$ rpki-client -vvf rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/B922DB22E84211EA918B8F09C4F9AE02.roa File: B922DB22E84211EA918B8F09C4F9AE02.roa (raw, json) Hash identifier: WrORF911HLcFuZdH0HRCb0Ilepojo6I2DwL+ZjMpcO0= Subject key identifier: 56:9F:A5:C6:86:1A:05:9A:8D:02:81:AF:5E:C2:17:75:0E:F8:A0:FB Certificate issuer: /CN=A9191DF4/serialNumber=DA47042E376A9473FC0EDFC8445739DD1328AE0E Certificate serial: 0E05 Authority key identifier: DA:47:04:2E:37:6A:94:73:FC:0E:DF:C8:44:57:39:DD:13:28:AE:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcELjdqlHP8Dt_IRFc53RMorg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/B922DB22E84211EA918B8F09C4F9AE02.roa Signing time: Thu 22 May 2025 18:21:09 +0000 ROA not before: Thu 22 May 2025 18:21:09 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 132757 IP address blocks: 103.215.224.0/22 maxlen: 24 157.119.104.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.crl rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcELjdqlHP8Dt_IRFc53RMorg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Nov 2025 17:08:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3589 (0xe05) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191DF4, serialNumber=DA47042E376A9473FC0EDFC8445739DD1328AE0E Validity Not Before: May 22 18:21:09 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f6b14-e4ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:58:f0:71:a1:67:26:98:ab:05:44:11:ae:f3: 3b:5a:a9:73:f1:76:57:52:80:8a:e0:b2:1f:14:ff: 5a:45:a1:27:97:17:b7:aa:1d:89:a2:e8:f0:47:2f: 81:e3:91:2e:94:87:04:a0:fe:4a:d1:59:83:4d:71: 5e:5f:98:ab:e5:83:d6:b6:fa:da:ba:20:07:be:d0: 29:48:74:ef:22:9d:15:4b:0d:4b:10:55:f1:b3:13: 5a:d6:b5:dd:2c:18:83:5b:37:b5:0d:2e:34:a7:78: a5:2e:e6:95:1a:38:ec:8d:e3:29:d4:0a:58:66:65: ea:9e:be:1c:06:e3:24:20:9e:89:5d:9b:c9:d1:4e: e4:02:dd:12:55:e3:12:44:17:f6:01:d8:fa:91:3e: a0:2c:35:6d:15:fc:9f:b1:c1:57:b8:63:02:55:56: 18:cd:97:fe:49:a6:5c:aa:df:0d:3f:62:ec:81:c2: 72:19:80:89:5c:4d:68:29:47:ca:91:61:40:a6:4f: 70:67:0f:b6:a1:6d:5a:86:66:22:37:b6:a7:1e:2a: a7:e9:38:c9:f4:88:2a:53:5f:de:d3:53:7c:3c:49: d4:7b:50:74:14:a0:3d:53:e2:75:10:0e:ae:b9:7d: 05:95:ea:58:1c:3a:6c:af:43:50:da:b3:46:f7:5f: 30:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:9F:A5:C6:86:1A:05:9A:8D:02:81:AF:5E:C2:17:75:0E:F8:A0:FB X509v3 Authority Key Identifier: keyid:DA:47:04:2E:37:6A:94:73:FC:0E:DF:C8:44:57:39:DD:13:28:AE:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/2kcELjdqlHP8Dt_IRFc53RMorg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcELjdqlHP8Dt_IRFc53RMorg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191DF4/F41D1C18B38E11E986282B73C4F9AE02/B922DB22E84211EA918B8F09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.215.224.0/22 157.119.104.0/22 Signature Algorithm: sha256WithRSAEncryption 9c:13:2c:ad:e4:f7:a4:e8:e0:c1:74:85:29:ad:25:06:9c:77: d3:70:99:ce:89:9b:e0:2a:18:01:d6:f1:a7:dd:6b:0b:93:4d: 94:e4:91:8a:e6:20:8e:38:e4:5d:ad:51:50:79:2c:ab:cc:57: 76:59:1a:12:8d:78:22:09:d6:e3:2a:7a:e5:96:d0:f8:56:63: ea:19:00:f6:8a:dc:95:67:c7:9d:59:e3:20:a5:22:a1:31:2e: df:32:fa:00:c7:92:e4:72:b1:1c:4d:0c:d5:66:8b:cf:a2:d4: 83:e9:52:c4:32:56:32:a7:de:6a:b7:8b:75:b5:99:37:a6:6a: 64:d6:a4:f1:d4:5f:90:cf:21:37:a3:da:6f:bd:a8:79:e6:cb: 2b:3e:18:9b:f9:4a:80:a6:8b:e3:9b:94:f2:d7:53:d0:51:7c: 8f:86:e8:4e:16:75:ab:8c:55:06:fe:8a:bf:2e:94:3b:1a:75: 8a:03:18:ca:b4:73:5d:20:e9:89:bf:bd:90:9b:5f:18:ea:25: 35:16:bd:c3:a5:f5:ff:4e:d7:8d:44:69:bd:c3:ff:05:b0:5b: 6e:c0:e5:c2:d0:7e:2b:46:7d:d8:ae:09:02:76:b7:f9:a5:fb: 90:66:ce:9b:f1:d9:f9:b3:88:f5:bf:17:38:cb:79:d9:a1:8c: 96:9b:0b:52 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDgUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFERjQxMTAvBgNVBAUTKERBNDcwNDJFMzc2QTk0NzNGQzBFREZDODQ0NTczOURE MTMyOEFFMEUwHhcNMjUwNTIyMTgyMTA5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmNmIxNC1lNGFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoVjwcaFnJpirBUQRrvM7Wqlz8XZXUoCK4LIfFP9aRaEnlxe3qh2JoujwRy+B 45EulIcEoP5K0VmDTXFeX5ir5YPWtvrauiAHvtApSHTvIp0VSw1LEFXxsxNa1rXd LBiDWze1DS40p3ilLuaVGjjsjeMp1ApYZmXqnr4cBuMkIJ6JXZvJ0U7kAt0SVeMS RBf2Adj6kT6gLDVtFfyfscFXuGMCVVYYzZf+SaZcqt8NP2LsgcJyGYCJXE1oKUfK kWFApk9wZw+2oW1ahmYiN7anHiqn6TjJ9IgqU1/e01N8PEnUe1B0FKA9U+J1EA6u uX0FlepYHDpsr0NQ2rNG918wiQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFafpcaG GgWajQKBr17CF3UO+KD7MB8GA1UdIwQYMBaAFNpHBC43apRz/A7fyERXOd0TKK4O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MURGNC9GNDFEMUMxOEIz OEUxMUU5ODYyODJCNzNDNEY5QUUwMi8ya2NFTGpkcWxIUDhEdF9JUkZjNTNSTW9y ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrY0VMamRxbEhQOER0X0lSRmM1M1JNb3JnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTFERjQvRjQxRDFDMThCMzhFMTFFOTg2MjgyQjczQzRGOUFFMDIvQjkyMkRCMjJF ODQyMTFFQTkxOEI4RjA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJn1+ADBAKdd2gwDQYJKoZIhvcNAQELBQADggEBAJwTLK3k 96To4MF0hSmtJQacd9Nwmc6Jm+AqGAHW8afdawuTTZTkkYrmII445F2tUVB5LKvM V3ZZGhKNeCIJ1uMqeuWW0PhWY+oZAPaK3JVnx51Z4yClIqExLt8y+gDHkuRysRxN DNVmi8+i1IPpUsQyVjKn3mq3i3W1mTemamTWpPHUX5DPITej2m+9qHnmyys+GJv5 SoCmi+OblPLXU9BRfI+G6E4WdauMVQb+ir8ulDsadYoDGMq0c10g6Ym/vZCbXxjq JTUWvcOl9f9O141Eab3D/wWwW27A5cLQfitGfdiuCQJ2t/ml+5Bmzpvx2fmziPW/ FzjLedmhjJabC1I= -----END CERTIFICATE-----Generated at Fri Nov 7 13:42:59 2025 by rpki-client