$ rpki-client -vvf rpki.apnic.net/member_repository/A9136359/6660D88AAE2611F0BCFF8053C4F9AE02/698A914EAE2711F096416455C4F9AE02.roa File: 698A914EAE2711F096416455C4F9AE02.roa (raw, json) Hash identifier: 7Jh4bbECd/hNw4i818yA2WJfwAYJwUXesvOfcYZ46i8= Subject key identifier: 49:C8:C4:D9:88:88:24:C2:24:AF:DF:D5:F7:AC:3D:86:F9:43:7E:BF Certificate issuer: /CN=A9136359/serialNumber=792C4566B9B0258AB16553822F19DFFE84A2DCB8 Certificate serial: 02 Authority key identifier: 79:2C:45:66:B9:B0:25:8A:B1:65:53:82:2F:19:DF:FE:84:A2:DC:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eSxFZrmwJYqxZVOCLxnf_oSi3Lg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136359/6660D88AAE2611F0BCFF8053C4F9AE02/698A914EAE2711F096416455C4F9AE02.roa Signing time: Tue 21 Oct 2025 02:41:15 +0000 ROA not before: Tue 21 Oct 2025 02:41:15 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 38911 IP address blocks: 203.100.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136359/6660D88AAE2611F0BCFF8053C4F9AE02/eSxFZrmwJYqxZVOCLxnf_oSi3Lg.crl rsync://rpki.apnic.net/member_repository/A9136359/6660D88AAE2611F0BCFF8053C4F9AE02/eSxFZrmwJYqxZVOCLxnf_oSi3Lg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eSxFZrmwJYqxZVOCLxnf_oSi3Lg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 08:11:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136359, serialNumber=792C4566B9B0258AB16553822F19DFFE84A2DCB8 Validity Not Before: Oct 21 02:41:15 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=68f6f2ca-b0a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:0f:94:77:15:31:79:02:ad:27:ce:4a:3e:c6: 01:2e:f6:e3:fb:88:0e:9f:7d:3c:20:06:0b:d0:89: eb:e8:04:16:50:56:5c:07:08:8d:bd:5f:ae:70:38: 7a:e3:d8:5c:14:75:d9:ab:22:99:db:73:7f:d2:f0: ac:27:22:6a:19:ab:dc:03:27:14:9b:01:43:b5:0c: b2:5b:cd:fa:f3:9b:0f:c4:0f:62:8d:04:c0:44:ec: e8:cd:d7:5c:60:93:ed:e3:b9:cb:b7:0f:4d:71:6a: a4:8c:cb:d8:ef:14:19:45:e9:49:5a:76:24:1b:69: 37:16:3a:7c:8b:50:6a:bf:d2:25:fd:c0:cf:9b:4b: 61:a6:f0:ea:bf:2f:a1:be:e6:99:f2:60:33:e4:c2: 34:b9:ba:ea:c1:c9:7e:1a:31:e5:46:6b:20:87:95: ac:e3:35:8a:7e:e6:ef:27:ec:11:3e:19:1f:15:80: 74:38:d0:34:f2:9f:bf:8f:a7:47:2c:6e:7f:e8:93: bf:7f:07:33:c3:d7:5d:f0:2b:ec:69:ab:56:a2:34: c9:3c:35:09:77:d1:ec:f8:cb:09:98:ba:69:37:00: f1:93:7f:08:8d:ea:29:26:8a:3e:b3:b6:e9:46:6a: 72:a9:c3:30:36:ff:c4:34:6b:ad:7d:fb:15:9e:1b: 42:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:C8:C4:D9:88:88:24:C2:24:AF:DF:D5:F7:AC:3D:86:F9:43:7E:BF X509v3 Authority Key Identifier: keyid:79:2C:45:66:B9:B0:25:8A:B1:65:53:82:2F:19:DF:FE:84:A2:DC:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136359/6660D88AAE2611F0BCFF8053C4F9AE02/eSxFZrmwJYqxZVOCLxnf_oSi3Lg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eSxFZrmwJYqxZVOCLxnf_oSi3Lg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136359/6660D88AAE2611F0BCFF8053C4F9AE02/698A914EAE2711F096416455C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.100.59.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:4d:c4:cf:66:3f:ed:49:cc:4c:54:3b:0b:ca:53:45:3e:07: 21:9b:c5:9e:f5:4c:ab:e3:52:0a:69:a5:f5:de:e6:95:13:fc: d0:4c:5e:36:a6:0e:82:47:37:5f:a7:f0:bd:96:14:4b:56:30: a1:82:c6:01:4d:4c:06:10:a4:13:f3:7b:d8:bc:8e:cd:44:67: 94:69:8c:07:29:a9:a5:b9:3e:e6:d2:30:4b:4e:9e:a1:c0:a5: cc:00:89:c0:76:17:6f:8c:9f:c7:c9:c7:48:b4:79:82:6b:67: 75:75:cb:ae:6d:7c:76:35:d1:e0:8f:91:4b:3e:f7:04:91:f6: 5d:71:67:49:c5:60:a0:d8:7e:49:9c:39:87:5f:e6:b2:ca:63: 49:3d:fe:6f:03:c3:56:6a:42:b1:54:52:05:a1:2b:ef:d7:7b: 51:ee:d2:65:66:52:4f:4b:47:3d:c2:7c:1a:3a:0a:7a:87:ae: 1d:81:92:9e:f7:46:28:a5:8d:6f:36:56:b3:a3:22:74:cf:3e: 1a:7b:9a:3a:72:45:03:22:0a:1a:e6:81:47:dc:ec:b1:14:91: 48:bf:3a:43:33:ac:a2:c8:8c:6d:be:d2:69:4f:7f:9e:59:67: e1:95:5d:a1:52:8e:0a:e1:cb:bd:0d:33:16:37:38:5d:71:3d: 3a:24:9f:bc -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NjM1OTExMC8GA1UEBRMoNzkyQzQ1NjZCOUIwMjU4QUIxNjU1MzgyMkYxOURGRkU4 NEEyRENCODAeFw0yNTEwMjEwMjQxMTVaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZjZmMmNhLWIwYTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDdD5R3FTF5Aq0nzko+xgEu9uP7iA6ffTwgBgvQievoBBZQVlwHCI29X65wOHrj 2FwUddmrIpnbc3/S8KwnImoZq9wDJxSbAUO1DLJbzfrzmw/ED2KNBMBE7OjN11xg k+3jucu3D01xaqSMy9jvFBlF6UladiQbaTcWOnyLUGq/0iX9wM+bS2Gm8Oq/L6G+ 5pnyYDPkwjS5uurByX4aMeVGayCHlazjNYp+5u8n7BE+GR8VgHQ40DTyn7+Pp0cs bn/ok79/BzPD113wK+xpq1aiNMk8NQl30ez4ywmYumk3APGTfwiN6ikmij6ztulG anKpwzA2/8Q0a619+xWeG0KzAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUScjE2YiI JMIkr9/V96w9hvlDfr8wHwYDVR0jBBgwFoAUeSxFZrmwJYqxZVOCLxnf/oSi3Lgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM2MzU5LzY2NjBEODhBQUUy NjExRjBCQ0ZGODA1M0M0RjlBRTAyL2VTeEZacm13SllxeFpWT0NMeG5mX29TaTNM Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZVN4RlpybXdKWXF4WlZPQ0x4bmZfb1NpM0xnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjM1OS82NjYwRDg4QUFFMjYxMUYwQkNGRjgwNTNDNEY5QUUwMi82OThBOTE0RUFF MjcxMUYwOTY0MTY0NTVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMtkOzANBgkqhkiG9w0BAQsFAAOCAQEASk3Ez2Y/7UnMTFQ7 C8pTRT4HIZvFnvVMq+NSCmml9d7mlRP80ExeNqYOgkc3X6fwvZYUS1YwoYLGAU1M BhCkE/N72LyOzURnlGmMBymppbk+5tIwS06eocClzACJwHYXb4yfx8nHSLR5gmtn dXXLrm18djXR4I+RSz73BJH2XXFnScVgoNh+SZw5h1/msspjST3+bwPDVmpCsVRS BaEr79d7Ue7SZWZST0tHPcJ8GjoKeoeuHYGSnvdGKKWNbzZWs6MidM8+GnuaOnJF AyIKGuaBR9zssRSRSL86QzOsosiMbb7SaU9/nlln4ZVdoVKOCuHLvQ0zFjc4XXE9 OiSfvA== -----END CERTIFICATE-----Generated at Wed Nov 5 09:37:45 2025 by rpki-client