$ rpki-client -vvf rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/20322C32233F11EB9E4D160EC4F9AE02.roa File: 20322C32233F11EB9E4D160EC4F9AE02.roa (raw, json) Hash identifier: v+QXD6bTtJAGlVNjOl+dSqWjB8ujPNeWcMRgTCNmmWA= Subject key identifier: F4:5E:0F:E0:D5:3F:A0:98:28:77:0E:A5:3F:3C:57:E1:ED:34:E7:30 Certificate issuer: /CN=A9140A8F/serialNumber=3D93EB66D81A276A039246168D3278B267EBAEEC Certificate serial: 07B8 Authority key identifier: 3D:93:EB:66:D8:1A:27:6A:03:92:46:16:8D:32:78:B2:67:EB:AE:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PZPrZtgaJ2oDkkYWjTJ4smfrruw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/20322C32233F11EB9E4D160EC4F9AE02.roa Signing time: Sat 04 Oct 2025 21:52:01 +0000 ROA not before: Sat 04 Oct 2025 21:52:01 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 38880 IP address blocks: 103.198.40.0/24 maxlen: 24 103.198.41.0/24 maxlen: 24 202.129.244.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/PZPrZtgaJ2oDkkYWjTJ4smfrruw.crl rsync://rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/PZPrZtgaJ2oDkkYWjTJ4smfrruw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PZPrZtgaJ2oDkkYWjTJ4smfrruw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:44:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1976 (0x7b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140A8F, serialNumber=3D93EB66D81A276A039246168D3278B267EBAEEC Validity Not Before: Oct 4 21:52:01 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68e19701-98ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:53:c5:ce:ef:d7:47:5d:21:84:d2:ae:66:ce: b1:f1:3c:8f:c8:cc:e6:82:e2:45:82:5a:ba:9b:48: af:e7:54:0e:f8:a3:74:f9:af:cf:c8:31:a9:ef:a4: cd:f8:1f:ea:27:3d:28:46:81:e6:f2:fa:47:91:8f: 92:19:8e:83:8b:c1:98:c8:d2:03:b9:c7:e5:0e:52: cb:4d:c5:4f:cf:ad:d6:d5:ca:c4:62:cd:71:ba:3a: 3d:3f:30:e1:ba:9c:9e:2d:f9:84:38:e7:fa:ac:70: 41:cf:d0:51:72:f8:30:f3:40:5c:78:a2:d5:68:74: 83:7d:4b:9c:4a:9c:da:de:bd:8d:fe:34:c7:da:27: 01:f5:6b:06:f6:bd:ed:0b:bc:7e:0c:f3:f4:c9:15: 29:a9:4e:ea:8e:28:66:9e:d9:51:49:9c:87:45:c0: c7:c6:70:05:76:8f:f8:ff:fc:66:5f:da:1d:f9:f2: 94:3e:68:28:45:ca:f6:7f:32:88:71:d6:3d:60:b7: e6:ca:74:b4:a9:53:05:fc:a6:da:73:bb:d7:f1:a4: 64:94:ea:e8:e6:4c:a7:35:2f:da:e4:0f:86:fe:af: f1:19:ea:5f:81:68:29:88:cd:9f:9a:7e:87:c4:22: ac:1d:c3:7e:9a:31:47:63:a2:35:3d:f4:e0:29:6e: 95:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:5E:0F:E0:D5:3F:A0:98:28:77:0E:A5:3F:3C:57:E1:ED:34:E7:30 X509v3 Authority Key Identifier: keyid:3D:93:EB:66:D8:1A:27:6A:03:92:46:16:8D:32:78:B2:67:EB:AE:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/PZPrZtgaJ2oDkkYWjTJ4smfrruw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PZPrZtgaJ2oDkkYWjTJ4smfrruw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/20322C32233F11EB9E4D160EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.198.40.0/23 202.129.244.0/22 Signature Algorithm: sha256WithRSAEncryption 35:41:71:b2:63:85:ef:aa:2b:3e:c9:3b:a6:9e:e5:92:b5:d7: ae:e2:57:00:55:47:fd:84:76:6b:51:0d:3c:41:56:ba:a5:48: 0c:16:44:92:33:08:5c:23:6b:b1:a8:32:20:ca:1e:c0:ab:11: 37:9e:3a:0c:ae:20:10:18:a0:46:f5:61:98:0a:31:3e:cb:ac: 92:4f:89:32:9a:ac:89:e3:02:1f:38:f7:8f:7e:29:81:3a:cc: 56:2d:5d:92:18:a9:11:e8:f8:5d:36:7c:92:b8:d5:78:b7:d7: 4b:6f:ae:e4:45:c5:22:ae:da:21:e9:7f:13:c2:af:c1:92:36: 66:fe:4d:15:8a:b8:2e:7b:d6:20:23:88:47:b8:fc:b1:da:6c: ec:33:a8:f1:dc:3d:ba:31:b5:7a:99:46:3d:cc:18:a0:80:25: 4f:c4:7f:2b:48:13:be:66:97:e2:f4:66:c2:45:07:10:b0:96: 33:03:14:f7:78:6c:60:a0:c8:e9:ff:a4:96:8a:b9:a5:89:e9: 04:06:c6:9c:ee:73:b7:74:b0:09:86:41:c1:b6:ff:3b:59:3b: 8e:81:14:12:e4:32:f4:11:00:3d:70:bb:6d:6e:dc:87:8d:ac: 63:e9:fe:27:cb:50:7a:ab:13:2b:89:dc:c3:f2:60:70:7a:d2: ad:72:72:55 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICB7gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBBOEYxMTAvBgNVBAUTKDNEOTNFQjY2RDgxQTI3NkEwMzkyNDYxNjhEMzI3OEIy NjdFQkFFRUMwHhcNMjUxMDA0MjE1MjAxWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OGUxOTcwMS05OGVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuFPFzu/XR10hhNKuZs6x8TyPyMzmguJFglq6m0iv51QO+KN0+a/PyDGp76TN +B/qJz0oRoHm8vpHkY+SGY6Di8GYyNIDucflDlLLTcVPz63W1crEYs1xujo9PzDh upyeLfmEOOf6rHBBz9BRcvgw80BceKLVaHSDfUucSpza3r2N/jTH2icB9WsG9r3t C7x+DPP0yRUpqU7qjihmntlRSZyHRcDHxnAFdo/4//xmX9od+fKUPmgoRcr2fzKI cdY9YLfmynS0qVMF/Kbac7vX8aRklOro5kynNS/a5A+G/q/xGepfgWgpiM2fmn6H xCKsHcN+mjFHY6I1PfTgKW6VEQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPReD+DV P6CYKHcOpT88V+HtNOcwMB8GA1UdIwQYMBaAFD2T62bYGidqA5JGFo0yeLJn667s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEE4Ri8zMzA1MjQ3QTIz M0MxMUVCODQ5QzVENkVDNEY5QUUwMi9QWlByWnRnYUoyb0Rra1lXalRKNHNtZnJy dXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BaUHJadGdhSjJvRGtrWVdqVEo0c21mcnJ1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDBBOEYvMzMwNTI0N0EyMzNDMTFFQjg0OUM1RDZFQzRGOUFFMDIvMjAzMjJDMzIy MzNGMTFFQjlFNEQxNjBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnxigDBALKgfQwDQYJKoZIhvcNAQELBQADggEBADVBcbJj he+qKz7JO6ae5ZK1167iVwBVR/2EdmtRDTxBVrqlSAwWRJIzCFwja7GoMiDKHsCr ETeeOgyuIBAYoEb1YZgKMT7LrJJPiTKarInjAh84949+KYE6zFYtXZIYqRHo+F02 fJK41Xi310tvruRFxSKu2iHpfxPCr8GSNmb+TRWKuC571iAjiEe4/LHabOwzqPHc PboxtXqZRj3MGKCAJU/EfytIE75ml+L0ZsJFBxCwljMDFPd4bGCgyOn/pJaKuaWJ 6QQGxpzuc7d0sAmGQcG2/ztZO46BFBLkMvQRAD1wu21u3IeNrGPp/ifLUHqrEyuJ 3MPyYHB60q1yclU= -----END CERTIFICATE-----Generated at Mon Oct 20 20:22:18 2025 by rpki-client