$ rpki-client -vvf rpki.apnic.net/member_repository/A9128EED/283E4E52553A11EF9EC3B738C4F9AE02/E5B66960553A11EFB6BCFB83C4F9AE02.roa File: E5B66960553A11EFB6BCFB83C4F9AE02.roa (raw, json) Hash identifier: DO2YJbZIejvhdRtGsWt15hXuGZ1AtCApUsm5r0ZPTOY= Subject key identifier: 0E:24:C6:58:C7:7D:46:CC:90:13:35:6E:A0:D3:A6:F7:85:70:03:6E Certificate issuer: /CN=A9128EED/serialNumber=72131BF02904A8491FB93C41D45DFBE942AAD671 Certificate serial: E3 Authority key identifier: 72:13:1B:F0:29:04:A8:49:1F:B9:3C:41:D4:5D:FB:E9:42:AA:D6:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chMb8CkEqEkfuTxB1F376UKq1nE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128EED/283E4E52553A11EF9EC3B738C4F9AE02/E5B66960553A11EFB6BCFB83C4F9AE02.roa Signing time: Thu 09 Oct 2025 06:34:16 +0000 ROA not before: Thu 09 Oct 2025 06:34:16 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 139581 IP address blocks: 103.141.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128EED/283E4E52553A11EF9EC3B738C4F9AE02/chMb8CkEqEkfuTxB1F376UKq1nE.crl rsync://rpki.apnic.net/member_repository/A9128EED/283E4E52553A11EF9EC3B738C4F9AE02/chMb8CkEqEkfuTxB1F376UKq1nE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chMb8CkEqEkfuTxB1F376UKq1nE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:26:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 227 (0xe3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128EED, serialNumber=72131BF02904A8491FB93C41D45DFBE942AAD671 Validity Not Before: Oct 9 06:34:16 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68e75768-6c69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:44:a5:78:84:1c:8a:39:25:e3:8a:b3:dc:de: df:1b:dd:6a:78:15:38:25:ef:1b:65:20:9d:49:9a: f6:a7:ce:15:79:7e:d5:29:59:58:8a:80:d6:68:6f: 3e:48:db:e9:26:2e:8a:f7:e8:a2:4f:f4:7b:54:78: af:4c:f6:85:b2:e3:a7:4d:b0:78:1c:e3:c5:37:1b: 16:85:dd:7d:86:95:40:69:23:9b:bb:97:52:3f:bd: a2:a8:d8:ff:c2:c8:0e:a8:84:57:64:85:f2:48:09: 4a:0e:f2:6a:46:08:40:26:25:73:59:70:0c:96:6a: 4c:4d:d7:44:ba:8d:52:99:1f:f1:1d:68:22:f4:fb: bc:a9:6c:06:4b:82:05:1e:e4:8f:38:d2:f6:50:7c: 8b:e2:83:0a:63:ec:77:4c:48:65:46:16:9d:b4:5c: 0f:05:00:b6:fb:77:b3:aa:c1:1b:e2:fa:fc:92:74: b0:15:63:5b:f6:f1:2f:94:42:2f:60:99:a2:b4:d2: 62:39:36:b5:b9:96:9f:de:55:a9:b9:10:72:0e:08: c1:25:22:66:d3:05:4a:d1:c9:0e:81:77:69:ab:85: dd:65:c8:1e:fc:2b:31:b1:4b:73:13:83:a0:a0:94: c1:1d:49:be:16:cf:90:8d:ce:01:e9:af:1c:61:17: 95:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:24:C6:58:C7:7D:46:CC:90:13:35:6E:A0:D3:A6:F7:85:70:03:6E X509v3 Authority Key Identifier: keyid:72:13:1B:F0:29:04:A8:49:1F:B9:3C:41:D4:5D:FB:E9:42:AA:D6:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128EED/283E4E52553A11EF9EC3B738C4F9AE02/chMb8CkEqEkfuTxB1F376UKq1nE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chMb8CkEqEkfuTxB1F376UKq1nE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128EED/283E4E52553A11EF9EC3B738C4F9AE02/E5B66960553A11EFB6BCFB83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.141.248.0/24 Signature Algorithm: sha256WithRSAEncryption ad:09:84:ed:63:93:31:b2:23:f7:ee:02:e4:20:49:cd:f1:32: a8:3f:8b:80:bb:c9:36:8f:4d:dc:bf:70:95:8c:64:bc:c4:3b: a4:2f:b6:9d:79:12:a5:9d:6f:29:64:b3:cf:b8:19:8e:6b:27: 2d:39:4e:66:c8:7a:f6:95:c4:d8:76:0d:92:cd:71:44:a6:87: 9e:a8:dc:6b:01:0a:38:d5:3f:2a:b8:ee:34:ed:fe:92:58:04: aa:4f:c6:2a:ce:13:58:5e:0f:54:9b:16:dc:d2:88:cb:ca:fe: 4d:f9:b3:e1:6a:2b:98:10:69:0c:f2:f3:35:ed:52:45:5f:57: 4c:2f:8a:11:20:aa:94:52:38:ec:78:26:19:69:69:a0:c6:7f: a3:d1:5b:55:21:73:d9:f1:85:9f:eb:78:50:e0:11:98:39:76: 3d:4d:ac:f6:b5:c5:0b:ac:5d:89:cb:3c:a8:d8:5f:d8:97:90: 63:7a:d0:74:a9:21:6d:00:a7:60:3a:49:eb:4c:e8:51:3e:8c: 15:8b:08:c8:41:8b:ba:21:4d:c9:ef:49:cd:3c:4b:b9:6c:a0: 53:e6:03:9d:2d:7a:17:53:1a:61:ec:32:0b:33:c6:c4:e8:15: 25:cd:cb:a3:8a:51:77:1f:20:ad:50:0b:0c:8f:88:70:77:78: db:4c:41:ef -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhFRUQxMTAvBgNVBAUTKDcyMTMxQkYwMjkwNEE4NDkxRkI5M0M0MUQ0NURGQkU5 NDJBQUQ2NzEwHhcNMjUxMDA5MDYzNDE2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU3NTc2OC02YzY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzESleIQcijkl44qz3N7fG91qeBU4Je8bZSCdSZr2p84VeX7VKVlYioDWaG8+ SNvpJi6K9+iiT/R7VHivTPaFsuOnTbB4HOPFNxsWhd19hpVAaSObu5dSP72iqNj/ wsgOqIRXZIXySAlKDvJqRghAJiVzWXAMlmpMTddEuo1SmR/xHWgi9Pu8qWwGS4IF HuSPONL2UHyL4oMKY+x3TEhlRhadtFwPBQC2+3ezqsEb4vr8knSwFWNb9vEvlEIv YJmitNJiOTa1uZaf3lWpuRByDgjBJSJm0wVK0ckOgXdpq4XdZcge/CsxsUtzE4Og oJTBHUm+Fs+Qjc4B6a8cYReVswIDAQABo4IClTCCApEwHQYDVR0OBBYEFA4kxljH fUbMkBM1bqDTpveFcANuMB8GA1UdIwQYMBaAFHITG/ApBKhJH7k8QdRd++lCqtZx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEVFRC8yODNFNEU1MjU1 M0ExMUVGOUVDM0I3MzhDNEY5QUUwMi9jaE1iOENrRXFFa2Z1VHhCMUYzNzZVS3Ex bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NoTWI4Q2tFcUVrZnVUeEIxRjM3NlVLcTFuRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjhFRUQvMjgzRTRFNTI1NTNBMTFFRjlFQzNCNzM4QzRGOUFFMDIvRTVCNjY5NjA1 NTNBMTFFRkI2QkNGQjgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnjfgwDQYJKoZIhvcNAQELBQADggEBAK0JhO1jkzGyI/fu AuQgSc3xMqg/i4C7yTaPTdy/cJWMZLzEO6Qvtp15EqWdbylks8+4GY5rJy05TmbI evaVxNh2DZLNcUSmh56o3GsBCjjVPyq47jTt/pJYBKpPxirOE1heD1SbFtzSiMvK /k35s+FqK5gQaQzy8zXtUkVfV0wvihEgqpRSOOx4JhlpaaDGf6PRW1Uhc9nxhZ/r eFDgEZg5dj1NrPa1xQusXYnLPKjYX9iXkGN60HSpIW0Ap2A6SetM6FE+jBWLCMhB i7ohTcnvSc08S7lsoFPmA50tehdTGmHsMgszxsToFSXNy6OKUXcfIK1QCwyPiHB3 eNtMQe8= -----END CERTIFICATE-----Generated at Mon Oct 20 13:48:50 2025 by rpki-client