$ rpki-client -vvf rpki.apnic.net/member_repository/A9199BDF/E70E0A98709311E980BD7C3DC4F9AE02/D193920E709411E99F95933EC4F9AE02.roa File: D193920E709411E99F95933EC4F9AE02.roa (raw, json) Hash identifier: 8ztrTQcP/jo0fNou8ezgxWbldFvPq9dRhjV7IPER7OI= Subject key identifier: B2:9E:88:14:B9:52:F8:9D:2F:94:83:E4:22:EA:48:EF:51:E8:E4:3C Certificate issuer: /CN=A9199BDF/serialNumber=6A4F43110050F0681964D858F9144E052BB8899A Certificate serial: 0FA6 Authority key identifier: 6A:4F:43:11:00:50:F0:68:19:64:D8:58:F9:14:4E:05:2B:B8:89:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ak9DEQBQ8GgZZNhY-RROBSu4iZo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199BDF/E70E0A98709311E980BD7C3DC4F9AE02/D193920E709411E99F95933EC4F9AE02.roa Signing time: Sat 01 Nov 2025 10:31:26 +0000 ROA not before: Sat 01 Nov 2025 10:31:26 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 139008 IP address blocks: 103.138.144.0/23 maxlen: 23 103.138.144.0/24 maxlen: 24 103.138.145.0/24 maxlen: 24 103.152.212.0/24 maxlen: 24 2001:df0:3f80::/48 maxlen: 48 2406:2c0::/32 maxlen: 32 2406:2c0:1100::/40 maxlen: 40 2406:2c0:1101::/48 maxlen: 48 2406:2c0:1102::/48 maxlen: 48 2406:2c0:110b::/48 maxlen: 48 2406:2c0:110e::/48 maxlen: 48 2406:2c0:1132::/48 maxlen: 48 2406:2c0:7100::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199BDF/E70E0A98709311E980BD7C3DC4F9AE02/ak9DEQBQ8GgZZNhY-RROBSu4iZo.crl rsync://rpki.apnic.net/member_repository/A9199BDF/E70E0A98709311E980BD7C3DC4F9AE02/ak9DEQBQ8GgZZNhY-RROBSu4iZo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ak9DEQBQ8GgZZNhY-RROBSu4iZo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:33:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4006 (0xfa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199BDF, serialNumber=6A4F43110050F0681964D858F9144E052BB8899A Validity Not Before: Nov 1 10:31:26 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6905e17e-27eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:63:02:8e:36:f7:26:4d:00:5b:0c:a0:a4:8a: 9f:8c:ba:85:d6:89:48:75:f1:a2:23:9e:e7:25:10: 69:3b:e2:46:4b:89:23:f4:b6:c2:02:d7:84:cb:51: c9:96:1d:07:2a:92:7e:79:7c:76:13:f3:97:fd:36: 81:cd:fb:1c:9a:d4:df:07:26:bb:11:af:8b:58:1a: 91:0f:b7:1a:d9:2c:c6:34:d5:7a:a0:fc:53:51:3b: 91:70:14:4d:d8:c3:a5:2c:f4:cd:54:f4:33:a9:94: dc:15:95:de:cb:0b:58:60:6d:b8:a9:fb:a9:72:0d: f7:ee:fe:67:42:85:08:73:81:70:bd:ad:66:75:de: 0e:7d:5e:a9:63:b6:09:4c:34:ae:90:ce:67:63:29: b6:1e:4a:2b:7e:63:3b:55:18:7f:f7:e0:c4:e6:6f: b8:3d:10:dd:23:46:ba:94:c4:42:ae:9c:1a:53:ef: 3d:e4:81:46:a4:f6:16:89:59:e2:b3:21:1f:f2:d9: 66:42:b1:67:cf:bc:e2:8a:a8:82:ce:2b:3f:42:fc: bb:a1:55:d5:d7:af:75:0b:f4:15:41:79:c9:93:64: 91:86:56:cd:a3:79:48:6a:10:56:d6:47:3b:d8:9f: 49:34:9a:5d:fa:bc:e2:57:13:89:2d:85:a2:c1:9c: 5e:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:9E:88:14:B9:52:F8:9D:2F:94:83:E4:22:EA:48:EF:51:E8:E4:3C X509v3 Authority Key Identifier: keyid:6A:4F:43:11:00:50:F0:68:19:64:D8:58:F9:14:4E:05:2B:B8:89:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199BDF/E70E0A98709311E980BD7C3DC4F9AE02/ak9DEQBQ8GgZZNhY-RROBSu4iZo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ak9DEQBQ8GgZZNhY-RROBSu4iZo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199BDF/E70E0A98709311E980BD7C3DC4F9AE02/D193920E709411E99F95933EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.144.0/23 103.152.212.0/24 IPv6: 2001:df0:3f80::/48 2406:2c0::/32 Signature Algorithm: sha256WithRSAEncryption 69:ee:f0:4b:1c:df:52:31:28:b1:8e:6d:e5:34:28:da:48:64: 2d:22:06:9a:20:b3:e1:c3:1e:ab:ec:ac:c3:23:c6:fe:c1:09: 19:6f:83:ad:ee:02:1d:e2:aa:da:4f:fc:62:8f:a1:22:ad:58: 94:8a:5b:3a:0e:55:65:b9:0a:32:00:c8:0a:68:a9:d0:4a:1f: 23:bf:17:4c:b9:49:3b:cd:a3:20:8f:8c:c4:8c:17:78:47:3e: 79:ac:d7:7b:00:15:17:d1:ea:ef:67:2a:3d:f4:93:9f:7e:36: ff:89:f7:db:ff:d5:8b:cb:c1:9d:64:54:97:2e:4d:1d:fa:38: d6:b8:84:16:a0:ec:1e:09:59:53:a1:58:28:a2:75:a9:8d:be: d3:b9:cd:5d:22:91:95:b2:6e:78:c4:a0:02:e3:87:7c:9e:79: a1:8f:28:62:60:96:a8:3b:b6:73:69:69:ff:ec:bf:2d:63:bb: 27:48:57:2a:df:19:d0:5b:ce:12:9d:68:6a:3b:5f:81:46:14: 79:93:10:8e:7c:4a:e6:bd:36:78:d7:87:e4:5e:c5:57:79:6d: bf:f6:a8:76:c8:49:93:dd:7b:54:d0:b7:68:15:c1:c1:97:2e: 34:6e:59:07:d6:56:e3:7d:7a:71:71:e6:5c:ae:93:e6:b8:f9: 45:0b:d9:1a -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICD6YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlCREYxMTAvBgNVBAUTKDZBNEY0MzExMDA1MEYwNjgxOTY0RDg1OEY5MTQ0RTA1 MkJCODg5OUEwHhcNMjUxMTAxMTAzMTI2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA1ZTE3ZS0yN2ViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtmMCjjb3Jk0AWwygpIqfjLqF1olIdfGiI57nJRBpO+JGS4kj9LbCAteEy1HJ lh0HKpJ+eXx2E/OX/TaBzfscmtTfBya7Ea+LWBqRD7ca2SzGNNV6oPxTUTuRcBRN 2MOlLPTNVPQzqZTcFZXeywtYYG24qfupcg337v5nQoUIc4Fwva1mdd4OfV6pY7YJ TDSukM5nYym2HkorfmM7VRh/9+DE5m+4PRDdI0a6lMRCrpwaU+895IFGpPYWiVni syEf8tlmQrFnz7ziiqiCzis/Qvy7oVXV1691C/QVQXnJk2SRhlbNo3lIahBW1kc7 2J9JNJpd+rziVxOJLYWiwZxe7QIDAQABo4ICszCCAq8wHQYDVR0OBBYEFLKeiBS5 UvidL5SD5CLqSO9R6OQ8MB8GA1UdIwQYMBaAFGpPQxEAUPBoGWTYWPkUTgUruIma MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OUJERi9FNzBFMEE5ODcw OTMxMUU5ODBCRDdDM0RDNEY5QUUwMi9hazlERVFCUThHZ1paTmhZLVJST0JTdTRp Wm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FrOURFUUJROEdnWlpOaFktUlJPQlN1NGlaby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTlCREYvRTcwRTBBOTg3MDkzMTFFOTgwQkQ3QzNEQzRGOUFFMDIvRDE5MzkyMEU3 MDk0MTFFOTlGOTU5MzNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMBIEAgABMAwDBAFnipADBABnmNQwFgQCAAIwEAMHACABDfA/gAMFACQGAsAw DQYJKoZIhvcNAQELBQADggEBAGnu8Esc31IxKLGObeU0KNpIZC0iBpogs+HDHqvs rMMjxv7BCRlvg63uAh3iqtpP/GKPoSKtWJSKWzoOVWW5CjIAyApoqdBKHyO/F0y5 STvNoyCPjMSMF3hHPnms13sAFRfR6u9nKj30k59+Nv+J99v/1YvLwZ1kVJcuTR36 ONa4hBag7B4JWVOhWCiidamNvtO5zV0ikZWybnjEoALjh3yeeaGPKGJglqg7tnNp af/svy1juydIVyrfGdBbzhKdaGo7X4FGFHmTEI58Sua9NnjXh+RexVd5bb/2qHbI SZPde1TQt2gVwcGXLjRuWQfWVuN9enFx5lyuk+a4+UUL2Ro= -----END CERTIFICATE-----Generated at Tue Nov 4 17:01:45 2025 by rpki-client