$ rpki-client -vvf rpki.apnic.net/member_repository/A9155DEB/162CB274EA4C11EAA257B939C4F9AE02/E382826C4AF611EFB245AE59C4F9AE02.roa File: E382826C4AF611EFB245AE59C4F9AE02.roa (raw, json) Hash identifier: P0Z3h3HuumfxbGBOlXuGuMnAJ1+xepxRxLb1CH8TQZA= Subject key identifier: D4:09:76:D2:D6:85:D9:17:00:CD:7C:38:6F:08:8C:C3:8B:5D:E2:21 Certificate issuer: /CN=A9155DEB/serialNumber=0B53B80A6C9C8AEB74D6D7BB571A5200CE55D8F3 Certificate serial: 0842 Authority key identifier: 0B:53:B8:0A:6C:9C:8A:EB:74:D6:D7:BB:57:1A:52:00:CE:55:D8:F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C1O4Cmyciut01te7VxpSAM5V2PM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155DEB/162CB274EA4C11EAA257B939C4F9AE02/E382826C4AF611EFB245AE59C4F9AE02.roa Signing time: Fri 26 Sep 2025 21:22:44 +0000 ROA not before: Fri 26 Sep 2025 21:22:44 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 135494 IP address blocks: 103.219.232.0/23 maxlen: 23 103.219.232.0/24 maxlen: 24 103.219.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155DEB/162CB274EA4C11EAA257B939C4F9AE02/C1O4Cmyciut01te7VxpSAM5V2PM.crl rsync://rpki.apnic.net/member_repository/A9155DEB/162CB274EA4C11EAA257B939C4F9AE02/C1O4Cmyciut01te7VxpSAM5V2PM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C1O4Cmyciut01te7VxpSAM5V2PM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:59:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2114 (0x842) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155DEB, serialNumber=0B53B80A6C9C8AEB74D6D7BB571A5200CE55D8F3 Validity Not Before: Sep 26 21:22:44 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68d70423-2840 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:72:72:ee:48:e2:dd:44:b4:de:4b:3f:fb:ce: 09:46:7a:77:bc:f5:c9:5c:3a:9b:98:37:7d:d2:1e: a3:3e:b4:4e:51:4d:e7:a1:2c:ed:4b:bf:93:25:8c: c9:f0:cb:e5:16:ef:3e:cf:0e:c9:7c:16:63:32:be: 0e:66:79:34:a6:4c:7e:8b:c4:b5:2b:f5:ad:09:d4: 81:54:f9:5e:1e:4e:fb:c4:5d:6f:bd:a4:19:53:26: 38:c5:8f:b0:c4:b1:d2:a9:40:d7:fa:b2:8b:11:36: e3:af:11:7b:75:75:26:7c:15:8d:fd:1f:8e:72:6e: c0:ee:39:5c:f2:18:13:f4:9d:c1:83:8e:09:42:ea: 9a:ec:02:f2:01:c4:4d:2b:84:26:4b:b0:3a:40:80: a4:17:b6:70:48:04:84:2f:74:e3:82:d8:60:40:c2: e9:08:22:25:b7:42:47:34:23:c6:b3:be:c1:92:b9: e6:d5:14:de:f8:17:a5:62:94:60:50:d7:99:c4:a0: cb:9c:15:e8:63:5f:90:1e:7e:37:a5:0c:05:0e:32: b6:31:82:4b:af:95:ba:81:c0:de:eb:ff:d3:98:b6: c8:c2:40:9d:2f:4c:0a:bc:0d:9b:e9:a4:33:dc:b8: f1:52:8d:72:0e:7b:fd:ce:dc:dc:59:17:5e:97:55: 6b:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:09:76:D2:D6:85:D9:17:00:CD:7C:38:6F:08:8C:C3:8B:5D:E2:21 X509v3 Authority Key Identifier: keyid:0B:53:B8:0A:6C:9C:8A:EB:74:D6:D7:BB:57:1A:52:00:CE:55:D8:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155DEB/162CB274EA4C11EAA257B939C4F9AE02/C1O4Cmyciut01te7VxpSAM5V2PM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C1O4Cmyciut01te7VxpSAM5V2PM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155DEB/162CB274EA4C11EAA257B939C4F9AE02/E382826C4AF611EFB245AE59C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.219.232.0/23 Signature Algorithm: sha256WithRSAEncryption 56:04:51:c4:54:d6:36:96:82:d6:0b:40:d3:1b:59:4f:34:d9: 9f:c7:79:8b:70:c2:f5:b5:26:89:e4:20:e1:93:8d:98:76:8e: c2:ad:94:74:06:f5:84:63:1c:cc:f1:8a:75:6d:4b:4a:9d:27: 0b:fb:c1:d5:48:2c:7d:97:d3:b1:1e:e4:52:66:28:10:71:61: 13:d3:ce:75:95:02:a1:73:c8:e3:43:24:28:59:58:14:09:4d: bb:9a:79:23:50:eb:f0:9b:46:78:39:1c:3e:51:2f:2e:da:f7: 5e:fd:b2:bd:8d:ec:55:ef:b9:19:cc:d7:d7:0c:62:3f:09:58: 09:c8:b1:ae:02:60:af:e3:75:67:03:af:13:88:75:a1:48:91: a4:14:9c:ea:de:0e:a6:5b:fc:e8:e0:41:57:88:08:67:8d:4c: 46:2d:3f:a0:5a:50:78:53:5d:ac:c8:30:65:d4:8a:b4:dd:34: 82:58:32:3d:65:41:2b:4b:a4:56:6d:b3:cc:d0:e4:ca:2c:f0: 68:99:e0:0d:fc:68:89:43:ed:48:61:d2:01:96:14:81:c8:b0: a4:7c:9e:43:99:67:58:3b:45:58:98:3d:c8:7c:6f:61:e9:69: c5:d4:56:15:12:58:ea:da:1a:ac:c7:b5:bd:d9:1f:5f:cf:84: 67:b1:ed:30 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCEIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTVERUIxMTAvBgNVBAUTKDBCNTNCODBBNkM5QzhBRUI3NEQ2RDdCQjU3MUE1MjAw Q0U1NUQ4RjMwHhcNMjUwOTI2MjEyMjQ0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ3MDQyMy0yODQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0nJy7kji3US03ks/+84JRnp3vPXJXDqbmDd90h6jPrROUU3noSztS7+TJYzJ 8MvlFu8+zw7JfBZjMr4OZnk0pkx+i8S1K/WtCdSBVPleHk77xF1vvaQZUyY4xY+w xLHSqUDX+rKLETbjrxF7dXUmfBWN/R+Ocm7A7jlc8hgT9J3Bg44JQuqa7ALyAcRN K4QmS7A6QICkF7ZwSASEL3TjgthgQMLpCCIlt0JHNCPGs77Bkrnm1RTe+BelYpRg UNeZxKDLnBXoY1+QHn43pQwFDjK2MYJLr5W6gcDe6//TmLbIwkCdL0wKvA2b6aQz 3LjxUo1yDnv9ztzcWRdel1VriQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNQJdtLW hdkXAM18OG8IjMOLXeIhMB8GA1UdIwQYMBaAFAtTuApsnIrrdNbXu1caUgDOVdjz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NURFQi8xNjJDQjI3NEVB NEMxMUVBQTI1N0I5MzlDNEY5QUUwMi9DMU80Q215Y2l1dDAxdGU3VnhwU0FNNVYy UE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MxTzRDbXljaXV0MDF0ZTdWeHBTQU01VjJQTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTVERUIvMTYyQ0IyNzRFQTRDMTFFQUEyNTdCOTM5QzRGOUFFMDIvRTM4MjgyNkM0 QUY2MTFFRkIyNDVBRTU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn2+gwDQYJKoZIhvcNAQELBQADggEBAFYEUcRU1jaWgtYL QNMbWU802Z/HeYtwwvW1JonkIOGTjZh2jsKtlHQG9YRjHMzxinVtS0qdJwv7wdVI LH2X07Ee5FJmKBBxYRPTznWVAqFzyONDJChZWBQJTbuaeSNQ6/CbRng5HD5RLy7a 9179sr2N7FXvuRnM19cMYj8JWAnIsa4CYK/jdWcDrxOIdaFIkaQUnOreDqZb/Ojg QVeICGeNTEYtP6BaUHhTXazIMGXUirTdNIJYMj1lQStLpFZts8zQ5Mos8GiZ4A38 aIlD7Uhh0gGWFIHIsKR8nkOZZ1g7RViYPch8b2HpacXUVhUSWOraGqzHtb3ZH1/P hGex7TA= -----END CERTIFICATE-----Generated at Mon Oct 20 13:42:41 2025 by rpki-client