$ rpki-client -vvf rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/DCB2531AC75911EF979D593BC4F9AE02.roa File: DCB2531AC75911EF979D593BC4F9AE02.roa (raw, json) Hash identifier: oL0maWqOk1WBmFKK+iZrpTSZZSpD3rBTTNKLPVPOQyw= Subject key identifier: 5D:D3:27:29:5C:5B:FC:6F:7E:8C:CB:3B:F6:3C:63:92:C0:10:20:E2 Certificate issuer: /CN=A919631C/serialNumber=F72E7D5E1BB4542AB7FF777365883C1601034DE9 Certificate serial: 0F01 Authority key identifier: F7:2E:7D:5E:1B:B4:54:2A:B7:FF:77:73:65:88:3C:16:01:03:4D:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/DCB2531AC75911EF979D593BC4F9AE02.roa Signing time: Thu 16 Oct 2025 18:26:39 +0000 ROA not before: Thu 16 Oct 2025 18:26:39 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 134715 IP address blocks: 103.197.176.0/22 maxlen: 24 220.158.236.0/22 maxlen: 24 2403:580::/32 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.crl rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:13:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3841 (0xf01) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919631C, serialNumber=F72E7D5E1BB4542AB7FF777365883C1601034DE9 Validity Not Before: Oct 16 18:26:39 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68f138df-499c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:3c:e1:4f:76:73:4c:2b:24:ce:79:05:d3:41: f6:11:5b:13:14:78:69:84:8b:3c:72:eb:77:13:ab: 17:99:39:a4:86:09:12:70:5a:21:f8:35:8f:05:aa: a0:7c:23:e6:7f:87:bb:88:70:3e:35:21:77:c7:a0: ca:f8:ce:64:f1:41:c7:11:b8:2e:85:a6:4b:3f:cc: de:42:bf:22:38:ca:24:98:83:c4:df:f5:0a:2d:dc: 13:3c:57:3b:5e:42:c3:55:a7:cf:5f:66:2d:00:a8: 52:a6:35:a2:42:e6:fc:7e:1a:e7:b5:8c:b3:6d:8a: c8:41:f5:f9:18:14:c4:bd:42:83:fb:5b:3a:8c:6f: 74:bf:1b:c6:45:bc:6c:6b:1f:cb:be:b6:81:17:c7: de:01:15:a8:d9:3e:75:0f:d2:96:87:31:8c:60:4e: 64:b1:9e:c4:d4:c1:5e:2e:c3:7f:c0:b3:d5:62:f4: 51:7b:14:b2:a1:42:39:65:13:39:e1:03:08:ee:db: fc:d0:32:02:38:7e:48:be:40:e1:40:8f:d2:ac:d5: 9b:a9:f4:7d:97:d5:df:c8:ae:4d:95:c0:c3:ea:9a: d0:9d:dc:06:ba:2f:66:ea:a5:d9:9f:f8:ae:49:0c: 25:f2:a8:62:61:6d:08:42:5f:95:e3:76:fc:48:6b: e9:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:D3:27:29:5C:5B:FC:6F:7E:8C:CB:3B:F6:3C:63:92:C0:10:20:E2 X509v3 Authority Key Identifier: keyid:F7:2E:7D:5E:1B:B4:54:2A:B7:FF:77:73:65:88:3C:16:01:03:4D:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/9y59Xhu0VCq3_3dzZYg8FgEDTek.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9y59Xhu0VCq3_3dzZYg8FgEDTek.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919631C/A9C317048C2311E99F845D72C4F9AE02/DCB2531AC75911EF979D593BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.197.176.0/22 220.158.236.0/22 IPv6: 2403:580::/32 Signature Algorithm: sha256WithRSAEncryption 1d:7a:f7:2c:fa:3e:b7:ea:98:9c:6a:6a:e8:57:4f:fa:c1:29: 4e:df:a1:cc:2c:5a:dd:5f:2f:ec:68:92:4a:e9:ca:96:bc:56: 65:d7:b2:fb:05:10:b3:ef:0b:de:90:a6:61:ae:be:1f:d3:00: 5c:ec:30:e6:6b:b7:59:5f:fc:9a:ca:5c:5f:24:57:7b:35:09: f3:a1:19:13:07:c9:b8:b2:53:e5:3c:ac:1b:c7:6e:e2:dd:c7: 7f:3a:63:2c:fe:5e:c5:39:23:ce:d9:d0:e1:fb:38:0b:58:f9: c9:8e:46:c4:ed:77:de:94:29:9e:2d:03:8b:3c:1b:ee:62:0b: 63:40:00:ab:c3:12:47:f3:d6:75:45:21:50:0a:3e:3c:89:8c: 05:b6:c5:35:98:67:2a:6c:a4:a8:94:ca:e2:1b:ed:bc:b7:3c: bd:51:a0:ab:7a:8f:bc:0a:d1:70:ac:1f:73:74:07:c2:f0:e4: 3f:01:09:42:bb:35:ca:0c:38:8e:af:f0:4d:10:0a:61:50:6f: 6e:82:c5:5b:3a:73:af:ab:7d:bb:9f:79:47:83:7a:3b:ec:7e: 6a:5b:41:a6:fb:37:f7:f1:e3:a0:30:ab:b6:a8:cb:99:8b:e2: 04:b4:d3:3b:6a:97:f4:ec:a5:aa:ae:20:08:89:b1:33:91:9e: e0:52:0c:b8 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICDwEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTYzMUMxMTAvBgNVBAUTKEY3MkU3RDVFMUJCNDU0MkFCN0ZGNzc3MzY1ODgzQzE2 MDEwMzRERTkwHhcNMjUxMDE2MTgyNjM5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGYxMzhkZi00OTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0jzhT3ZzTCskznkF00H2EVsTFHhphIs8cut3E6sXmTmkhgkScFoh+DWPBaqg fCPmf4e7iHA+NSF3x6DK+M5k8UHHEbguhaZLP8zeQr8iOMokmIPE3/UKLdwTPFc7 XkLDVafPX2YtAKhSpjWiQub8fhrntYyzbYrIQfX5GBTEvUKD+1s6jG90vxvGRbxs ax/LvraBF8feARWo2T51D9KWhzGMYE5ksZ7E1MFeLsN/wLPVYvRRexSyoUI5ZRM5 4QMI7tv80DICOH5IvkDhQI/SrNWbqfR9l9XfyK5NlcDD6prQndwGui9m6qXZn/iu SQwl8qhiYW0IQl+V43b8SGvpCQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFF3TJylc W/xvfozLO/Y8Y5LAECDiMB8GA1UdIwQYMBaAFPcufV4btFQqt/93c2WIPBYBA03p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjMxQy9BOUMzMTcwNDhD MjMxMUU5OUY4NDVENzJDNEY5QUUwMi85eTU5WGh1MFZDcTNfM2R6WllnOEZnRURU ZWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzl5NTlYaHUwVkNxM18zZHpaWWc4RmdFRFRlay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTYzMUMvQTlDMzE3MDQ4QzIzMTFFOTlGODQ1RDcyQzRGOUFFMDIvRENCMjUzMUFD NzU5MTFFRjk3OUQ1OTNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnxbADBALcnuwwDQQCAAIwBwMFACQDBYAwDQYJKoZIhvcN AQELBQADggEBAB169yz6PrfqmJxqauhXT/rBKU7focwsWt1fL+xokkrpypa8VmXX svsFELPvC96QpmGuvh/TAFzsMOZrt1lf/JrKXF8kV3s1CfOhGRMHybiyU+U8rBvH buLdx386Yyz+XsU5I87Z0OH7OAtY+cmORsTtd96UKZ4tA4s8G+5iC2NAAKvDEkfz 1nVFIVAKPjyJjAW2xTWYZypspKiUyuIb7by3PL1RoKt6j7wK0XCsH3N0B8Lw5D8B CUK7NcoMOI6v8E0QCmFQb26CxVs6c6+rfbufeUeDejvsfmpbQab7N/fx46Awq7ao y5mL4gS00ztql/TspaquIAiJsTORnuBSDLg= -----END CERTIFICATE-----Generated at Mon Oct 20 13:50:48 2025 by rpki-client