$ rpki-client -vvf rpki.apnic.net/member_repository/A919F64F/ABA613D0050A11F087B7653AC4F9AE02/39E77242050B11F097AB4F3BC4F9AE02.roa File: 39E77242050B11F097AB4F3BC4F9AE02.roa (raw, json) Hash identifier: 1iUGsBQDmoyV8aBLwNoBxo8N04u4p7UfM4+Zik0BKj4= Subject key identifier: 7E:08:19:12:7B:5D:79:CC:73:FB:45:57:41:79:9E:82:D9:28:C7:0A Certificate issuer: /CN=A919F64F/serialNumber=F358D68555BAB5EF62A4DCFD4F324035EE6024B6 Certificate serial: 6F Authority key identifier: F3:58:D6:85:55:BA:B5:EF:62:A4:DC:FD:4F:32:40:35:EE:60:24:B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/81jWhVW6te9ipNz9TzJANe5gJLY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F64F/ABA613D0050A11F087B7653AC4F9AE02/39E77242050B11F097AB4F3BC4F9AE02.roa Signing time: Thu 02 Oct 2025 21:16:00 +0000 ROA not before: Thu 02 Oct 2025 21:16:00 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 18214 IP address blocks: 103.158.33.0/24 maxlen: 24 203.153.9.0/24 maxlen: 24 203.153.10.0/24 maxlen: 24 203.153.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F64F/ABA613D0050A11F087B7653AC4F9AE02/81jWhVW6te9ipNz9TzJANe5gJLY.crl rsync://rpki.apnic.net/member_repository/A919F64F/ABA613D0050A11F087B7653AC4F9AE02/81jWhVW6te9ipNz9TzJANe5gJLY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/81jWhVW6te9ipNz9TzJANe5gJLY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:16:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 111 (0x6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F64F, serialNumber=F358D68555BAB5EF62A4DCFD4F324035EE6024B6 Validity Not Before: Oct 2 21:16:00 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68deeb90-ddf3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:66:54:1b:d6:ce:29:62:1a:83:ab:8d:67:dd: b8:ec:ea:88:36:7c:40:77:80:98:0b:79:3c:ae:a6: ba:53:4e:58:93:93:e1:3f:dc:5c:39:f9:d8:63:22: 68:ac:a2:33:dc:c7:c6:15:41:e4:27:f1:b7:5d:f3: 45:f9:85:75:52:a2:fa:b6:ae:1e:53:53:19:ee:7b: bd:d0:aa:8a:35:83:3b:50:26:a0:4a:5b:05:34:de: 69:6c:ff:19:01:de:2d:05:ea:f2:d6:28:01:34:0a: 05:a9:2c:b6:96:48:50:e2:26:72:b0:3a:fc:3a:b9: 2c:36:a3:6a:7a:42:d4:e3:f3:4c:58:78:cb:9c:89: fa:b7:ea:16:6f:63:8a:72:e4:a9:92:ef:03:9f:be: 04:43:d6:fc:e2:77:21:32:7d:03:da:ac:1e:b9:de: 3d:50:fa:01:41:53:63:27:0e:67:de:22:e6:56:38: ab:60:4b:ee:fd:4d:ce:89:0a:21:c3:4f:db:21:e6: 62:55:fe:54:17:47:78:54:00:1a:14:6f:72:fd:ef: 76:81:d5:59:02:e1:3c:a5:02:5c:f7:10:5d:1d:cd: 87:7f:b0:26:19:b7:2a:1a:11:d1:78:9d:2f:2b:e1: f4:d3:11:00:b8:b3:5d:b6:cc:cd:9b:7b:2f:5e:52: 0e:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:08:19:12:7B:5D:79:CC:73:FB:45:57:41:79:9E:82:D9:28:C7:0A X509v3 Authority Key Identifier: keyid:F3:58:D6:85:55:BA:B5:EF:62:A4:DC:FD:4F:32:40:35:EE:60:24:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F64F/ABA613D0050A11F087B7653AC4F9AE02/81jWhVW6te9ipNz9TzJANe5gJLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/81jWhVW6te9ipNz9TzJANe5gJLY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F64F/ABA613D0050A11F087B7653AC4F9AE02/39E77242050B11F097AB4F3BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.158.33.0/24 203.153.9.0-203.153.10.255 203.153.14.0/24 Signature Algorithm: sha256WithRSAEncryption 78:74:c3:ef:20:65:46:1d:fc:e5:dd:e9:3f:80:0f:65:9f:86: e4:2e:d1:3c:26:8c:da:a6:8a:a1:2c:86:71:60:69:96:a7:6e: e9:e2:67:9f:c6:5f:24:a6:95:0b:93:5e:b1:7a:af:57:fe:1b: b6:fb:5c:d5:c6:07:5b:5a:36:e6:b7:64:f2:0c:83:d7:9d:1b: c5:ba:52:88:1c:2a:c9:ee:9e:4d:74:16:0b:96:2d:3b:87:ed: d4:a9:17:2f:44:35:93:f7:6c:05:4e:d2:aa:0c:ae:d5:54:9a: 52:e7:84:f0:5e:bb:6c:6d:ce:d4:13:0f:21:20:a0:a6:8a:fb: 0c:fb:25:d6:2e:47:39:28:1e:4f:dc:8f:9c:4a:8c:b4:f2:6e: 4f:fd:4f:52:ca:d1:49:7a:a9:bf:20:b4:37:3c:65:1c:b1:8d: a0:b2:77:9b:64:07:b4:45:5e:58:38:d8:0b:b9:de:9d:93:5e: 0f:aa:4f:8c:8f:b3:b1:59:01:a9:7a:08:42:be:50:bb:99:cc: 76:68:da:3a:b7:43:7c:59:a6:8c:64:81:07:ba:36:42:5f:14: 70:ac:c7:f4:7d:a8:32:fc:e2:5f:58:8b:e9:c2:5b:d2:44:39: 17:d7:16:80:20:04:77:27:41:5e:38:24:5b:0b:7f:b8:8d:7b: 8b:a0:bf:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgIBbzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RjY0RjExMC8GA1UEBRMoRjM1OEQ2ODU1NUJBQjVFRjYyQTREQ0ZENEYzMjQwMzVF RTYwMjRCNjAeFw0yNTEwMDIyMTE2MDBaFw0yNjA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZGVlYjkwLWRkZjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxZlQb1s4pYhqDq41n3bjs6og2fEB3gJgLeTyuprpTTliTk+E/3Fw5+dhjImis ojPcx8YVQeQn8bdd80X5hXVSovq2rh5TUxnue73Qqoo1gztQJqBKWwU03mls/xkB 3i0F6vLWKAE0CgWpLLaWSFDiJnKwOvw6uSw2o2p6QtTj80xYeMucifq36hZvY4py 5KmS7wOfvgRD1vzidyEyfQParB653j1Q+gFBU2MnDmfeIuZWOKtgS+79Tc6JCiHD T9sh5mJV/lQXR3hUABoUb3L973aB1VkC4TylAlz3EF0dzYd/sCYZtyoaEdF4nS8r 4fTTEQC4s122zM2bey9eUg7RAgMBAAGjggKpMIICpTAdBgNVHQ4EFgQUfggZEntd ecxz+0VXQXmegtkoxwowHwYDVR0jBBgwFoAU81jWhVW6te9ipNz9TzJANe5gJLYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlGNjRGL0FCQTYxM0QwMDUw QTExRjA4N0I3NjUzQUM0RjlBRTAyLzgxaldoVlc2dGU5aXBOejlUekpBTmU1Z0pM WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvODFqV2hWVzZ0ZTlpcE56OVR6SkFOZTVnSkxZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RjY0Ri9BQkE2MTNEMDA1MEExMUYwODdCNzY1M0FDNEY5QUUwMi8zOUU3NzI0MjA1 MEIxMUYwOTdBQjRGM0JDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAzBggrBgEFBQcBBwEB/wQk MCIwIAQCAAEwGgMEAGeeITAMAwQAy5kJAwQAy5kKAwQAy5kOMA0GCSqGSIb3DQEB CwUAA4IBAQB4dMPvIGVGHfzl3ek/gA9ln4bkLtE8JozapoqhLIZxYGmWp27p4mef xl8kppULk16xeq9X/hu2+1zVxgdbWjbmt2TyDIPXnRvFulKIHCrJ7p5NdBYLli07 h+3UqRcvRDWT92wFTtKqDK7VVJpS54TwXrtsbc7UEw8hIKCmivsM+yXWLkc5KB5P 3I+cSoy08m5P/U9SytFJeqm/ILQ3PGUcsY2gsnebZAe0RV5YONgLud6dk14Pqk+M j7OxWQGpeghCvlC7mcx2aNo6t0N8WaaMZIEHujZCXxRwrMf0fagy/OJfWIvpwlvS RDkX1xaAIAR3J0FeOCRbC3+4jXuLoL/e -----END CERTIFICATE-----Generated at Mon Oct 20 04:17:45 2025 by rpki-client