$ rpki-client -vvf rpki.apnic.net/member_repository/A9164FD2/B94B4F7C0C3611EB85233121C4F9AE02/2FF4108A0C3911EB828BDC25C4F9AE02.roa File: 2FF4108A0C3911EB828BDC25C4F9AE02.roa (raw, json) Hash identifier: 4H/7tRgY+9ShgVfnL2F79sUIJ0/ruS7tEGMDyU0Q41E= Subject key identifier: 5A:B4:0C:7F:AE:0C:05:DB:E7:80:33:5B:D1:0A:AB:1B:77:CD:1B:DF Certificate issuer: /CN=A9164FD2/serialNumber=9378691D5A83CC026B8D1F232806008371BEDC04 Certificate serial: 07E2 Authority key identifier: 93:78:69:1D:5A:83:CC:02:6B:8D:1F:23:28:06:00:83:71:BE:DC:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k3hpHVqDzAJrjR8jKAYAg3G-3AQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164FD2/B94B4F7C0C3611EB85233121C4F9AE02/2FF4108A0C3911EB828BDC25C4F9AE02.roa Signing time: Tue 28 Oct 2025 21:10:49 +0000 ROA not before: Tue 28 Oct 2025 21:10:49 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 55720 IP address blocks: 103.9.51.0/24 maxlen: 24 103.81.162.0/24 maxlen: 24 103.195.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164FD2/B94B4F7C0C3611EB85233121C4F9AE02/k3hpHVqDzAJrjR8jKAYAg3G-3AQ.crl rsync://rpki.apnic.net/member_repository/A9164FD2/B94B4F7C0C3611EB85233121C4F9AE02/k3hpHVqDzAJrjR8jKAYAg3G-3AQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k3hpHVqDzAJrjR8jKAYAg3G-3AQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 21:07:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2018 (0x7e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164FD2, serialNumber=9378691D5A83CC026B8D1F232806008371BEDC04 Validity Not Before: Oct 28 21:10:49 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69013159-16c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:1f:70:fd:5e:cf:b0:fc:c0:d5:1d:f8:0d:74: 66:59:b0:7e:4c:85:08:a4:97:7f:a0:64:8f:ef:cd: 43:12:3a:0b:03:a5:45:66:09:0f:df:dc:87:2d:ea: 5f:7e:b5:f8:65:f6:8c:f6:6c:f2:e6:7b:1d:6c:1a: 0c:40:22:4a:cb:80:d2:19:38:7c:53:36:94:ff:3c: b9:d9:3f:76:24:7e:d2:2f:7c:0f:8e:3c:ad:a7:4f: bf:cc:1d:56:e8:ee:6d:c6:ca:58:be:61:e9:1a:ce: b6:a8:3d:4e:94:c4:be:af:58:72:79:59:cc:cf:14: 65:dc:f9:00:d0:52:99:3c:95:c1:c2:94:c9:37:a4: 7b:65:79:f3:9c:ac:69:85:a3:52:1b:4e:94:a2:1a: 75:4a:e2:9c:8a:eb:24:d8:20:f8:57:55:d2:41:e3: 81:7d:3e:49:b1:ef:98:61:98:43:2e:b1:65:77:e6: f1:86:6a:ee:ca:a2:2f:e9:15:08:ba:71:bd:87:03: b9:a7:5b:3a:e6:9c:d1:ee:5e:17:1f:ab:ba:01:6c: a3:5a:01:dd:a6:5a:e3:7a:b8:fe:88:26:92:04:f9: bd:dd:a3:96:7f:13:a6:3a:16:4b:49:c7:af:a6:48: e7:91:33:05:f3:d4:99:f1:15:13:81:47:a0:5a:d4: 08:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:B4:0C:7F:AE:0C:05:DB:E7:80:33:5B:D1:0A:AB:1B:77:CD:1B:DF X509v3 Authority Key Identifier: keyid:93:78:69:1D:5A:83:CC:02:6B:8D:1F:23:28:06:00:83:71:BE:DC:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164FD2/B94B4F7C0C3611EB85233121C4F9AE02/k3hpHVqDzAJrjR8jKAYAg3G-3AQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k3hpHVqDzAJrjR8jKAYAg3G-3AQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164FD2/B94B4F7C0C3611EB85233121C4F9AE02/2FF4108A0C3911EB828BDC25C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.9.51.0/24 103.81.162.0/24 103.195.143.0/24 Signature Algorithm: sha256WithRSAEncryption a1:4f:ca:64:c3:93:ca:23:33:7b:0b:1b:b1:39:9d:25:fd:03: 8c:07:82:07:cc:52:3d:1f:95:e0:6c:ef:d3:a3:6e:0f:b1:f2: 84:1e:aa:10:3d:d9:cf:b4:dc:e0:0f:f3:54:20:6e:d8:44:ad: 07:27:64:f4:ee:cb:4b:b7:7a:e0:2f:46:9f:df:d0:1b:8d:59: b6:14:09:60:54:9f:96:eb:92:a1:90:d9:63:36:60:f2:35:96: a5:d9:dc:3a:59:22:64:a6:3b:db:59:9a:1d:7b:81:38:10:08: 78:9a:34:a1:ff:c1:db:89:7c:d4:4f:d5:64:43:8f:dc:ed:46: 73:03:09:70:b2:66:7c:72:20:11:74:74:0d:b8:5f:25:a1:01: ce:57:fe:09:54:7f:d1:97:1d:a9:43:8b:5f:d6:ca:eb:62:b2: 4c:4f:9c:be:3e:d9:59:c4:43:d1:f8:55:5a:9f:81:88:83:9f: e0:0c:46:a0:00:15:f1:bc:ca:87:1e:d3:61:81:70:c2:29:1d: 37:ec:e3:e9:b8:d7:02:d5:b5:ff:56:48:29:3f:ff:fa:09:85: 6e:67:d8:2c:47:55:9c:46:e3:8b:df:77:81:12:d6:70:8a:26: 89:86:a7:9e:31:28:6d:7e:10:60:bf:2b:c8:f6:2f:b5:b3:25: 21:6a:f3:0f -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICB+IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjRGRDIxMTAvBgNVBAUTKDkzNzg2OTFENUE4M0NDMDI2QjhEMUYyMzI4MDYwMDgz NzFCRURDMDQwHhcNMjUxMDI4MjExMDQ5WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTAxMzE1OS0xNmMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4h9w/V7PsPzA1R34DXRmWbB+TIUIpJd/oGSP781DEjoLA6VFZgkP39yHLepf frX4ZfaM9mzy5nsdbBoMQCJKy4DSGTh8UzaU/zy52T92JH7SL3wPjjytp0+/zB1W 6O5txspYvmHpGs62qD1OlMS+r1hyeVnMzxRl3PkA0FKZPJXBwpTJN6R7ZXnznKxp haNSG06Uohp1SuKciusk2CD4V1XSQeOBfT5Jse+YYZhDLrFld+bxhmruyqIv6RUI unG9hwO5p1s65pzR7l4XH6u6AWyjWgHdplrjerj+iCaSBPm93aOWfxOmOhZLScev pkjnkTMF89SZ8RUTgUegWtQIewIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFFq0DH+u DAXb54AzW9EKqxt3zRvfMB8GA1UdIwQYMBaAFJN4aR1ag8wCa40fIygGAINxvtwE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NEZEMi9COTRCNEY3QzBD MzYxMUVCODUyMzMxMjFDNEY5QUUwMi9rM2hwSFZxRHpBSnJqUjhqS0FZQWczRy0z QVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2szaHBIVnFEekFKcmpSOGpLQVlBZzNHLTNBUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjRGRDIvQjk0QjRGN0MwQzM2MTFFQjg1MjMzMTIxQzRGOUFFMDIvMkZGNDEwOEEw QzM5MTFFQjgyOEJEQzI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnCTMDBABnUaIDBABnw48wDQYJKoZIhvcNAQELBQADggEB AKFPymTDk8ojM3sLG7E5nSX9A4wHggfMUj0fleBs79Ojbg+x8oQeqhA92c+03OAP 81QgbthErQcnZPTuy0u3euAvRp/f0BuNWbYUCWBUn5brkqGQ2WM2YPI1lqXZ3DpZ ImSmO9tZmh17gTgQCHiaNKH/wduJfNRP1WRDj9ztRnMDCXCyZnxyIBF0dA24XyWh Ac5X/glUf9GXHalDi1/WyutiskxPnL4+2VnEQ9H4VVqfgYiDn+AMRqAAFfG8yoce 02GBcMIpHTfs4+m41wLVtf9WSCk///oJhW5n2CxHVZxG44vfd4ES1nCKJomGp54x KG1+EGC/K8j2L7WzJSFq8w8= -----END CERTIFICATE-----Generated at Tue Nov 4 18:59:17 2025 by rpki-client