$ rpki-client -vvf rpki.apnic.net/member_repository/A916E675/BBEB9FAEED5611EC9CC2804EC4F9AE02/B9FB709CED5C11EC8CD1DC69C4F9AE02.roa File: B9FB709CED5C11EC8CD1DC69C4F9AE02.roa (raw, json) Hash identifier: Y9BSTqQkCxXoGtQxDjaargnZRdlsbB9UoSJKO3fdE5g= Subject key identifier: 65:FC:F9:EB:68:84:34:06:02:30:54:13:AD:F3:66:60:FE:A3:6E:86 Certificate issuer: /CN=A916E675/serialNumber=9B0B51CB1CA37F68C27EC7571FE466105CC25E24 Certificate serial: 02E8 Authority key identifier: 9B:0B:51:CB:1C:A3:7F:68:C2:7E:C7:57:1F:E4:66:10:5C:C2:5E:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mwtRyxyjf2jCfsdXH-RmEFzCXiQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916E675/BBEB9FAEED5611EC9CC2804EC4F9AE02/B9FB709CED5C11EC8CD1DC69C4F9AE02.roa Signing time: Fri 25 Jul 2025 02:08:46 +0000 ROA not before: Fri 25 Jul 2025 02:08:46 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 139064 IP address blocks: 103.189.156.0/23 maxlen: 23 103.189.156.0/24 maxlen: 24 103.189.157.0/24 maxlen: 24 2001:df0:d3c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916E675/BBEB9FAEED5611EC9CC2804EC4F9AE02/mwtRyxyjf2jCfsdXH-RmEFzCXiQ.crl rsync://rpki.apnic.net/member_repository/A916E675/BBEB9FAEED5611EC9CC2804EC4F9AE02/mwtRyxyjf2jCfsdXH-RmEFzCXiQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mwtRyxyjf2jCfsdXH-RmEFzCXiQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:04:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 744 (0x2e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916E675, serialNumber=9B0B51CB1CA37F68C27EC7571FE466105CC25E24 Validity Not Before: Jul 25 02:08:46 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6882e72e-042b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:9c:6b:c6:77:bd:5b:f7:03:6c:21:5c:5e:f6: 04:f5:d7:32:c3:43:d9:02:95:84:05:a1:d0:2d:f9: cc:4a:4a:76:2b:5b:19:2c:59:a7:b4:c9:d1:2c:e5: 1d:75:a6:2d:5b:5e:e4:83:79:32:99:bd:ff:8b:e7: be:7c:8b:71:f9:d9:5e:cb:34:ea:bd:f4:83:c2:04: 81:78:b9:4c:57:2c:96:a9:9e:74:79:db:27:b8:1a: a9:74:13:cd:06:ae:36:50:7d:a8:c3:85:70:f7:2a: 7a:c1:15:24:f1:f5:16:71:3e:e4:c5:66:0c:5a:9b: 44:8f:10:12:74:72:81:7e:62:79:f2:18:b9:a4:d6: 11:dd:e5:07:88:0e:ae:3d:f0:a7:ce:db:6c:35:bc: e2:75:e1:61:70:ae:da:72:72:b1:f9:c3:7e:54:91: a0:b5:18:6d:90:80:22:08:e2:22:d6:f9:91:78:7f: 0f:2c:34:9e:a6:29:60:58:9b:80:a9:ee:27:5b:cf: c5:da:b1:b8:0d:51:c7:88:a6:4d:71:44:c0:69:c9: 5a:b3:5e:91:d6:af:cd:2f:a4:b9:f8:57:e9:6d:9f: f2:d9:49:31:ab:09:81:97:d4:d9:c7:bf:9b:9a:b8: 19:56:55:20:4d:84:13:e0:9a:c0:30:54:db:9b:72: 71:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:FC:F9:EB:68:84:34:06:02:30:54:13:AD:F3:66:60:FE:A3:6E:86 X509v3 Authority Key Identifier: keyid:9B:0B:51:CB:1C:A3:7F:68:C2:7E:C7:57:1F:E4:66:10:5C:C2:5E:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916E675/BBEB9FAEED5611EC9CC2804EC4F9AE02/mwtRyxyjf2jCfsdXH-RmEFzCXiQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mwtRyxyjf2jCfsdXH-RmEFzCXiQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E675/BBEB9FAEED5611EC9CC2804EC4F9AE02/B9FB709CED5C11EC8CD1DC69C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.189.156.0/23 IPv6: 2001:df0:d3c0::/48 Signature Algorithm: sha256WithRSAEncryption 47:12:0d:ba:95:d5:98:b5:a3:eb:96:59:c0:39:a9:6b:0a:08: 34:be:43:15:c1:0a:a3:f9:16:f2:db:ed:e4:df:0c:56:a2:ca: 5b:22:d6:79:0d:67:9b:39:80:01:0d:b5:3a:5a:8b:3c:97:30: 0f:33:21:a1:14:23:83:79:20:33:9b:a2:dd:a4:b2:5d:8b:37: 8a:de:a0:55:3b:e2:95:36:61:c2:3d:6e:9b:0b:60:17:c0:3b: 09:99:ea:05:95:6e:2f:32:9b:b0:87:59:17:b0:05:9a:4f:40: 44:96:50:da:ea:96:29:df:0c:0f:7e:c7:68:43:d0:8c:25:6b: c9:e7:6d:60:36:52:3e:05:99:27:6c:54:f1:a7:c7:54:3b:d2: 19:84:5e:65:3f:87:6e:1f:f0:fb:e1:e8:81:f2:9d:30:1b:3c: 23:6e:6a:ef:eb:2c:e4:9e:d6:af:28:cc:78:17:2f:6a:07:aa: 55:db:0d:74:4c:ab:b1:4d:d9:11:2e:0a:ac:af:ec:c4:98:84: 7e:c9:4e:53:a8:50:dd:38:54:c1:28:16:bd:15:36:b2:b4:0e: f0:84:57:d0:70:ad:a6:7b:d2:cd:a4:06:c8:fd:ca:d5:54:54: c8:29:c1:4c:3b:23:31:90:23:63:00:cc:e5:e9:3a:bc:ba:60: 5d:29:93:b1 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAugwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkU2NzUxMTAvBgNVBAUTKDlCMEI1MUNCMUNBMzdGNjhDMjdFQzc1NzFGRTQ2NjEw NUNDMjVFMjQwHhcNMjUwNzI1MDIwODQ2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODgyZTcyZS0wNDJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtpxrxne9W/cDbCFcXvYE9dcyw0PZApWEBaHQLfnMSkp2K1sZLFmntMnRLOUd daYtW17kg3kymb3/i+e+fItx+dleyzTqvfSDwgSBeLlMVyyWqZ50edsnuBqpdBPN Bq42UH2ow4Vw9yp6wRUk8fUWcT7kxWYMWptEjxASdHKBfmJ58hi5pNYR3eUHiA6u PfCnzttsNbzideFhcK7acnKx+cN+VJGgtRhtkIAiCOIi1vmReH8PLDSepilgWJuA qe4nW8/F2rG4DVHHiKZNcUTAaclas16R1q/NL6S5+FfpbZ/y2UkxqwmBl9TZx7+b mrgZVlUgTYQT4JrAMFTbm3Jx6QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGX8+eto hDQGAjBUE63zZmD+o26GMB8GA1UdIwQYMBaAFJsLUcsco39own7HVx/kZhBcwl4k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RTY3NS9CQkVCOUZBRUVE NTYxMUVDOUNDMjgwNEVDNEY5QUUwMi9td3RSeXh5amYyakNmc2RYSC1SbUVGekNY aVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL213dFJ5eHlqZjJqQ2ZzZFhILVJtRUZ6Q1hpUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkU2NzUvQkJFQjlGQUVFRDU2MTFFQzlDQzI4MDRFQzRGOUFFMDIvQjlGQjcwOUNF RDVDMTFFQzhDRDFEQzY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnvZwwDwQCAAIwCQMHACABDfDTwDANBgkqhkiG9w0BAQsF AAOCAQEARxINupXVmLWj65ZZwDmpawoINL5DFcEKo/kW8tvt5N8MVqLKWyLWeQ1n mzmAAQ21OlqLPJcwDzMhoRQjg3kgM5ui3aSyXYs3it6gVTvilTZhwj1umwtgF8A7 CZnqBZVuLzKbsIdZF7AFmk9ARJZQ2uqWKd8MD37HaEPQjCVryedtYDZSPgWZJ2xU 8afHVDvSGYReZT+Hbh/w++HogfKdMBs8I25q7+ss5J7WryjMeBcvageqVdsNdEyr sU3ZES4KrK/sxJiEfslOU6hQ3ThUwSgWvRU2srQO8IRX0HCtpnvSzaQGyP3K1VRU yCnBTDsjMZAjYwDM5ek6vLpgXSmTsQ== -----END CERTIFICATE-----Generated at Wed Nov 5 01:38:12 2025 by rpki-client