$ rpki-client -vvf rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/BA7B024C04D811EDBE98F982C4F9AE02.roa File: BA7B024C04D811EDBE98F982C4F9AE02.roa (raw, json) Hash identifier: ABo3IcXyMpH31SOaTDFFqnAvB34b3ThGpsgseByRB6g= Subject key identifier: A2:0E:FB:1A:8E:27:2B:5B:F1:A7:6E:7A:C9:3D:0B:10:2E:7D:31:04 Certificate issuer: /CN=A9168BA2/serialNumber=CA62E438F98D8518D2F2A5D9F6765651E5ADA60E Certificate serial: 0B35 Authority key identifier: CA:62:E4:38:F9:8D:85:18:D2:F2:A5:D9:F6:76:56:51:E5:AD:A6:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/BA7B024C04D811EDBE98F982C4F9AE02.roa Signing time: Tue 04 Nov 2025 19:38:28 +0000 ROA not before: Tue 04 Nov 2025 19:38:28 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 139648 IP address blocks: 103.143.32.0/23 maxlen: 23 103.143.32.0/24 maxlen: 24 103.143.33.0/24 maxlen: 24 2001:df1:6c80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2869 (0xb35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168BA2, serialNumber=CA62E438F98D8518D2F2A5D9F6765651E5ADA60E Validity Not Before: Nov 4 19:38:28 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=690a5634-6046 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:e9:f2:36:a1:57:bc:b8:2c:b9:21:77:fc:a6: 42:33:ca:4b:7c:58:d2:f1:3a:54:75:be:bb:69:78: db:7d:71:97:76:b5:4e:e3:91:55:cc:2f:0c:c6:b5: bd:65:97:0b:d3:23:71:8d:60:3a:d6:a3:26:8d:5b: 8f:c4:8e:9c:58:18:2c:9f:f5:a1:97:8b:5b:9c:07: 2e:98:76:32:68:96:24:87:8b:1c:4c:34:0d:34:11: 0a:46:30:e4:ae:c9:d2:0a:e4:4c:f1:0c:55:8f:c8: 5b:a9:49:e5:15:19:a2:8d:cc:30:5b:ad:b9:9a:6a: 4c:70:47:c7:06:27:c7:5a:c1:f8:8b:2a:76:ea:f9: ed:f1:0a:4c:b3:8c:0e:b9:54:d8:26:8a:1d:7c:4d: a1:74:e7:10:8c:c6:b6:53:96:6a:33:48:be:5c:63: f4:ff:61:97:6b:29:11:a6:0b:2b:a4:a0:8e:b1:96: 3d:ac:4a:68:70:5b:b9:62:61:be:2c:b2:6c:c8:32: 6d:a4:ed:81:92:ab:0c:c8:d7:b9:89:ce:45:65:15: 66:49:75:ba:21:ae:fe:3d:28:21:ba:b5:0c:ac:60: 8c:27:42:03:6f:49:86:95:bf:a5:a5:b4:49:93:15: 39:78:54:0b:e9:fc:7b:75:e3:dd:6a:ef:0f:48:16: 07:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:0E:FB:1A:8E:27:2B:5B:F1:A7:6E:7A:C9:3D:0B:10:2E:7D:31:04 X509v3 Authority Key Identifier: keyid:CA:62:E4:38:F9:8D:85:18:D2:F2:A5:D9:F6:76:56:51:E5:AD:A6:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/BA7B024C04D811EDBE98F982C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.143.32.0/23 IPv6: 2001:df1:6c80::/48 Signature Algorithm: sha256WithRSAEncryption be:be:4f:8b:50:ce:a5:e4:86:7c:60:b1:c3:8e:4c:27:88:af: 38:2f:d3:60:40:4a:ab:8a:4c:b1:f5:09:95:42:9f:02:db:5e: 67:ff:c4:9f:35:56:79:5a:d6:4c:50:c4:4a:49:90:6f:8c:ff: a8:31:26:31:4b:32:2b:86:77:79:a4:73:ed:1f:98:8f:7c:89: c7:6e:c2:87:10:ff:f0:d5:ca:89:b5:74:1c:22:5b:fe:ce:a7: bf:21:07:26:bc:2d:46:9f:7c:52:34:30:b1:71:83:aa:be:85: 23:5f:5d:ab:16:6b:57:74:95:d7:68:5c:37:da:82:51:f8:01: 30:b4:20:d2:15:01:97:6f:e0:69:6e:c5:64:a5:5e:ce:4a:87: 01:63:25:dd:4c:ae:af:2b:b7:83:ed:86:63:76:0f:e2:f1:a3: e2:20:6a:cd:0a:92:e1:f4:0b:69:2d:01:5b:8e:65:09:31:5a: 1a:43:02:36:2c:7f:69:77:8d:a1:e8:dd:9f:a2:d1:eb:0f:40: dc:76:13:16:fd:d0:09:4f:87:8b:56:fc:ec:a3:e1:c3:1c:d4: cf:9b:28:89:7f:5a:40:b8:5f:9b:9a:42:e3:e3:ea:b2:67:0b: 8d:8c:33:18:5e:bf:5a:e6:9d:5d:30:14:67:63:32:5b:9b:d4: 26:f9:c4:52 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCzUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCQTIxMTAvBgNVBAUTKENBNjJFNDM4Rjk4RDg1MThEMkYyQTVEOUY2NzY1NjUx RTVBREE2MEUwHhcNMjUxMTA0MTkzODI4WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTBhNTYzNC02MDQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3unyNqFXvLgsuSF3/KZCM8pLfFjS8TpUdb67aXjbfXGXdrVO45FVzC8MxrW9 ZZcL0yNxjWA61qMmjVuPxI6cWBgsn/Whl4tbnAcumHYyaJYkh4scTDQNNBEKRjDk rsnSCuRM8QxVj8hbqUnlFRmijcwwW625mmpMcEfHBifHWsH4iyp26vnt8QpMs4wO uVTYJoodfE2hdOcQjMa2U5ZqM0i+XGP0/2GXaykRpgsrpKCOsZY9rEpocFu5YmG+ LLJsyDJtpO2BkqsMyNe5ic5FZRVmSXW6Ia7+PSghurUMrGCMJ0IDb0mGlb+lpbRJ kxU5eFQL6fx7dePdau8PSBYHMwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFKIO+xqO Jytb8aduesk9CxAufTEEMB8GA1UdIwQYMBaAFMpi5Dj5jYUY0vKl2fZ2VlHlraYO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEJBMi85OURGMzg2MjU0 QzQxMUVBODRGNEU3MkRDNEY5QUUwMi95bUxrT1BtTmhSalM4cVhaOW5aV1VlV3Rw ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ltTGtPUG1OaFJqUzhxWFo5blpXVWVXdHBnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjhCQTIvOTlERjM4NjI1NEM0MTFFQTg0RjRFNzJEQzRGOUFFMDIvQkE3QjAyNEMw NEQ4MTFFREJFOThGOTgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnjyAwDwQCAAIwCQMHACABDfFsgDANBgkqhkiG9w0BAQsF AAOCAQEAvr5Pi1DOpeSGfGCxw45MJ4ivOC/TYEBKq4pMsfUJlUKfAtteZ//EnzVW eVrWTFDESkmQb4z/qDEmMUsyK4Z3eaRz7R+Yj3yJx27ChxD/8NXKibV0HCJb/s6n vyEHJrwtRp98UjQwsXGDqr6FI19dqxZrV3SV12hcN9qCUfgBMLQg0hUBl2/gaW7F ZKVezkqHAWMl3Uyuryu3g+2GY3YP4vGj4iBqzQqS4fQLaS0BW45lCTFaGkMCNix/ aXeNoejdn6LR6w9A3HYTFv3QCU+Hi1b87KPhwxzUz5soiX9aQLhfm5pC4+PqsmcL jYwzGF6/WuadXTAUZ2MyW5vUJvnEUg== -----END CERTIFICATE-----Generated at Wed Nov 5 04:46:39 2025 by rpki-client