$ rpki-client -vvf rpki.apnic.net/member_repository/A9145D4C/F422FD12325811EDBD16D624C4F9AE02/5E24BEAADA7C11ED8156D867C4F9AE02.roa File: 5E24BEAADA7C11ED8156D867C4F9AE02.roa (raw, json) Hash identifier: gYrGpBtOa5YIIgPcE2GiFbVbv7Rp37pYIDK6OFW+qv0= Subject key identifier: 9D:35:FC:95:F0:BA:FB:8A:C9:26:45:11:A3:75:F1:8A:F5:F3:18:98 Certificate issuer: /CN=A9145D4C/serialNumber=40D8377CAA5A6EAB91133E962EFF7E21B5113DB9 Certificate serial: 026E Authority key identifier: 40:D8:37:7C:AA:5A:6E:AB:91:13:3E:96:2E:FF:7E:21:B5:11:3D:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNg3fKpabquREz6WLv9-IbURPbk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145D4C/F422FD12325811EDBD16D624C4F9AE02/5E24BEAADA7C11ED8156D867C4F9AE02.roa Signing time: Sun 05 Oct 2025 01:57:37 +0000 ROA not before: Sun 05 Oct 2025 01:57:37 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 10080 IP address blocks: 103.143.156.0/23 maxlen: 23 103.143.156.0/24 maxlen: 24 103.143.157.0/24 maxlen: 24 203.31.252.0/24 maxlen: 24 2400:a2e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145D4C/F422FD12325811EDBD16D624C4F9AE02/QNg3fKpabquREz6WLv9-IbURPbk.crl rsync://rpki.apnic.net/member_repository/A9145D4C/F422FD12325811EDBD16D624C4F9AE02/QNg3fKpabquREz6WLv9-IbURPbk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNg3fKpabquREz6WLv9-IbURPbk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:55:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 622 (0x26e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145D4C, serialNumber=40D8377CAA5A6EAB91133E962EFF7E21B5113DB9 Validity Not Before: Oct 5 01:57:37 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68e1d090-1644 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:9b:98:67:0a:09:96:18:41:6e:09:de:cb:7f: 3f:75:93:13:14:8f:66:f6:b9:e7:74:02:67:52:24: 2b:50:32:ea:66:e5:56:ba:75:d5:f7:80:94:70:01: fc:3e:30:6f:0f:6a:ad:7d:95:75:4b:6c:3f:9f:02: 8f:e6:7b:dc:07:6d:66:4c:df:73:33:a9:ba:af:2e: 41:06:92:29:60:18:9e:68:78:d2:6a:8e:0e:b5:a6: 9e:21:45:36:af:02:7b:d0:e7:d6:88:f8:6b:7f:15: 57:36:00:f7:e1:bf:28:5d:f0:be:76:91:c6:94:7a: 95:58:59:0f:28:1b:c4:78:98:66:f7:a8:74:52:c9: 55:db:27:61:f1:a2:ca:b2:0b:ba:4d:5f:7c:a4:88: 7a:95:06:69:ca:93:2a:7e:74:83:bb:26:d5:67:99: 62:bf:77:33:52:e2:f9:9a:18:fd:47:00:97:79:8a: a0:09:79:50:a8:ab:dd:36:88:7b:61:4d:ae:a7:96: d7:ae:df:e2:86:97:76:0c:99:97:74:ba:c3:2e:c6: 41:66:c3:79:50:32:c6:95:ef:35:67:71:40:7a:a3: 08:90:4b:40:d4:b9:8f:b9:c0:ae:58:9b:61:d0:36: 5a:17:5f:a7:cc:b3:df:38:f8:90:56:e4:49:40:58: 9e:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:35:FC:95:F0:BA:FB:8A:C9:26:45:11:A3:75:F1:8A:F5:F3:18:98 X509v3 Authority Key Identifier: keyid:40:D8:37:7C:AA:5A:6E:AB:91:13:3E:96:2E:FF:7E:21:B5:11:3D:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145D4C/F422FD12325811EDBD16D624C4F9AE02/QNg3fKpabquREz6WLv9-IbURPbk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNg3fKpabquREz6WLv9-IbURPbk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145D4C/F422FD12325811EDBD16D624C4F9AE02/5E24BEAADA7C11ED8156D867C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.143.156.0/23 203.31.252.0/24 IPv6: 2400:a2e0::/32 Signature Algorithm: sha256WithRSAEncryption 02:22:56:ff:85:90:2d:2e:0b:54:68:85:ae:18:35:0b:24:e9: d4:f9:05:44:83:aa:da:90:39:b5:89:27:76:f2:be:8a:89:0f: 53:1d:0c:51:3d:c3:da:28:03:83:c7:01:ce:7d:0f:1d:5d:aa: 3a:e7:86:07:3b:cf:5e:26:61:eb:b5:1c:8c:ad:6c:49:e9:7c: 2c:ed:6f:87:9c:01:7d:d4:10:80:1c:71:d3:eb:6e:6d:0f:a4: af:50:56:68:a7:c3:02:13:cd:fd:34:d2:c0:36:b3:32:f7:ad: ec:00:d4:3e:12:d7:b8:16:8e:ce:f5:88:68:08:0a:72:56:c2: 56:97:92:33:0b:62:1c:d1:7c:e1:fe:38:bb:62:e7:84:70:99: 42:a1:2a:59:a1:bd:a5:4d:d2:5b:ee:2a:49:64:97:75:80:d4: 4f:52:04:fc:46:99:0a:b6:4f:59:d8:b4:93:f4:90:d6:18:ad: 21:91:18:15:90:da:4f:e2:d1:40:d6:38:4e:9e:ea:7a:7d:fe: 13:51:8c:0f:cc:6e:fb:dc:b9:fd:5b:95:fb:74:20:ea:d2:ba: 61:83:a8:c9:0f:83:02:61:b8:a2:9e:02:9f:8f:75:2b:a0:52: 0c:97:c1:9b:cd:ed:cb:0e:ba:a4:25:27:7a:2d:1b:5c:eb:20: 62:98:62:3a -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICAm4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVENEMxMTAvBgNVBAUTKDQwRDgzNzdDQUE1QTZFQUI5MTEzM0U5NjJFRkY3RTIx QjUxMTNEQjkwHhcNMjUxMDA1MDE1NzM3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGUxZDA5MC0xNjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6ZuYZwoJlhhBbgney38/dZMTFI9m9rnndAJnUiQrUDLqZuVWunXV94CUcAH8 PjBvD2qtfZV1S2w/nwKP5nvcB21mTN9zM6m6ry5BBpIpYBieaHjSao4OtaaeIUU2 rwJ70OfWiPhrfxVXNgD34b8oXfC+dpHGlHqVWFkPKBvEeJhm96h0UslV2ydh8aLK sgu6TV98pIh6lQZpypMqfnSDuybVZ5liv3czUuL5mhj9RwCXeYqgCXlQqKvdNoh7 YU2up5bXrt/ihpd2DJmXdLrDLsZBZsN5UDLGle81Z3FAeqMIkEtA1LmPucCuWJth 0DZaF1+nzLPfOPiQVuRJQFiecwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFJ01/JXw uvuKySZFEaN18Yr18xiYMB8GA1UdIwQYMBaAFEDYN3yqWm6rkRM+li7/fiG1ET25 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUQ0Qy9GNDIyRkQxMjMy NTgxMUVEQkQxNkQ2MjRDNEY5QUUwMi9RTmczZktwYWJxdVJFejZXTHY5LUliVVJQ YmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FOZzNmS3BhYnF1UkV6NldMdjktSWJVUlBiay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDVENEMvRjQyMkZEMTIzMjU4MTFFREJEMTZENjI0QzRGOUFFMDIvNUUyNEJFQUFE QTdDMTFFRDgxNTZEODY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAFnj5wDBADLH/wwDQQCAAIwBwMFACQAouAwDQYJKoZIhvcN AQELBQADggEBAAIiVv+FkC0uC1Roha4YNQsk6dT5BUSDqtqQObWJJ3byvoqJD1Md DFE9w9ooA4PHAc59Dx1dqjrnhgc7z14mYeu1HIytbEnpfCztb4ecAX3UEIAccdPr bm0PpK9QVminwwITzf000sA2szL3rewA1D4S17gWjs71iGgICnJWwlaXkjMLYhzR fOH+OLti54RwmUKhKlmhvaVN0lvuKklkl3WA1E9SBPxGmQq2T1nYtJP0kNYYrSGR GBWQ2k/i0UDWOE6e6np9/hNRjA/Mbvvcuf1blft0IOrSumGDqMkPgwJhuKKeAp+P dSugUgyXwZvN7csOuqQlJ3otG1zrIGKYYjo= -----END CERTIFICATE-----Generated at Tue Oct 21 09:56:19 2025 by rpki-client