$ rpki-client -vvf rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/85B13C3299CE11F087D1450FC4F9AE02.roa File: 85B13C3299CE11F087D1450FC4F9AE02.roa (raw, json) Hash identifier: WGM85d42jF0RvgbFfnNoubVrh59/d23ICHptXHKbWpI= Subject key identifier: 41:CA:62:33:10:E5:5B:79:CA:5C:5E:29:62:DC:96:6F:20:5E:D1:59 Certificate issuer: /CN=A9145D25/serialNumber=C2F28E9D188439C4FE69F63A4CAA6DA42496291D Certificate serial: 05AD Authority key identifier: C2:F2:8E:9D:18:84:39:C4:FE:69:F6:3A:4C:AA:6D:A4:24:96:29:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/85B13C3299CE11F087D1450FC4F9AE02.roa Signing time: Thu 25 Sep 2025 05:14:34 +0000 ROA not before: Thu 25 Sep 2025 05:14:34 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 45102 IP address blocks: 103.135.210.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.crl rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:09:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1453 (0x5ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145D25, serialNumber=C2F28E9D188439C4FE69F63A4CAA6DA42496291D Validity Not Before: Sep 25 05:14:34 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68d4cfb9-1621 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:d0:30:f4:7c:0f:70:d9:e6:4b:ed:24:83:49: 3d:4d:fd:06:d8:c2:b7:3e:c6:d0:87:cd:dc:80:e3: 04:4f:40:f5:6a:d2:7f:00:5f:94:1a:6e:1c:f3:1f: 17:ad:a4:b8:bd:b4:c6:00:b8:db:42:64:dd:10:11: 07:47:a9:8f:74:3c:ec:0c:45:bc:73:12:4d:e9:09: 3b:2b:c4:db:59:82:e4:a3:9d:64:27:7b:05:63:b1: 68:ae:0f:d0:d1:82:d4:d6:48:d4:c7:ea:48:bc:20: f7:df:1f:be:94:aa:d1:86:d3:ae:1b:fb:16:d7:78: f7:78:a1:01:50:76:64:4b:bb:80:66:64:a0:eb:31: 83:58:96:3e:0b:d9:90:10:a7:67:0a:8f:85:95:96: 97:a3:dc:d4:37:de:8b:62:66:c6:41:11:d4:3d:4f: 0c:7d:02:40:8d:33:e1:be:ec:75:be:d3:33:82:88: d6:79:01:aa:8d:59:c2:e6:37:d5:98:9d:6e:c1:ba: 46:8f:d1:67:af:e3:ae:c8:4c:ad:bf:f7:9d:8d:2f: de:19:e0:c1:40:7c:85:d8:ff:5a:59:c1:a5:4b:e1: 19:7c:d4:3e:90:9c:d8:7d:7c:de:81:51:ae:eb:c4: a9:7e:a3:ba:5b:91:52:99:d4:2a:f7:6e:b9:31:5c: f6:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:CA:62:33:10:E5:5B:79:CA:5C:5E:29:62:DC:96:6F:20:5E:D1:59 X509v3 Authority Key Identifier: keyid:C2:F2:8E:9D:18:84:39:C4:FE:69:F6:3A:4C:AA:6D:A4:24:96:29:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/85B13C3299CE11F087D1450FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.135.210.0/23 Signature Algorithm: sha256WithRSAEncryption 7a:b7:dc:c6:95:e0:db:e7:b2:22:53:5c:07:49:cd:d0:c0:a1: dd:f4:11:02:f8:9e:e7:d4:ca:0d:ad:f2:ac:98:da:4b:8d:ef: 92:e6:ab:40:4f:80:f4:6e:73:76:e8:94:38:fb:8d:c4:da:75: ce:70:90:33:c7:0c:e2:1d:02:93:bd:df:3f:3b:63:3a:a9:07: e1:1e:5f:1e:01:22:aa:f3:d9:85:1d:3e:2d:32:40:77:28:3f: 20:74:19:0e:6b:24:86:b1:24:f9:ed:d7:d9:dc:2b:5d:b0:34: eb:53:41:d6:5f:41:67:91:9b:83:6e:11:bd:b9:5d:4c:ff:7e: 68:57:e1:22:83:31:53:69:39:85:d9:ae:e0:90:9c:6b:b2:6f: a0:01:60:c3:d5:9c:ad:67:92:47:15:6c:a5:f2:bf:e0:34:99: 64:5f:68:c7:14:fd:8f:4e:04:75:37:72:e3:4b:2f:f5:c1:fd: ad:55:94:65:b4:63:ae:b8:02:25:44:b0:3e:a3:19:da:fa:7e: e8:9a:1a:b6:b1:93:e7:33:e4:d5:03:7f:6a:89:13:07:86:ae: ba:10:87:35:b0:b2:51:32:2d:09:e2:e5:3a:a1:2b:f6:d4:19: e6:19:fd:67:c9:ff:24:b7:fc:51:36:72:d0:3e:dc:62:5a:10: 20:31:0a:d3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVEMjUxMTAvBgNVBAUTKEMyRjI4RTlEMTg4NDM5QzRGRTY5RjYzQTRDQUE2REE0 MjQ5NjI5MUQwHhcNMjUwOTI1MDUxNDM0WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ0Y2ZiOS0xNjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl9Aw9HwPcNnmS+0kg0k9Tf0G2MK3PsbQh83cgOMET0D1atJ/AF+UGm4c8x8X raS4vbTGALjbQmTdEBEHR6mPdDzsDEW8cxJN6Qk7K8TbWYLko51kJ3sFY7Forg/Q 0YLU1kjUx+pIvCD33x++lKrRhtOuG/sW13j3eKEBUHZkS7uAZmSg6zGDWJY+C9mQ EKdnCo+FlZaXo9zUN96LYmbGQRHUPU8MfQJAjTPhvux1vtMzgojWeQGqjVnC5jfV mJ1uwbpGj9Fnr+OuyEytv/edjS/eGeDBQHyF2P9aWcGlS+EZfNQ+kJzYfXzegVGu 68SpfqO6W5FSmdQq9265MVz2XwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEHKYjMQ 5Vt5ylxeKWLclm8gXtFZMB8GA1UdIwQYMBaAFMLyjp0YhDnE/mn2OkyqbaQklikd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUQyNS82N0YyQjBEODBC RDIxMUVDQkFBNDgwNkFDNEY5QUUwMi93dktPblJpRU9jVC1hZlk2VEtwdHBDU1dL UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3d2S09uUmlFT2NULWFmWTZUS3B0cENTV0tSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDVEMjUvNjdGMkIwRDgwQkQyMTFFQ0JBQTQ4MDZBQzRGOUFFMDIvODVCMTNDMzI5 OUNFMTFGMDg3RDE0NTBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnh9IwDQYJKoZIhvcNAQELBQADggEBAHq33MaV4NvnsiJT XAdJzdDAod30EQL4nufUyg2t8qyY2kuN75Lmq0BPgPRuc3bolDj7jcTadc5wkDPH DOIdApO93z87YzqpB+EeXx4BIqrz2YUdPi0yQHcoPyB0GQ5rJIaxJPnt19ncK12w NOtTQdZfQWeRm4NuEb25XUz/fmhX4SKDMVNpOYXZruCQnGuyb6ABYMPVnK1nkkcV bKXyv+A0mWRfaMcU/Y9OBHU3cuNLL/XB/a1VlGW0Y664AiVEsD6jGdr6fuiaGrax k+cz5NUDf2qJEweGrroQhzWwslEyLQni5TqhK/bUGeYZ/WfJ/yS3/FE2ctA+3GJa ECAxCtM= -----END CERTIFICATE-----Generated at Mon Oct 20 08:18:13 2025 by rpki-client