$ rpki-client -vvf rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/AB791BEE7BC711F0B0A56A74C4F9AE02.roa File: AB791BEE7BC711F0B0A56A74C4F9AE02.roa (raw, json) Hash identifier: lK7bGVCygyPQRcWZjT3XlPriu2CyfUJlUxTwi2dzB50= Subject key identifier: 1A:56:FD:BC:02:3E:49:50:2F:92:64:06:0B:0C:29:1B:19:80:9E:C2 Certificate issuer: /CN=A9152A4E/serialNumber=7D73EF115B02C5E01023847A91B0B0F078B5F02B Certificate serial: 0666 Authority key identifier: 7D:73:EF:11:5B:02:C5:E0:10:23:84:7A:91:B0:B0:F0:78:B5:F0:2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/AB791BEE7BC711F0B0A56A74C4F9AE02.roa Signing time: Mon 18 Aug 2025 00:09:55 +0000 ROA not before: Mon 18 Aug 2025 00:09:55 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 9304 IP address blocks: 103.141.130.0/24 maxlen: 24 103.141.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.crl rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:32:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1638 (0x666) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152A4E, serialNumber=7D73EF115B02C5E01023847A91B0B0F078B5F02B Validity Not Before: Aug 18 00:09:55 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68a26f53-48c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:71:7a:a7:87:e3:d6:03:81:2c:d9:b6:52:43: 97:ea:26:97:34:28:e4:93:79:24:ad:af:8d:6e:69: b1:60:56:d6:c5:1e:b4:1b:a1:f7:48:fb:4d:67:8d: 06:a5:27:35:5f:1c:9c:bf:96:a4:ca:d2:ce:fa:0c: ac:2f:a8:52:24:19:c1:2e:79:01:a2:1e:a7:7c:88: 4a:eb:9f:c0:4a:b4:1e:e2:d9:3e:54:95:5f:35:70: e3:5a:b1:92:f9:48:e0:23:0b:0a:f2:6a:ab:6e:f2: 45:95:68:f4:4b:f7:da:f2:dd:d5:df:44:d4:46:38: 27:a1:46:c6:39:1c:42:3c:3f:ed:cd:af:66:0e:41: f7:3e:e9:ff:44:83:66:c2:87:6f:09:ad:32:ef:17: da:52:e4:f0:90:2e:18:b4:c2:e3:49:16:dc:7b:59: c7:13:f0:61:dc:c4:a8:42:97:e9:1e:6b:43:5c:33: 66:5b:ee:cc:fb:16:d9:22:8d:2e:f4:b2:33:91:f3: 66:7c:08:92:b5:83:dd:ef:cf:1c:f7:cf:9b:4c:80: 08:e4:f0:15:25:ec:4c:cd:e9:0e:d6:e2:ea:35:57: 4b:47:e8:21:9e:3a:5d:43:dc:61:1c:41:db:03:9c: 20:c4:c4:0f:b9:4b:95:dc:e3:00:36:48:57:0b:9e: 2a:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:56:FD:BC:02:3E:49:50:2F:92:64:06:0B:0C:29:1B:19:80:9E:C2 X509v3 Authority Key Identifier: keyid:7D:73:EF:11:5B:02:C5:E0:10:23:84:7A:91:B0:B0:F0:78:B5:F0:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fXPvEVsCxeAQI4R6kbCw8Hi18Cs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152A4E/E3E0846495BB11EB949FE535C4F9AE02/AB791BEE7BC711F0B0A56A74C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.141.130.0/23 Signature Algorithm: sha256WithRSAEncryption 8b:43:a9:59:40:14:28:f3:df:47:26:5a:75:77:5c:80:b2:7a: 43:21:49:0a:44:41:a7:bd:bb:11:7b:46:83:4f:e7:af:7e:61: ef:c3:a5:85:b8:55:6c:4d:89:48:22:94:25:e6:ae:f1:d6:f7: d1:57:22:a3:40:bc:72:d2:35:8f:d6:1b:7d:e3:bf:9e:4b:cc: 31:06:b6:2f:af:a5:74:9a:9f:ee:f5:bb:4f:7d:5c:a3:0e:d9: 11:df:2b:f3:ae:26:ca:be:50:fb:67:00:f2:c2:36:ea:6a:7a: 3a:17:f4:22:e5:0b:da:c0:11:71:f4:3c:08:80:fc:2c:6d:b7: 40:89:94:c2:cc:02:20:de:84:8f:ac:23:58:80:de:aa:2d:2d: fb:06:46:a0:00:c9:c8:f8:18:bb:7a:81:17:df:52:8f:97:ba: 45:d3:52:e6:54:e7:65:75:e8:7b:9b:d9:96:27:75:cb:44:e6: 1b:fd:78:e1:a4:68:3a:a6:4d:53:7f:c5:4b:86:8b:34:3f:7c: 6a:8a:54:cd:12:13:38:11:27:67:14:76:c1:ed:1a:86:13:a3: 4a:a8:e5:0f:ae:5a:04:41:b0:95:55:ec:18:d6:d3:c5:98:d0: bd:e9:50:80:2e:db:1c:ef:f6:46:3f:75:af:fd:12:2c:4d:48: 47:ce:bc:04 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBmYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJBNEUxMTAvBgNVBAUTKDdENzNFRjExNUIwMkM1RTAxMDIzODQ3QTkxQjBCMEYw NzhCNUYwMkIwHhcNMjUwODE4MDAwOTU1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGEyNmY1My00OGMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3XF6p4fj1gOBLNm2UkOX6iaXNCjkk3kkra+NbmmxYFbWxR60G6H3SPtNZ40G pSc1Xxycv5akytLO+gysL6hSJBnBLnkBoh6nfIhK65/ASrQe4tk+VJVfNXDjWrGS +UjgIwsK8mqrbvJFlWj0S/fa8t3V30TURjgnoUbGORxCPD/tza9mDkH3Pun/RINm wodvCa0y7xfaUuTwkC4YtMLjSRbce1nHE/Bh3MSoQpfpHmtDXDNmW+7M+xbZIo0u 9LIzkfNmfAiStYPd788c98+bTIAI5PAVJexMzekO1uLqNVdLR+ghnjpdQ9xhHEHb A5wgxMQPuUuV3OMANkhXC54qUQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBpW/bwC PklQL5JkBgsMKRsZgJ7CMB8GA1UdIwQYMBaAFH1z7xFbAsXgECOEepGwsPB4tfAr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkE0RS9FM0UwODQ2NDk1 QkIxMUVCOTQ5RkU1MzVDNEY5QUUwMi9mWFB2RVZzQ3hlQVFJNFI2a2JDdzhIaTE4 Q3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZYUHZFVnNDeGVBUUk0UjZrYkN3OEhpMThDcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTJBNEUvRTNFMDg0NjQ5NUJCMTFFQjk0OUZFNTM1QzRGOUFFMDIvQUI3OTFCRUU3 QkM3MTFGMEIwQTU2QTc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjYIwDQYJKoZIhvcNAQELBQADggEBAItDqVlAFCjz30cm WnV3XICyekMhSQpEQae9uxF7RoNP569+Ye/DpYW4VWxNiUgilCXmrvHW99FXIqNA vHLSNY/WG33jv55LzDEGti+vpXSan+71u099XKMO2RHfK/OuJsq+UPtnAPLCNupq ejoX9CLlC9rAEXH0PAiA/Cxtt0CJlMLMAiDehI+sI1iA3qotLfsGRqAAycj4GLt6 gRffUo+XukXTUuZU52V16Hub2ZYndctE5hv9eOGkaDqmTVN/xUuGizQ/fGqKVM0S EzgRJ2cUdsHtGoYTo0qo5Q+uWgRBsJVV7BjW08WY0L3pUIAu2xzv9kY/da/9EixN SEfOvAQ= -----END CERTIFICATE-----Generated at Wed Nov 5 03:47:13 2025 by rpki-client