$ rpki-client -vvf rpki.apnic.net/member_repository/A9199DE2/A3A52106AED011EBBF3FD763C4F9AE02/E6ECE6E6104C11EC9074E586C4F9AE02.roa File: E6ECE6E6104C11EC9074E586C4F9AE02.roa (raw, json) Hash identifier: 77Yfn2zZf59rOT/IVF3xBzYxwVSoxkPTednWePSlyc0= Subject key identifier: 12:9E:22:56:FC:18:DB:A6:62:6B:2F:AC:CC:5A:E3:65:3E:AC:A9:78 Certificate issuer: /CN=A9199DE2/serialNumber=D825A897335897C07E7693838A6BF20276580F03 Certificate serial: 063E Authority key identifier: D8:25:A8:97:33:58:97:C0:7E:76:93:83:8A:6B:F2:02:76:58:0F:03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CWolzNYl8B-dpODimvyAnZYDwM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199DE2/A3A52106AED011EBBF3FD763C4F9AE02/E6ECE6E6104C11EC9074E586C4F9AE02.roa Signing time: Tue 16 Sep 2025 23:34:43 +0000 ROA not before: Tue 16 Sep 2025 23:34:43 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 142056 IP address blocks: 103.166.31.0/24 maxlen: 24 103.166.31.0/27 maxlen: 27 103.166.31.64/26 maxlen: 26 103.166.31.128/25 maxlen: 25 103.170.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199DE2/A3A52106AED011EBBF3FD763C4F9AE02/2CWolzNYl8B-dpODimvyAnZYDwM.crl rsync://rpki.apnic.net/member_repository/A9199DE2/A3A52106AED011EBBF3FD763C4F9AE02/2CWolzNYl8B-dpODimvyAnZYDwM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CWolzNYl8B-dpODimvyAnZYDwM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:17:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1598 (0x63e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199DE2, serialNumber=D825A897335897C07E7693838A6BF20276580F03 Validity Not Before: Sep 16 23:34:43 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68c9f413-4ef7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:98:b1:a7:03:50:a3:a9:9c:e1:5a:f8:7e:5f: 3a:51:dc:43:0f:8e:1d:2f:12:fc:ff:a2:05:2a:1d: ff:49:30:4a:75:ed:e7:11:db:f0:69:b5:ae:9c:dc: 85:c5:33:2b:e0:c4:9c:d9:68:ff:a3:b7:af:1d:4f: 08:3b:10:2c:a6:cb:a3:08:65:3e:8e:e1:8a:da:26: 00:0e:78:0c:6a:dd:86:d6:b2:75:a7:68:21:e5:d3: 77:ec:f1:38:34:86:62:80:50:1c:d4:8b:4f:23:dc: 46:11:0b:77:44:77:5b:b2:e3:ea:59:4d:c6:63:09: 6a:95:2d:79:f6:7f:f0:ef:c1:87:fc:04:3f:03:79: d4:e6:ec:3e:c1:f1:61:14:4d:d5:e6:ef:70:60:ca: dd:b1:49:27:41:d0:91:1d:53:4b:8e:88:90:30:18: d6:f1:8d:eb:5b:2b:75:ba:0a:b4:33:cd:ca:7d:e0: 35:6a:ef:f8:aa:9a:4c:9f:89:9a:b7:60:ce:5d:76: 34:97:f1:76:0b:0b:44:7f:72:4e:a7:20:5a:8a:9d: f3:b8:23:51:4d:c7:e4:bf:7f:47:b9:e7:a0:d5:fa: ab:e4:59:70:5f:6f:fc:d4:d9:11:5a:75:0e:1d:45: b4:cd:a6:e0:29:b8:82:e0:c5:57:a4:c5:49:84:ca: 1e:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:9E:22:56:FC:18:DB:A6:62:6B:2F:AC:CC:5A:E3:65:3E:AC:A9:78 X509v3 Authority Key Identifier: keyid:D8:25:A8:97:33:58:97:C0:7E:76:93:83:8A:6B:F2:02:76:58:0F:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199DE2/A3A52106AED011EBBF3FD763C4F9AE02/2CWolzNYl8B-dpODimvyAnZYDwM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CWolzNYl8B-dpODimvyAnZYDwM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199DE2/A3A52106AED011EBBF3FD763C4F9AE02/E6ECE6E6104C11EC9074E586C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.166.31.0/24 103.170.63.0/24 Signature Algorithm: sha256WithRSAEncryption 54:c4:6f:e2:50:cd:c1:c5:79:20:39:c0:e2:25:e8:0d:70:0e: 56:f8:f3:25:a6:1c:24:0c:70:ad:29:bb:b8:67:db:20:82:d7: 1d:c3:ad:59:87:e4:24:fe:02:29:84:ca:c9:9a:8e:fb:74:72: d7:7f:68:48:5d:67:5a:57:f9:67:8a:21:c8:7b:f5:2f:68:a4: ab:ae:57:54:bc:9a:c8:06:56:cd:8b:e2:d5:9d:13:7c:03:a3: 8d:96:38:f1:16:66:19:6d:c9:43:51:67:9e:95:42:ae:a9:a5: 67:47:e2:da:48:11:4a:de:2d:65:45:0c:55:67:56:66:a2:d1: a3:33:7e:3f:80:49:06:6d:b6:33:65:be:4c:33:09:c0:0f:23: 60:68:f2:8a:84:52:52:46:ef:8a:d6:84:2c:a6:39:57:f2:0c: 6a:c5:7a:a5:c6:2d:84:d5:fa:f1:3e:35:f1:e1:11:a3:84:19: 53:87:98:80:95:95:49:23:fa:86:7a:ad:92:13:94:5f:69:b4: 1c:5b:fb:f9:60:bd:0f:1c:c3:6d:ef:23:72:63:27:e2:da:9b: ab:c5:7e:8d:2e:f1:d9:09:3d:df:5d:1f:1f:38:51:f6:13:4c: ce:42:4b:6c:f1:39:d3:4b:82:09:ed:e3:da:06:95:05:1a:c4: 1f:01:21:7c -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBj4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlERTIxMTAvBgNVBAUTKEQ4MjVBODk3MzM1ODk3QzA3RTc2OTM4MzhBNkJGMjAy NzY1ODBGMDMwHhcNMjUwOTE2MjMzNDQzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM5ZjQxMy00ZWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAupixpwNQo6mc4Vr4fl86UdxDD44dLxL8/6IFKh3/STBKde3nEdvwabWunNyF xTMr4MSc2Wj/o7evHU8IOxAspsujCGU+juGK2iYADngMat2G1rJ1p2gh5dN37PE4 NIZigFAc1ItPI9xGEQt3RHdbsuPqWU3GYwlqlS159n/w78GH/AQ/A3nU5uw+wfFh FE3V5u9wYMrdsUknQdCRHVNLjoiQMBjW8Y3rWyt1ugq0M83KfeA1au/4qppMn4ma t2DOXXY0l/F2CwtEf3JOpyBaip3zuCNRTcfkv39Hueeg1fqr5FlwX2/81NkRWnUO HUW0zabgKbiC4MVXpMVJhMoe1QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBKeIlb8 GNumYmsvrMxa42U+rKl4MB8GA1UdIwQYMBaAFNglqJczWJfAfnaTg4pr8gJ2WA8D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OURFMi9BM0E1MjEwNkFF RDAxMUVCQkYzRkQ3NjNDNEY5QUUwMi8yQ1dvbHpOWWw4Qi1kcE9EaW12eUFuWllE d00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJDV29sek5ZbDhCLWRwT0RpbXZ5QW5aWUR3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTlERTIvQTNBNTIxMDZBRUQwMTFFQkJGM0ZENzYzQzRGOUFFMDIvRTZFQ0U2RTYx MDRDMTFFQzkwNzRFNTg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnph8DBABnqj8wDQYJKoZIhvcNAQELBQADggEBAFTEb+JQ zcHFeSA5wOIl6A1wDlb48yWmHCQMcK0pu7hn2yCC1x3DrVmH5CT+AimEysmajvt0 ctd/aEhdZ1pX+WeKIch79S9opKuuV1S8msgGVs2L4tWdE3wDo42WOPEWZhltyUNR Z56VQq6ppWdH4tpIEUreLWVFDFVnVmai0aMzfj+ASQZttjNlvkwzCcAPI2Bo8oqE UlJG74rWhCymOVfyDGrFeqXGLYTV+vE+NfHhEaOEGVOHmICVlUkj+oZ6rZITlF9p tBxb+/lgvQ8cw23vI3JjJ+Lam6vFfo0u8dkJPd9dHx84UfYTTM5CS2zxOdNLggnt 49oGlQUaxB8BIXw= -----END CERTIFICATE-----Generated at Mon Oct 20 22:03:40 2025 by rpki-client