$ rpki-client -vvf rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/2379396E35DA11F08BAAE414C4F9AE02.roa File: 2379396E35DA11F08BAAE414C4F9AE02.roa (raw, json) Hash identifier: Jx8gJbXn9OtsYSW59bLdCCTB+IjRw64vOzcz4bDoiq4= Subject key identifier: ED:51:87:EB:B7:50:F1:14:7C:EF:DB:2D:F5:1E:4B:1D:65:03:DE:70 Certificate issuer: /CN=A9145D25/serialNumber=C2F28E9D188439C4FE69F63A4CAA6DA42496291D Certificate serial: 0588 Authority key identifier: C2:F2:8E:9D:18:84:39:C4:FE:69:F6:3A:4C:AA:6D:A4:24:96:29:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/2379396E35DA11F08BAAE414C4F9AE02.roa Signing time: Thu 11 Sep 2025 00:06:45 +0000 ROA not before: Thu 11 Sep 2025 00:06:45 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 146806 IP address blocks: 103.135.208.0/24 maxlen: 24 103.135.209.0/24 maxlen: 24 103.135.210.0/24 maxlen: 24 103.135.211.0/24 maxlen: 24 203.168.128.0/22 maxlen: 22 203.168.128.0/23 maxlen: 23 203.168.128.0/24 maxlen: 24 203.168.129.0/24 maxlen: 24 203.168.130.0/23 maxlen: 23 203.168.130.0/24 maxlen: 24 203.168.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.crl rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:09:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1416 (0x588) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145D25, serialNumber=C2F28E9D188439C4FE69F63A4CAA6DA42496291D Validity Not Before: Sep 11 00:06:45 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68c21295-fee3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:9d:65:26:01:b1:f3:22:69:73:b8:35:b2:0f: 31:81:7b:3f:ea:82:74:e0:44:1a:33:c9:0e:74:bf: b4:85:da:19:3a:83:b5:e4:4c:85:aa:fd:7a:2a:d7: 48:cb:80:7c:ed:52:84:62:ac:d4:d3:f4:bd:a4:af: 15:43:16:26:0d:de:1e:40:43:fb:8f:4a:48:cc:74: 8c:31:bb:71:5f:2b:f1:ad:43:ed:12:3b:94:fb:77: e9:54:68:23:c6:a7:ca:61:16:9c:64:da:4b:06:29: 59:61:71:9e:ab:63:41:69:ed:55:e0:b0:ff:ff:7e: be:9a:b1:b3:b3:2f:d4:4e:64:1a:23:92:6e:6d:eb: b4:e0:94:e7:4d:b9:23:e5:bd:0e:16:2d:58:9c:84: b4:35:10:7c:29:4a:e8:07:88:13:e6:cf:2d:07:6c: 3f:5a:bc:f2:b8:9b:d2:3c:97:e3:9e:23:6c:f6:ce: 10:59:eb:5e:4f:7b:45:1e:55:c6:7d:5f:0f:dc:15: 8e:bf:ca:29:42:1c:d5:00:7c:57:9c:a1:1f:c1:4e: 43:d9:9b:53:13:a3:d3:bf:0d:51:d8:6a:63:8f:49: ac:05:0f:40:a3:79:cb:ee:04:9e:90:ef:66:77:1e: 68:d6:80:b2:63:84:e6:d4:79:08:80:57:13:12:91: 13:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:51:87:EB:B7:50:F1:14:7C:EF:DB:2D:F5:1E:4B:1D:65:03:DE:70 X509v3 Authority Key Identifier: keyid:C2:F2:8E:9D:18:84:39:C4:FE:69:F6:3A:4C:AA:6D:A4:24:96:29:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/2379396E35DA11F08BAAE414C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.135.208.0/22 203.168.128.0/22 Signature Algorithm: sha256WithRSAEncryption 7b:71:01:23:bf:7a:1e:0d:df:37:25:a2:61:05:78:69:8a:ca: d3:1c:8e:20:00:96:01:25:ca:dc:5f:90:32:cf:bd:60:ec:63: ea:73:d6:cb:6f:38:a5:9c:b9:6d:75:1e:ec:d1:43:12:3a:a5: c7:9d:93:da:95:93:7c:3c:49:fa:00:30:31:17:f6:79:99:62: a6:ed:38:a9:82:cd:ee:84:4f:f6:ac:56:ec:f9:28:20:eb:90: 1e:ae:a8:c6:db:be:ae:ac:4a:f3:e7:85:8d:d2:bc:05:26:4e: 0d:fa:21:f2:b3:26:9b:2c:1f:53:59:5a:87:de:a2:2a:fd:43: b3:b8:65:ff:2f:3a:3c:99:60:3d:2c:07:68:1f:43:91:51:5f: 0e:fa:57:b8:38:28:6a:1b:51:98:d6:36:27:cc:a1:37:c8:38: 22:0e:c1:86:70:5e:d2:23:da:5a:58:1c:c8:fd:5a:a9:10:92: 8a:40:05:21:1d:32:49:13:f2:70:dc:80:00:11:e4:a0:fa:8e: fd:c1:52:bc:db:ed:40:55:7b:cb:05:bc:77:e6:10:0b:5a:76: ab:b0:bf:eb:14:f0:3e:14:1c:55:34:2d:38:ff:fa:1c:59:15: 2c:7c:2e:2c:2c:06:f4:06:6c:23:e6:18:88:6d:92:6b:ea:e7: 64:57:eb:53 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVEMjUxMTAvBgNVBAUTKEMyRjI4RTlEMTg4NDM5QzRGRTY5RjYzQTRDQUE2REE0 MjQ5NjI5MUQwHhcNMjUwOTExMDAwNjQ1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGMyMTI5NS1mZWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArZ1lJgGx8yJpc7g1sg8xgXs/6oJ04EQaM8kOdL+0hdoZOoO15EyFqv16KtdI y4B87VKEYqzU0/S9pK8VQxYmDd4eQEP7j0pIzHSMMbtxXyvxrUPtEjuU+3fpVGgj xqfKYRacZNpLBilZYXGeq2NBae1V4LD//36+mrGzsy/UTmQaI5Jubeu04JTnTbkj 5b0OFi1YnIS0NRB8KUroB4gT5s8tB2w/WrzyuJvSPJfjniNs9s4QWeteT3tFHlXG fV8P3BWOv8opQhzVAHxXnKEfwU5D2ZtTE6PTvw1R2Gpjj0msBQ9Ao3nL7gSekO9m dx5o1oCyY4Tm1HkIgFcTEpET8wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFO1Rh+u3 UPEUfO/bLfUeSx1lA95wMB8GA1UdIwQYMBaAFMLyjp0YhDnE/mn2OkyqbaQklikd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUQyNS82N0YyQjBEODBC RDIxMUVDQkFBNDgwNkFDNEY5QUUwMi93dktPblJpRU9jVC1hZlk2VEtwdHBDU1dL UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3d2S09uUmlFT2NULWFmWTZUS3B0cENTV0tSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDVEMjUvNjdGMkIwRDgwQkQyMTFFQ0JBQTQ4MDZBQzRGOUFFMDIvMjM3OTM5NkUz NURBMTFGMDhCQUFFNDE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnh9ADBALLqIAwDQYJKoZIhvcNAQELBQADggEBAHtxASO/ eh4N3zclomEFeGmKytMcjiAAlgElytxfkDLPvWDsY+pz1stvOKWcuW11HuzRQxI6 pcedk9qVk3w8SfoAMDEX9nmZYqbtOKmCze6ET/asVuz5KCDrkB6uqMbbvq6sSvPn hY3SvAUmTg36IfKzJpssH1NZWofeoir9Q7O4Zf8vOjyZYD0sB2gfQ5FRXw76V7g4 KGobUZjWNifMoTfIOCIOwYZwXtIj2lpYHMj9WqkQkopABSEdMkkT8nDcgAAR5KD6 jv3BUrzb7UBVe8sFvHfmEAtadquwv+sU8D4UHFU0LTj/+hxZFSx8LiwsBvQGbCPm GIhtkmvq52RX61M= -----END CERTIFICATE-----Generated at Mon Oct 20 14:01:44 2025 by rpki-client