$ rpki-client -vvf rpki.apnic.net/member_repository/A9136EC5/2DECAE560E5611E4B6F1953AC4F9AE02/BB799DA8844011F09054B049C4F9AE02.roa File: BB799DA8844011F09054B049C4F9AE02.roa (raw, json) Hash identifier: knzQsney10eBtrl4m4R3Fm4mD7iLUDfpGtAd26xAm0A= Subject key identifier: 9E:15:09:1C:6A:2B:E2:A2:3A:1B:D2:A8:8A:46:2C:19:90:28:14:F3 Certificate issuer: /CN=A9136EC5/serialNumber=9FCE28914C50DC99755F108AB4334F772CBEA0E2 Certificate serial: 2B5E Authority key identifier: 9F:CE:28:91:4C:50:DC:99:75:5F:10:8A:B4:33:4F:77:2C:BE:A0:E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n84okUxQ3Jl1XxCKtDNPdyy-oOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136EC5/2DECAE560E5611E4B6F1953AC4F9AE02/BB799DA8844011F09054B049C4F9AE02.roa Signing time: Fri 26 Sep 2025 15:42:40 +0000 ROA not before: Fri 26 Sep 2025 15:42:40 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 31898 IP address blocks: 43.245.96.0/22 maxlen: 24 43.245.108.0/22 maxlen: 24 101.100.192.0/18 maxlen: 24 103.9.100.0/22 maxlen: 24 103.15.232.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136EC5/2DECAE560E5611E4B6F1953AC4F9AE02/n84okUxQ3Jl1XxCKtDNPdyy-oOI.crl rsync://rpki.apnic.net/member_repository/A9136EC5/2DECAE560E5611E4B6F1953AC4F9AE02/n84okUxQ3Jl1XxCKtDNPdyy-oOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n84okUxQ3Jl1XxCKtDNPdyy-oOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:45:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11102 (0x2b5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136EC5, serialNumber=9FCE28914C50DC99755F108AB4334F772CBEA0E2 Validity Not Before: Sep 26 15:42:40 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68d6b46f-30a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:be:83:cc:86:f9:d8:cf:ff:18:f5:d2:b9:c3: f7:e5:68:65:b9:46:08:20:e2:9f:84:08:ff:65:9c: 1a:a5:0a:35:13:16:63:e5:45:a5:98:a4:01:c1:fa: 40:73:ef:22:9a:c2:3f:6a:62:38:ed:76:f1:69:99: c8:80:ae:f8:ef:4f:c0:13:82:8d:7b:8c:fd:8a:26: a2:34:b6:9c:90:08:77:98:39:97:a3:71:1a:ef:e3: 59:99:2b:6f:26:b3:cb:f1:b0:b7:a7:10:41:74:31: f1:9b:82:27:3c:49:0c:f8:9f:4e:90:d7:9a:ed:f4: 3b:d7:2f:25:58:01:96:4e:c6:4a:97:a9:0b:7b:60: d4:9c:d3:98:4a:0d:22:05:1a:93:9b:92:ba:12:95: e8:22:21:fc:76:27:d9:45:ad:3c:5f:d0:01:70:c8: 8e:18:c7:c1:a2:aa:b5:64:5b:93:9d:ba:57:4b:05: 90:3e:43:a2:c1:af:53:3d:b1:fa:bf:19:25:06:3a: 6c:af:fc:7d:d7:c7:4f:75:62:a9:7d:ea:84:5c:c9: 41:29:e0:c0:a7:be:89:ff:d0:0a:51:94:6f:27:e4: 5f:5f:5e:9b:57:5b:76:79:e4:48:d0:fe:cd:0a:c1: f4:77:ac:33:2a:5b:e4:7e:d9:18:c8:27:ca:db:bf: b4:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:15:09:1C:6A:2B:E2:A2:3A:1B:D2:A8:8A:46:2C:19:90:28:14:F3 X509v3 Authority Key Identifier: keyid:9F:CE:28:91:4C:50:DC:99:75:5F:10:8A:B4:33:4F:77:2C:BE:A0:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136EC5/2DECAE560E5611E4B6F1953AC4F9AE02/n84okUxQ3Jl1XxCKtDNPdyy-oOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n84okUxQ3Jl1XxCKtDNPdyy-oOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136EC5/2DECAE560E5611E4B6F1953AC4F9AE02/BB799DA8844011F09054B049C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.245.96.0/22 43.245.108.0/22 101.100.192.0/18 103.9.100.0/22 103.15.232.0/22 Signature Algorithm: sha256WithRSAEncryption 82:53:4e:53:14:a3:3e:a3:41:72:29:f6:51:c8:01:81:9d:26: ee:b4:f2:67:cf:76:54:a3:a8:18:ff:9c:64:ee:89:5e:7f:60: fb:3f:e0:67:53:f3:e4:bc:27:12:58:5e:70:bc:f9:93:a0:90: 8a:a0:ab:98:b1:00:f6:b9:0b:ff:d2:32:f5:da:41:3a:82:a4: 36:1b:6a:6a:b3:77:96:72:df:10:ff:65:ba:a0:87:f5:74:6d: 58:ab:91:d3:b3:40:37:6a:57:17:54:e9:a3:07:d9:1d:bb:ae: 2a:2f:bf:f3:d8:83:fe:85:b9:5f:93:5d:5b:bb:cb:76:b8:cd: bd:8a:86:5b:8d:50:63:3f:7f:d6:b9:ce:46:75:9c:35:1d:7c: e2:f8:b3:e6:1d:9e:61:2c:39:f3:22:f6:d2:a4:67:89:31:76: 6c:7d:f0:cd:18:74:f5:2d:97:76:cd:f0:3e:34:5b:b9:64:89: 6c:7d:ee:b5:90:55:09:6f:76:3f:54:e1:61:0d:06:49:2f:34: 2d:14:4d:d7:1d:2f:16:e7:51:78:b1:4b:c6:98:46:1b:65:cb: f8:36:9a:87:20:80:2f:e6:d9:91:73:61:a6:bf:15:bf:24:40: f5:8b:bc:9d:4d:b7:e1:4b:1d:f9:7e:00:7e:c6:30:81:0c:91: 61:f7:60:91 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICK14wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZFQzUxMTAvBgNVBAUTKDlGQ0UyODkxNEM1MERDOTk3NTVGMTA4QUI0MzM0Rjc3 MkNCRUEwRTIwHhcNMjUwOTI2MTU0MjQwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ2YjQ2Zi0zMGEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsr6DzIb52M//GPXSucP35WhluUYIIOKfhAj/ZZwapQo1ExZj5UWlmKQBwfpA c+8imsI/amI47XbxaZnIgK7470/AE4KNe4z9iiaiNLackAh3mDmXo3Ea7+NZmStv JrPL8bC3pxBBdDHxm4InPEkM+J9OkNea7fQ71y8lWAGWTsZKl6kLe2DUnNOYSg0i BRqTm5K6EpXoIiH8difZRa08X9ABcMiOGMfBoqq1ZFuTnbpXSwWQPkOiwa9TPbH6 vxklBjpsr/x918dPdWKpfeqEXMlBKeDAp76J/9AKUZRvJ+RfX16bV1t2eeRI0P7N CsH0d6wzKlvkftkYyCfK27+0QQIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFJ4VCRxq K+KiOhvSqIpGLBmQKBTzMB8GA1UdIwQYMBaAFJ/OKJFMUNyZdV8QirQzT3csvqDi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkVDNS8yREVDQUU1NjBF NTYxMUU0QjZGMTk1M0FDNEY5QUUwMi9uODRva1V4UTNKbDFYeENLdEROUGR5eS1v T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL244NG9rVXhRM0psMVh4Q0t0RE5QZHl5LW9PSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzZFQzUvMkRFQ0FFNTYwRTU2MTFFNEI2RjE5NTNBQzRGOUFFMDIvQkI3OTlEQTg4 NDQwMTFGMDkwNTRCMDQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBAIr9WADBAIr9WwDBAZlZMADBAJnCWQDBAJnD+gwDQYJKoZI hvcNAQELBQADggEBAIJTTlMUoz6jQXIp9lHIAYGdJu608mfPdlSjqBj/nGTuiV5/ YPs/4GdT8+S8JxJYXnC8+ZOgkIqgq5ixAPa5C//SMvXaQTqCpDYbamqzd5Zy3xD/ Zbqgh/V0bVirkdOzQDdqVxdU6aMH2R27riovv/PYg/6FuV+TXVu7y3a4zb2KhluN UGM/f9a5zkZ1nDUdfOL4s+YdnmEsOfMi9tKkZ4kxdmx98M0YdPUtl3bN8D40W7lk iWx97rWQVQlvdj9U4WENBkkvNC0UTdcdLxbnUXixS8aYRhtly/g2mocggC/m2ZFz Yaa/Fb8kQPWLvJ1Nt+FLHfl+AH7GMIEMkWH3YJE= -----END CERTIFICATE-----Generated at Mon Oct 20 12:51:05 2025 by rpki-client