$ rpki-client -vvf rpki.apnic.net/member_repository/A915C365/09FB518A5E4511EDB517D22AC4F9AE02/83B6F66C5E4711EDA05F092CC4F9AE02.roa File: 83B6F66C5E4711EDA05F092CC4F9AE02.roa (raw, json) Hash identifier: zueR7y6doRSR+ARSdcRZoyLuNrwU11AjdtpUc/YoDZ0= Subject key identifier: 26:10:EB:2B:26:BC:E6:B2:21:54:25:3B:3C:B1:66:A7:5D:33:FA:BC Certificate issuer: /CN=A915C365/serialNumber=A628034401C65CF46975DE8C9B4672F85E00FE9B Certificate serial: 0238 Authority key identifier: A6:28:03:44:01:C6:5C:F4:69:75:DE:8C:9B:46:72:F8:5E:00:FE:9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pigDRAHGXPRpdd6Mm0Zy-F4A_ps.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C365/09FB518A5E4511EDB517D22AC4F9AE02/83B6F66C5E4711EDA05F092CC4F9AE02.roa Signing time: Wed 05 Nov 2025 02:16:34 +0000 ROA not before: Wed 05 Nov 2025 02:16:34 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 133090 IP address blocks: 27.123.20.0/24 maxlen: 24 27.123.21.0/24 maxlen: 24 27.123.22.0/24 maxlen: 24 27.123.23.0/24 maxlen: 24 103.153.144.0/24 maxlen: 24 103.153.145.0/24 maxlen: 24 2401:16c0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C365/09FB518A5E4511EDB517D22AC4F9AE02/pigDRAHGXPRpdd6Mm0Zy-F4A_ps.crl rsync://rpki.apnic.net/member_repository/A915C365/09FB518A5E4511EDB517D22AC4F9AE02/pigDRAHGXPRpdd6Mm0Zy-F4A_ps.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pigDRAHGXPRpdd6Mm0Zy-F4A_ps.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:16:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 568 (0x238) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C365, serialNumber=A628034401C65CF46975DE8C9B4672F85E00FE9B Validity Not Before: Nov 5 02:16:34 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=690ab381-4bef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:e3:43:58:77:ab:bf:27:2d:39:0d:39:1b:6a: eb:31:c7:8e:f1:db:69:04:22:73:59:82:a3:a9:b2: 98:57:ed:00:4f:06:56:10:6d:3e:61:fd:df:75:89: ae:60:58:59:63:6f:0f:7d:f8:7b:77:f0:0c:ac:6f: d9:f6:df:12:09:6d:48:27:45:20:bc:c5:af:c5:5a: 3c:b3:23:d4:ff:30:f6:d5:ca:95:02:97:53:bb:d7: d0:d6:a8:57:c6:88:75:9e:86:3e:de:7a:cc:f8:2b: 1c:63:cb:74:df:f2:95:c6:b1:c3:86:3e:df:db:26: 83:5c:78:a1:9e:98:12:29:9c:5f:f7:74:f2:e5:09: c2:fe:d4:f3:8a:30:d1:ee:9e:27:f8:71:64:ca:6d: d1:f1:ff:70:ea:75:d4:08:d0:80:8f:7e:f2:5c:2c: 0e:1f:f1:5b:17:2c:67:ad:ba:16:0b:7b:6f:6e:a9: ea:71:1a:a2:02:e7:b3:d1:fa:80:a6:e8:ee:9b:3d: 20:26:b2:16:66:8f:da:2b:cf:00:f9:b3:e5:cf:86: d8:0b:fc:d4:05:22:6d:d7:f8:43:a3:dd:f4:f5:41: 90:a1:ac:b1:00:bb:8b:7c:27:79:42:eb:37:b8:7d: ac:de:d8:da:fe:f9:e4:4e:7a:73:72:fe:5c:dc:1e: 60:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:10:EB:2B:26:BC:E6:B2:21:54:25:3B:3C:B1:66:A7:5D:33:FA:BC X509v3 Authority Key Identifier: keyid:A6:28:03:44:01:C6:5C:F4:69:75:DE:8C:9B:46:72:F8:5E:00:FE:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C365/09FB518A5E4511EDB517D22AC4F9AE02/pigDRAHGXPRpdd6Mm0Zy-F4A_ps.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pigDRAHGXPRpdd6Mm0Zy-F4A_ps.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C365/09FB518A5E4511EDB517D22AC4F9AE02/83B6F66C5E4711EDA05F092CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.123.20.0/22 103.153.144.0/23 IPv6: 2401:16c0::/32 Signature Algorithm: sha256WithRSAEncryption b6:26:2c:95:60:dc:84:65:6e:3b:61:6f:41:46:44:ab:34:24: dd:9c:65:83:da:9e:64:e1:15:a8:5d:aa:e9:6e:62:58:75:ad: 28:1a:2e:9f:7e:be:1e:97:70:4b:49:7e:79:4e:de:25:70:1f: 93:3e:6a:01:0e:c9:59:25:44:18:e1:ee:39:3c:57:11:73:3c: 96:fe:bd:2d:a2:31:bf:37:46:f6:86:b3:83:4f:f3:91:f8:3f: 9c:d6:5b:f1:24:ff:5a:52:9d:96:57:dd:df:bb:46:46:ca:cf: 74:09:16:76:31:d1:c5:45:3e:92:f9:08:c5:a1:7f:a0:59:8c: 19:fa:79:52:9d:11:36:e0:40:13:73:1b:43:4c:b9:28:5e:d6: cd:16:25:f4:af:c5:b6:c4:b3:22:cd:6a:6e:f1:ba:d2:60:33: 5e:da:8e:83:66:29:a5:8d:ce:e7:c9:ef:5f:c4:9b:60:2c:4f: 62:0d:d0:03:c8:d3:b6:08:a0:0a:74:67:22:96:4f:9a:0b:56: 02:0f:40:ee:0c:fc:76:17:42:06:0b:fc:70:cc:20:aa:98:b8: 09:d0:bc:39:04:8a:5e:57:73:44:46:f0:96:d2:90:25:e1:ac: ad:99:43:7c:d8:2a:f0:74:de:15:db:49:68:bd:85:57:b3:67: 5c:03:17:1b -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICAjgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUMzNjUxMTAvBgNVBAUTKEE2MjgwMzQ0MDFDNjVDRjQ2OTc1REU4QzlCNDY3MkY4 NUUwMEZFOUIwHhcNMjUxMTA1MDIxNjM0WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTBhYjM4MS00YmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoONDWHervyctOQ05G2rrMceO8dtpBCJzWYKjqbKYV+0ATwZWEG0+Yf3fdYmu YFhZY28Pffh7d/AMrG/Z9t8SCW1IJ0UgvMWvxVo8syPU/zD21cqVApdTu9fQ1qhX xoh1noY+3nrM+CscY8t03/KVxrHDhj7f2yaDXHihnpgSKZxf93Ty5QnC/tTzijDR 7p4n+HFkym3R8f9w6nXUCNCAj37yXCwOH/FbFyxnrboWC3tvbqnqcRqiAuez0fqA pujumz0gJrIWZo/aK88A+bPlz4bYC/zUBSJt1/hDo9309UGQoayxALuLfCd5Qus3 uH2s3tja/vnkTnpzcv5c3B5gzwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFCYQ6ysm vOayIVQlOzyxZqddM/q8MB8GA1UdIwQYMBaAFKYoA0QBxlz0aXXejJtGcvheAP6b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzM2NS8wOUZCNTE4QTVF NDUxMUVEQjUxN0QyMkFDNEY5QUUwMi9waWdEUkFIR1hQUnBkZDZNbTBaeS1GNEFf cHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BpZ0RSQUhHWFBScGRkNk1tMFp5LUY0QV9wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUMzNjUvMDlGQjUxOEE1RTQ1MTFFREI1MTdEMjJBQzRGOUFFMDIvODNCNkY2NkM1 RTQ3MTFFREEwNUYwOTJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAIbexQDBAFnmZAwDQQCAAIwBwMFACQBFsAwDQYJKoZIhvcN AQELBQADggEBALYmLJVg3IRlbjthb0FGRKs0JN2cZYPanmThFahdquluYlh1rSga Lp9+vh6XcEtJfnlO3iVwH5M+agEOyVklRBjh7jk8VxFzPJb+vS2iMb83RvaGs4NP 85H4P5zWW/Ek/1pSnZZX3d+7RkbKz3QJFnYx0cVFPpL5CMWhf6BZjBn6eVKdETbg QBNzG0NMuShe1s0WJfSvxbbEsyLNam7xutJgM17ajoNmKaWNzufJ71/Em2AsT2IN 0API07YIoAp0ZyKWT5oLVgIPQO4M/HYXQgYL/HDMIKqYuAnQvDkEil5Xc0RG8JbS kCXhrK2ZQ3zYKvB03hXbSWi9hVezZ1wDFxs= -----END CERTIFICATE-----Generated at Wed Nov 5 09:55:29 2025 by rpki-client