$ rpki-client -vvf rpki.apnic.net/member_repository/A9131194/29DE12CAB3CA11F0A5C07B7EC4F9AE02/BCD0C756B3D111F09D2C6B5BC4F9AE02.roa File: BCD0C756B3D111F09D2C6B5BC4F9AE02.roa (raw, json) Hash identifier: SAspQcE3UhYSAhZA4XCGUAey+9nDMAa3DYVzr1PGnog= Subject key identifier: 2A:5D:3E:D2:59:39:55:68:98:58:5D:7F:E6:F1:51:C6:62:D2:74:D3 Certificate issuer: /CN=A9131194/serialNumber=66C2DB0D8B690C9536B06AB7CEC65C08D5763F4F Certificate serial: 02 Authority key identifier: 66:C2:DB:0D:8B:69:0C:95:36:B0:6A:B7:CE:C6:5C:08:D5:76:3F:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZsLbDYtpDJU2sGq3zsZcCNV2P08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131194/29DE12CAB3CA11F0A5C07B7EC4F9AE02/BCD0C756B3D111F09D2C6B5BC4F9AE02.roa Signing time: Tue 28 Oct 2025 07:43:05 +0000 ROA not before: Tue 28 Oct 2025 07:43:05 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 151190 IP address blocks: 103.147.108.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131194/29DE12CAB3CA11F0A5C07B7EC4F9AE02/ZsLbDYtpDJU2sGq3zsZcCNV2P08.crl rsync://rpki.apnic.net/member_repository/A9131194/29DE12CAB3CA11F0A5C07B7EC4F9AE02/ZsLbDYtpDJU2sGq3zsZcCNV2P08.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZsLbDYtpDJU2sGq3zsZcCNV2P08.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 08:11:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131194, serialNumber=66C2DB0D8B690C9536B06AB7CEC65C08D5763F4F Validity Not Before: Oct 28 07:43:05 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=69007408-8c6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:1a:f5:d5:f2:0f:19:ce:83:7c:61:9d:96:b4: d6:f8:b5:f5:a1:ac:01:4d:76:c9:22:29:14:da:6f: 43:1f:c0:35:d4:ba:b9:0c:55:e6:bb:d9:b4:32:ec: e7:c3:b4:12:2d:45:81:74:26:6f:cb:c7:38:47:82: fd:88:9a:1d:f1:6a:0d:32:ea:5a:4a:fd:68:8b:7c: 8c:bd:17:8b:e4:0b:a5:2d:b3:4f:4c:41:5a:e8:70: c6:9b:03:05:46:69:92:95:25:7f:8c:ff:76:a4:68: 44:21:e5:34:64:30:cb:cc:2a:d6:92:04:80:3b:17: 60:b4:70:0c:bb:6e:c4:7b:fa:b1:bb:66:d4:45:4a: c3:c4:aa:4a:4c:ea:b2:ac:a1:a5:4c:f4:19:6d:fe: 86:bc:53:45:25:dd:8e:f5:ae:e6:ad:59:1c:73:54: 5e:59:73:57:61:b6:9c:1d:b9:02:24:20:ad:b2:37: d3:b9:67:54:a0:c5:2b:79:87:bf:78:5b:59:7a:20: 46:b2:4e:a0:fa:51:5d:56:51:4a:85:4f:01:c0:41: e3:f7:52:22:e6:8f:86:95:09:98:8a:cd:eb:2f:30: dc:fb:da:e9:7f:02:6e:dd:e4:38:6c:89:06:c0:5f: 34:f5:d6:5a:1a:3a:7f:10:70:84:ef:b7:7d:64:e5: bb:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:5D:3E:D2:59:39:55:68:98:58:5D:7F:E6:F1:51:C6:62:D2:74:D3 X509v3 Authority Key Identifier: keyid:66:C2:DB:0D:8B:69:0C:95:36:B0:6A:B7:CE:C6:5C:08:D5:76:3F:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131194/29DE12CAB3CA11F0A5C07B7EC4F9AE02/ZsLbDYtpDJU2sGq3zsZcCNV2P08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZsLbDYtpDJU2sGq3zsZcCNV2P08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131194/29DE12CAB3CA11F0A5C07B7EC4F9AE02/BCD0C756B3D111F09D2C6B5BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.147.108.0/23 Signature Algorithm: sha256WithRSAEncryption 7f:61:bd:13:41:c2:7c:a1:32:e1:88:54:80:87:85:41:c4:f3: fe:e7:8f:14:11:af:d3:84:c1:4e:c6:8a:25:b1:6e:c4:3a:16: ef:25:cf:5b:48:c3:c3:24:eb:57:8b:0c:ad:76:d2:cd:72:40: 49:44:14:55:69:7c:67:be:de:43:0f:e6:7f:79:7f:a7:15:a9: 8d:c5:24:2a:52:6c:0b:ad:47:8f:9f:db:53:07:66:d1:5d:ef: 3d:0f:2e:9d:90:26:8e:3e:86:93:97:c6:f5:8f:62:27:a2:8e: 85:af:cf:f3:51:07:68:ee:c2:f4:80:39:13:fb:5e:62:71:5e: 5c:77:ab:5a:96:5d:68:8b:c5:5e:2d:d3:9d:6a:ce:d6:2c:65: b9:a1:d3:ad:f9:50:d2:07:cf:a3:88:8e:cb:54:86:b2:89:1c: 30:40:70:cb:26:4b:aa:ae:af:95:dc:57:61:4b:ab:93:a5:d1: 39:8c:fa:9c:fa:5b:b7:e7:cb:f7:d5:fa:5d:08:ff:12:03:03: 3b:78:dc:71:dc:c9:40:ba:fb:90:8c:fc:27:f5:2a:72:f6:83: 64:5a:61:58:78:bb:ae:ab:1b:05:e4:1a:b3:1a:9b:7d:57:37: be:0e:d4:c9:e5:99:54:87:ab:c1:c5:ed:f4:25:ff:80:9d:54: f3:8a:71:e8 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MTE5NDExMC8GA1UEBRMoNjZDMkRCMEQ4QjY5MEM5NTM2QjA2QUI3Q0VDNjVDMDhE NTc2M0Y0RjAeFw0yNTEwMjgwNzQzMDVaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MDA3NDA4LThjNmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHGvXV8g8ZzoN8YZ2WtNb4tfWhrAFNdskiKRTab0MfwDXUurkMVea72bQy7OfD tBItRYF0Jm/LxzhHgv2Imh3xag0y6lpK/WiLfIy9F4vkC6Uts09MQVrocMabAwVG aZKVJX+M/3akaEQh5TRkMMvMKtaSBIA7F2C0cAy7bsR7+rG7ZtRFSsPEqkpM6rKs oaVM9Blt/oa8U0Ul3Y71ruatWRxzVF5Zc1dhtpwduQIkIK2yN9O5Z1SgxSt5h794 W1l6IEayTqD6UV1WUUqFTwHAQeP3UiLmj4aVCZiKzesvMNz72ul/Am7d5DhsiQbA XzT11loaOn8QcITvt31k5btHAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUKl0+0lk5 VWiYWF1/5vFRxmLSdNMwHwYDVR0jBBgwFoAUZsLbDYtpDJU2sGq3zsZcCNV2P08w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMxMTk0LzI5REUxMkNBQjND QTExRjBBNUMwN0I3RUM0RjlBRTAyL1pzTGJEWXRwREpVMnNHcTN6c1pjQ05WMlAw OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWnNMYkRZdHBESlUyc0dxM3pzWmNDTlYyUDA4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTE5NC8yOURFMTJDQUIzQ0ExMUYwQTVDMDdCN0VDNEY5QUUwMi9CQ0QwQzc1NkIz RDExMUYwOUQyQzZCNUJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWeTbDANBgkqhkiG9w0BAQsFAAOCAQEAf2G9E0HCfKEy4YhU gIeFQcTz/uePFBGv04TBTsaKJbFuxDoW7yXPW0jDwyTrV4sMrXbSzXJASUQUVWl8 Z77eQw/mf3l/pxWpjcUkKlJsC61Hj5/bUwdm0V3vPQ8unZAmjj6Gk5fG9Y9iJ6KO ha/P81EHaO7C9IA5E/teYnFeXHerWpZdaIvFXi3TnWrO1ixluaHTrflQ0gfPo4iO y1SGsokcMEBwyyZLqq6vldxXYUurk6XROYz6nPpbt+fL99X6XQj/EgMDO3jccdzJ QLr7kIz8J/UqcvaDZFphWHi7rqsbBeQasxqbfVc3vg7UyeWZVIerwcXt9CX/gJ1U 84px6A== -----END CERTIFICATE-----Generated at Wed Nov 5 09:39:28 2025 by rpki-client