$ rpki-client -vvf rpki.apnic.net/member_repository/A9142747/AFE88120E20611EABB166D5FC4F9AE02/A15F9276E2A911EAADD4CF7AC4F9AE02.roa File: A15F9276E2A911EAADD4CF7AC4F9AE02.roa (raw, json) Hash identifier: 2kaLA3OXyUts1hifmBFAJDN2z6cyzPCnOT2p5MOkteQ= Subject key identifier: 4F:6D:9E:E4:0F:46:A7:E9:D7:30:41:C0:79:2E:59:3C:45:77:BA:E0 Certificate issuer: /CN=A9142747/serialNumber=6F0DCB1CE260C0A138894DFC448ADDC924136981 Certificate serial: 0840 Authority key identifier: 6F:0D:CB:1C:E2:60:C0:A1:38:89:4D:FC:44:8A:DD:C9:24:13:69:81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bw3LHOJgwKE4iU38RIrdySQTaYE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142747/AFE88120E20611EABB166D5FC4F9AE02/A15F9276E2A911EAADD4CF7AC4F9AE02.roa Signing time: Thu 02 Oct 2025 20:51:46 +0000 ROA not before: Thu 02 Oct 2025 20:51:46 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 140908 IP address blocks: 103.153.80.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142747/AFE88120E20611EABB166D5FC4F9AE02/bw3LHOJgwKE4iU38RIrdySQTaYE.crl rsync://rpki.apnic.net/member_repository/A9142747/AFE88120E20611EABB166D5FC4F9AE02/bw3LHOJgwKE4iU38RIrdySQTaYE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bw3LHOJgwKE4iU38RIrdySQTaYE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:55:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2112 (0x840) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142747, serialNumber=6F0DCB1CE260C0A138894DFC448ADDC924136981 Validity Not Before: Oct 2 20:51:46 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=68dee5e2-8979 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:35:5c:02:07:80:8e:7c:a7:66:56:9d:8d:b9: a6:47:db:1d:e4:37:41:80:ab:20:83:a4:f8:64:6b: 1f:8c:65:65:f7:dc:c4:70:87:9d:81:0d:61:77:2a: 8a:83:d7:cf:00:30:4c:1e:eb:03:f0:25:ff:c9:b4: c8:8a:10:07:73:e3:da:38:d9:dc:92:85:a8:15:db: 96:4d:29:0a:2c:41:4b:ba:3d:8c:3b:84:b9:ae:32: bc:26:3a:53:37:06:2e:17:da:3d:8e:f3:9d:fe:c5: 8d:e8:be:d7:1b:00:1e:31:6e:b7:f4:4b:f3:31:57: cb:f5:aa:41:4d:ed:d7:1a:3d:84:d9:ac:aa:45:01: e5:a6:8d:1a:12:d7:75:52:22:eb:ce:42:ea:c1:ca: 08:13:0c:6e:38:da:77:e8:51:e8:1f:6f:31:c4:62: 28:7b:31:14:bf:d5:76:b9:1f:d2:53:cc:ef:c9:76: 09:91:25:02:0e:01:ba:3b:97:b2:0b:35:aa:99:3b: d1:70:c2:72:40:cb:06:fc:a6:0d:59:8a:83:cd:6d: 9e:40:87:70:af:3e:2d:79:14:df:20:25:43:9e:3f: a1:a5:b3:97:d1:52:14:0d:2e:6b:8e:3d:b3:9e:de: b9:3f:04:1f:70:18:96:89:81:21:35:c0:ae:69:88: 84:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:6D:9E:E4:0F:46:A7:E9:D7:30:41:C0:79:2E:59:3C:45:77:BA:E0 X509v3 Authority Key Identifier: keyid:6F:0D:CB:1C:E2:60:C0:A1:38:89:4D:FC:44:8A:DD:C9:24:13:69:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142747/AFE88120E20611EABB166D5FC4F9AE02/bw3LHOJgwKE4iU38RIrdySQTaYE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bw3LHOJgwKE4iU38RIrdySQTaYE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142747/AFE88120E20611EABB166D5FC4F9AE02/A15F9276E2A911EAADD4CF7AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.80.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:03:d9:59:a9:53:b4:ce:58:d6:9f:1c:6f:c7:8f:cf:c2:a9: d6:22:43:75:95:eb:38:0d:a7:9c:1b:20:4f:5d:48:f6:8b:05: 36:f2:1d:6b:e1:c8:2c:24:6b:2a:c4:67:d2:68:f2:92:8a:2c: d6:c7:56:bf:22:64:e4:be:be:7b:6a:82:9b:ba:6c:5e:e0:93: 24:dc:7d:bb:6a:85:1c:a7:fc:fb:58:38:f8:7f:99:43:75:bb: ac:9f:90:18:18:16:07:af:8f:67:0d:b9:33:f8:3a:9d:d9:80: 1c:86:19:9e:1e:70:e1:bb:95:b0:c4:e6:04:39:dd:c7:af:07: 67:5c:fb:ef:02:49:73:b4:52:3d:f5:24:82:ef:46:a6:65:4b: cf:9f:11:76:86:03:94:a8:cf:7a:19:4e:62:13:5e:5f:e9:c4: 30:4b:6c:12:e3:3d:ac:31:14:d3:ec:e5:cb:a4:71:33:85:12: f4:31:ab:a8:b1:aa:1c:ea:5b:b2:c4:b6:e4:d3:d5:dc:9c:97: a1:2b:49:6e:69:08:fa:b9:fd:37:f5:3b:03:e2:b0:26:83:12: d2:04:82:41:96:79:c1:d4:d8:e4:8e:13:2e:61:36:82:80:3d: e3:50:f4:78:2c:ab:8d:d3:6f:1f:26:4e:91:e4:a7:88:a9:bb: 65:e3:df:f3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCEAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDI3NDcxMTAvBgNVBAUTKDZGMERDQjFDRTI2MEMwQTEzODg5NERGQzQ0OEFEREM5 MjQxMzY5ODEwHhcNMjUxMDAyMjA1MTQ2WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRlZTVlMi04OTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3TVcAgeAjnynZladjbmmR9sd5DdBgKsgg6T4ZGsfjGVl99zEcIedgQ1hdyqK g9fPADBMHusD8CX/ybTIihAHc+PaONnckoWoFduWTSkKLEFLuj2MO4S5rjK8JjpT NwYuF9o9jvOd/sWN6L7XGwAeMW639EvzMVfL9apBTe3XGj2E2ayqRQHlpo0aEtd1 UiLrzkLqwcoIEwxuONp36FHoH28xxGIoezEUv9V2uR/SU8zvyXYJkSUCDgG6O5ey CzWqmTvRcMJyQMsG/KYNWYqDzW2eQIdwrz4teRTfICVDnj+hpbOX0VIUDS5rjj2z nt65PwQfcBiWiYEhNcCuaYiEswIDAQABo4IClTCCApEwHQYDVR0OBBYEFE9tnuQP Rqfp1zBBwHkuWTxFd7rgMB8GA1UdIwQYMBaAFG8NyxziYMChOIlN/ESK3ckkE2mB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Mjc0Ny9BRkU4ODEyMEUy MDYxMUVBQkIxNjZENUZDNEY5QUUwMi9idzNMSE9KZ3dLRTRpVTM4UklyZHlTUVRh WUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J3M0xIT0pnd0tFNGlVMzhSSXJkeVNRVGFZRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDI3NDcvQUZFODgxMjBFMjA2MTFFQUJCMTY2RDVGQzRGOUFFMDIvQTE1RjkyNzZF MkE5MTFFQUFERDRDRjdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnmVAwDQYJKoZIhvcNAQELBQADggEBAJ4D2VmpU7TOWNaf HG/Hj8/CqdYiQ3WV6zgNp5wbIE9dSPaLBTbyHWvhyCwkayrEZ9Jo8pKKLNbHVr8i ZOS+vntqgpu6bF7gkyTcfbtqhRyn/PtYOPh/mUN1u6yfkBgYFgevj2cNuTP4Op3Z gByGGZ4ecOG7lbDE5gQ53cevB2dc++8CSXO0Uj31JILvRqZlS8+fEXaGA5Soz3oZ TmITXl/pxDBLbBLjPawxFNPs5cukcTOFEvQxq6ixqhzqW7LEtuTT1dycl6ErSW5p CPq5/Tf1OwPisCaDEtIEgkGWecHU2OSOEy5hNoKAPeNQ9Hgsq43Tbx8mTpHkp4ip u2Xj3/M= -----END CERTIFICATE-----Generated at Mon Oct 20 13:43:21 2025 by rpki-client