$ rpki-client -vvf rpki.apnic.net/member_repository/A9128553/164ABEC4EB0B11EC85E3DB2CC4F9AE02/AB8BCCA8908011F0B114A05CC4F9AE02.roa File: AB8BCCA8908011F0B114A05CC4F9AE02.roa (raw, json) Hash identifier: 1T0eskndL4iFaUJFcifTZvjR+o1R27ZKYdF+XD5eXWc= Subject key identifier: F9:28:E4:05:35:C9:7A:65:E3:D2:E7:E5:9A:1A:F7:33:05:A0:91:1C Certificate issuer: /CN=A9128553/serialNumber=BB897045A88FC81FCCFE38E5F761584FDCBACE85 Certificate serial: 0313 Authority key identifier: BB:89:70:45:A8:8F:C8:1F:CC:FE:38:E5:F7:61:58:4F:DC:BA:CE:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u4lwRaiPyB_M_jjl92FYT9y6zoU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128553/164ABEC4EB0B11EC85E3DB2CC4F9AE02/AB8BCCA8908011F0B114A05CC4F9AE02.roa Signing time: Sat 13 Sep 2025 09:05:08 +0000 ROA not before: Sat 13 Sep 2025 09:05:08 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 137493 IP address blocks: 103.189.145.0/24 maxlen: 24 2400:8620::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128553/164ABEC4EB0B11EC85E3DB2CC4F9AE02/u4lwRaiPyB_M_jjl92FYT9y6zoU.crl rsync://rpki.apnic.net/member_repository/A9128553/164ABEC4EB0B11EC85E3DB2CC4F9AE02/u4lwRaiPyB_M_jjl92FYT9y6zoU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u4lwRaiPyB_M_jjl92FYT9y6zoU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:11:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 787 (0x313) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128553, serialNumber=BB897045A88FC81FCCFE38E5F761584FDCBACE85 Validity Not Before: Sep 13 09:05:08 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68c533c4-8827 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:1f:66:aa:f3:68:13:c4:bc:1a:25:37:6e:8a: 65:8c:e1:a0:9d:a3:a6:74:38:3c:63:2d:57:09:10: aa:50:9f:b6:05:7b:ab:b5:e4:be:20:ed:f7:fb:cc: d6:8d:69:a4:77:de:20:7e:df:b9:df:d1:f7:0a:9e: 21:4b:c7:9d:9d:ae:93:5b:8c:a2:e0:6b:3b:a0:51: 2a:87:c3:d1:a6:29:ea:d4:c1:72:36:b3:65:2c:89: 28:48:41:76:a1:3a:aa:e7:35:27:bf:db:43:c3:e7: 57:d5:65:e2:c6:99:88:af:5d:36:ec:b9:ad:d4:dd: da:0d:08:b9:b2:cb:5f:d0:5c:fe:d1:f1:17:9e:c7: 8f:6f:bf:77:49:af:d7:8e:04:7b:6f:12:cd:ee:40: 57:e6:89:75:b9:2a:ef:c2:b7:92:f1:bf:d5:17:13: e1:89:f3:e3:54:34:01:c2:71:43:ee:bb:a5:a8:e3: bf:5b:48:a9:7f:06:9d:a7:76:49:20:27:73:cd:d0: 3c:5d:0c:d1:b6:24:4e:d2:d5:6f:d8:20:e7:e6:ce: 1e:2d:78:36:e1:3f:a6:c6:33:35:d4:f4:08:28:8e: 6f:da:50:02:1e:cf:b3:db:50:c2:bb:5d:8e:0d:85: 6d:db:11:36:9e:93:c8:3a:50:ef:a9:3c:d9:e5:59: 41:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:28:E4:05:35:C9:7A:65:E3:D2:E7:E5:9A:1A:F7:33:05:A0:91:1C X509v3 Authority Key Identifier: keyid:BB:89:70:45:A8:8F:C8:1F:CC:FE:38:E5:F7:61:58:4F:DC:BA:CE:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128553/164ABEC4EB0B11EC85E3DB2CC4F9AE02/u4lwRaiPyB_M_jjl92FYT9y6zoU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u4lwRaiPyB_M_jjl92FYT9y6zoU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128553/164ABEC4EB0B11EC85E3DB2CC4F9AE02/AB8BCCA8908011F0B114A05CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.189.145.0/24 IPv6: 2400:8620::/32 Signature Algorithm: sha256WithRSAEncryption 88:8b:74:39:e3:87:e0:fd:3a:be:c8:d6:de:f4:9c:ea:45:96: 41:0c:95:04:f1:e2:50:36:3f:2e:68:2b:fd:3b:4e:fe:ac:6f: 5c:7c:70:4d:38:27:12:50:12:0b:ac:a9:47:80:bf:3c:dc:db: 8e:1d:39:59:1b:5c:a9:a4:a0:97:0b:7a:3a:56:9c:b2:d9:7c: 50:54:bd:f6:48:05:23:05:ef:40:d8:d1:31:80:d4:8c:83:f6: c9:c8:bb:8a:e6:81:5b:18:57:47:07:36:c8:d5:dd:60:4e:a2: 91:64:65:16:b7:92:c3:0f:c7:c5:c2:ae:c2:bb:bd:c3:ff:ee: ed:13:66:82:8d:bf:24:c2:9f:c5:61:e4:1e:34:8b:09:84:9d: 15:eb:76:33:18:99:db:43:e1:3d:eb:6a:25:5a:be:66:3c:3e: 44:61:32:2f:c1:af:da:da:31:37:07:f7:0f:13:73:9f:5e:fd: 2d:4b:4e:bb:34:aa:06:08:e7:41:73:bd:db:13:ca:b5:89:11: 22:18:a1:fa:92:9a:32:48:9f:8e:9b:84:8c:17:da:58:0a:cc: 7f:e0:47:90:eb:28:e2:e6:83:9b:ad:df:c3:4e:1f:54:ce:e3: a4:be:16:07:12:f1:6f:e9:8c:8a:a7:54:d9:68:67:1f:a9:da: 56:01:79:8b -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAxMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg1NTMxMTAvBgNVBAUTKEJCODk3MDQ1QTg4RkM4MUZDQ0ZFMzhFNUY3NjE1ODRG RENCQUNFODUwHhcNMjUwOTEzMDkwNTA4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM1MzNjNC04ODI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAux9mqvNoE8S8GiU3bopljOGgnaOmdDg8Yy1XCRCqUJ+2BXurteS+IO33+8zW jWmkd94gft+539H3Cp4hS8edna6TW4yi4Gs7oFEqh8PRpinq1MFyNrNlLIkoSEF2 oTqq5zUnv9tDw+dX1WXixpmIr1027Lmt1N3aDQi5sstf0Fz+0fEXnsePb793Sa/X jgR7bxLN7kBX5ol1uSrvwreS8b/VFxPhifPjVDQBwnFD7rulqOO/W0ipfwadp3ZJ ICdzzdA8XQzRtiRO0tVv2CDn5s4eLXg24T+mxjM11PQIKI5v2lACHs+z21DCu12O DYVt2xE2npPIOlDvqTzZ5VlBUQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFPko5AU1 yXpl49Ln5Zoa9zMFoJEcMB8GA1UdIwQYMBaAFLuJcEWoj8gfzP445fdhWE/cus6F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODU1My8xNjRBQkVDNEVC MEIxMUVDODVFM0RCMkNDNEY5QUUwMi91NGx3UmFpUHlCX01fampsOTJGWVQ5eTZ6 b1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U0bHdSYWlQeUJfTV9qamw5MkZZVDl5NnpvVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjg1NTMvMTY0QUJFQzRFQjBCMTFFQzg1RTNEQjJDQzRGOUFFMDIvQUI4QkNDQTg5 MDgwMTFGMEIxMTRBMDVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBABnvZEwDQQCAAIwBwMFACQAhiAwDQYJKoZIhvcNAQELBQAD ggEBAIiLdDnjh+D9Or7I1t70nOpFlkEMlQTx4lA2Py5oK/07Tv6sb1x8cE04JxJQ EgusqUeAvzzc244dOVkbXKmkoJcLejpWnLLZfFBUvfZIBSMF70DY0TGA1IyD9snI u4rmgVsYV0cHNsjV3WBOopFkZRa3ksMPx8XCrsK7vcP/7u0TZoKNvyTCn8Vh5B40 iwmEnRXrdjMYmdtD4T3raiVavmY8PkRhMi/Br9raMTcH9w8Tc59e/S1LTrs0qgYI 50FzvdsTyrWJESIYofqSmjJIn46bhIwX2lgKzH/gR5DrKOLmg5ut38NOH1TO46S+ FgcS8W/pjIqnVNloZx+p2lYBeYs= -----END CERTIFICATE-----Generated at Mon Oct 20 12:24:16 2025 by rpki-client