$ rpki-client -vvf rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/9CCB30B0C5F411EB8A6F1525C4F9AE02.roa File: 9CCB30B0C5F411EB8A6F1525C4F9AE02.roa (raw, json) Hash identifier: W3evTqtE3AeQu/+UCpmY09IhagDrzP1HZj8k+plv7KQ= Subject key identifier: CA:7F:A9:FF:35:8C:54:EA:57:E8:F2:EC:B1:81:2B:6F:E0:10:56:51 Certificate issuer: /CN=A9144EC5/serialNumber=5807E7151D5AC7B74BF22C99092BD2E92EA60628 Certificate serial: 05D6 Authority key identifier: 58:07:E7:15:1D:5A:C7:B7:4B:F2:2C:99:09:2B:D2:E9:2E:A6:06:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAfnFR1ax7dL8iyZCSvS6S6mBig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/9CCB30B0C5F411EB8A6F1525C4F9AE02.roa Signing time: Tue 24 Jun 2025 23:23:08 +0000 ROA not before: Tue 24 Jun 2025 23:23:08 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 138346 IP address blocks: 103.166.252.0/24 maxlen: 24 103.166.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.crl rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAfnFR1ax7dL8iyZCSvS6S6mBig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:57:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1494 (0x5d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144EC5, serialNumber=5807E7151D5AC7B74BF22C99092BD2E92EA60628 Validity Not Before: Jun 24 23:23:08 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=685b335c-605c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d4:e4:da:b4:4d:da:71:46:6c:80:91:3f:fa: f3:1a:b6:e2:d0:8d:03:32:1f:11:c2:0f:5c:b5:dc: 09:9c:77:6d:20:26:b8:65:1f:8e:07:a3:da:2a:40: 39:d6:91:9f:e3:0a:bb:e9:67:69:d9:55:a3:91:b3: 5a:02:2f:cf:df:41:a7:b1:21:90:ed:89:05:88:3d: 7c:86:4a:cc:55:26:f2:68:8b:31:9a:f7:98:26:49: 54:84:9d:1d:81:41:e3:40:7c:05:53:01:7e:0f:59: 10:91:e3:b1:e0:7a:46:63:28:b6:75:c8:5e:a9:8c: 5a:41:16:b8:db:21:db:3e:d1:e7:65:0f:02:65:76: dd:e3:23:0c:a9:5e:0a:75:85:08:c6:c3:22:34:fa: 3c:85:85:0c:ba:8c:da:25:1c:85:f8:93:74:0c:ec: 42:85:09:93:42:f7:b1:2c:f8:c1:38:5e:c4:e1:7d: 1f:9b:76:78:d4:c2:e0:d0:9a:fd:66:e2:0f:c5:9b: 74:74:af:3e:e7:1a:9d:3b:0c:1d:1a:e5:67:45:bc: 1c:00:1b:94:75:10:29:95:37:e3:d2:7a:d2:d2:5f: 3e:9b:dc:b5:b3:25:ad:25:51:bb:59:73:33:ca:66: e9:a7:dc:6d:87:a3:2e:db:8f:27:ca:3b:e9:ba:d8: c3:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:7F:A9:FF:35:8C:54:EA:57:E8:F2:EC:B1:81:2B:6F:E0:10:56:51 X509v3 Authority Key Identifier: keyid:58:07:E7:15:1D:5A:C7:B7:4B:F2:2C:99:09:2B:D2:E9:2E:A6:06:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAfnFR1ax7dL8iyZCSvS6S6mBig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/9CCB30B0C5F411EB8A6F1525C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.166.252.0/23 Signature Algorithm: sha256WithRSAEncryption 3e:3a:3a:e3:61:e2:20:9d:9a:01:c9:aa:31:46:b3:55:27:b6: 49:f1:48:84:43:43:9c:cd:b0:fc:82:4a:70:67:91:70:d2:f2: 1f:2d:e5:d8:56:c7:cb:05:7a:9c:be:6a:a7:56:91:b9:c8:53: 96:d2:5f:9f:55:e5:4c:7d:1f:35:35:d7:8f:a4:b2:02:56:26: 92:24:59:3c:61:29:f9:b6:02:67:6d:7d:53:17:33:6c:ed:8f: 3c:3b:cd:b7:8b:d6:ef:5d:df:5c:2a:d8:fc:9b:c6:e2:fe:18: a9:85:42:e3:16:27:f5:94:30:59:93:76:07:73:24:79:2a:b7: a3:bd:d3:b0:1e:9a:dd:af:59:5a:a4:a8:4e:e5:7e:c6:e7:7e: 5e:16:6d:89:55:3b:58:4b:83:d1:40:cc:25:4c:60:ad:68:42: 07:fd:d0:86:3a:7c:0a:54:ec:a4:e9:53:75:0e:6f:0e:b4:63: 08:f0:80:ec:dd:2c:2a:41:81:06:c2:65:f4:2a:09:00:8c:0a: a3:93:5c:ea:49:b7:eb:2e:81:31:fe:ff:b6:1c:5f:08:cd:e5: b4:5c:0f:ed:1e:04:22:89:9b:e3:93:67:41:e2:47:f0:78:44: 5e:d3:df:73:10:d4:e7:59:e5:10:c7:5c:cc:06:9e:de:62:1c: ef:c1:50:2f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRFQzUxMTAvBgNVBAUTKDU4MDdFNzE1MUQ1QUM3Qjc0QkYyMkM5OTA5MkJEMkU5 MkVBNjA2MjgwHhcNMjUwNjI0MjMyMzA4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODViMzM1Yy02MDVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAztTk2rRN2nFGbICRP/rzGrbi0I0DMh8Rwg9ctdwJnHdtICa4ZR+OB6PaKkA5 1pGf4wq76Wdp2VWjkbNaAi/P30GnsSGQ7YkFiD18hkrMVSbyaIsxmveYJklUhJ0d gUHjQHwFUwF+D1kQkeOx4HpGYyi2dcheqYxaQRa42yHbPtHnZQ8CZXbd4yMMqV4K dYUIxsMiNPo8hYUMuozaJRyF+JN0DOxChQmTQvexLPjBOF7E4X0fm3Z41MLg0Jr9 ZuIPxZt0dK8+5xqdOwwdGuVnRbwcABuUdRAplTfj0nrS0l8+m9y1syWtJVG7WXMz ymbpp9xth6Mu248nyjvputjDoQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMp/qf81 jFTqV+jy7LGBK2/gEFZRMB8GA1UdIwQYMBaAFFgH5xUdWse3S/IsmQkr0ukupgYo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEVDNS80MzlFM0MyOEM1 MTExMUVCOTE2NDBDODdDNEY5QUUwMi9XQWZuRlIxYXg3ZEw4aXlaQ1N2UzZTNm1C aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dBZm5GUjFheDdkTDhpeVpDU3ZTNlM2bUJpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDRFQzUvNDM5RTNDMjhDNTExMTFFQjkxNjQwQzg3QzRGOUFFMDIvOUNDQjMwQjBD NUY0MTFFQjhBNkYxNTI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnpvwwDQYJKoZIhvcNAQELBQADggEBAD46OuNh4iCdmgHJ qjFGs1UntknxSIRDQ5zNsPyCSnBnkXDS8h8t5dhWx8sFepy+aqdWkbnIU5bSX59V 5Ux9HzU114+ksgJWJpIkWTxhKfm2AmdtfVMXM2ztjzw7zbeL1u9d31wq2PybxuL+ GKmFQuMWJ/WUMFmTdgdzJHkqt6O907Aemt2vWVqkqE7lfsbnfl4WbYlVO1hLg9FA zCVMYK1oQgf90IY6fApU7KTpU3UObw60YwjwgOzdLCpBgQbCZfQqCQCMCqOTXOpJ t+sugTH+/7YcXwjN5bRcD+0eBCKJm+OTZ0HiR/B4RF7T33MQ1OdZ5RDHXMwGnt5i HO/BUC8= -----END CERTIFICATE-----Generated at Wed Nov 5 16:43:30 2025 by rpki-client