$ rpki-client -vvf rpki.apnic.net/member_repository/A9143078/DA29B4AEAD1111EC989E3A0DC4F9AE02/1332B7BCEC7211EFBA9EF77FC4F9AE02.roa File: 1332B7BCEC7211EFBA9EF77FC4F9AE02.roa (raw, json) Hash identifier: EyHs5y7oE17xIkYVPklIvc2ZONwGgz4agYPg5DpPAPQ= Subject key identifier: 3C:F3:48:89:6A:46:69:6D:53:44:5F:E3:61:C5:13:39:33:82:1C:DD Certificate issuer: /CN=A9143078/serialNumber=0C2042E5FC3361FF7356936D097E1244AFC626CE Certificate serial: 03BD Authority key identifier: 0C:20:42:E5:FC:33:61:FF:73:56:93:6D:09:7E:12:44:AF:C6:26:CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DCBC5fwzYf9zVpNtCX4SRK_GJs4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143078/DA29B4AEAD1111EC989E3A0DC4F9AE02/1332B7BCEC7211EFBA9EF77FC4F9AE02.roa Signing time: Sun 14 Sep 2025 05:11:50 +0000 ROA not before: Sun 14 Sep 2025 05:11:50 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 10111 IP address blocks: 103.183.218.0/24 maxlen: 24 103.183.219.0/24 maxlen: 24 2400:6460::/40 maxlen: 40 2400:6460:10::/44 maxlen: 48 2400:6460:f0::/48 maxlen: 48 2400:6460:f1::/48 maxlen: 48 2400:6460:f2::/48 maxlen: 48 2400:6460:ff::/48 maxlen: 48 2400:6460:100::/40 maxlen: 48 2400:6460:300::/40 maxlen: 48 2400:6460:500::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143078/DA29B4AEAD1111EC989E3A0DC4F9AE02/DCBC5fwzYf9zVpNtCX4SRK_GJs4.crl rsync://rpki.apnic.net/member_repository/A9143078/DA29B4AEAD1111EC989E3A0DC4F9AE02/DCBC5fwzYf9zVpNtCX4SRK_GJs4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DCBC5fwzYf9zVpNtCX4SRK_GJs4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:45:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 957 (0x3bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143078, serialNumber=0C2042E5FC3361FF7356936D097E1244AFC626CE Validity Not Before: Sep 14 05:11:50 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68c64e95-115a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:fa:2b:21:60:f7:82:ee:44:a4:70:9c:2a:2b: fb:d3:fd:fb:28:51:8e:2b:31:0f:d0:ec:e7:7e:b1: 00:a2:37:21:7a:16:fa:f1:bc:c2:a5:37:b8:fb:20: de:a6:8a:35:45:0d:f1:1b:4b:80:8e:09:51:ba:d6: 49:fe:62:71:e0:e7:47:9a:87:91:23:e0:d3:93:61: 2e:fd:62:02:9e:49:af:a4:18:0d:4a:93:86:5c:4b: 2c:db:1e:75:54:4e:15:f7:91:6e:c1:83:5d:0c:af: fa:a2:73:bd:b5:49:a5:e7:55:af:1a:d0:6a:6e:f9: 81:23:81:0e:4c:f4:ea:ab:a7:7e:e1:9c:1d:59:b2: c9:a4:1c:1d:e8:eb:62:a3:e1:d9:57:a4:69:3c:a8: d2:8d:3a:2b:0b:ef:9d:1d:2d:55:1e:70:63:36:10: fa:dc:35:7d:3d:1d:14:8a:c8:d1:bb:df:35:04:d9: 9a:f3:22:35:b3:76:50:4e:b4:6c:85:99:3b:d1:6c: 0c:48:7a:a1:5a:0e:25:d7:ad:a8:05:d0:18:1b:54: a1:18:13:01:11:be:e4:f9:01:b1:d0:da:88:4f:b3: 93:71:55:15:a9:8f:7a:48:84:b9:bf:61:4b:e4:7f: a3:8a:a5:13:6f:93:3c:2d:80:d3:18:85:0f:d9:7d: e0:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:F3:48:89:6A:46:69:6D:53:44:5F:E3:61:C5:13:39:33:82:1C:DD X509v3 Authority Key Identifier: keyid:0C:20:42:E5:FC:33:61:FF:73:56:93:6D:09:7E:12:44:AF:C6:26:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143078/DA29B4AEAD1111EC989E3A0DC4F9AE02/DCBC5fwzYf9zVpNtCX4SRK_GJs4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DCBC5fwzYf9zVpNtCX4SRK_GJs4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143078/DA29B4AEAD1111EC989E3A0DC4F9AE02/1332B7BCEC7211EFBA9EF77FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.183.218.0/23 IPv6: 2400:6460::/39 2400:6460:300::/40 2400:6460:500::/40 Signature Algorithm: sha256WithRSAEncryption 44:f9:10:cc:c4:a5:cb:b3:3c:a3:c7:64:eb:cd:3d:47:7f:19: 4e:f9:28:5c:96:ed:c3:a6:65:9f:b9:25:0e:a8:78:00:f7:78: d4:71:c0:87:a5:e8:2d:a2:a8:fb:9b:03:84:a8:af:9b:70:bc: 28:d2:91:3f:2a:c3:a3:59:62:07:da:b7:9f:6a:6e:ed:97:73: a4:5b:aa:09:2f:65:36:d0:a9:16:82:17:12:aa:76:d6:af:67: 1d:c8:a6:e8:a7:db:aa:c5:3c:ce:91:0d:b1:d1:81:fa:8a:80: 59:cf:0f:c3:5f:e5:1a:dd:e4:f9:44:29:51:e9:e4:16:4d:1b: 3f:e6:68:c3:d5:0a:c7:02:c3:39:21:65:0f:a3:c8:b3:e7:a0: 41:8c:0e:31:2f:13:45:8e:f0:88:d2:9a:d8:e0:1d:78:ba:55: 47:11:b5:e8:a1:53:c2:a4:44:14:16:f8:ce:27:25:99:c3:c3: 56:f4:77:6d:51:e7:7f:b4:2c:5b:5d:3f:68:ce:29:48:9a:4d: 13:36:f3:8a:56:aa:c6:8c:de:91:99:d3:68:e3:64:80:89:2e: a4:72:fe:aa:a2:0a:43:19:80:8a:ac:29:bf:82:fc:98:02:e1: 2c:a7:3d:d3:9b:45:38:d0:23:f9:31:68:61:5f:b7:3d:09:fe: 2a:9f:1c:0d -----BEGIN CERTIFICATE----- MIIFkTCCBHmgAwIBAgICA70wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDMwNzgxMTAvBgNVBAUTKDBDMjA0MkU1RkMzMzYxRkY3MzU2OTM2RDA5N0UxMjQ0 QUZDNjI2Q0UwHhcNMjUwOTE0MDUxMTUwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM2NGU5NS0xMTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0PorIWD3gu5EpHCcKiv70/37KFGOKzEP0OznfrEAojchehb68bzCpTe4+yDe poo1RQ3xG0uAjglRutZJ/mJx4OdHmoeRI+DTk2Eu/WICnkmvpBgNSpOGXEss2x51 VE4V95FuwYNdDK/6onO9tUml51WvGtBqbvmBI4EOTPTqq6d+4ZwdWbLJpBwd6Oti o+HZV6RpPKjSjTorC++dHS1VHnBjNhD63DV9PR0UisjRu981BNma8yI1s3ZQTrRs hZk70WwMSHqhWg4l162oBdAYG1ShGBMBEb7k+QGx0NqIT7OTcVUVqY96SIS5v2FL 5H+jiqUTb5M8LYDTGIUP2X3gEwIDAQABo4ICtTCCArEwHQYDVR0OBBYEFDzzSIlq RmltU0Rf42HFEzkzghzdMB8GA1UdIwQYMBaAFAwgQuX8M2H/c1aTbQl+EkSvxibO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MzA3OC9EQTI5QjRBRUFE MTExMUVDOTg5RTNBMERDNEY5QUUwMi9EQ0JDNWZ3ellmOXpWcE50Q1g0U1JLX0dK czQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RDQkM1Znd6WWY5elZwTnRDWDRTUktfR0pzNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDMwNzgvREEyOUI0QUVBRDExMTFFQzk4OUUzQTBEQzRGOUFFMDIvMTMzMkI3QkNF QzcyMTFFRkJBOUVGNzdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPwYIKwYBBQUHAQcBAf8E MDAuMAwEAgABMAYDBAFnt9owHgQCAAIwGAMGASQAZGAAAwYAJABkYAMDBgAkAGRg BTANBgkqhkiG9w0BAQsFAAOCAQEARPkQzMSly7M8o8dk6809R38ZTvkoXJbtw6Zl n7klDqh4APd41HHAh6XoLaKo+5sDhKivm3C8KNKRPyrDo1liB9q3n2pu7ZdzpFuq CS9lNtCpFoIXEqp21q9nHcim6KfbqsU8zpENsdGB+oqAWc8Pw1/lGt3k+UQpUenk Fk0bP+Zow9UKxwLDOSFlD6PIs+egQYwOMS8TRY7wiNKa2OAdeLpVRxG16KFTwqRE FBb4ziclmcPDVvR3bVHnf7QsW10/aM4pSJpNEzbzilaqxozekZnTaONkgIkupHL+ qqIKQxmAiqwpv4L8mALhLKc905tFONAj+TFoYV+3PQn+Kp8cDQ== -----END CERTIFICATE-----Generated at Wed Nov 5 10:07:10 2025 by rpki-client