$ rpki-client -vvf rpki.apnic.net/member_repository/A9176302/A32FDFDE374611EF96653326C4F9AE02/0EE57B38378F11EF88F9BF5AC4F9AE02.roa File: 0EE57B38378F11EF88F9BF5AC4F9AE02.roa (raw, json) Hash identifier: 59HLMBrfjjdy7ZkLbK5ZAyw/H+2uYObVepiHANeb3uU= Subject key identifier: 82:08:24:D7:B0:4C:99:BD:8E:8B:EA:C3:39:3F:36:69:F1:0E:AC:55 Certificate issuer: /CN=A9176302/serialNumber=21BE8C8FE953F6EC97B7F121617ED91047DAA5A4 Certificate serial: F5 Authority key identifier: 21:BE:8C:8F:E9:53:F6:EC:97:B7:F1:21:61:7E:D9:10:47:DA:A5:A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ib6Mj-lT9uyXt_EhYX7ZEEfapaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176302/A32FDFDE374611EF96653326C4F9AE02/0EE57B38378F11EF88F9BF5AC4F9AE02.roa Signing time: Fri 03 Oct 2025 06:02:23 +0000 ROA not before: Fri 03 Oct 2025 06:02:23 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 133098 IP address blocks: 103.248.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176302/A32FDFDE374611EF96653326C4F9AE02/Ib6Mj-lT9uyXt_EhYX7ZEEfapaQ.crl rsync://rpki.apnic.net/member_repository/A9176302/A32FDFDE374611EF96653326C4F9AE02/Ib6Mj-lT9uyXt_EhYX7ZEEfapaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ib6Mj-lT9uyXt_EhYX7ZEEfapaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:09:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 245 (0xf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176302, serialNumber=21BE8C8FE953F6EC97B7F121617ED91047DAA5A4 Validity Not Before: Oct 3 06:02:23 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68df66ef-6093 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:4c:68:07:09:b3:68:23:2b:f5:90:e3:a9:73: 81:b8:b5:89:3d:71:52:5c:1c:e6:65:60:99:91:f9: 98:8d:75:8a:ff:41:00:91:bb:a6:22:98:2c:1a:7c: 54:46:25:ca:78:3c:fd:a5:ff:f1:c3:bd:04:4f:e8: b7:48:3d:20:69:a3:00:e1:71:27:74:46:ef:21:e4: b7:c7:c6:e6:7a:53:60:de:82:e7:b8:7b:1e:aa:be: 02:82:97:a6:5f:10:3a:4e:4a:c8:53:73:5f:30:9e: f0:74:a3:44:d7:1f:03:8f:e2:71:70:28:c4:d4:56: f7:bc:ce:d1:ae:60:a7:b0:fc:8f:5f:b2:d3:b6:4f: ff:5e:40:d1:44:5b:db:1b:2d:97:d5:94:31:a3:2d: 52:69:8d:d0:a8:55:e8:06:c6:84:d7:bf:cb:59:fa: a8:37:64:93:4f:65:5e:29:2c:65:ce:25:3d:7b:80: 6b:4a:46:96:34:f2:44:c7:44:5a:5a:b5:19:50:9d: 18:ed:fa:d4:ab:70:9f:76:f9:96:f3:d1:f6:94:bd: c1:16:f9:be:48:81:29:f5:5b:cd:36:76:86:eb:ca: d8:4c:75:44:28:b0:4f:91:08:65:50:3c:2e:60:38: 44:4b:34:05:96:3d:ce:29:8f:38:1b:43:56:51:a2: 3b:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:08:24:D7:B0:4C:99:BD:8E:8B:EA:C3:39:3F:36:69:F1:0E:AC:55 X509v3 Authority Key Identifier: keyid:21:BE:8C:8F:E9:53:F6:EC:97:B7:F1:21:61:7E:D9:10:47:DA:A5:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176302/A32FDFDE374611EF96653326C4F9AE02/Ib6Mj-lT9uyXt_EhYX7ZEEfapaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ib6Mj-lT9uyXt_EhYX7ZEEfapaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176302/A32FDFDE374611EF96653326C4F9AE02/0EE57B38378F11EF88F9BF5AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.248.143.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:1e:19:8d:0d:2e:0f:1d:3b:c8:3a:a4:41:00:d3:4d:b9:fd: bd:ab:fc:0d:9c:1b:63:61:bf:bc:7a:ce:06:b9:75:a2:da:f8: 9a:ed:15:89:0a:57:37:63:b3:f4:a0:02:a8:ea:ad:f3:4b:ab: f9:7c:9d:f7:f5:03:dd:b1:2a:3b:55:fb:36:4e:38:5f:02:7e: c8:ac:50:f5:e0:a4:51:8a:d0:6a:7d:ad:fe:64:ad:25:af:70: cd:27:05:3a:35:e4:41:55:ae:20:ad:ea:d9:4d:60:18:55:ed: ea:51:b9:1b:63:8f:7b:5c:77:24:46:d6:4a:0e:f0:8c:34:66: af:82:57:1e:af:8a:b5:59:d6:2f:21:6e:fe:79:65:6f:85:91: ce:4b:8a:4a:c2:21:d9:75:70:a0:65:91:70:46:1f:df:1f:2a: 53:7c:b6:4d:e9:ac:78:f8:76:1d:79:8e:0b:64:4e:28:a7:71: 09:95:73:fa:f1:4a:40:e7:1c:f1:36:a7:ed:a9:c3:bd:66:79: 90:fa:3c:76:99:d7:d8:d3:ed:f4:0d:6d:6b:cf:5f:69:19:fc: 6f:f5:8f:fa:b8:a1:4a:c6:49:1c:f7:46:44:ff:24:6d:0e:a1: ed:62:09:52:ae:21:9a:6a:ed:a8:3e:24:8c:ee:bd:39:4e:f7: 23:83:50:ad -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzYzMDIxMTAvBgNVBAUTKDIxQkU4QzhGRTk1M0Y2RUM5N0I3RjEyMTYxN0VEOTEw NDdEQUE1QTQwHhcNMjUxMDAzMDYwMjIzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRmNjZlZi02MDkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApExoBwmzaCMr9ZDjqXOBuLWJPXFSXBzmZWCZkfmYjXWK/0EAkbumIpgsGnxU RiXKeDz9pf/xw70ET+i3SD0gaaMA4XEndEbvIeS3x8bmelNg3oLnuHseqr4Cgpem XxA6TkrIU3NfMJ7wdKNE1x8Dj+JxcCjE1Fb3vM7RrmCnsPyPX7LTtk//XkDRRFvb Gy2X1ZQxoy1SaY3QqFXoBsaE17/LWfqoN2STT2VeKSxlziU9e4BrSkaWNPJEx0Ra WrUZUJ0Y7frUq3CfdvmW89H2lL3BFvm+SIEp9VvNNnaG68rYTHVEKLBPkQhlUDwu YDhESzQFlj3OKY84G0NWUaI7+QIDAQABo4IClTCCApEwHQYDVR0OBBYEFIIIJNew TJm9jovqwzk/NmnxDqxVMB8GA1UdIwQYMBaAFCG+jI/pU/bsl7fxIWF+2RBH2qWk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjMwMi9BMzJGREZERTM3 NDYxMUVGOTY2NTMzMjZDNEY5QUUwMi9JYjZNai1sVDl1eVh0X0VoWVg3WkVFZmFw YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0liNk1qLWxUOXV5WHRfRWhZWDdaRUVmYXBhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzYzMDIvQTMyRkRGREUzNzQ2MTFFRjk2NjUzMzI2QzRGOUFFMDIvMEVFNTdCMzgz NzhGMTFFRjg4RjlCRjVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn+I8wDQYJKoZIhvcNAQELBQADggEBAG0eGY0NLg8dO8g6 pEEA0025/b2r/A2cG2Nhv7x6zga5daLa+JrtFYkKVzdjs/SgAqjqrfNLq/l8nff1 A92xKjtV+zZOOF8CfsisUPXgpFGK0Gp9rf5krSWvcM0nBTo15EFVriCt6tlNYBhV 7epRuRtjj3tcdyRG1koO8Iw0Zq+CVx6virVZ1i8hbv55ZW+Fkc5LikrCIdl1cKBl kXBGH98fKlN8tk3prHj4dh15jgtkTiincQmVc/rxSkDnHPE2p+2pw71meZD6PHaZ 19jT7fQNbWvPX2kZ/G/1j/q4oUrGSRz3RkT/JG0Ooe1iCVKuIZpq7ag+JIzuvTlO 9yODUK0= -----END CERTIFICATE-----Generated at Mon Oct 20 09:35:19 2025 by rpki-client