$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/A8268CD4B39311F0BD069855C4F9AE02.roa File: A8268CD4B39311F0BD069855C4F9AE02.roa (raw, json) Hash identifier: q4ucS+91PW1JFR/YNBtMnfzlgwpBcmqgmRYDiNSVEIs= Subject key identifier: 6D:30:50:E4:43:08:56:24:DE:64:48:53:55:4A:98:5F:BF:53:98:05 Certificate issuer: /CN=A9149F3E/serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Certificate serial: 3ACC Authority key identifier: EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/A8268CD4B39311F0BD069855C4F9AE02.roa Signing time: Wed 29 Oct 2025 23:59:22 +0000 ROA not before: Wed 29 Oct 2025 23:59:22 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 16509 IP address blocks: 103.6.73.0/24 maxlen: 24 103.104.86.0/24 maxlen: 24 103.182.250.0/24 maxlen: 24 103.182.251.0/24 maxlen: 24 103.188.89.0/24 maxlen: 24 103.253.240.0/22 maxlen: 22 144.48.40.0/22 maxlen: 24 203.191.134.0/24 maxlen: 24 203.191.135.0/24 maxlen: 24 211.44.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15052 (0x3acc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E, serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Validity Not Before: Oct 29 23:59:22 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6902aa5a-8c5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:3a:aa:0d:f7:3b:bc:68:b0:37:36:5f:1a:f9: 6d:57:de:95:6f:c9:6d:25:18:9f:e5:d7:9a:7d:85: 96:ee:cd:3c:58:e2:ff:1a:bb:99:c9:46:1c:98:ca: 22:4d:0b:1c:c0:18:f4:5b:ab:46:51:15:a3:3d:cb: 50:f0:2f:8e:7c:26:bb:4a:d6:21:5b:a3:e5:54:78: c8:51:23:a1:8b:9f:7d:5e:b5:12:d1:14:4e:1e:ec: 76:fd:dd:d2:ca:ed:15:5e:b5:56:77:a1:89:c2:40: 8d:a9:77:a2:e4:a6:15:3a:09:16:e8:57:98:9d:df: b8:91:30:0d:a4:c5:36:f3:07:cb:19:bc:ef:4a:f2: ba:01:01:e6:98:ce:69:72:1a:36:84:ec:0b:e3:ae: e1:72:2f:ed:61:ad:c9:a7:53:2a:c7:67:b5:4a:9d: a5:d5:b5:6f:15:2c:63:dd:e3:ac:72:f5:d7:cc:eb: 5b:44:59:da:c2:5f:47:33:49:92:1c:aa:05:b2:ce: a0:f0:7b:31:38:dc:f2:2d:da:60:f2:62:a0:a8:c5: 11:eb:05:b5:a4:36:25:49:65:90:3a:2d:05:b4:35: a2:65:b0:83:91:0d:28:c7:f6:ed:e4:9d:16:4a:4a: 57:95:02:e0:bd:81:fd:0b:11:65:41:62:6f:e3:54: aa:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:30:50:E4:43:08:56:24:DE:64:48:53:55:4A:98:5F:BF:53:98:05 X509v3 Authority Key Identifier: keyid:EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/A8268CD4B39311F0BD069855C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.6.73.0/24 103.104.86.0/24 103.182.250.0/23 103.188.89.0/24 103.253.240.0/22 144.48.40.0/22 203.191.134.0/23 211.44.103.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:9c:e4:8d:de:cb:e8:a7:04:50:a2:85:be:0d:4d:eb:a1:cb: b6:28:6c:f6:1b:55:8e:e1:94:2c:4f:5d:3f:b3:72:07:d8:ae: f8:02:48:62:4c:c7:c9:fa:a5:74:dd:10:3f:40:ef:50:ca:9a: 08:fc:3f:a8:ca:79:4e:c9:1d:f5:6f:11:49:9b:0a:5d:39:9f: f9:90:a4:6b:3c:0b:80:db:9f:6a:0b:2e:e3:11:2a:97:91:25: 7d:c4:bf:66:2e:74:fc:88:91:cd:6f:e7:0b:36:3d:5f:2e:ec: b1:09:25:f1:b8:fa:0c:85:f4:87:2d:11:85:c9:9f:0b:90:eb: 75:fb:b9:75:f8:c7:e6:cd:11:1c:5b:8b:65:f0:2d:eb:30:3c: db:6c:b9:3c:98:ea:51:fa:74:96:6f:e2:42:cd:0a:37:58:80: e3:12:da:8c:ce:c1:f4:9a:f4:39:39:de:13:76:8b:8f:0f:b7: 08:66:18:37:c5:5c:f3:22:9a:e3:61:c0:88:1a:e5:98:09:0f: 90:a5:ee:ff:5d:23:63:bd:72:3a:b7:a8:cb:8c:27:8d:22:43: 9b:8c:ae:40:d6:23:37:5b:f9:54:ff:ec:47:5c:4f:1b:1c:c8: 9d:4a:22:dc:79:43:54:79:18:44:34:db:be:77:44:fa:30:42: fc:4e:16:a6 -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgICOswwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKEVCMzg5RkIzMzlCMzkwOEQ1NDlBNjUzOTBDOTJFMTVG OURGN0M1NEIwHhcNMjUxMDI5MjM1OTIyWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTAyYWE1YS04YzVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzDqqDfc7vGiwNzZfGvltV96Vb8ltJRif5deafYWW7s08WOL/GruZyUYcmMoi TQscwBj0W6tGURWjPctQ8C+OfCa7StYhW6PlVHjIUSOhi599XrUS0RROHux2/d3S yu0VXrVWd6GJwkCNqXei5KYVOgkW6FeYnd+4kTANpMU28wfLGbzvSvK6AQHmmM5p cho2hOwL467hci/tYa3Jp1Mqx2e1Sp2l1bVvFSxj3eOscvXXzOtbRFnawl9HM0mS HKoFss6g8HsxONzyLdpg8mKgqMUR6wW1pDYlSWWQOi0FtDWiZbCDkQ0ox/bt5J0W SkpXlQLgvYH9CxFlQWJv41SqMQIDAQABo4ICvzCCArswHQYDVR0OBBYEFG0wUORD CFYk3mRIU1VKmF+/U5gFMB8GA1UdIwQYMBaAFOs4n7M5s5CNVJplOQyS4V+d98VL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS9BQzUyQjc0ODFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi82emlmc3ptemtJMVVtbVU1REpMaFg1MzN4 VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ6aWZzem16a0kxVW1tVTVESkxoWDUzM3hVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlGM0UvQUM1MkI3NDgxRDgyMTFFMkJDNjQxN0Q3MDhCMDJDRDIvQTgyNjhDRDRC MzkzMTFGMEJEMDY5ODU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSQYIKwYBBQUHAQcBAf8E OjA4MDYEAgABMDADBABnBkkDBABnaFYDBAFntvoDBABnvFkDBAJn/fADBAKQMCgD BAHLv4YDBADTLGcwDQYJKoZIhvcNAQELBQADggEBAI2c5I3ey+inBFCihb4NTeuh y7YobPYbVY7hlCxPXT+zcgfYrvgCSGJMx8n6pXTdED9A71DKmgj8P6jKeU7JHfVv EUmbCl05n/mQpGs8C4Dbn2oLLuMRKpeRJX3Ev2YudPyIkc1v5ws2PV8u7LEJJfG4 +gyF9IctEYXJnwuQ63X7uXX4x+bNERxbi2XwLeswPNtsuTyY6lH6dJZv4kLNCjdY gOMS2ozOwfSa9Dk53hN2i48PtwhmGDfFXPMimuNhwIga5ZgJD5Cl7v9dI2O9cjq3 qMuMJ40iQ5uMrkDWIzdb+VT/7EdcTxscyJ1KItx5Q1R5GEQ02753RPowQvxOFqY= -----END CERTIFICATE-----Generated at Wed Nov 5 03:23:01 2025 by rpki-client