$ rpki-client -vvf rpki.apnic.net/member_repository/A9166646/7B16AC28B13C11EB8179FA29C4F9AE02/5AA0DC6EB13E11EBA7704F2CC4F9AE02.roa File: 5AA0DC6EB13E11EBA7704F2CC4F9AE02.roa (raw, json) Hash identifier: 8DukUXHtreFdKUgIvZrKvql5wqzBY6PJqfjiVtGIfJE= Subject key identifier: B9:64:8A:9F:58:46:23:3B:C2:62:FE:FC:0C:F4:31:F5:D1:29:C0:CD Certificate issuer: /CN=A9166646/serialNumber=E03F58007B97290BA52343597917B2B6AB5DD2E9 Certificate serial: 0631 Authority key identifier: E0:3F:58:00:7B:97:29:0B:A5:23:43:59:79:17:B2:B6:AB:5D:D2:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4D9YAHuXKQulI0NZeReytqtd0uk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166646/7B16AC28B13C11EB8179FA29C4F9AE02/5AA0DC6EB13E11EBA7704F2CC4F9AE02.roa Signing time: Sat 04 Oct 2025 22:54:19 +0000 ROA not before: Sat 04 Oct 2025 22:54:19 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 141036 IP address blocks: 103.155.38.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166646/7B16AC28B13C11EB8179FA29C4F9AE02/4D9YAHuXKQulI0NZeReytqtd0uk.crl rsync://rpki.apnic.net/member_repository/A9166646/7B16AC28B13C11EB8179FA29C4F9AE02/4D9YAHuXKQulI0NZeReytqtd0uk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4D9YAHuXKQulI0NZeReytqtd0uk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:18:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1585 (0x631) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166646, serialNumber=E03F58007B97290BA52343597917B2B6AB5DD2E9 Validity Not Before: Oct 4 22:54:19 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68e1a59b-5e59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:08:e8:8f:91:f0:44:ba:41:f2:58:2f:91:96: c7:c1:1a:19:9a:8c:68:5a:94:6e:55:30:d2:d9:72: 60:5f:fd:50:20:5f:41:a0:17:6c:85:ae:92:27:2a: 88:d8:cd:62:aa:6e:20:62:09:91:81:05:20:e0:8a: df:8b:1a:bb:18:e4:94:7b:ce:5a:55:43:bd:0b:f8: 51:2f:be:cb:0a:09:6d:98:3c:10:c7:77:e4:e2:bd: 30:0b:25:f5:b1:42:99:11:1a:cf:a0:2a:2a:72:21: 5e:ee:5e:b5:88:ff:38:b2:73:44:a5:38:f9:1a:eb: 7a:2d:70:cc:05:d9:38:71:19:d9:51:47:75:d1:54: d6:be:05:b1:e7:74:e1:f9:c2:a3:82:c5:ee:6e:fe: 00:42:3d:14:77:db:ce:57:79:34:ff:c3:87:3e:41: 1f:73:0e:79:0c:5d:05:86:d0:f9:91:ee:f1:53:83: 92:90:02:11:c3:f0:9f:5e:77:23:7b:b7:d8:53:06: 53:c6:35:c9:98:11:21:9c:fb:b0:c3:1a:48:5a:95: 17:fd:4c:7b:ac:97:34:50:51:0a:24:f2:af:17:4d: cc:ec:06:d9:77:c3:e8:8a:60:c1:4e:ea:84:4f:ef: 38:ac:33:02:96:b0:93:73:c8:55:99:3a:8f:81:28: 70:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:64:8A:9F:58:46:23:3B:C2:62:FE:FC:0C:F4:31:F5:D1:29:C0:CD X509v3 Authority Key Identifier: keyid:E0:3F:58:00:7B:97:29:0B:A5:23:43:59:79:17:B2:B6:AB:5D:D2:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166646/7B16AC28B13C11EB8179FA29C4F9AE02/4D9YAHuXKQulI0NZeReytqtd0uk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4D9YAHuXKQulI0NZeReytqtd0uk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166646/7B16AC28B13C11EB8179FA29C4F9AE02/5AA0DC6EB13E11EBA7704F2CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.155.38.0/23 Signature Algorithm: sha256WithRSAEncryption 67:4e:e8:96:63:62:f0:5f:a0:66:5c:c0:ed:1b:b8:bf:53:bd: 6e:2b:06:62:78:ca:2c:35:59:18:28:0c:2d:82:7e:a9:e4:c8: e4:c7:53:f0:57:04:4d:e9:4f:5b:2c:dd:1e:2d:b5:4b:54:0e: c8:4f:5a:73:ef:7d:bc:e4:57:f2:fd:5d:5b:6c:4a:d0:fc:a1: e3:94:90:a2:10:4b:47:e4:5b:b0:43:f7:5e:1e:dd:ae:8b:14: b2:7d:05:a4:17:ac:9e:11:bd:c3:4f:2c:45:16:0b:3a:06:86: d4:65:0a:0e:15:ca:33:c0:6c:56:2e:1b:93:41:bf:c1:ef:27: 0d:e3:60:80:f0:1e:7e:dc:4e:ab:cd:45:4f:34:72:f4:f6:28: 3d:6e:55:48:ec:47:e9:03:51:14:23:73:31:17:ad:10:18:6e: 1e:84:af:35:f8:92:a7:18:9c:3f:6f:7f:28:69:0c:88:87:c9: 63:4e:16:02:a3:f9:10:af:da:df:f0:c6:a4:0b:19:f2:59:48: 86:a1:5e:3c:84:34:1e:ce:72:35:8b:d0:40:bf:7a:6f:c7:1b: f5:87:db:dc:8a:df:c5:70:c4:ce:2d:5c:1f:a2:94:e7:3f:cc: 6f:65:42:e5:99:ef:68:35:30:51:a5:0c:d0:54:e1:e7:b5:ba: 89:a5:c4:9a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBjEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjY2NDYxMTAvBgNVBAUTKEUwM0Y1ODAwN0I5NzI5MEJBNTIzNDM1OTc5MTdCMkI2 QUI1REQyRTkwHhcNMjUxMDA0MjI1NDE5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGUxYTU5Yi01ZTU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6Qjoj5HwRLpB8lgvkZbHwRoZmoxoWpRuVTDS2XJgX/1QIF9BoBdsha6SJyqI 2M1iqm4gYgmRgQUg4Irfixq7GOSUe85aVUO9C/hRL77LCgltmDwQx3fk4r0wCyX1 sUKZERrPoCoqciFe7l61iP84snNEpTj5Gut6LXDMBdk4cRnZUUd10VTWvgWx53Th +cKjgsXubv4AQj0Ud9vOV3k0/8OHPkEfcw55DF0FhtD5ke7xU4OSkAIRw/CfXncj e7fYUwZTxjXJmBEhnPuwwxpIWpUX/Ux7rJc0UFEKJPKvF03M7AbZd8PoimDBTuqE T+84rDMClrCTc8hVmTqPgShwVQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLlkip9Y RiM7wmL+/Az0MfXRKcDNMB8GA1UdIwQYMBaAFOA/WAB7lykLpSNDWXkXsrarXdLp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NjY0Ni83QjE2QUMyOEIx M0MxMUVCODE3OUZBMjlDNEY5QUUwMi80RDlZQUh1WEtRdWxJME5aZVJleXRxdGQw dWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzREOVlBSHVYS1F1bEkwTlplUmV5dHF0ZDB1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjY2NDYvN0IxNkFDMjhCMTNDMTFFQjgxNzlGQTI5QzRGOUFFMDIvNUFBMERDNkVC MTNFMTFFQkE3NzA0RjJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmyYwDQYJKoZIhvcNAQELBQADggEBAGdO6JZjYvBfoGZc wO0buL9TvW4rBmJ4yiw1WRgoDC2CfqnkyOTHU/BXBE3pT1ss3R4ttUtUDshPWnPv fbzkV/L9XVtsStD8oeOUkKIQS0fkW7BD914e3a6LFLJ9BaQXrJ4RvcNPLEUWCzoG htRlCg4VyjPAbFYuG5NBv8HvJw3jYIDwHn7cTqvNRU80cvT2KD1uVUjsR+kDURQj czEXrRAYbh6ErzX4kqcYnD9vfyhpDIiHyWNOFgKj+RCv2t/wxqQLGfJZSIahXjyE NB7OcjWL0EC/em/HG/WH29yK38VwxM4tXB+ilOc/zG9lQuWZ72g1MFGlDNBU4ee1 uomlxJo= -----END CERTIFICATE-----Generated at Mon Oct 20 13:42:28 2025 by rpki-client