUJHK3nEpi0zPa+XSTgT8pyDp81E1OZt7iFGOviFiXK cf4Zrg63dkYQP0ykF1atPeggSPGJ8wuZ5UTCyQ== -----END CERTIFICATE-----Generated at Mon Oct 20 13:49:58 2025 by rpki-client