$ rpki-client -vvf rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/0F29204CB4B511EF86D6381EC4F9AE02.roa File: 0F29204CB4B511EF86D6381EC4F9AE02.roa (raw, json) Hash identifier: DPGURiy/ga59xiLR42DrUhd2krbJVgQk+C5+WjMHgzg= Subject key identifier: 2F:DB:B2:9A:C7:E7:44:5B:F1:87:B1:D8:1F:CD:17:5D:B7:28:47:A4 Certificate issuer: /CN=A9158131/serialNumber=C79BBEAA66241EECF01C30335DB18EF2B3F56026 Certificate serial: 0B52 Authority key identifier: C7:9B:BE:AA:66:24:1E:EC:F0:1C:30:33:5D:B1:8E:F2:B3:F5:60:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5u-qmYkHuzwHDAzXbGO8rP1YCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/0F29204CB4B511EF86D6381EC4F9AE02.roa Signing time: Mon 06 Oct 2025 19:50:23 +0000 ROA not before: Mon 06 Oct 2025 19:50:23 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 132298 IP address blocks: 103.35.168.0/22 maxlen: 22 103.35.168.0/24 maxlen: 24 103.35.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/x5u-qmYkHuzwHDAzXbGO8rP1YCY.crl rsync://rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/x5u-qmYkHuzwHDAzXbGO8rP1YCY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5u-qmYkHuzwHDAzXbGO8rP1YCY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:10:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2898 (0xb52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158131, serialNumber=C79BBEAA66241EECF01C30335DB18EF2B3F56026 Validity Not Before: Oct 6 19:50:23 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68e41d7e-dfdc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:be:f9:4b:e8:e9:2f:b9:43:6e:c1:f0:50:7d: 82:57:98:17:ca:cc:d0:af:7e:2a:e4:15:21:ac:76: 5b:5e:b6:85:27:67:96:48:4f:e0:26:f3:c1:e5:77: e4:b6:b1:d2:fb:e8:5e:3a:e1:61:2b:30:09:6d:af: 6d:d0:8b:5f:8c:80:14:97:6e:cd:59:9b:31:52:f0: e2:3f:7f:a9:69:7d:77:72:a4:fc:5d:3e:83:f2:41: aa:b3:69:00:81:72:b0:c2:2f:41:5e:ab:a5:e1:62: ce:b4:84:e8:bc:cd:71:2c:14:8a:ed:5a:15:2f:3f: 34:4a:fd:6a:5e:20:1f:48:44:2d:f3:31:05:89:22: a2:8a:c3:8e:b4:e2:ca:8a:c7:f5:10:68:44:18:65: 00:b2:15:62:c3:cb:7f:c8:30:95:2a:dd:20:3e:53: 46:60:de:05:de:4c:ef:09:40:60:70:3f:df:ac:08: c9:5e:ea:61:8b:5f:17:f4:a3:b9:4b:eb:08:7c:98: 66:a7:53:4e:51:b3:ed:9a:c2:a5:7f:6b:c8:b7:d1: 19:29:99:e9:6f:8c:84:d8:45:3f:e3:0b:19:61:99: c1:2e:5d:ca:6f:59:1a:05:70:2d:c4:fd:98:03:60: 8a:ce:c4:e6:72:d9:1d:63:cb:8f:30:65:82:e4:bd: bd:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:DB:B2:9A:C7:E7:44:5B:F1:87:B1:D8:1F:CD:17:5D:B7:28:47:A4 X509v3 Authority Key Identifier: keyid:C7:9B:BE:AA:66:24:1E:EC:F0:1C:30:33:5D:B1:8E:F2:B3:F5:60:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/x5u-qmYkHuzwHDAzXbGO8rP1YCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5u-qmYkHuzwHDAzXbGO8rP1YCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/0F29204CB4B511EF86D6381EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.35.168.0/22 Signature Algorithm: sha256WithRSAEncryption 80:15:a2:27:40:78:14:2c:5a:55:68:8f:95:8d:c2:29:09:a0: 63:19:52:a1:04:a0:e6:36:4f:24:b8:db:ab:5d:ef:b6:70:60: 29:dd:d4:c5:7d:19:cf:f4:43:97:67:2b:7c:5f:99:06:15:51: 6b:69:cd:5d:e1:bf:99:ab:e8:7e:c7:e5:d3:99:21:8b:5e:4f: 94:26:f2:94:94:ae:ee:94:fe:7f:50:7d:ff:ea:70:a0:bf:c3: bd:0e:6e:3b:af:e7:34:9d:7c:ea:7b:b2:54:6e:56:3e:c1:86: 37:09:17:89:b1:2a:de:8c:f0:65:b0:4e:a2:82:5d:eb:d0:40: 2b:d6:87:9d:ed:55:11:11:4b:18:11:e3:c8:81:06:cd:b5:bd: f4:d4:7f:ff:b0:f2:d1:46:a4:f8:dd:46:d4:ea:38:dd:4a:54: d7:56:cd:ec:0b:8f:9e:c4:7e:4c:e2:aa:13:35:cc:91:f4:18: ca:3e:fa:4f:94:26:50:3a:6e:84:87:c3:11:83:89:42:27:ba: 01:c8:3d:19:eb:4a:b4:a9:10:e5:82:7e:45:2c:d6:67:80:ce: e0:5e:ec:94:5c:71:1c:22:e1:ac:d3:12:76:92:3c:7e:7e:7e: 57:f2:d4:7a:f5:2b:21:1b:68:52:a4:63:1f:2f:e6:b7:0c:00: e8:e9:28:c8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC1IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgxMzExMTAvBgNVBAUTKEM3OUJCRUFBNjYyNDFFRUNGMDFDMzAzMzVEQjE4RUYy QjNGNTYwMjYwHhcNMjUxMDA2MTk1MDIzWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU0MWQ3ZS1kZmRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9r75S+jpL7lDbsHwUH2CV5gXyszQr34q5BUhrHZbXraFJ2eWSE/gJvPB5Xfk trHS++heOuFhKzAJba9t0ItfjIAUl27NWZsxUvDiP3+paX13cqT8XT6D8kGqs2kA gXKwwi9BXqul4WLOtITovM1xLBSK7VoVLz80Sv1qXiAfSEQt8zEFiSKiisOOtOLK isf1EGhEGGUAshViw8t/yDCVKt0gPlNGYN4F3kzvCUBgcD/frAjJXuphi18X9KO5 S+sIfJhmp1NOUbPtmsKlf2vIt9EZKZnpb4yE2EU/4wsZYZnBLl3Kb1kaBXAtxP2Y A2CKzsTmctkdY8uPMGWC5L29UwIDAQABo4IClTCCApEwHQYDVR0OBBYEFC/bsprH 50Rb8Yex2B/NF123KEekMB8GA1UdIwQYMBaAFMebvqpmJB7s8BwwM12xjvKz9WAm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODEzMS85ODJBQjZFNjQ4 QjExMUVBOTZBMDZDN0VDNEY5QUUwMi94NXUtcW1Za0h1endIREF6WGJHTzhyUDFZ Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g1dS1xbVlrSHV6d0hEQXpYYkdPOHJQMVlDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTgxMzEvOTgyQUI2RTY0OEIxMTFFQTk2QTA2QzdFQzRGOUFFMDIvMEYyOTIwNENC NEI1MTFFRjg2RDYzODFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnI6gwDQYJKoZIhvcNAQELBQADggEBAIAVoidAeBQsWlVo j5WNwikJoGMZUqEEoOY2TyS426td77ZwYCnd1MV9Gc/0Q5dnK3xfmQYVUWtpzV3h v5mr6H7H5dOZIYteT5Qm8pSUru6U/n9Qff/qcKC/w70Objuv5zSdfOp7slRuVj7B hjcJF4mxKt6M8GWwTqKCXevQQCvWh53tVRERSxgR48iBBs21vfTUf/+w8tFGpPjd RtTqON1KVNdWzewLj57EfkziqhM1zJH0GMo++k+UJlA6boSHwxGDiUInugHIPRnr SrSpEOWCfkUs1meAzuBe7JRccRwi4azTEnaSPH5+flfy1Hr1KyEbaFKkYx8v5rcM AOjpKMg= -----END CERTIFICATE-----Generated at Mon Oct 20 19:57:30 2025 by rpki-client