$ rpki-client -vvf rpki.apnic.net/member_repository/A9122C94/8222C27E1CF211EB84209540C4F9AE02/5BF797081CF411EBB5ADE642C4F9AE02.roa File: 5BF797081CF411EBB5ADE642C4F9AE02.roa (raw, json) Hash identifier: v+COy4aJ4vI2kVsinHUDpF8Q9iJxgP+snNqHCNRWWC8= Subject key identifier: F6:D6:98:44:31:7F:23:DC:D9:3C:34:13:33:5B:D7:DF:DB:DD:BD:13 Certificate issuer: /CN=A9122C94/serialNumber=50CDD60CF8F3123FDEBCE90882AF37BBE3EF5C48 Certificate serial: 07A3 Authority key identifier: 50:CD:D6:0C:F8:F3:12:3F:DE:BC:E9:08:82:AF:37:BB:E3:EF:5C:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UM3WDPjzEj_evOkIgq83u-PvXEg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122C94/8222C27E1CF211EB84209540C4F9AE02/5BF797081CF411EBB5ADE642C4F9AE02.roa Signing time: Wed 10 Sep 2025 22:03:35 +0000 ROA not before: Wed 10 Sep 2025 22:03:35 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 133066 IP address blocks: 103.241.156.0/22 maxlen: 22 103.241.156.0/24 maxlen: 24 103.241.157.0/24 maxlen: 24 103.241.158.0/24 maxlen: 24 103.241.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122C94/8222C27E1CF211EB84209540C4F9AE02/UM3WDPjzEj_evOkIgq83u-PvXEg.crl rsync://rpki.apnic.net/member_repository/A9122C94/8222C27E1CF211EB84209540C4F9AE02/UM3WDPjzEj_evOkIgq83u-PvXEg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UM3WDPjzEj_evOkIgq83u-PvXEg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:41:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1955 (0x7a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122C94, serialNumber=50CDD60CF8F3123FDEBCE90882AF37BBE3EF5C48 Validity Not Before: Sep 10 22:03:35 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68c1f5b6-2a49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:60:61:41:36:54:db:75:18:4e:1e:4c:23:b2: 17:e9:84:11:63:3b:4d:6f:d3:53:d3:ef:86:a9:3b: 24:7f:fb:c7:08:f4:95:a8:f8:3d:e6:87:84:2e:e4: 85:a1:41:d7:7d:13:af:ca:e0:4d:3b:1b:a5:b6:d8: bc:ef:d4:27:d9:b7:65:d0:1e:55:5f:af:e0:ea:93: 02:10:f7:a1:6e:a5:60:1e:2a:da:4b:56:11:88:fa: 58:0a:92:1c:3b:5f:8c:5e:21:5f:f0:10:d5:90:1e: 07:67:d9:46:45:05:f3:ca:e4:84:af:f6:99:1c:23: df:6b:2e:ae:a3:01:c6:40:c6:bf:69:62:cd:a9:74: ec:a6:63:5b:55:f3:1b:62:a6:fa:72:e5:8a:71:45: 10:5d:e2:c6:fa:ee:0b:d6:bf:e1:90:31:0b:5d:7d: ea:42:3d:14:44:c8:e4:da:6e:7a:3c:f1:8a:7f:84: 55:3e:39:3f:23:c6:57:d1:d5:44:36:ea:5e:08:d5: 0c:4a:0b:c8:13:11:99:dd:54:8a:97:d6:75:ae:d4: af:15:e7:11:77:b6:2e:6d:93:73:17:09:f2:1e:9e: 8f:f7:1e:a9:72:d9:6e:5e:11:c1:f0:b7:52:16:ca: 32:3b:c5:d2:c8:d8:ff:b3:8c:a0:31:af:bb:fc:73: 9f:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:D6:98:44:31:7F:23:DC:D9:3C:34:13:33:5B:D7:DF:DB:DD:BD:13 X509v3 Authority Key Identifier: keyid:50:CD:D6:0C:F8:F3:12:3F:DE:BC:E9:08:82:AF:37:BB:E3:EF:5C:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122C94/8222C27E1CF211EB84209540C4F9AE02/UM3WDPjzEj_evOkIgq83u-PvXEg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UM3WDPjzEj_evOkIgq83u-PvXEg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122C94/8222C27E1CF211EB84209540C4F9AE02/5BF797081CF411EBB5ADE642C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.241.156.0/22 Signature Algorithm: sha256WithRSAEncryption a4:4d:d0:04:f7:ed:7a:15:3a:21:39:f3:d6:5e:3f:f0:a7:26: 81:4e:df:93:06:5e:a6:d8:ac:27:cf:88:c5:df:32:45:9a:9d: 7d:0a:36:31:23:d8:4c:ec:13:99:00:c1:0d:14:48:61:ed:29: bb:37:9b:ed:e7:66:8b:7a:8a:cc:a4:b1:a3:23:8c:c8:47:10: 56:a3:f2:d6:39:bc:4d:7a:bb:cf:a2:3e:9b:3c:f6:e5:62:39: f9:51:e4:27:99:87:f0:27:ca:90:71:92:74:f2:fd:47:f0:94: 34:87:44:5e:ab:41:41:8b:57:cf:66:b8:40:6e:f3:2d:78:39: 34:35:d1:92:17:df:f6:7c:a3:09:7f:24:7a:80:9e:8d:0a:63: f9:5b:8b:8c:b7:7a:48:9c:8f:d3:9f:ef:d4:b2:26:91:f8:54: b3:d9:9a:89:1b:ac:f8:38:6e:2f:59:16:ee:5b:8b:a9:de:a1: 52:e2:4f:e1:9d:7f:57:e3:1b:c0:12:b5:41:d7:74:92:78:47: e3:2b:c5:89:37:44:71:83:9d:84:a2:21:9f:eb:18:31:e2:d7: a5:0c:ed:8e:bb:0f:e3:84:38:01:32:b7:57:2c:20:50:3b:c2: 36:71:76:52:45:f5:e7:9b:86:2b:e5:41:17:9f:03:32:d0:25: a0:34:5b:9b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB6MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjJDOTQxMTAvBgNVBAUTKDUwQ0RENjBDRjhGMzEyM0ZERUJDRTkwODgyQUYzN0JC RTNFRjVDNDgwHhcNMjUwOTEwMjIwMzM1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGMxZjViNi0yYTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvmBhQTZU23UYTh5MI7IX6YQRYztNb9NT0++GqTskf/vHCPSVqPg95oeELuSF oUHXfROvyuBNOxultti879Qn2bdl0B5VX6/g6pMCEPehbqVgHiraS1YRiPpYCpIc O1+MXiFf8BDVkB4HZ9lGRQXzyuSEr/aZHCPfay6uowHGQMa/aWLNqXTspmNbVfMb Yqb6cuWKcUUQXeLG+u4L1r/hkDELXX3qQj0URMjk2m56PPGKf4RVPjk/I8ZX0dVE NupeCNUMSgvIExGZ3VSKl9Z1rtSvFecRd7YubZNzFwnyHp6P9x6pctluXhHB8LdS FsoyO8XSyNj/s4ygMa+7/HOfYQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPbWmEQx fyPc2Tw0EzNb19/b3b0TMB8GA1UdIwQYMBaAFFDN1gz48xI/3rzpCIKvN7vj71xI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMkM5NC84MjIyQzI3RTFD RjIxMUVCODQyMDk1NDBDNEY5QUUwMi9VTTNXRFBqekVqX2V2T2tJZ3E4M3UtUHZY RWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VNM1dEUGp6RWpfZXZPa0lncTgzdS1QdlhFZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjJDOTQvODIyMkMyN0UxQ0YyMTFFQjg0MjA5NTQwQzRGOUFFMDIvNUJGNzk3MDgx Q0Y0MTFFQkI1QURFNjQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn8ZwwDQYJKoZIhvcNAQELBQADggEBAKRN0AT37XoVOiE5 89ZeP/CnJoFO35MGXqbYrCfPiMXfMkWanX0KNjEj2EzsE5kAwQ0USGHtKbs3m+3n Zot6isyksaMjjMhHEFaj8tY5vE16u8+iPps89uViOflR5CeZh/AnypBxknTy/Ufw lDSHRF6rQUGLV89muEBu8y14OTQ10ZIX3/Z8owl/JHqAno0KY/lbi4y3ekicj9Of 79SyJpH4VLPZmokbrPg4bi9ZFu5bi6neoVLiT+Gdf1fjG8AStUHXdJJ4R+MrxYk3 RHGDnYSiIZ/rGDHi16UM7Y67D+OEOAEyt1csIFA7wjZxdlJF9eebhivlQRefAzLQ JaA0W5s= -----END CERTIFICATE-----Generated at Mon Oct 20 13:50:31 2025 by rpki-client