$ rpki-client -vvf rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/813EDCA4137E11EF9969A86BC4F9AE02.roa File: 813EDCA4137E11EF9969A86BC4F9AE02.roa (raw, json) Hash identifier: YgNQfKH2j9vPQAWdAUFYDmXhZo5ythnv/oTPT+Ay1+4= Subject key identifier: 0D:D5:6F:F1:1C:16:67:DC:23:64:2C:4F:2C:C6:D7:3A:CA:F5:D8:7C Certificate issuer: /CN=A9128C33/serialNumber=AF2EE04412356ABFD8E19AE2C1B22A737CDF5E9E Certificate serial: 0161 Authority key identifier: AF:2E:E0:44:12:35:6A:BF:D8:E1:9A:E2:C1:B2:2A:73:7C:DF:5E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/813EDCA4137E11EF9969A86BC4F9AE02.roa Signing time: Mon 29 Sep 2025 05:02:47 +0000 ROA not before: Mon 29 Sep 2025 05:02:47 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 151671 IP address blocks: 103.255.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:48:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 353 (0x161) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128C33, serialNumber=AF2EE04412356ABFD8E19AE2C1B22A737CDF5E9E Validity Not Before: Sep 29 05:02:47 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68da12f7-c154 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:99:86:9b:7d:0d:f0:85:b0:3c:44:b6:27:7c: 7f:1b:5f:fa:62:b1:a4:4d:59:2a:48:4d:4a:98:65: 98:84:95:3a:1e:85:8f:aa:93:75:39:80:ab:7b:07: ef:01:6c:aa:f1:ef:13:87:96:a1:68:ce:dd:96:b1: 08:c8:03:a5:2a:4e:12:23:94:84:bc:d1:e0:67:5a: a8:0f:5a:3e:5c:82:f5:ba:33:c9:47:dc:3d:e8:06: b6:3b:85:87:b3:b7:52:ed:df:f3:b4:40:b6:39:42: 6e:58:e7:e0:a9:4a:43:a9:77:64:f0:fc:30:98:ac: 53:75:69:9d:b5:9c:be:dc:a2:6d:d4:75:b3:3d:79: ab:1b:40:77:df:bc:2a:2b:c1:7b:8b:38:5c:1d:3a: 7f:fd:55:c2:14:bc:22:25:f4:15:5d:b1:e2:68:13: 88:0b:5e:1b:f8:6b:4d:93:1f:67:aa:c6:db:e5:24: 22:7e:a9:6a:3c:00:cd:b2:cd:a7:af:a4:ec:fa:0e: c9:35:08:f2:82:d7:5b:08:4f:1b:2a:5f:4e:8a:90: e6:3b:a2:b4:85:df:25:e2:1d:a1:3b:17:27:13:ee: a9:6e:ad:28:77:05:b7:fa:6f:f0:95:3f:97:ef:d6: 10:70:1e:c9:3d:9a:71:80:ae:e1:eb:37:63:53:79: cf:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:D5:6F:F1:1C:16:67:DC:23:64:2C:4F:2C:C6:D7:3A:CA:F5:D8:7C X509v3 Authority Key Identifier: keyid:AF:2E:E0:44:12:35:6A:BF:D8:E1:9A:E2:C1:B2:2A:73:7C:DF:5E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/813EDCA4137E11EF9969A86BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.255.96.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:31:7e:fb:38:8d:83:23:fd:e7:69:d7:56:16:fd:11:0d:27: 61:c6:f7:54:1f:18:54:7d:fa:18:6c:fa:1f:e5:fc:15:5d:c0: 40:27:42:ad:75:be:82:8b:9d:67:cd:25:fc:26:b9:ab:aa:fb: 37:10:17:f8:24:77:02:d8:58:53:3b:ef:da:72:9d:c7:bd:d7: cb:51:d3:ac:2b:74:96:2f:f3:d9:2c:00:9d:32:c2:dc:1d:66: c7:21:75:df:3a:0f:5f:ad:fe:d6:ac:b4:17:1b:db:cf:b0:fe: 71:72:de:3e:6c:c1:3c:4b:19:4c:e3:c3:3e:d1:1e:d0:66:fa: bb:34:0d:fe:6f:be:13:16:6e:04:ab:33:bf:cf:61:c7:87:89: 46:2e:25:86:84:1f:4f:ad:22:c7:ba:10:9e:42:08:17:9b:e9: 05:69:a6:97:35:00:ee:ca:a3:5d:ec:ca:96:fa:d2:f1:4b:3c: 6b:1c:13:32:86:e7:68:5b:b6:0a:84:c9:4a:42:70:ab:05:4b: 0d:d0:1a:c7:06:99:92:9f:34:32:6b:70:c6:e8:86:c4:f6:59: 9c:4e:1e:b6:98:26:0d:55:18:b8:a2:02:92:d2:db:31:2a:bf: 9e:45:8b:19:00:71:0b:22:1a:78:71:a6:19:32:50:4d:c4:b4: 8a:9b:12:58 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhDMzMxMTAvBgNVBAUTKEFGMkVFMDQ0MTIzNTZBQkZEOEUxOUFFMkMxQjIyQTcz N0NERjVFOUUwHhcNMjUwOTI5MDUwMjQ3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRhMTJmNy1jMTU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwJmGm30N8IWwPES2J3x/G1/6YrGkTVkqSE1KmGWYhJU6HoWPqpN1OYCrewfv AWyq8e8Th5ahaM7dlrEIyAOlKk4SI5SEvNHgZ1qoD1o+XIL1ujPJR9w96Aa2O4WH s7dS7d/ztEC2OUJuWOfgqUpDqXdk8PwwmKxTdWmdtZy+3KJt1HWzPXmrG0B337wq K8F7izhcHTp//VXCFLwiJfQVXbHiaBOIC14b+GtNkx9nqsbb5SQifqlqPADNss2n r6Ts+g7JNQjygtdbCE8bKl9OipDmO6K0hd8l4h2hOxcnE+6pbq0odwW3+m/wlT+X 79YQcB7JPZpxgK7h6zdjU3nP2QIDAQABo4IClTCCApEwHQYDVR0OBBYEFA3Vb/Ec FmfcI2QsTyzG1zrK9dh8MB8GA1UdIwQYMBaAFK8u4EQSNWq/2OGa4sGyKnN8316e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEMzMy85NTZDQjA4Njk4 MUIxMUVFQUIwRkM5MjJDNEY5QUUwMi9yeTdnUkJJMWFyX1k0WnJpd2JJcWMzemZY cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3J5N2dSQkkxYXJfWTRacml3YklxYzN6ZlhwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjhDMzMvOTU2Q0IwODY5ODFCMTFFRUFCMEZDOTIyQzRGOUFFMDIvODEzRURDQTQx MzdFMTFFRjk5NjlBODZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn/2AwDQYJKoZIhvcNAQELBQADggEBAJsxfvs4jYMj/edp 11YW/RENJ2HG91QfGFR9+hhs+h/l/BVdwEAnQq11voKLnWfNJfwmuauq+zcQF/gk dwLYWFM779pynce918tR06wrdJYv89ksAJ0ywtwdZschdd86D1+t/tastBcb28+w /nFy3j5swTxLGUzjwz7RHtBm+rs0Df5vvhMWbgSrM7/PYceHiUYuJYaEH0+tIse6 EJ5CCBeb6QVpppc1AO7Ko13sypb60vFLPGscEzKG52hbtgqEyUpCcKsFSw3QGscG mZKfNDJrcMbohsT2WZxOHraYJg1VGLiiApLS2zEqv55FixkAcQsiGnhxphkyUE3E tIqbElg= -----END CERTIFICATE-----Generated at Tue Oct 21 09:36:59 2025 by rpki-client