$ rpki-client -vvf rpki.apnic.net/member_repository/A9192698/D3C0ECE21E5511EFAC959F19C4F9AE02/CE042A841E5611EFBEDD1F39C4F9AE02.roa File: CE042A841E5611EFBEDD1F39C4F9AE02.roa (raw, json) Hash identifier: wBvwqSnNeZ2azP6/kY4estB/Jc4t3M7IdMIc2FaLoNs= Subject key identifier: A4:7B:0F:38:DD:ED:28:A6:4A:94:00:4E:87:21:B5:67:C8:EC:46:04 Certificate issuer: /CN=A9192698/serialNumber=DB063078F7B97752FB81D00FA9BD7C523B1C9703 Certificate serial: F6 Authority key identifier: DB:06:30:78:F7:B9:77:52:FB:81:D0:0F:A9:BD:7C:52:3B:1C:97:03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2wYwePe5d1L7gdAPqb18UjsclwM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192698/D3C0ECE21E5511EFAC959F19C4F9AE02/CE042A841E5611EFBEDD1F39C4F9AE02.roa Signing time: Fri 05 Sep 2025 05:41:59 +0000 ROA not before: Fri 05 Sep 2025 05:41:59 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 17893 IP address blocks: 103.159.28.0/23 maxlen: 24 202.124.224.0/20 maxlen: 24 2404:7800::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192698/D3C0ECE21E5511EFAC959F19C4F9AE02/2wYwePe5d1L7gdAPqb18UjsclwM.crl rsync://rpki.apnic.net/member_repository/A9192698/D3C0ECE21E5511EFAC959F19C4F9AE02/2wYwePe5d1L7gdAPqb18UjsclwM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2wYwePe5d1L7gdAPqb18UjsclwM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:55:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 246 (0xf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192698, serialNumber=DB063078F7B97752FB81D00FA9BD7C523B1C9703 Validity Not Before: Sep 5 05:41:59 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68ba7826-455d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:c0:e8:a2:ec:fc:7e:89:dd:f2:0a:bb:26:ea: 41:e2:02:6a:e6:1c:6f:dd:15:13:45:65:25:a1:cc: 0c:22:3f:ac:3e:da:cc:b1:4a:50:6e:2c:50:74:dd: 73:75:fa:a8:17:cc:21:1a:93:7a:68:3f:c8:db:b6: 93:e4:ee:f5:b1:00:ff:b5:ec:c2:64:a5:0c:de:91: 4d:ad:7b:21:b6:7a:77:f3:50:87:44:25:f0:33:37: 5d:0d:03:db:9f:59:4a:49:f7:c7:29:3e:14:24:3b: 49:d1:e3:3d:4f:b1:73:9c:dc:7f:9f:74:81:13:a9: a6:6e:22:42:fd:75:70:5f:6e:5f:ae:f1:8f:65:ab: 08:dc:05:7a:9d:ee:99:d6:65:26:0f:57:79:34:23: b6:0e:f9:fd:ac:a3:51:ea:21:f0:eb:25:44:20:8d: 05:d8:93:d6:25:74:22:67:e3:33:e1:47:62:c6:9d: 96:6f:e9:6d:ee:72:bf:a3:b7:8f:2c:6a:9f:1f:87: 3d:65:f4:48:a7:ce:b9:ea:45:5b:20:6c:e9:4f:6f: 7d:be:7d:e8:e2:3e:1c:07:94:c9:5b:73:d4:d7:13: 52:ee:5d:82:74:d9:98:10:19:8b:04:4f:a3:99:df: da:99:da:5d:81:06:0f:a6:18:d4:88:f8:16:cc:f3: c5:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:7B:0F:38:DD:ED:28:A6:4A:94:00:4E:87:21:B5:67:C8:EC:46:04 X509v3 Authority Key Identifier: keyid:DB:06:30:78:F7:B9:77:52:FB:81:D0:0F:A9:BD:7C:52:3B:1C:97:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192698/D3C0ECE21E5511EFAC959F19C4F9AE02/2wYwePe5d1L7gdAPqb18UjsclwM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2wYwePe5d1L7gdAPqb18UjsclwM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192698/D3C0ECE21E5511EFAC959F19C4F9AE02/CE042A841E5611EFBEDD1F39C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.28.0/23 202.124.224.0/20 IPv6: 2404:7800::/32 Signature Algorithm: sha256WithRSAEncryption 76:0a:cd:fe:84:f1:55:98:e5:72:e5:cb:89:74:51:c9:4f:11: 3e:7e:74:e8:af:d7:ba:56:aa:97:a6:14:af:68:a5:7b:76:d9: c2:ba:28:6a:a1:43:7f:90:d4:e3:f0:ba:3e:70:12:5f:6a:0c: cb:f9:3d:75:d3:d0:4c:77:26:6d:22:96:66:a7:c2:e7:1e:56: 5e:9f:dd:ab:65:5b:6b:da:8e:f0:6b:48:39:71:9c:01:22:9c: 17:03:51:20:db:85:9a:d0:cc:1e:33:7a:bb:3e:98:bd:af:03: 97:6f:48:89:27:43:84:54:fb:70:a6:7c:31:16:c7:af:f8:d2: 19:fb:ef:36:7d:58:58:08:4d:67:cb:06:ad:fc:dc:9a:82:15: db:6d:e9:b6:34:d4:7a:11:a2:6e:44:40:ea:e7:57:06:75:d2: d6:09:1b:78:d0:16:b4:2f:46:12:8c:4c:ed:05:d8:99:39:93: 11:91:49:36:d9:69:82:d8:6e:87:e4:a7:20:18:65:2d:54:1d: 8a:e9:36:db:80:f5:b2:a6:7c:c3:07:bf:89:a0:a3:1a:39:57: 3f:74:e8:dc:8a:fb:0a:de:60:81:d4:40:e0:c2:5b:be:fd:df: 1b:65:a9:ad:7d:be:89:ef:91:91:81:ce:0b:32:8a:f9:c4:04: 4d:53:6f:c0 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICAPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTI2OTgxMTAvBgNVBAUTKERCMDYzMDc4RjdCOTc3NTJGQjgxRDAwRkE5QkQ3QzUy M0IxQzk3MDMwHhcNMjUwOTA1MDU0MTU5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGJhNzgyNi00NTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzcDoouz8fond8gq7JupB4gJq5hxv3RUTRWUlocwMIj+sPtrMsUpQbixQdN1z dfqoF8whGpN6aD/I27aT5O71sQD/tezCZKUM3pFNrXshtnp381CHRCXwMzddDQPb n1lKSffHKT4UJDtJ0eM9T7FznNx/n3SBE6mmbiJC/XVwX25frvGPZasI3AV6ne6Z 1mUmD1d5NCO2Dvn9rKNR6iHw6yVEII0F2JPWJXQiZ+Mz4Udixp2Wb+lt7nK/o7eP LGqfH4c9ZfRIp8656kVbIGzpT299vn3o4j4cB5TJW3PU1xNS7l2CdNmYEBmLBE+j md/amdpdgQYPphjUiPgWzPPF1wIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFKR7Dzjd 7SimSpQATochtWfI7EYEMB8GA1UdIwQYMBaAFNsGMHj3uXdS+4HQD6m9fFI7HJcD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MjY5OC9EM0MwRUNFMjFF NTUxMUVGQUM5NTlGMTlDNEY5QUUwMi8yd1l3ZVBlNWQxTDdnZEFQcWIxOFVqc2Ns d00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ3WXdlUGU1ZDFMN2dkQVBxYjE4VWpzY2x3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTI2OTgvRDNDMEVDRTIxRTU1MTFFRkFDOTU5RjE5QzRGOUFFMDIvQ0UwNDJBODQx RTU2MTFFRkJFREQxRjM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAFnnxwDBATKfOAwDQQCAAIwBwMFACQEeAAwDQYJKoZIhvcN AQELBQADggEBAHYKzf6E8VWY5XLly4l0UclPET5+dOiv17pWqpemFK9opXt22cK6 KGqhQ3+Q1OPwuj5wEl9qDMv5PXXT0Ex3Jm0ilmanwuceVl6f3atlW2vajvBrSDlx nAEinBcDUSDbhZrQzB4zers+mL2vA5dvSIknQ4RU+3CmfDEWx6/40hn77zZ9WFgI TWfLBq383JqCFdtt6bY01HoRom5EQOrnVwZ10tYJG3jQFrQvRhKMTO0F2Jk5kxGR STbZaYLYbofkpyAYZS1UHYrpNtuA9bKmfMMHv4mgoxo5Vz906NyK+wreYIHUQODC W7793xtlqa19vonvkZGBzgsyivnEBE1Tb8A= -----END CERTIFICATE-----Generated at Mon Oct 20 22:03:57 2025 by rpki-client