$ rpki-client -vvf rpki.apnic.net/member_repository/A9140467/9AA980D6F1E011EA8D4A9E32C4F9AE02/02E60C72F1E211EAA2361B34C4F9AE02.roa File: 02E60C72F1E211EAA2361B34C4F9AE02.roa (raw, json) Hash identifier: af5uMeHzt9MTz6ZREM+PIjD4gLSqGSG2u3tqcHLex6c= Subject key identifier: 4C:C7:1E:22:BE:DD:85:02:06:FE:6B:A4:FF:63:8A:0A:93:17:54:8C Certificate issuer: /CN=A9140467/serialNumber=B8C32FC4D7931AD4241407306A0B996AC8C99FEB Certificate serial: 0809 Authority key identifier: B8:C3:2F:C4:D7:93:1A:D4:24:14:07:30:6A:0B:99:6A:C8:C9:9F:EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uMMvxNeTGtQkFAcwaguZasjJn-s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140467/9AA980D6F1E011EA8D4A9E32C4F9AE02/02E60C72F1E211EAA2361B34C4F9AE02.roa Signing time: Wed 06 Aug 2025 09:59:05 +0000 ROA not before: Wed 06 Aug 2025 09:59:05 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 139036 IP address blocks: 103.138.190.0/23 maxlen: 24 2402:19a0::/32 maxlen: 32 2402:19a0::/48 maxlen: 48 2402:19a0:1::/48 maxlen: 48 2402:19a0:2::/48 maxlen: 48 2402:19a0:3::/48 maxlen: 48 2402:19a0:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140467/9AA980D6F1E011EA8D4A9E32C4F9AE02/uMMvxNeTGtQkFAcwaguZasjJn-s.crl rsync://rpki.apnic.net/member_repository/A9140467/9AA980D6F1E011EA8D4A9E32C4F9AE02/uMMvxNeTGtQkFAcwaguZasjJn-s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uMMvxNeTGtQkFAcwaguZasjJn-s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:49:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2057 (0x809) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140467, serialNumber=B8C32FC4D7931AD4241407306A0B996AC8C99FEB Validity Not Before: Aug 6 09:59:05 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68932769-6ec7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:54:4d:b3:5d:59:c3:f7:f1:86:a5:6a:b3:6a: fc:68:20:73:55:01:41:a1:37:8c:5b:1b:4d:5a:2a: 66:73:2b:4f:e8:64:8b:5b:05:f2:13:96:92:99:d4: d3:f7:68:f2:e4:b5:84:78:58:2b:d6:d9:75:4f:a0: f0:00:15:e4:29:03:c0:e9:f6:57:d9:22:1e:97:33: 7c:64:78:5b:66:74:66:07:5a:84:de:fa:99:f8:6e: d3:88:f1:09:07:e7:0b:b7:29:55:ac:28:80:e0:20: f2:bd:1b:c1:5d:17:a8:bc:3a:2a:a9:72:01:7d:14: 5a:90:47:4e:a1:82:70:c3:ec:e9:86:e5:a3:9a:3a: fd:e6:16:6b:90:d8:e3:86:2b:04:64:f9:5e:eb:34: 86:96:49:17:42:96:d6:76:17:6d:a2:1c:44:c0:d7: a1:c1:c5:af:21:88:90:3a:9d:12:2a:db:1b:36:8f: 5c:9b:e4:fe:45:d6:98:72:1a:c9:cf:6c:ea:ce:ef: 1b:3e:0b:e6:32:9a:6f:67:bf:3c:c3:93:48:0c:1c: 63:e7:0d:3e:fb:e1:30:5c:44:42:f6:23:af:78:28: 74:67:96:36:a1:c5:f9:a9:00:48:5b:6a:d3:3f:f5: 18:ff:36:39:ea:c1:ac:0d:d7:0e:e0:ba:c5:98:d4: 47:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:C7:1E:22:BE:DD:85:02:06:FE:6B:A4:FF:63:8A:0A:93:17:54:8C X509v3 Authority Key Identifier: keyid:B8:C3:2F:C4:D7:93:1A:D4:24:14:07:30:6A:0B:99:6A:C8:C9:9F:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140467/9AA980D6F1E011EA8D4A9E32C4F9AE02/uMMvxNeTGtQkFAcwaguZasjJn-s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uMMvxNeTGtQkFAcwaguZasjJn-s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140467/9AA980D6F1E011EA8D4A9E32C4F9AE02/02E60C72F1E211EAA2361B34C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.190.0/23 IPv6: 2402:19a0::/32 Signature Algorithm: sha256WithRSAEncryption b8:06:f7:dc:67:a0:34:40:e9:13:87:db:e4:e8:7b:f8:79:4e: ba:2a:c2:04:8e:a1:6a:14:e4:0f:6a:4c:c2:94:63:c6:42:91: 92:0b:79:c0:96:e2:e8:77:d5:51:2a:47:82:66:97:e2:d4:e4: 96:16:71:2c:2a:40:38:1d:f4:6d:e8:7f:1c:68:98:2f:37:5e: 62:af:a5:4e:35:fc:f2:06:f9:49:12:7e:85:c1:e9:5e:ab:e8: 52:2c:da:82:3a:18:8b:0d:14:15:7e:b9:b9:1e:04:72:67:68: f3:86:b3:a5:7c:b2:5a:09:3e:fd:23:36:70:ec:6a:e8:58:2f: 9e:80:99:6d:e6:c3:54:7b:5b:23:36:33:2d:76:d7:16:8a:6b: 84:3f:7d:cb:74:35:57:b8:95:d5:4a:67:5b:6e:30:90:1f:99: e4:cd:20:aa:af:c0:72:07:43:77:6a:47:41:1a:5d:27:7e:de: 28:6a:ec:c0:ea:da:be:86:0f:6a:5c:81:95:3e:43:f2:66:0b: df:3a:1c:4b:20:2d:35:e9:76:fb:df:5d:c1:cc:1c:90:b0:55: a4:d4:72:47:c1:d6:8b:6b:82:86:84:1b:82:df:a9:1e:cf:7b: 83:56:d3:62:80:d5:14:6f:fe:6d:60:43:5e:4b:bc:63:77:da: d0:fd:ca:fa -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCAkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA0NjcxMTAvBgNVBAUTKEI4QzMyRkM0RDc5MzFBRDQyNDE0MDczMDZBMEI5OTZB QzhDOTlGRUIwHhcNMjUwODA2MDk1OTA1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkzMjc2OS02ZWM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr1RNs11Zw/fxhqVqs2r8aCBzVQFBoTeMWxtNWipmcytP6GSLWwXyE5aSmdTT 92jy5LWEeFgr1tl1T6DwABXkKQPA6fZX2SIelzN8ZHhbZnRmB1qE3vqZ+G7TiPEJ B+cLtylVrCiA4CDyvRvBXReovDoqqXIBfRRakEdOoYJww+zphuWjmjr95hZrkNjj hisEZPle6zSGlkkXQpbWdhdtohxEwNehwcWvIYiQOp0SKtsbNo9cm+T+RdaYchrJ z2zqzu8bPgvmMppvZ788w5NIDBxj5w0+++EwXERC9iOveCh0Z5Y2ocX5qQBIW2rT P/UY/zY56sGsDdcO4LrFmNRHKQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFEzHHiK+ 3YUCBv5rpP9jigqTF1SMMB8GA1UdIwQYMBaAFLjDL8TXkxrUJBQHMGoLmWrIyZ/r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDQ2Ny85QUE5ODBENkYx RTAxMUVBOEQ0QTlFMzJDNEY5QUUwMi91TU12eE5lVEd0UWtGQWN3YWd1WmFzakpu LXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VNTXZ4TmVUR3RRa0ZBY3dhZ3VaYXNqSm4tcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDA0NjcvOUFBOTgwRDZGMUUwMTFFQThENEE5RTMyQzRGOUFFMDIvMDJFNjBDNzJG MUUyMTFFQUEyMzYxQjM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnir4wDQQCAAIwBwMFACQCGaAwDQYJKoZIhvcNAQELBQAD ggEBALgG99xnoDRA6ROH2+Toe/h5TroqwgSOoWoU5A9qTMKUY8ZCkZILecCW4uh3 1VEqR4Jml+LU5JYWcSwqQDgd9G3ofxxomC83XmKvpU41/PIG+UkSfoXB6V6r6FIs 2oI6GIsNFBV+ubkeBHJnaPOGs6V8sloJPv0jNnDsauhYL56AmW3mw1R7WyM2My12 1xaKa4Q/fct0NVe4ldVKZ1tuMJAfmeTNIKqvwHIHQ3dqR0EaXSd+3ihq7MDq2r6G D2pcgZU+Q/JmC986HEsgLTXpdvvfXcHMHJCwVaTUckfB1otrgoaEG4LfqR7Pe4NW 02KA1RRv/m1gQ15LvGN32tD9yvo= -----END CERTIFICATE-----Generated at Tue Nov 4 16:37:11 2025 by rpki-client