$ rpki-client -vvf rpki.apnic.net/member_repository/A9127D58/59D06A127F0611F09520593AC4F9AE02/E09D5D9C7F0711F092740742C4F9AE02.roa File: E09D5D9C7F0711F092740742C4F9AE02.roa (raw, json) Hash identifier: CfbrIA0HCJd5bnnoqk4fH/y8a3ECzbTG+URIorF3jYk= Subject key identifier: 67:0E:CF:AA:D1:CE:33:9F:AA:89:15:A6:23:EA:7C:71:08:FA:62:AD Certificate issuer: /CN=A9127D58/serialNumber=183FA90DC3556C1D16568EBEBB18E2FC5A781D93 Certificate serial: 18 Authority key identifier: 18:3F:A9:0D:C3:55:6C:1D:16:56:8E:BE:BB:18:E2:FC:5A:78:1D:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GD-pDcNVbB0WVo6-uxji_Fp4HZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127D58/59D06A127F0611F09520593AC4F9AE02/E09D5D9C7F0711F092740742C4F9AE02.roa Signing time: Tue 23 Sep 2025 11:43:33 +0000 ROA not before: Tue 23 Sep 2025 11:43:33 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 149014 IP address blocks: 103.147.202.0/24 maxlen: 24 103.147.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127D58/59D06A127F0611F09520593AC4F9AE02/GD-pDcNVbB0WVo6-uxji_Fp4HZM.crl rsync://rpki.apnic.net/member_repository/A9127D58/59D06A127F0611F09520593AC4F9AE02/GD-pDcNVbB0WVo6-uxji_Fp4HZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GD-pDcNVbB0WVo6-uxji_Fp4HZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:42:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24 (0x18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127D58, serialNumber=183FA90DC3556C1D16568EBEBB18E2FC5A781D93 Validity Not Before: Sep 23 11:43:33 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=68d287e5-5df2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:18:93:96:dc:fe:2e:b2:be:07:59:e4:c1:1c: 8c:8f:94:95:66:6b:28:d7:65:5b:35:7b:a2:0c:f6: f9:79:e4:75:09:15:cc:5e:f7:4a:e9:e9:d9:04:90: f9:e2:82:d9:40:f6:46:6d:6b:61:86:43:5e:b7:c7: da:f4:64:12:13:ba:e2:36:a7:7e:f5:cf:64:81:8d: 93:26:64:01:9a:f5:34:fa:b8:70:72:d0:7a:b9:1c: 83:14:36:00:76:0d:ad:e5:f5:0f:e4:f3:bb:bc:f3: c4:c0:f5:16:46:de:bf:21:12:94:a7:4f:ba:b1:1e: 94:91:ed:fd:a4:a7:3a:35:63:37:32:06:0b:25:2b: 48:4f:20:09:47:f8:a8:e9:b5:af:f0:2c:84:19:c8: 16:30:f6:50:13:c3:88:ae:13:66:f9:7d:93:b9:22: 0b:6a:2a:c9:fb:3f:5d:f9:99:c8:4e:98:3d:d1:d0: 45:30:36:5d:28:18:ba:4c:e0:e3:dd:a8:b6:5a:5f: b9:0d:e7:5f:b5:1b:77:70:df:17:64:0e:3c:dd:6e: cd:43:ee:94:27:a0:a7:32:2f:f0:c5:d7:83:61:81: c5:5d:a5:9c:ea:91:d4:79:59:eb:8f:d4:8a:bf:b0: 2c:9e:cb:fa:57:bd:81:08:70:e3:f4:8d:cd:cb:6c: 1e:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:0E:CF:AA:D1:CE:33:9F:AA:89:15:A6:23:EA:7C:71:08:FA:62:AD X509v3 Authority Key Identifier: keyid:18:3F:A9:0D:C3:55:6C:1D:16:56:8E:BE:BB:18:E2:FC:5A:78:1D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127D58/59D06A127F0611F09520593AC4F9AE02/GD-pDcNVbB0WVo6-uxji_Fp4HZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GD-pDcNVbB0WVo6-uxji_Fp4HZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127D58/59D06A127F0611F09520593AC4F9AE02/E09D5D9C7F0711F092740742C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.147.202.0/23 Signature Algorithm: sha256WithRSAEncryption 73:5d:ab:bb:8a:a5:e6:e1:ff:95:f5:eb:99:12:fa:16:a3:1f: 44:3b:b1:6b:a0:a8:6a:4b:cd:cc:a1:06:ce:29:f0:4d:fc:38: dd:29:c6:b6:bb:49:ab:3c:5e:5d:9b:93:19:09:bd:92:61:8a: 30:bf:56:9f:e9:57:3a:30:ed:45:56:77:da:62:ef:bb:3b:56: 1f:cf:76:3a:50:f4:05:ea:47:71:55:9f:dd:f1:cf:d2:ec:cc: 95:e4:f9:27:2d:7a:ae:47:e5:cf:6a:d3:63:ec:b9:0b:28:ec: 1c:07:50:5f:b3:69:a8:05:f4:7e:03:e3:3f:f5:f4:f1:69:a1: 36:6c:34:cb:ce:54:f4:53:24:57:ad:e1:47:2e:7e:9b:d6:d5: cf:2d:5b:5d:60:ca:7f:f9:05:d2:57:c6:09:d9:10:91:36:22: 42:27:d0:16:85:91:24:bf:f9:39:ed:b6:f3:a2:34:06:2c:04: 40:58:55:d8:fa:ed:1f:0f:4c:16:fe:8a:3b:3a:97:79:f5:bb: be:0f:89:cb:5a:3e:74:6f:63:97:e6:4b:cb:94:4d:fa:c2:ee: 23:21:d0:a4:73:22:27:13:eb:ad:74:25:6e:61:76:90:a7:bf: f3:7e:2b:77:3e:7d:ac:eb:c3:37:cb:fd:f7:55:7b:8b:c0:9c: 6a:0d:2e:4b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBGDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy N0Q1ODExMC8GA1UEBRMoMTgzRkE5MERDMzU1NkMxRDE2NTY4RUJFQkIxOEUyRkM1 QTc4MUQ5MzAeFw0yNTA5MjMxMTQzMzNaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZDI4N2U1LTVkZjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHGJOW3P4usr4HWeTBHIyPlJVmayjXZVs1e6IM9vl55HUJFcxe90rp6dkEkPni gtlA9kZta2GGQ163x9r0ZBITuuI2p371z2SBjZMmZAGa9TT6uHBy0Hq5HIMUNgB2 Da3l9Q/k87u888TA9RZG3r8hEpSnT7qxHpSR7f2kpzo1YzcyBgslK0hPIAlH+Kjp ta/wLIQZyBYw9lATw4iuE2b5fZO5IgtqKsn7P135mchOmD3R0EUwNl0oGLpM4OPd qLZaX7kN51+1G3dw3xdkDjzdbs1D7pQnoKcyL/DF14NhgcVdpZzqkdR5WeuP1Iq/ sCyey/pXvYEIcOP0jc3LbB4rAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUZw7PqtHO M5+qiRWmI+p8cQj6Yq0wHwYDVR0jBBgwFoAUGD+pDcNVbB0WVo6+uxji/Fp4HZMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI3RDU4LzU5RDA2QTEyN0Yw NjExRjA5NTIwNTkzQUM0RjlBRTAyL0dELXBEY05WYkIwV1ZvNi11eGppX0ZwNEha TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR0QtcERjTlZiQjBXVm82LXV4amlfRnA0SFpNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy N0Q1OC81OUQwNkExMjdGMDYxMUYwOTUyMDU5M0FDNEY5QUUwMi9FMDlENUQ5QzdG MDcxMUYwOTI3NDA3NDJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWeTyjANBgkqhkiG9w0BAQsFAAOCAQEAc12ru4ql5uH/lfXr mRL6FqMfRDuxa6CoakvNzKEGzinwTfw43SnGtrtJqzxeXZuTGQm9kmGKML9Wn+lX OjDtRVZ32mLvuztWH892OlD0BepHcVWf3fHP0uzMleT5Jy16rkflz2rTY+y5Cyjs HAdQX7NpqAX0fgPjP/X08WmhNmw0y85U9FMkV63hRy5+m9bVzy1bXWDKf/kF0lfG CdkQkTYiQifQFoWRJL/5Oe2286I0BiwEQFhV2PrtHw9MFv6KOzqXefW7vg+Jy1o+ dG9jl+ZLy5RN+sLuIyHQpHMiJxPrrXQlbmF2kKe/834rdz59rOvDN8v991V7i8Cc ag0uSw== -----END CERTIFICATE-----Generated at Tue Nov 4 21:46:17 2025 by rpki-client