$ rpki-client -vvf rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/E7C34456073711ED8BA93630C4F9AE02.roa File: E7C34456073711ED8BA93630C4F9AE02.roa (raw, json) Hash identifier: 16sJIK7yDSO7A/N450AB9k39DyJDrn04igY89yyJfys= Subject key identifier: 4A:3D:61:A2:3D:B2:1A:47:3B:BB:91:EE:AC:A3:AD:E2:ED:5A:8D:63 Certificate issuer: /CN=A919879C/serialNumber=932BF63931C347E76BC9089D41BE24F6370F2582 Certificate serial: 02BD Authority key identifier: 93:2B:F6:39:31:C3:47:E7:6B:C9:08:9D:41:BE:24:F6:37:0F:25:82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/E7C34456073711ED8BA93630C4F9AE02.roa Signing time: Sun 31 Aug 2025 02:19:40 +0000 ROA not before: Sun 31 Aug 2025 02:19:40 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 58423 IP address blocks: 43.254.20.0/24 maxlen: 24 43.254.21.0/24 maxlen: 24 43.254.22.0/24 maxlen: 24 43.254.23.0/24 maxlen: 24 103.5.72.0/24 maxlen: 24 103.5.73.0/24 maxlen: 24 103.5.74.0/24 maxlen: 24 103.5.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.crl rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:29:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 701 (0x2bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919879C, serialNumber=932BF63931C347E76BC9089D41BE24F6370F2582 Validity Not Before: Aug 31 02:19:40 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b3b13b-e1d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:da:aa:af:00:a2:3b:36:4c:77:01:b5:d8:83: 48:ab:41:92:87:9c:66:6b:05:15:4a:4f:c5:b2:26: d6:ef:60:8f:aa:dd:9d:47:42:b2:81:83:14:0f:f2: 7c:ac:e8:26:34:4d:d8:89:5b:52:9a:ac:74:8d:91: 1d:cb:53:29:0a:ec:20:f1:eb:23:60:34:86:b6:4b: 65:2b:7a:3b:1c:bf:a6:da:d2:3c:8a:51:6a:e9:72: 40:ee:f0:d2:8f:53:24:b8:fa:7a:6d:67:7c:11:53: 79:ad:9b:c7:25:94:4e:48:04:cd:4a:81:e4:14:23: 65:02:c0:26:0d:37:50:84:4a:0b:81:33:84:ba:1d: 4c:62:01:f1:40:4f:54:79:26:97:3f:f5:68:5c:f5: d9:e4:05:f3:91:7e:3f:03:65:53:8d:d3:ae:aa:7c: e4:7b:30:a1:d9:f4:5e:c9:9f:d4:0e:b8:aa:eb:3b: 34:f2:b7:b1:49:b0:65:48:59:af:8d:64:7c:4e:d3: 79:bc:6f:3c:46:cc:2f:f9:e1:20:ef:48:93:d6:d8: 14:a2:04:6b:65:92:2b:ee:2f:13:fc:88:86:2d:18: 2b:35:5a:1c:ca:a5:a9:b1:35:8a:cc:66:be:ac:18: 5a:df:c0:3f:db:b1:05:fa:29:52:01:d0:9f:95:54: a9:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:3D:61:A2:3D:B2:1A:47:3B:BB:91:EE:AC:A3:AD:E2:ED:5A:8D:63 X509v3 Authority Key Identifier: keyid:93:2B:F6:39:31:C3:47:E7:6B:C9:08:9D:41:BE:24:F6:37:0F:25:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/E7C34456073711ED8BA93630C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.254.20.0/22 103.5.72.0/22 Signature Algorithm: sha256WithRSAEncryption b7:25:6b:21:0d:3d:c9:da:b0:49:a9:2a:b2:26:b9:5f:b3:b6: 86:78:74:5d:a3:6c:a3:5e:b6:8d:dd:22:90:9f:cb:4d:c2:82: 7a:e8:40:ec:f2:39:01:a1:85:5d:f7:ba:38:bb:ed:e6:bb:18: 51:75:61:34:8c:74:08:c7:48:e7:ba:88:74:64:2c:38:4e:66: d8:87:14:49:8a:36:2b:1b:ae:72:28:c2:eb:05:cb:2d:43:cd: 77:30:c6:92:32:c8:59:8f:c7:50:ba:41:61:f9:69:9c:bb:b6: 5c:9b:55:4a:18:4e:b6:5d:49:ba:c6:38:32:41:33:b6:d9:ee: 68:05:51:f9:8d:7d:69:0f:f4:eb:b3:0d:c9:42:65:ef:af:6c: 57:9e:3d:af:c3:65:46:1a:d7:09:b7:85:8a:48:ca:43:cf:22: 43:7d:43:99:45:76:ce:9d:ba:7c:10:4c:87:d8:8e:33:bf:5b: ef:dd:d7:83:32:6a:63:a7:49:90:c4:3b:22:3a:19:07:4a:8d: 11:64:c1:2f:cb:c3:31:5f:38:f5:6d:97:0f:51:d8:28:b2:0e: d9:86:78:eb:3c:df:56:c4:00:67:5d:67:f0:fa:1d:bd:fd:0e: 9e:9e:97:2c:08:95:4f:08:ef:04:a8:0b:e5:1a:bc:38:88:3d: a6:5a:0a:6a -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAr0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTg3OUMxMTAvBgNVBAUTKDkzMkJGNjM5MzFDMzQ3RTc2QkM5MDg5RDQxQkUyNEY2 MzcwRjI1ODIwHhcNMjUwODMxMDIxOTQwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzYjEzYi1lMWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2NqqrwCiOzZMdwG12INIq0GSh5xmawUVSk/FsibW72CPqt2dR0KygYMUD/J8 rOgmNE3YiVtSmqx0jZEdy1MpCuwg8esjYDSGtktlK3o7HL+m2tI8ilFq6XJA7vDS j1MkuPp6bWd8EVN5rZvHJZROSATNSoHkFCNlAsAmDTdQhEoLgTOEuh1MYgHxQE9U eSaXP/VoXPXZ5AXzkX4/A2VTjdOuqnzkezCh2fReyZ/UDriq6zs08rexSbBlSFmv jWR8TtN5vG88Rswv+eEg70iT1tgUogRrZZIr7i8T/IiGLRgrNVocyqWpsTWKzGa+ rBha38A/27EF+ilSAdCflVSpuQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFEo9YaI9 shpHO7uR7qyjreLtWo1jMB8GA1UdIwQYMBaAFJMr9jkxw0fna8kInUG+JPY3DyWC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODc5Qy9FMUQyMDI5MjA3 MzQxMUVEQjA0RDM3MkRDNEY5QUUwMi9reXYyT1RIRFItZHJ5UWlkUWI0azlqY1BK WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t5djJPVEhEUi1kcnlRaWRRYjRrOWpjUEpZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTg3OUMvRTFEMjAyOTIwNzM0MTFFREIwNEQzNzJEQzRGOUFFMDIvRTdDMzQ0NTYw NzM3MTFFRDhCQTkzNjMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr/hQDBAJnBUgwDQYJKoZIhvcNAQELBQADggEBALclayEN PcnasEmpKrImuV+ztoZ4dF2jbKNeto3dIpCfy03CgnroQOzyOQGhhV33uji77ea7 GFF1YTSMdAjHSOe6iHRkLDhOZtiHFEmKNisbrnIowusFyy1DzXcwxpIyyFmPx1C6 QWH5aZy7tlybVUoYTrZdSbrGODJBM7bZ7mgFUfmNfWkP9OuzDclCZe+vbFeePa/D ZUYa1wm3hYpIykPPIkN9Q5lFds6dunwQTIfYjjO/W+/d14MyamOnSZDEOyI6GQdK jRFkwS/LwzFfOPVtlw9R2CiyDtmGeOs831bEAGddZ/D6Hb39Dp6elywIlU8I7wSo C+UavDiIPaZaCmo= -----END CERTIFICATE-----Generated at Tue Oct 21 00:43:51 2025 by rpki-client