$ rpki-client -vvf rpki.apnic.net/member_repository/A9168949/3F242AC2E4F311EE99101438C4F9AE02/229253A4A1F111F084328A39C4F9AE02.roa File: 229253A4A1F111F084328A39C4F9AE02.roa (raw, json) Hash identifier: S2OGi1wUST6aH/yqjhUOxU4wsu1S9AAnnNOgdjDA6+w= Subject key identifier: 10:3A:7E:FE:A2:77:82:A2:41:0E:65:92:4A:A6:2D:F5:56:8C:2F:0C Certificate issuer: /CN=A9168949/serialNumber=10E0502F3D382E8C1566ECCC2A121B6C439DE977 Certificate serial: 014A Authority key identifier: 10:E0:50:2F:3D:38:2E:8C:15:66:EC:CC:2A:12:1B:6C:43:9D:E9:77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EOBQLz04LowVZuzMKhIbbEOd6Xc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168949/3F242AC2E4F311EE99101438C4F9AE02/229253A4A1F111F084328A39C4F9AE02.roa Signing time: Sun 05 Oct 2025 13:42:29 +0000 ROA not before: Sun 05 Oct 2025 13:42:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 151781 IP address blocks: 203.20.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168949/3F242AC2E4F311EE99101438C4F9AE02/EOBQLz04LowVZuzMKhIbbEOd6Xc.crl rsync://rpki.apnic.net/member_repository/A9168949/3F242AC2E4F311EE99101438C4F9AE02/EOBQLz04LowVZuzMKhIbbEOd6Xc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EOBQLz04LowVZuzMKhIbbEOd6Xc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:26:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 330 (0x14a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168949, serialNumber=10E0502F3D382E8C1566ECCC2A121B6C439DE977 Validity Not Before: Oct 5 13:42:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68e275c5-0558 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:21:6e:ac:c1:09:e4:f7:57:23:5d:26:75:e5: 2d:16:11:4d:56:50:73:42:40:c5:e3:6a:ba:9a:90: a1:f1:cc:51:aa:ee:36:9f:13:fe:21:c9:35:45:10: 97:dd:49:20:61:78:f5:b2:9c:34:43:64:cc:b8:d6: f4:7e:6a:56:cd:ff:28:69:a3:03:e3:a6:db:ad:cf: c7:00:db:a9:89:79:3f:3b:a9:67:ad:13:06:65:7c: d0:e1:8c:2c:4f:af:45:0d:61:32:1f:46:5a:37:41: 57:58:80:6f:ee:26:58:5c:87:af:7a:83:74:ac:fe: 32:e5:3b:36:2d:c6:8c:62:e2:42:a4:03:6f:a6:66: 6e:2f:d1:c8:9f:dd:ba:4a:93:b1:78:3a:e4:47:44: a2:bf:49:30:05:58:a0:75:c2:f4:f2:7e:cd:16:37: df:5f:8f:57:11:ee:d6:0b:2e:07:bd:50:fc:67:1c: 77:24:a3:5d:40:1b:06:ca:ef:e4:21:57:bf:d4:0b: 15:bd:3f:84:3c:ea:78:35:ed:20:5e:53:bc:4e:a2: 0a:65:75:fb:20:f7:4c:06:7a:47:97:da:e6:78:66: 41:bc:b8:b7:7e:1d:c9:10:1d:01:aa:ad:5e:ef:c7: be:2a:2a:7c:70:b2:ff:b5:b5:ae:52:79:c0:95:64: 8a:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:3A:7E:FE:A2:77:82:A2:41:0E:65:92:4A:A6:2D:F5:56:8C:2F:0C X509v3 Authority Key Identifier: keyid:10:E0:50:2F:3D:38:2E:8C:15:66:EC:CC:2A:12:1B:6C:43:9D:E9:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168949/3F242AC2E4F311EE99101438C4F9AE02/EOBQLz04LowVZuzMKhIbbEOd6Xc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EOBQLz04LowVZuzMKhIbbEOd6Xc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168949/3F242AC2E4F311EE99101438C4F9AE02/229253A4A1F111F084328A39C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.20.109.0/24 Signature Algorithm: sha256WithRSAEncryption 64:e6:08:fc:e2:a4:f3:b2:fb:39:ad:ea:0b:d8:d9:eb:df:c9: b5:39:00:7b:32:e1:99:f4:3d:6b:02:a4:66:be:63:27:89:0e: 5d:84:6f:22:68:42:72:d8:2a:6c:ed:eb:75:c0:99:79:64:75: 15:73:40:ab:9f:d5:45:16:0b:5c:a6:1d:4f:a0:ad:12:db:8c: 5e:9c:5f:fe:38:ab:ef:9a:d6:39:01:31:97:d5:80:55:52:e7: e2:5c:99:60:bf:2c:d4:d4:83:7f:f0:ea:9c:41:82:b0:f9:37: ac:da:7d:b6:92:5a:00:bd:8c:7b:34:ad:d8:30:9d:03:ad:68: 2c:37:98:11:fd:b9:66:5e:5e:5e:4c:ad:03:d6:aa:3e:ad:69: 92:ba:38:cd:75:09:f0:95:b5:9f:54:de:59:4a:4a:b6:51:ac: 9d:0e:c3:e5:a6:d6:a2:d0:bd:8e:31:28:7f:29:96:a6:35:d0: be:fa:29:98:ba:19:24:a7:d5:59:c8:86:06:4e:6a:37:98:6e: 17:fb:bb:c9:80:27:68:94:ff:9e:a5:d7:26:f4:37:f1:2c:91: 14:65:0f:5b:cb:a3:3d:c0:c2:fc:fe:aa:d1:24:1e:ab:e8:16: 79:b4:3e:48:e3:4f:9b:9a:d8:24:7b:a2:b0:47:3c:6b:cc:f4: 7f:14:97:43 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg5NDkxMTAvBgNVBAUTKDEwRTA1MDJGM0QzODJFOEMxNTY2RUNDQzJBMTIxQjZD NDM5REU5NzcwHhcNMjUxMDA1MTM0MjI5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGUyNzVjNS0wNTU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvSFurMEJ5PdXI10mdeUtFhFNVlBzQkDF42q6mpCh8cxRqu42nxP+Ick1RRCX 3UkgYXj1spw0Q2TMuNb0fmpWzf8oaaMD46bbrc/HANupiXk/O6lnrRMGZXzQ4Yws T69FDWEyH0ZaN0FXWIBv7iZYXIeveoN0rP4y5Ts2LcaMYuJCpANvpmZuL9HIn926 SpOxeDrkR0Siv0kwBVigdcL08n7NFjffX49XEe7WCy4HvVD8Zxx3JKNdQBsGyu/k IVe/1AsVvT+EPOp4Ne0gXlO8TqIKZXX7IPdMBnpHl9rmeGZBvLi3fh3JEB0Bqq1e 78e+Kip8cLL/tbWuUnnAlWSKQQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBA6fv6i d4KiQQ5lkkqmLfVWjC8MMB8GA1UdIwQYMBaAFBDgUC89OC6MFWbszCoSG2xDnel3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODk0OS8zRjI0MkFDMkU0 RjMxMUVFOTkxMDE0MzhDNEY5QUUwMi9FT0JRTHowNExvd1ZadXpNS2hJYmJFT2Q2 WGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VPQlFMejA0TG93Vlp1ek1LaEliYkVPZDZYYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njg5NDkvM0YyNDJBQzJFNEYzMTFFRTk5MTAxNDM4QzRGOUFFMDIvMjI5MjUzQTRB MUYxMTFGMDg0MzI4QTM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLFG0wDQYJKoZIhvcNAQELBQADggEBAGTmCPzipPOy+zmt 6gvY2evfybU5AHsy4Zn0PWsCpGa+YyeJDl2EbyJoQnLYKmzt63XAmXlkdRVzQKuf 1UUWC1ymHU+grRLbjF6cX/44q++a1jkBMZfVgFVS5+JcmWC/LNTUg3/w6pxBgrD5 N6zafbaSWgC9jHs0rdgwnQOtaCw3mBH9uWZeXl5MrQPWqj6taZK6OM11CfCVtZ9U 3llKSrZRrJ0Ow+Wm1qLQvY4xKH8plqY10L76KZi6GSSn1VnIhgZOajeYbhf7u8mA J2iU/56l1yb0N/EskRRlD1vLoz3Awvz+qtEkHqvoFnm0PkjjT5ua2CR7orBHPGvM 9H8Ul0M= -----END CERTIFICATE-----Generated at Mon Oct 20 15:19:55 2025 by rpki-client