$ rpki-client -vvf rpki.apnic.net/member_repository/A9166638/41EFC51E48CA11EAA214AF4CC4F9AE02/8E49B7320E8C11EDAB2A8680C4F9AE02.roa File: 8E49B7320E8C11EDAB2A8680C4F9AE02.roa (raw, json) Hash identifier: VuF9orA5J7vXCiLLMMCPSh+EHWEmru/ngzX9FULaM9Q= Subject key identifier: 4E:98:13:73:D9:1A:88:7D:00:11:F9:74:8E:0E:5C:92:5C:1B:85:C0 Certificate issuer: /CN=A9166638/serialNumber=5A6CA86E40FB6C268E8FE651FF32ECE44D857D03 Certificate serial: 0B28 Authority key identifier: 5A:6C:A8:6E:40:FB:6C:26:8E:8F:E6:51:FF:32:EC:E4:4D:85:7D:03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WmyobkD7bCaOj-ZR_zLs5E2FfQM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166638/41EFC51E48CA11EAA214AF4CC4F9AE02/8E49B7320E8C11EDAB2A8680C4F9AE02.roa Signing time: Thu 18 Sep 2025 19:59:39 +0000 ROA not before: Thu 18 Sep 2025 19:59:39 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 140540 IP address blocks: 103.148.32.0/24 maxlen: 24 103.148.32.0/25 maxlen: 25 103.148.32.128/27 maxlen: 27 103.148.32.160/27 maxlen: 27 103.148.32.192/27 maxlen: 27 103.148.32.224/27 maxlen: 27 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166638/41EFC51E48CA11EAA214AF4CC4F9AE02/WmyobkD7bCaOj-ZR_zLs5E2FfQM.crl rsync://rpki.apnic.net/member_repository/A9166638/41EFC51E48CA11EAA214AF4CC4F9AE02/WmyobkD7bCaOj-ZR_zLs5E2FfQM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WmyobkD7bCaOj-ZR_zLs5E2FfQM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:10:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2856 (0xb28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166638, serialNumber=5A6CA86E40FB6C268E8FE651FF32ECE44D857D03 Validity Not Before: Sep 18 19:59:39 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68cc64aa-72ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:a9:41:ee:69:77:74:1a:19:ec:b0:6f:49:65: 7b:e2:e4:00:8f:c7:28:02:9d:c7:3c:fb:7a:0d:cc: 2f:e7:d0:fd:69:d8:44:f2:6c:3d:99:b6:09:ee:ea: b8:42:e1:c7:47:18:a5:cf:ce:00:94:6e:1f:59:cb: 0a:4b:aa:ed:60:a8:5e:bf:ca:d1:e1:6e:86:0b:ef: f8:27:5e:0b:cf:67:46:e8:25:c5:98:b0:8c:34:10: 24:51:81:96:95:8d:14:34:bc:72:82:6d:5b:1d:6e: e1:ab:ff:dc:f1:e2:5f:13:84:91:a8:ec:21:bf:4d: 01:79:7d:cf:23:17:cc:59:e2:5a:6b:58:e7:5c:19: bf:e3:5d:73:48:ef:85:fb:d5:e3:a0:78:87:b9:33: 42:04:e9:fb:ce:a0:25:65:b8:4b:31:74:f7:39:93: be:4c:c3:4b:85:9a:68:94:c7:07:3b:99:0d:28:61: ba:82:38:7d:c8:aa:c5:bf:8f:cc:88:ac:0c:2a:fb: f4:02:da:e0:9a:a8:d2:24:9d:d1:a1:f4:e2:53:44: 05:f6:43:6f:0e:33:2f:f1:d0:28:79:ac:ca:76:91: 60:fe:5e:d7:bf:ce:a9:c8:ef:b0:fe:70:4d:62:1a: 33:36:1a:28:cb:fb:c9:1e:aa:65:7c:71:c9:b0:fc: 68:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:98:13:73:D9:1A:88:7D:00:11:F9:74:8E:0E:5C:92:5C:1B:85:C0 X509v3 Authority Key Identifier: keyid:5A:6C:A8:6E:40:FB:6C:26:8E:8F:E6:51:FF:32:EC:E4:4D:85:7D:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166638/41EFC51E48CA11EAA214AF4CC4F9AE02/WmyobkD7bCaOj-ZR_zLs5E2FfQM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WmyobkD7bCaOj-ZR_zLs5E2FfQM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166638/41EFC51E48CA11EAA214AF4CC4F9AE02/8E49B7320E8C11EDAB2A8680C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.148.32.0/24 Signature Algorithm: sha256WithRSAEncryption bf:4e:e8:72:e9:a1:e4:63:d9:01:3c:a0:f6:da:50:b3:43:9d: ef:7a:d0:bf:34:c9:28:6c:12:a9:bd:b5:61:bc:f5:a5:95:66: 27:d7:98:7f:d5:50:be:04:44:b7:f0:9e:ee:d8:be:58:5c:5f: 26:91:2d:1b:a4:15:18:ec:e6:5c:f7:90:55:d1:63:3f:e3:bc: 07:fa:27:1d:62:47:78:93:15:6d:23:f5:4a:62:a6:b4:47:6b: e4:23:b8:23:ba:ed:be:11:9a:cd:b7:80:96:2b:7f:03:a4:01: a5:ad:76:04:a8:0b:27:3f:aa:91:cf:75:f5:93:0d:a7:94:ee: 78:9c:dc:c2:c6:8c:83:82:96:98:6f:89:48:35:2f:41:c3:fb: 4f:ac:58:2f:40:c4:d2:2a:6f:b3:41:36:ac:81:a4:e9:7f:f7: a4:cf:f0:9c:27:89:25:8f:20:48:7d:fc:a0:f9:b7:64:5b:9c: f8:8f:82:0a:ed:ad:60:7a:a3:f6:43:ad:74:21:a9:dc:3c:2f: 71:74:2b:53:16:ae:6e:58:53:ff:46:48:5f:d4:ed:54:3a:5d: 3f:65:b5:0d:a5:e1:ee:6f:db:81:d8:b1:09:48:89:97:9b:77: 11:02:16:69:e7:73:bc:79:27:6d:b0:ae:6d:83:3e:b4:d6:67: 67:e9:87:ad -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCygwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjY2MzgxMTAvBgNVBAUTKDVBNkNBODZFNDBGQjZDMjY4RThGRTY1MUZGMzJFQ0U0 NEQ4NTdEMDMwHhcNMjUwOTE4MTk1OTM5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGNjNjRhYS03MmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq6lB7ml3dBoZ7LBvSWV74uQAj8coAp3HPPt6Dcwv59D9adhE8mw9mbYJ7uq4 QuHHRxilz84AlG4fWcsKS6rtYKhev8rR4W6GC+/4J14Lz2dG6CXFmLCMNBAkUYGW lY0UNLxygm1bHW7hq//c8eJfE4SRqOwhv00BeX3PIxfMWeJaa1jnXBm/411zSO+F +9XjoHiHuTNCBOn7zqAlZbhLMXT3OZO+TMNLhZpolMcHO5kNKGG6gjh9yKrFv4/M iKwMKvv0AtrgmqjSJJ3RofTiU0QF9kNvDjMv8dAoeazKdpFg/l7Xv86pyO+w/nBN YhozNhooy/vJHqplfHHJsPxorwIDAQABo4IClTCCApEwHQYDVR0OBBYEFE6YE3PZ Goh9ABH5dI4OXJJcG4XAMB8GA1UdIwQYMBaAFFpsqG5A+2wmjo/mUf8y7ORNhX0D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NjYzOC80MUVGQzUxRTQ4 Q0ExMUVBQTIxNEFGNENDNEY5QUUwMi9XbXlvYmtEN2JDYU9qLVpSX3pMczVFMkZm UU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dteW9ia0Q3YkNhT2otWlJfekxzNUUyRmZRTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjY2MzgvNDFFRkM1MUU0OENBMTFFQUEyMTRBRjRDQzRGOUFFMDIvOEU0OUI3MzIw RThDMTFFREFCMkE4NjgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnlCAwDQYJKoZIhvcNAQELBQADggEBAL9O6HLpoeRj2QE8 oPbaULNDne960L80yShsEqm9tWG89aWVZifXmH/VUL4ERLfwnu7YvlhcXyaRLRuk FRjs5lz3kFXRYz/jvAf6Jx1iR3iTFW0j9UpiprRHa+QjuCO67b4Rms23gJYrfwOk AaWtdgSoCyc/qpHPdfWTDaeU7nic3MLGjIOClphviUg1L0HD+0+sWC9AxNIqb7NB NqyBpOl/96TP8JwniSWPIEh9/KD5t2RbnPiPggrtrWB6o/ZDrXQhqdw8L3F0K1MW rm5YU/9GSF/U7VQ6XT9ltQ2l4e5v24HYsQlIiZebdxECFmnnc7x5J22wrm2DPrTW Z2fph60= -----END CERTIFICATE-----Generated at Mon Oct 20 10:16:54 2025 by rpki-client