$ rpki-client -vvf rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/3263B6905E7311EB8B143F3BC4F9AE02.roa File: 3263B6905E7311EB8B143F3BC4F9AE02.roa (raw, json) Hash identifier: gBF4oLr31oWPGA7GjogpSpsWc/XlGgo5urUgCfPiOZQ= Subject key identifier: 35:D2:AE:A5:DD:25:AC:05:76:15:DC:0C:83:29:D4:F3:51:BF:70:4B Certificate issuer: /CN=A9160438/serialNumber=B1C347456E54A4662E1097ECD334AC11C02CE00B Certificate serial: 06E7 Authority key identifier: B1:C3:47:45:6E:54:A4:66:2E:10:97:EC:D3:34:AC:11:C0:2C:E0:0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/3263B6905E7311EB8B143F3BC4F9AE02.roa Signing time: Sat 12 Jul 2025 22:33:16 +0000 ROA not before: Sat 12 Jul 2025 22:33:16 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 136523 IP address blocks: 43.254.133.0/24 maxlen: 24 43.254.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.crl rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1767 (0x6e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160438, serialNumber=B1C347456E54A4662E1097ECD334AC11C02CE00B Validity Not Before: Jul 12 22:33:16 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6872e2ac-4c5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:e5:48:3e:87:20:ee:75:4d:d7:2e:b2:6b:e3: a6:66:72:0a:ed:2b:f0:d6:84:04:32:2b:dc:ad:51: 03:13:34:b7:57:2d:cd:34:19:f2:1b:5d:f0:b5:20: 46:23:05:2a:a1:04:60:85:0e:3d:3d:ed:d5:98:a9: 12:d1:3f:63:b4:f4:7a:8a:a9:38:d0:be:9c:7f:b2: a9:44:15:10:e0:4e:d5:e0:e8:79:ba:b2:c8:86:91: 95:7c:b3:7d:e6:97:87:6d:21:b6:47:db:bd:6b:df: 56:dc:5a:69:bb:25:4c:87:3e:d2:74:ae:42:12:2a: 3e:dd:ed:92:6c:6c:13:54:26:da:55:b0:6b:43:c5: 04:af:29:48:ad:7b:3b:45:cc:bd:ef:36:e6:8d:05: f9:c4:95:aa:f3:92:07:3c:b4:83:91:57:98:02:7b: c6:94:e4:79:1d:03:c0:10:fd:49:69:47:13:0d:57: cd:ac:c3:78:c9:1e:e2:a5:e0:87:44:dd:b9:ec:80: 63:0a:ea:65:40:19:c3:09:ce:ab:d5:36:ed:b4:7b: 26:ae:b8:e4:6a:d6:37:e3:e0:89:d8:a7:1e:ad:b6: a6:12:6b:dd:20:6e:6f:1e:0f:d1:c6:fa:a7:6a:58: 7b:8c:35:2c:96:31:e7:43:7c:c1:f2:51:78:8c:5d: 3d:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:D2:AE:A5:DD:25:AC:05:76:15:DC:0C:83:29:D4:F3:51:BF:70:4B X509v3 Authority Key Identifier: keyid:B1:C3:47:45:6E:54:A4:66:2E:10:97:EC:D3:34:AC:11:C0:2C:E0:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/3263B6905E7311EB8B143F3BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.254.133.0/24 43.254.135.0/24 Signature Algorithm: sha256WithRSAEncryption a9:cd:5d:bf:9f:1c:6d:cf:36:46:a1:45:5c:49:bd:15:dc:27: 53:32:03:b3:42:c4:7e:11:22:cb:5e:ad:f1:1a:4c:4b:91:be: ff:32:d1:d4:d9:aa:50:c7:00:64:74:83:14:8e:12:fb:86:40: 74:d6:48:e5:26:b0:aa:09:76:f5:75:11:b3:52:95:86:46:7d: 0f:c1:cb:ae:b1:e5:ba:94:32:f3:b3:f7:1f:11:3c:2e:34:29: 63:f5:a3:c9:49:a0:7c:30:ed:74:66:c4:e5:8e:00:86:8e:9e: 09:5f:97:eb:de:d0:31:41:9b:52:4f:cf:a2:a4:a3:88:00:02: 8b:a2:2a:95:b8:0f:54:69:01:6b:a4:b8:cf:00:29:b5:8e:34: 49:16:25:32:47:44:6e:ef:74:f9:bb:93:77:f0:42:25:47:03: 70:a2:d8:98:93:d1:69:20:21:37:fe:4d:fa:ab:e9:d7:95:7b: ca:da:5e:65:5f:b1:72:94:a5:8d:dd:07:1e:d5:eb:02:6f:ad: 73:91:fe:c9:6b:dc:23:b2:4b:cc:4a:36:e0:7c:07:bd:28:72: b9:2d:fa:3b:57:a3:c7:d1:5a:95:d2:b8:ae:ef:d1:3a:d9:84: e9:01:36:85:c4:bd:ea:70:5d:f5:51:d9:23:fc:8a:b2:d8:07: 78:d8:28:30 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBucwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA0MzgxMTAvBgNVBAUTKEIxQzM0NzQ1NkU1NEE0NjYyRTEwOTdFQ0QzMzRBQzEx QzAyQ0UwMEIwHhcNMjUwNzEyMjIzMzE2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODcyZTJhYy00YzVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1+VIPocg7nVN1y6ya+OmZnIK7Svw1oQEMivcrVEDEzS3Vy3NNBnyG13wtSBG IwUqoQRghQ49Pe3VmKkS0T9jtPR6iqk40L6cf7KpRBUQ4E7V4Oh5urLIhpGVfLN9 5peHbSG2R9u9a99W3FppuyVMhz7SdK5CEio+3e2SbGwTVCbaVbBrQ8UErylIrXs7 Rcy97zbmjQX5xJWq85IHPLSDkVeYAnvGlOR5HQPAEP1JaUcTDVfNrMN4yR7ipeCH RN257IBjCuplQBnDCc6r1TbttHsmrrjkatY34+CJ2KcerbamEmvdIG5vHg/Rxvqn alh7jDUsljHnQ3zB8lF4jF09zwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDXSrqXd JawFdhXcDIMp1PNRv3BLMB8GA1UdIwQYMBaAFLHDR0VuVKRmLhCX7NM0rBHALOAL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDQzOC9DNDUwOUQ1NDVF NzExMUVCODQ5QzMzM0FDNEY5QUUwMi9zY05IUlc1VXBHWXVFSmZzMHpTc0VjQXM0 QXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NjTkhSVzVVcEdZdUVKZnMwelNzRWNBczRBcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjA0MzgvQzQ1MDlENTQ1RTcxMTFFQjg0OUMzMzNBQzRGOUFFMDIvMzI2M0I2OTA1 RTczMTFFQjhCMTQzRjNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAr/oUDBAAr/ocwDQYJKoZIhvcNAQELBQADggEBAKnNXb+f HG3PNkahRVxJvRXcJ1MyA7NCxH4RIsterfEaTEuRvv8y0dTZqlDHAGR0gxSOEvuG QHTWSOUmsKoJdvV1EbNSlYZGfQ/By66x5bqUMvOz9x8RPC40KWP1o8lJoHww7XRm xOWOAIaOnglfl+ve0DFBm1JPz6Kko4gAAouiKpW4D1RpAWukuM8AKbWONEkWJTJH RG7vdPm7k3fwQiVHA3Ci2JiT0WkgITf+Tfqr6deVe8raXmVfsXKUpY3dBx7V6wJv rXOR/slr3COyS8xKNuB8B70ocrkt+jtXo8fRWpXSuK7v0TrZhOkBNoXEvepwXfVR 2SP8irLYB3jYKDA= -----END CERTIFICATE-----Generated at Wed Nov 5 19:47:35 2025 by rpki-client