$ rpki-client -vvf rpki.apnic.net/member_repository/A9133065/DB3514B0823311F0939BFF3FC4F9AE02/9D2C024A96AC11F0AFADA123C4F9AE02.roa File: 9D2C024A96AC11F0AFADA123C4F9AE02.roa (raw, json) Hash identifier: I0RVpIxu3FJSWG6c9nRYnbbSBrKB3qOukimW1QY+X3M= Subject key identifier: 08:43:9C:80:A0:92:C6:AD:C6:B8:67:85:B0:B7:87:C7:C5:98:39:D7 Certificate issuer: /CN=A9133065/serialNumber=654BCFD70ABC60B54139285305EFD0E315C3368E Certificate serial: 23 Authority key identifier: 65:4B:CF:D7:0A:BC:60:B5:41:39:28:53:05:EF:D0:E3:15:C3:36:8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUvP1wq8YLVBOShTBe_Q4xXDNo4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133065/DB3514B0823311F0939BFF3FC4F9AE02/9D2C024A96AC11F0AFADA123C4F9AE02.roa Signing time: Sun 21 Sep 2025 05:34:17 +0000 ROA not before: Sun 21 Sep 2025 05:34:16 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 136760 IP address blocks: 103.95.72.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133065/DB3514B0823311F0939BFF3FC4F9AE02/ZUvP1wq8YLVBOShTBe_Q4xXDNo4.crl rsync://rpki.apnic.net/member_repository/A9133065/DB3514B0823311F0939BFF3FC4F9AE02/ZUvP1wq8YLVBOShTBe_Q4xXDNo4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUvP1wq8YLVBOShTBe_Q4xXDNo4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:21:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133065, serialNumber=654BCFD70ABC60B54139285305EFD0E315C3368E Validity Not Before: Sep 21 05:34:16 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68cf8e58-f567 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e4:66:fd:4f:63:3b:b5:26:b2:20:8b:ec:c2: 5d:9f:2a:43:f4:38:af:f7:06:58:92:33:c0:41:56: 9f:c9:5a:2a:f7:9c:ca:6f:03:f2:6c:60:16:9b:da: 58:37:f5:f5:44:cf:92:92:4d:1b:db:f3:8b:bc:4e: 7a:a1:7b:68:b1:d9:4b:2a:d6:26:a5:06:ff:98:42: 4f:84:22:1a:67:3d:47:c5:a0:d3:f4:c9:59:08:5f: 51:e9:42:85:f5:a2:01:b8:85:f1:51:18:ae:ae:f7: 8b:48:1e:48:a1:cc:4b:29:53:05:43:4d:fc:d9:41: cf:20:62:4b:dd:a9:ed:6f:c9:5c:2c:d0:06:6a:03: ab:88:94:14:d8:76:74:0c:6a:b6:00:5b:58:c9:20: 6e:00:5b:14:9d:ab:9b:2a:57:fd:3b:ff:67:37:d6: a9:ab:e8:ad:46:97:ff:13:39:74:00:89:f9:b0:84: c9:ef:c6:a1:ae:bc:9e:8e:ae:24:06:ab:f6:31:84: 1d:4e:bd:be:bb:f9:0c:52:e9:e7:28:f9:8f:9a:6a: d0:cf:83:a0:a0:93:a3:79:c6:03:51:07:55:cb:a3: 80:63:cf:7a:f0:a4:5b:8b:d6:d4:80:48:87:b7:1e: 94:4d:26:60:a4:2e:2f:b0:29:ee:4a:60:96:31:99: b6:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:43:9C:80:A0:92:C6:AD:C6:B8:67:85:B0:B7:87:C7:C5:98:39:D7 X509v3 Authority Key Identifier: keyid:65:4B:CF:D7:0A:BC:60:B5:41:39:28:53:05:EF:D0:E3:15:C3:36:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133065/DB3514B0823311F0939BFF3FC4F9AE02/ZUvP1wq8YLVBOShTBe_Q4xXDNo4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZUvP1wq8YLVBOShTBe_Q4xXDNo4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133065/DB3514B0823311F0939BFF3FC4F9AE02/9D2C024A96AC11F0AFADA123C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.95.72.0/23 Signature Algorithm: sha256WithRSAEncryption 8e:af:ed:d4:81:38:6c:f4:a4:96:f3:50:b0:03:a9:0f:c3:2d: d6:4b:f8:80:e6:33:16:4a:ce:d0:9e:16:da:d0:d3:fa:20:b5: 3d:17:12:4c:fe:63:50:50:cf:f1:d6:2d:98:e5:21:03:2f:0d: d7:ad:41:a6:bb:c3:b3:91:db:b0:d1:78:ed:fa:b2:0c:63:67: a6:7e:53:06:9e:44:4e:47:86:af:07:9f:21:79:48:43:7f:47: af:38:6d:45:38:a5:bf:26:41:05:bd:18:8e:e1:df:29:ab:94: 7a:24:71:c8:5c:e8:27:d3:82:e4:32:4d:f3:1c:2f:e0:c2:bb: b6:5b:8b:a6:ff:78:e6:55:b2:dc:ca:ae:63:72:ca:34:c5:f5: 2e:26:50:36:95:d9:00:6d:5b:52:55:be:e4:0a:d4:08:ef:67: 23:8b:c0:b2:20:cd:9f:84:11:77:3a:12:a8:dd:65:07:e0:84: 9b:b6:84:f6:e3:8c:29:46:de:dd:61:4d:53:8e:48:bf:03:3c: 56:d6:fa:8c:fe:f5:a9:09:b1:21:4e:92:d8:d5:70:31:45:18: 8a:ec:e4:a6:7a:71:6e:1e:97:0a:16:7c:da:01:70:dc:c7:fe: e3:fd:56:01:ef:20:5b:61:cf:b8:7c:1b:de:e1:f1:83:e2:a8: 1d:be:ca:0e -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBIzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MzA2NTExMC8GA1UEBRMoNjU0QkNGRDcwQUJDNjBCNTQxMzkyODUzMDVFRkQwRTMx NUMzMzY4RTAeFw0yNTA5MjEwNTM0MTZaFw0yNjA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4Y2Y4ZTU4LWY1NjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCt5Gb9T2M7tSayIIvswl2fKkP0OK/3BliSM8BBVp/JWir3nMpvA/JsYBab2lg3 9fVEz5KSTRvb84u8Tnqhe2ix2Usq1ialBv+YQk+EIhpnPUfFoNP0yVkIX1HpQoX1 ogG4hfFRGK6u94tIHkihzEspUwVDTfzZQc8gYkvdqe1vyVws0AZqA6uIlBTYdnQM arYAW1jJIG4AWxSdq5sqV/07/2c31qmr6K1Gl/8TOXQAifmwhMnvxqGuvJ6OriQG q/YxhB1Ovb67+QxS6eco+Y+aatDPg6Cgk6N5xgNRB1XLo4Bjz3rwpFuL1tSASIe3 HpRNJmCkLi+wKe5KYJYxmbazAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUCEOcgKCS xq3GuGeFsLeHx8WYOdcwHwYDVR0jBBgwFoAUZUvP1wq8YLVBOShTBe/Q4xXDNo4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMzMDY1L0RCMzUxNEIwODIz MzExRjA5MzlCRkYzRkM0RjlBRTAyL1pVdlAxd3E4WUxWQk9TaFRCZV9RNHhYRE5v NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWlV2UDF3cThZTFZCT1NoVEJlX1E0eFhETm80LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MzA2NS9EQjM1MTRCMDgyMzMxMUYwOTM5QkZGM0ZDNEY5QUUwMi85RDJDMDI0QTk2 QUMxMUYwQUZBREExMjNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWdfSDANBgkqhkiG9w0BAQsFAAOCAQEAjq/t1IE4bPSklvNQ sAOpD8Mt1kv4gOYzFkrO0J4W2tDT+iC1PRcSTP5jUFDP8dYtmOUhAy8N161BprvD s5HbsNF47fqyDGNnpn5TBp5ETkeGrwefIXlIQ39HrzhtRTilvyZBBb0YjuHfKauU eiRxyFzoJ9OC5DJN8xwv4MK7tluLpv945lWy3MquY3LKNMX1LiZQNpXZAG1bUlW+ 5ArUCO9nI4vAsiDNn4QRdzoSqN1lB+CEm7aE9uOMKUbe3WFNU45IvwM8Vtb6jP71 qQmxIU6S2NVwMUUYiuzkpnpxbh6XChZ82gFw3Mf+4/1WAe8gW2HPuHwb3uHxg+Ko Hb7KDg== -----END CERTIFICATE-----Generated at Mon Oct 20 04:35:04 2025 by rpki-client