$ rpki-client -vvf rpki.apnic.net/member_repository/A9174CB0/CCAC1454EB5511EABDE24E36C4F9AE02/E21E5A44EB5611EA85A6FA39C4F9AE02.roa File: E21E5A44EB5611EA85A6FA39C4F9AE02.roa (raw, json) Hash identifier: Y/gZjrjkV3J+e38Z5G6K1ZkeL7UeturETxRHwwUgwB8= Subject key identifier: 29:D2:AF:2B:9A:AF:94:F4:26:96:FB:6A:0A:B8:2C:A9:A7:A3:63:08 Certificate issuer: /CN=A9174CB0/serialNumber=87BF57FBBCE0645E291D4946E5C7227624371ACE Certificate serial: 082B Authority key identifier: 87:BF:57:FB:BC:E0:64:5E:29:1D:49:46:E5:C7:22:76:24:37:1A:CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h79X-7zgZF4pHUlG5ccidiQ3Gs4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174CB0/CCAC1454EB5511EABDE24E36C4F9AE02/E21E5A44EB5611EA85A6FA39C4F9AE02.roa Signing time: Fri 26 Sep 2025 21:22:49 +0000 ROA not before: Fri 26 Sep 2025 21:22:49 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 141024 IP address blocks: 103.155.20.0/23 maxlen: 23 103.155.20.0/24 maxlen: 24 103.155.21.0/24 maxlen: 24 2001:df4:c940::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174CB0/CCAC1454EB5511EABDE24E36C4F9AE02/h79X-7zgZF4pHUlG5ccidiQ3Gs4.crl rsync://rpki.apnic.net/member_repository/A9174CB0/CCAC1454EB5511EABDE24E36C4F9AE02/h79X-7zgZF4pHUlG5ccidiQ3Gs4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h79X-7zgZF4pHUlG5ccidiQ3Gs4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:59:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2091 (0x82b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174CB0, serialNumber=87BF57FBBCE0645E291D4946E5C7227624371ACE Validity Not Before: Sep 26 21:22:49 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68d70429-db39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:e8:e7:94:c0:55:ba:76:30:9f:b5:16:16:fb: 6e:74:75:20:7e:72:e3:c0:ac:e7:2d:78:d8:cf:07: db:aa:76:ec:0e:59:fa:55:15:63:73:78:28:7d:88: c1:11:96:70:8e:41:c6:8a:9a:24:bb:a8:3e:2c:fb: e0:27:0d:e9:00:17:c2:c8:73:39:9a:d1:78:33:ee: e2:89:19:14:9d:b9:f7:b2:0f:3a:5b:ae:92:58:e3: d1:47:eb:08:b4:c2:fe:93:39:e2:0b:9a:44:7d:e5: e0:4a:7d:47:57:2d:81:3d:97:6f:37:01:0c:7a:4e: d8:1f:cd:05:ec:d2:74:ea:0a:9b:52:18:25:26:97: f9:5f:52:bb:63:45:a4:1b:77:bf:e2:0b:e5:00:b5: e8:9a:cb:50:4b:d4:f4:b7:10:2f:63:8a:52:04:5f: 12:ea:44:90:5b:66:e5:a0:3a:dd:ca:66:ba:93:ec: 0e:4f:81:b8:d2:f3:3f:1a:51:2d:fe:43:6d:de:06: b5:f0:0d:7c:0b:77:f3:8d:dc:9d:8a:25:7b:a8:6c: ca:dd:12:98:24:c4:a3:01:a1:76:0d:cd:3c:52:cb: c3:4e:61:95:21:0e:3f:c9:07:ba:8a:81:e1:79:60: 7c:97:02:d4:6a:29:38:f4:b0:b0:fb:80:d6:8a:a4: 6c:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:D2:AF:2B:9A:AF:94:F4:26:96:FB:6A:0A:B8:2C:A9:A7:A3:63:08 X509v3 Authority Key Identifier: keyid:87:BF:57:FB:BC:E0:64:5E:29:1D:49:46:E5:C7:22:76:24:37:1A:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174CB0/CCAC1454EB5511EABDE24E36C4F9AE02/h79X-7zgZF4pHUlG5ccidiQ3Gs4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h79X-7zgZF4pHUlG5ccidiQ3Gs4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174CB0/CCAC1454EB5511EABDE24E36C4F9AE02/E21E5A44EB5611EA85A6FA39C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.155.20.0/23 IPv6: 2001:df4:c940::/48 Signature Algorithm: sha256WithRSAEncryption 34:0e:58:71:e8:be:ab:93:5b:e9:86:8f:bf:75:b5:ee:5d:62: 0a:ce:7c:a3:18:a4:d1:bb:16:69:ee:54:df:69:91:8d:68:a4: b3:86:f3:7b:f6:76:9a:a4:80:72:9f:e0:29:db:ce:83:c1:74: 47:9b:d5:ef:ce:00:d5:62:c9:89:cd:62:03:6c:c8:0f:ec:0b: f7:9f:20:d5:6a:5e:fb:7f:83:41:7b:61:cb:39:bf:69:2c:13: 20:e8:d6:04:fe:33:4c:5a:54:d6:89:c7:4a:71:7a:ac:d1:bc: ad:85:d9:89:0b:a4:e2:e1:86:6f:e1:25:90:8b:86:bc:d0:3c: 92:a4:89:f7:cb:d8:73:69:c3:f7:e6:cd:fc:4e:ec:f6:89:17: d1:60:e6:f9:c7:b1:32:a3:00:b5:5f:f9:e7:e1:1f:82:50:dd: 88:b7:e2:25:76:f1:a5:04:88:48:00:31:12:bf:8d:dc:3c:9a: d3:a5:92:59:b2:06:23:fa:7b:bd:42:e4:3a:a1:e7:2f:1e:a4: 83:c9:d2:a6:9c:d8:1b:38:d7:6c:dd:67:0d:98:db:bc:d7:6d: db:88:e8:2d:08:7c:a1:52:23:2d:a5:d3:9d:3a:4d:46:9f:12: 1c:ed:74:d6:00:88:c7:34:84:94:35:65:11:36:47:40:a5:02: eb:3d:b7:a8 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCCswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRDQjAxMTAvBgNVBAUTKDg3QkY1N0ZCQkNFMDY0NUUyOTFENDk0NkU1QzcyMjc2 MjQzNzFBQ0UwHhcNMjUwOTI2MjEyMjQ5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ3MDQyOS1kYjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5ejnlMBVunYwn7UWFvtudHUgfnLjwKznLXjYzwfbqnbsDln6VRVjc3gofYjB EZZwjkHGipoku6g+LPvgJw3pABfCyHM5mtF4M+7iiRkUnbn3sg86W66SWOPRR+sI tML+kzniC5pEfeXgSn1HVy2BPZdvNwEMek7YH80F7NJ06gqbUhglJpf5X1K7Y0Wk G3e/4gvlALXomstQS9T0txAvY4pSBF8S6kSQW2bloDrdyma6k+wOT4G40vM/GlEt /kNt3ga18A18C3fzjdydiiV7qGzK3RKYJMSjAaF2Dc08UsvDTmGVIQ4/yQe6ioHh eWB8lwLUaik49LCw+4DWiqRszQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFCnSryua r5T0Jpb7agq4LKmno2MIMB8GA1UdIwQYMBaAFIe/V/u84GReKR1JRuXHInYkNxrO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NENCMC9DQ0FDMTQ1NEVC NTUxMUVBQkRFMjRFMzZDNEY5QUUwMi9oNzlYLTd6Z1pGNHBIVWxHNWNjaWRpUTNH czQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g3OVgtN3pnWkY0cEhVbEc1Y2NpZGlRM0dzNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzRDQjAvQ0NBQzE0NTRFQjU1MTFFQUJERTI0RTM2QzRGOUFFMDIvRTIxRTVBNDRF QjU2MTFFQTg1QTZGQTM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnmxQwDwQCAAIwCQMHACABDfTJQDANBgkqhkiG9w0BAQsF AAOCAQEANA5Ycei+q5Nb6YaPv3W17l1iCs58oxik0bsWae5U32mRjWiks4bze/Z2 mqSAcp/gKdvOg8F0R5vV784A1WLJic1iA2zID+wL958g1Wpe+3+DQXthyzm/aSwT IOjWBP4zTFpU1onHSnF6rNG8rYXZiQuk4uGGb+ElkIuGvNA8kqSJ98vYc2nD9+bN /E7s9okX0WDm+cexMqMAtV/55+EfglDdiLfiJXbxpQSISAAxEr+N3Dya06WSWbIG I/p7vULkOqHnLx6kg8nSppzYGzjXbN1nDZjbvNdt24joLQh8oVIjLaXTnTpNRp8S HO101gCIxzSElDVlETZHQKUC6z23qA== -----END CERTIFICATE-----Generated at Tue Oct 21 07:19:56 2025 by rpki-client