$ rpki-client -vvf rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/210A4EBAC0F211EE99FFBA21C4F9AE02.roa File: 210A4EBAC0F211EE99FFBA21C4F9AE02.roa (raw, json) Hash identifier: fOjJ/Gc3Xo61GkkgaAWGTG7vIfdk8OnS5/7uboXrlc8= Subject key identifier: B1:45:28:A2:95:0B:A4:47:D8:68:75:05:18:BE:E3:99:B9:26:8C:98 Certificate issuer: /CN=A9128C33/serialNumber=AF2EE04412356ABFD8E19AE2C1B22A737CDF5E9E Certificate serial: 0162 Authority key identifier: AF:2E:E0:44:12:35:6A:BF:D8:E1:9A:E2:C1:B2:2A:73:7C:DF:5E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/210A4EBAC0F211EE99FFBA21C4F9AE02.roa Signing time: Mon 29 Sep 2025 05:02:48 +0000 ROA not before: Mon 29 Sep 2025 05:02:48 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 31898 IP address blocks: 103.255.96.0/24 maxlen: 24 103.255.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:48:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 354 (0x162) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128C33, serialNumber=AF2EE04412356ABFD8E19AE2C1B22A737CDF5E9E Validity Not Before: Sep 29 05:02:48 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68da12f8-4e90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:d6:47:0b:d2:d3:fd:d2:ed:eb:36:b9:9e:cd: d4:c4:73:70:6e:d3:9d:1d:f9:15:61:9e:19:c8:05: a6:64:3a:59:74:55:54:3f:76:31:45:21:a8:7c:68: 77:4d:b7:0a:43:90:4f:bc:1f:2c:36:e8:ca:6f:84: c0:02:77:8e:46:6a:64:bc:1d:2d:d8:6e:68:30:eb: 32:bd:e8:fd:5d:a1:cb:20:07:4a:84:c9:05:a6:36: b1:2d:94:59:a7:53:e0:64:00:66:f1:14:1b:33:af: b9:74:74:19:39:bc:9f:07:ae:3a:ed:0f:1d:1d:af: 82:ff:b3:2f:03:8e:79:f4:45:4e:0f:a3:85:5b:a8: 2a:d0:ea:c1:65:ef:ca:3b:7c:e7:70:81:ab:c3:11: 69:42:65:f4:3e:84:50:fc:ad:8b:d4:71:bd:c7:c3: 1e:20:02:66:62:40:79:9c:3e:55:03:01:c3:62:69: 8b:8d:31:7c:39:6f:55:7c:49:d7:ff:39:37:32:1c: 44:ee:91:ce:68:f6:1a:90:88:b1:9a:c8:bc:66:c0: 9f:69:ad:c7:b1:f9:c7:76:8f:7b:6a:93:56:14:c7: fa:bf:8f:ed:57:46:76:35:d3:b2:06:72:8b:56:64: ad:7b:2c:4e:c4:c8:43:53:e6:78:eb:e5:56:fb:6c: 4b:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:45:28:A2:95:0B:A4:47:D8:68:75:05:18:BE:E3:99:B9:26:8C:98 X509v3 Authority Key Identifier: keyid:AF:2E:E0:44:12:35:6A:BF:D8:E1:9A:E2:C1:B2:2A:73:7C:DF:5E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/210A4EBAC0F211EE99FFBA21C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.255.96.0/23 Signature Algorithm: sha256WithRSAEncryption 47:f1:22:8c:35:49:b9:23:1a:cd:ad:d2:fa:a0:76:82:76:a7: 61:8f:4e:f8:aa:71:5f:66:cb:47:6c:c0:37:59:3f:84:96:7f: 35:6f:e9:7d:82:eb:d8:c5:7a:e9:20:ab:be:41:ee:50:69:80: a2:be:ec:15:b3:a0:78:f3:2c:06:37:0c:f5:bb:45:9f:98:5b: 2b:2c:ac:56:37:78:0d:9d:6c:f9:91:88:aa:70:62:11:7a:ea: 80:a1:6f:aa:08:f8:3a:d0:1b:25:7c:fd:55:93:8f:a3:c7:90: c0:fa:41:ba:21:69:36:1b:78:9c:79:0f:cf:86:60:30:03:d3: fb:64:b1:e2:d0:38:5b:36:2b:bf:f2:a4:d7:1b:19:30:1b:4c: 13:9c:a3:59:91:b8:07:96:44:0f:cf:05:18:24:7c:53:ab:5b: ed:e0:04:4b:91:be:a5:49:35:b8:d8:fd:cb:25:5f:37:bf:f3: ac:88:ce:7d:96:02:ab:21:ac:b5:67:a0:e9:6c:03:02:2f:e9: 27:92:bc:7f:db:00:18:e5:36:c0:c2:98:f6:e8:7b:a1:7a:6c: 11:a1:e4:a1:f5:7d:da:e6:c8:2a:c8:7a:6e:4d:b9:dd:94:84: 7c:7f:73:c1:0a:3e:85:91:e3:97:1a:1e:7b:96:e8:65:18:cf: 0c:45:52:f0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhDMzMxMTAvBgNVBAUTKEFGMkVFMDQ0MTIzNTZBQkZEOEUxOUFFMkMxQjIyQTcz N0NERjVFOUUwHhcNMjUwOTI5MDUwMjQ4WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRhMTJmOC00ZTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7dZHC9LT/dLt6za5ns3UxHNwbtOdHfkVYZ4ZyAWmZDpZdFVUP3YxRSGofGh3 TbcKQ5BPvB8sNujKb4TAAneORmpkvB0t2G5oMOsyvej9XaHLIAdKhMkFpjaxLZRZ p1PgZABm8RQbM6+5dHQZObyfB6467Q8dHa+C/7MvA4559EVOD6OFW6gq0OrBZe/K O3zncIGrwxFpQmX0PoRQ/K2L1HG9x8MeIAJmYkB5nD5VAwHDYmmLjTF8OW9VfEnX /zk3MhxE7pHOaPYakIixmsi8ZsCfaa3HsfnHdo97apNWFMf6v4/tV0Z2NdOyBnKL VmSteyxOxMhDU+Z46+VW+2xLcwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLFFKKKV C6RH2Gh1BRi+45m5JoyYMB8GA1UdIwQYMBaAFK8u4EQSNWq/2OGa4sGyKnN8316e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEMzMy85NTZDQjA4Njk4 MUIxMUVFQUIwRkM5MjJDNEY5QUUwMi9yeTdnUkJJMWFyX1k0WnJpd2JJcWMzemZY cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3J5N2dSQkkxYXJfWTRacml3YklxYzN6ZlhwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjhDMzMvOTU2Q0IwODY5ODFCMTFFRUFCMEZDOTIyQzRGOUFFMDIvMjEwQTRFQkFD MEYyMTFFRTk5RkZCQTIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn/2AwDQYJKoZIhvcNAQELBQADggEBAEfxIow1SbkjGs2t 0vqgdoJ2p2GPTviqcV9my0dswDdZP4SWfzVv6X2C69jFeukgq75B7lBpgKK+7BWz oHjzLAY3DPW7RZ+YWyssrFY3eA2dbPmRiKpwYhF66oChb6oI+DrQGyV8/VWTj6PH kMD6QbohaTYbeJx5D8+GYDAD0/tkseLQOFs2K7/ypNcbGTAbTBOco1mRuAeWRA/P BRgkfFOrW+3gBEuRvqVJNbjY/cslXze/86yIzn2WAqshrLVnoOlsAwIv6SeSvH/b ABjlNsDCmPboe6F6bBGh5KH1fdrmyCrIem5Nud2UhHx/c8EKPoWR45caHnuW6GUY zwxFUvA= -----END CERTIFICATE-----Generated at Mon Oct 20 00:21:13 2025 by rpki-client