$ rpki-client -vvf rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/A2AF0622853711EFA09C892EC4F9AE02.roa File: A2AF0622853711EFA09C892EC4F9AE02.roa (raw, json) Hash identifier: 0gogJN1tvbfFuP+Y2TiW3yi7TRYFrhhWC/4sbA0VSAs= Subject key identifier: 24:0B:0F:B5:CD:1B:10:B6:B6:42:3C:EE:9F:63:A9:74:51:A7:0D:59 Certificate issuer: /CN=A9168BA2/serialNumber=CA62E438F98D8518D2F2A5D9F6765651E5ADA60E Certificate serial: 0B34 Authority key identifier: CA:62:E4:38:F9:8D:85:18:D2:F2:A5:D9:F6:76:56:51:E5:AD:A6:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/A2AF0622853711EFA09C892EC4F9AE02.roa Signing time: Tue 04 Nov 2025 19:38:28 +0000 ROA not before: Tue 04 Nov 2025 19:38:28 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 13335 IP address blocks: 103.143.32.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2868 (0xb34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168BA2, serialNumber=CA62E438F98D8518D2F2A5D9F6765651E5ADA60E Validity Not Before: Nov 4 19:38:28 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=690a5633-036e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:72:de:8e:ba:ac:cd:33:33:fd:74:bf:30:72: ed:b0:d9:1d:72:59:e7:dc:04:0b:ec:00:3c:12:b7: 3f:a5:78:fc:db:47:0a:7c:93:c8:1e:7b:93:27:d5: 59:d0:9d:c5:02:c7:03:38:de:ea:23:12:81:e7:45: fb:a3:cc:96:54:05:98:e4:f7:ef:e3:a7:ad:e0:f3: 12:45:be:10:4f:c7:a2:b3:79:3d:57:b3:3e:ee:1b: 9a:1b:3d:0f:b8:16:e8:de:a7:cc:6e:8f:a7:12:b3: bf:55:35:74:68:7c:f9:b0:4b:06:b3:63:12:27:3c: eb:21:4b:59:83:fe:a6:44:22:bf:f9:a3:89:08:1b: 4e:4d:86:82:a2:bd:64:81:50:b1:c3:ed:15:70:30: c2:91:18:21:64:8c:b7:08:da:49:fd:25:06:35:82: 72:a4:69:17:33:eb:26:b2:6e:01:ab:af:c8:dd:8c: 83:b1:00:4b:dd:7f:1f:a2:74:ea:bc:cf:7b:00:5e: e9:9b:8e:b8:b5:0f:7e:60:98:a9:d0:94:81:10:59: fe:a4:ef:b1:37:99:94:6d:90:91:b0:12:ac:2e:46: 13:55:ef:6d:11:a8:d5:ca:0c:64:f4:9d:6e:c1:3f: 0e:fe:98:5e:ac:a1:f2:b6:4c:2c:ab:23:a8:33:f2: 00:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:0B:0F:B5:CD:1B:10:B6:B6:42:3C:EE:9F:63:A9:74:51:A7:0D:59 X509v3 Authority Key Identifier: keyid:CA:62:E4:38:F9:8D:85:18:D2:F2:A5:D9:F6:76:56:51:E5:AD:A6:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/A2AF0622853711EFA09C892EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.143.32.0/23 Signature Algorithm: sha256WithRSAEncryption 0f:cb:c3:65:f6:2c:a1:a0:f8:3c:e5:b7:52:d4:2a:50:e2:b8: 65:e5:4e:3d:0b:69:64:24:1f:05:66:a9:31:0c:e2:3a:d9:e9: b1:3c:e0:fc:b9:3a:45:41:97:1a:ce:c7:a3:66:0b:13:62:b1: 1c:f4:f0:f7:94:ee:b6:47:05:72:33:25:32:f7:83:9e:ef:9c: 4c:6c:56:47:b5:f4:26:5c:d0:81:aa:a0:fa:18:fc:7a:19:02: 65:4a:80:59:ae:53:36:e5:87:8a:23:cd:0a:d7:36:25:6d:1a: be:2f:33:cb:af:59:6a:8b:14:fe:7a:d0:aa:92:04:ad:7f:dd: dd:01:57:04:8d:d6:d0:95:55:2c:26:4f:d8:f3:c2:f9:2c:79: 0e:ae:d6:39:7f:60:65:17:4d:4d:fc:90:93:bd:26:29:c4:ae: 92:1a:bb:d0:ae:a0:bd:bf:7f:98:9a:ef:70:8e:9d:02:fc:26: 21:e1:d6:b3:ab:ed:dc:58:96:a5:ca:53:c4:c3:be:03:9f:c9: 9c:fd:b2:8b:4b:20:81:89:13:44:11:29:01:fc:7f:21:57:51: 74:b0:af:c5:f2:c0:ab:2d:62:70:53:06:23:85:88:3b:94:e8: 1c:74:a3:ab:4f:94:a5:e8:77:f3:20:8f:78:c3:c9:83:fe:49: 54:65:6f:c6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCzQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCQTIxMTAvBgNVBAUTKENBNjJFNDM4Rjk4RDg1MThEMkYyQTVEOUY2NzY1NjUx RTVBREE2MEUwHhcNMjUxMTA0MTkzODI4WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTBhNTYzMy0wMzZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqHLejrqszTMz/XS/MHLtsNkdclnn3AQL7AA8Erc/pXj820cKfJPIHnuTJ9VZ 0J3FAscDON7qIxKB50X7o8yWVAWY5Pfv46et4PMSRb4QT8eis3k9V7M+7huaGz0P uBbo3qfMbo+nErO/VTV0aHz5sEsGs2MSJzzrIUtZg/6mRCK/+aOJCBtOTYaCor1k gVCxw+0VcDDCkRghZIy3CNpJ/SUGNYJypGkXM+smsm4Bq6/I3YyDsQBL3X8fonTq vM97AF7pm464tQ9+YJip0JSBEFn+pO+xN5mUbZCRsBKsLkYTVe9tEajVygxk9J1u wT8O/pherKHytkwsqyOoM/IASQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCQLD7XN GxC2tkI87p9jqXRRpw1ZMB8GA1UdIwQYMBaAFMpi5Dj5jYUY0vKl2fZ2VlHlraYO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEJBMi85OURGMzg2MjU0 QzQxMUVBODRGNEU3MkRDNEY5QUUwMi95bUxrT1BtTmhSalM4cVhaOW5aV1VlV3Rw ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ltTGtPUG1OaFJqUzhxWFo5blpXVWVXdHBnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjhCQTIvOTlERjM4NjI1NEM0MTFFQTg0RjRFNzJEQzRGOUFFMDIvQTJBRjA2MjI4 NTM3MTFFRkEwOUM4OTJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjyAwDQYJKoZIhvcNAQELBQADggEBAA/Lw2X2LKGg+Dzl t1LUKlDiuGXlTj0LaWQkHwVmqTEM4jrZ6bE84Py5OkVBlxrOx6NmCxNisRz08PeU 7rZHBXIzJTL3g57vnExsVke19CZc0IGqoPoY/HoZAmVKgFmuUzblh4ojzQrXNiVt Gr4vM8uvWWqLFP560KqSBK1/3d0BVwSN1tCVVSwmT9jzwvkseQ6u1jl/YGUXTU38 kJO9JinErpIau9CuoL2/f5ia73COnQL8JiHh1rOr7dxYlqXKU8TDvgOfyZz9sotL IIGJE0QRKQH8fyFXUXSwr8XywKstYnBTBiOFiDuU6Bx0o6tPlKXod/Mgj3jDyYP+ SVRlb8Y= -----END CERTIFICATE-----Generated at Wed Nov 5 05:11:15 2025 by rpki-client