$ rpki-client -vvf rpki.apnic.net/member_repository/A9130CD3/9F930DB205D911EBAFF94970C4F9AE02/FACAB78805DA11EB9E484F71C4F9AE02.roa File: FACAB78805DA11EB9E484F71C4F9AE02.roa (raw, json) Hash identifier: a2mvDw9+17HnzgD52FVNiOdxSzmsbcWIVBVCcOw0u9Q= Subject key identifier: 10:3B:B5:9F:98:5C:63:14:D4:77:FE:EF:77:AB:54:9B:1E:70:63:81 Certificate issuer: /CN=A9130CD3/serialNumber=EDF72C5CB852B22C2F0F525211228D4507A3F9C2 Certificate serial: 07E3 Authority key identifier: ED:F7:2C:5C:B8:52:B2:2C:2F:0F:52:52:11:22:8D:45:07:A3:F9:C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7fcsXLhSsiwvD1JSESKNRQej-cI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130CD3/9F930DB205D911EBAFF94970C4F9AE02/FACAB78805DA11EB9E484F71C4F9AE02.roa Signing time: Tue 30 Sep 2025 21:53:33 +0000 ROA not before: Tue 30 Sep 2025 21:53:33 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 55720 IP address blocks: 43.239.176.0/24 maxlen: 24 43.239.177.0/24 maxlen: 24 43.239.178.0/24 maxlen: 24 43.239.179.0/24 maxlen: 24 103.35.116.0/24 maxlen: 24 103.35.117.0/24 maxlen: 24 103.35.118.0/24 maxlen: 24 103.35.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130CD3/9F930DB205D911EBAFF94970C4F9AE02/7fcsXLhSsiwvD1JSESKNRQej-cI.crl rsync://rpki.apnic.net/member_repository/A9130CD3/9F930DB205D911EBAFF94970C4F9AE02/7fcsXLhSsiwvD1JSESKNRQej-cI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7fcsXLhSsiwvD1JSESKNRQej-cI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 21:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2019 (0x7e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130CD3, serialNumber=EDF72C5CB852B22C2F0F525211228D4507A3F9C2 Validity Not Before: Sep 30 21:53:33 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68dc515d-e41b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:6f:a1:90:2f:6e:90:81:e9:0c:6f:39:d4:25: 6f:49:64:3d:36:35:01:69:48:7b:c7:01:1a:dd:04: d6:2a:9e:a3:80:a7:6a:38:82:0e:50:52:14:8e:36: ed:d3:42:6e:37:40:2f:de:05:33:b4:49:83:49:b6: bb:f9:53:62:55:1f:23:fc:57:79:30:74:16:92:d9: bc:7f:96:3f:1b:94:0f:f0:bf:b1:a4:58:13:9d:0d: 1a:6e:bf:f2:ef:cf:97:4b:c2:b0:05:c4:c4:24:d9: 0a:61:47:39:89:76:2d:2a:48:dd:7a:0e:39:3c:67: 43:0b:d2:d5:5a:8a:12:d8:4f:17:e1:4c:f9:29:6c: a1:ca:ee:d9:2c:8a:95:aa:10:c3:c5:0a:4f:16:8c: dc:64:7f:2a:2e:ec:87:f4:80:fd:1b:f8:82:9e:39: 8b:bc:33:0c:c8:43:2e:17:cf:19:13:13:c7:4f:6d: 5b:74:9a:f7:57:91:86:79:57:51:b7:24:04:0e:4c: 15:b2:b9:ee:a3:13:45:a3:7f:03:c7:0c:b4:4d:2d: d5:2f:80:22:5b:dc:33:46:46:7c:8a:f3:0c:df:53: 47:60:aa:93:35:f8:af:51:8a:91:b0:54:18:55:10: 03:80:33:cc:eb:e3:c8:bc:81:99:b9:58:77:05:28: 9a:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:3B:B5:9F:98:5C:63:14:D4:77:FE:EF:77:AB:54:9B:1E:70:63:81 X509v3 Authority Key Identifier: keyid:ED:F7:2C:5C:B8:52:B2:2C:2F:0F:52:52:11:22:8D:45:07:A3:F9:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130CD3/9F930DB205D911EBAFF94970C4F9AE02/7fcsXLhSsiwvD1JSESKNRQej-cI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7fcsXLhSsiwvD1JSESKNRQej-cI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130CD3/9F930DB205D911EBAFF94970C4F9AE02/FACAB78805DA11EB9E484F71C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.239.176.0/22 103.35.116.0/22 Signature Algorithm: sha256WithRSAEncryption 47:d9:48:c4:8e:fd:4a:23:5b:c1:c1:2b:47:11:08:dc:0d:4e: 4a:49:63:c9:3b:0c:fa:9c:8f:34:84:50:d8:24:49:35:1e:50: b0:77:7e:b6:76:d9:f2:5a:59:a8:86:36:8d:d8:f9:63:d8:64: 46:c2:21:a6:32:6e:fe:34:f5:84:79:11:6a:f8:26:bc:cd:56: 8d:6e:68:7e:c6:e1:bd:c5:8c:54:41:57:a8:79:25:2b:fc:bc: b6:3b:ab:2a:6e:cb:0b:7d:60:1d:17:e9:af:7f:3c:a1:14:3c: 12:4f:e1:30:79:75:06:da:e4:70:f2:a4:b4:bb:ab:59:75:64: 52:83:d8:68:fe:e0:8d:b3:7d:18:bb:f5:0d:09:d0:f4:dd:2f: 7a:8a:86:15:02:3f:b6:d3:fb:b5:ef:2e:44:e7:2c:3f:c2:67: 00:72:98:45:f8:2d:03:96:30:33:ca:61:7f:36:9c:e3:a1:7a: 63:67:0b:8a:e6:d6:f0:fd:aa:48:ab:bd:1d:d9:72:87:a1:13: 4e:bb:ed:7b:c4:c4:c9:ef:bb:a8:25:1a:73:c4:9e:26:15:ba: a4:bc:0f:f1:11:c9:74:de:69:43:09:18:10:a3:43:8b:46:89: 5b:f9:ef:7b:fa:45:d3:8b:ce:a8:19:84:65:43:db:d8:63:c7: ee:f0:7f:e9 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICB+MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzBDRDMxMTAvBgNVBAUTKEVERjcyQzVDQjg1MkIyMkMyRjBGNTI1MjExMjI4RDQ1 MDdBM0Y5QzIwHhcNMjUwOTMwMjE1MzMzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRjNTE1ZC1lNDFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyG+hkC9ukIHpDG851CVvSWQ9NjUBaUh7xwEa3QTWKp6jgKdqOIIOUFIUjjbt 00JuN0Av3gUztEmDSba7+VNiVR8j/Fd5MHQWktm8f5Y/G5QP8L+xpFgTnQ0abr/y 78+XS8KwBcTEJNkKYUc5iXYtKkjdeg45PGdDC9LVWooS2E8X4Uz5KWyhyu7ZLIqV qhDDxQpPFozcZH8qLuyH9ID9G/iCnjmLvDMMyEMuF88ZExPHT21bdJr3V5GGeVdR tyQEDkwVsrnuoxNFo38Dxwy0TS3VL4AiW9wzRkZ8ivMM31NHYKqTNfivUYqRsFQY VRADgDPM6+PIvIGZuVh3BSiakwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBA7tZ+Y XGMU1Hf+73erVJsecGOBMB8GA1UdIwQYMBaAFO33LFy4UrIsLw9SUhEijUUHo/nC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMENEMy85RjkzMERCMjA1 RDkxMUVCQUZGOTQ5NzBDNEY5QUUwMi83ZmNzWExoU3Npd3ZEMUpTRVNLTlJRZWot Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdmY3NYTGhTc2l3dkQxSlNFU0tOUlFlai1jSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzBDRDMvOUY5MzBEQjIwNUQ5MTFFQkFGRjk0OTcwQzRGOUFFMDIvRkFDQUI3ODgw NURBMTFFQjlFNDg0RjcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr77ADBAJnI3QwDQYJKoZIhvcNAQELBQADggEBAEfZSMSO /UojW8HBK0cRCNwNTkpJY8k7DPqcjzSEUNgkSTUeULB3frZ22fJaWaiGNo3Y+WPY ZEbCIaYybv409YR5EWr4JrzNVo1uaH7G4b3FjFRBV6h5JSv8vLY7qypuywt9YB0X 6a9/PKEUPBJP4TB5dQba5HDypLS7q1l1ZFKD2Gj+4I2zfRi79Q0J0PTdL3qKhhUC P7bT+7XvLkTnLD/CZwBymEX4LQOWMDPKYX82nOOhemNnC4rm1vD9qkirvR3Zcoeh E0677XvExMnvu6glGnPEniYVuqS8D/ERyXTeaUMJGBCjQ4tGiVv573v6RdOLzqgZ hGVD29hjx+7wf+k= -----END CERTIFICATE-----Generated at Tue Nov 4 16:41:21 2025 by rpki-client