$ rpki-client -vvf rpki.apnic.net/member_repository/A9193045/BFADC6109F2911EC9C2D6785C4F9AE02/0D0600B08F8811F088E19383C4F9AE02.roa File: 0D0600B08F8811F088E19383C4F9AE02.roa (raw, json) Hash identifier: Oo7jcORgdKEGq+L9qexUXtYIgCiwKt24ZZvIPnQ3W9I= Subject key identifier: D6:AA:C9:D2:DE:59:F6:B3:BA:DE:E0:BA:7E:43:94:95:BA:69:FE:2C Certificate issuer: /CN=A9193045/serialNumber=66E85461BB352A498DB55703646305CA37E74FB4 Certificate serial: 03E6 Authority key identifier: 66:E8:54:61:BB:35:2A:49:8D:B5:57:03:64:63:05:CA:37:E7:4F:B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZuhUYbs1KkmNtVcDZGMFyjfnT7Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193045/BFADC6109F2911EC9C2D6785C4F9AE02/0D0600B08F8811F088E19383C4F9AE02.roa Signing time: Fri 19 Sep 2025 01:07:45 +0000 ROA not before: Fri 19 Sep 2025 01:07:45 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 45345 IP address blocks: 43.245.212.0/23 maxlen: 24 103.29.152.0/22 maxlen: 22 2401:af00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193045/BFADC6109F2911EC9C2D6785C4F9AE02/ZuhUYbs1KkmNtVcDZGMFyjfnT7Q.crl rsync://rpki.apnic.net/member_repository/A9193045/BFADC6109F2911EC9C2D6785C4F9AE02/ZuhUYbs1KkmNtVcDZGMFyjfnT7Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZuhUYbs1KkmNtVcDZGMFyjfnT7Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:33:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 998 (0x3e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193045, serialNumber=66E85461BB352A498DB55703646305CA37E74FB4 Validity Not Before: Sep 19 01:07:45 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68ccace0-65f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ce:b2:02:d1:7e:d4:ba:e3:cb:d4:22:fc:83: a4:1f:e0:2d:67:f4:a4:c5:5b:f2:3b:54:ec:37:c3: b9:6d:91:3a:17:b9:ae:67:1f:33:a7:d0:21:b7:2c: aa:f7:3a:88:6f:13:64:ba:98:58:5d:69:a5:70:a3: 91:53:3e:6a:57:9f:a0:e1:94:6d:84:cb:e0:1d:50: f4:d4:b4:bf:f2:71:3c:8e:6b:d8:b3:d9:72:fd:ab: 2b:82:a3:65:9b:f1:2e:c6:20:d0:23:98:19:c3:c2: 57:a0:03:b6:3d:bb:c4:53:c6:18:12:52:fa:bb:fb: 75:62:01:4e:2a:db:9a:6c:7d:4a:e2:d1:8f:66:33: 20:5d:b9:a8:ca:04:6c:68:6f:db:30:f4:b2:60:5d: ff:a9:e1:e0:35:fd:25:83:32:ac:f0:84:e3:d1:04: a5:4a:58:46:c1:f4:73:05:81:87:07:82:78:4d:ea: cb:be:84:69:ab:43:84:d9:18:b7:b4:ab:a0:b6:9c: 65:43:a8:1a:4c:5d:33:e2:89:20:f6:b2:56:1b:24: ac:e7:16:5d:6f:bf:9d:11:2f:87:9b:70:e3:cc:62: 5b:a0:8b:d7:5b:77:24:1f:a2:76:b6:85:13:32:bd: 21:55:11:3b:31:23:f7:f7:8f:83:43:59:42:48:d2: 26:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:AA:C9:D2:DE:59:F6:B3:BA:DE:E0:BA:7E:43:94:95:BA:69:FE:2C X509v3 Authority Key Identifier: keyid:66:E8:54:61:BB:35:2A:49:8D:B5:57:03:64:63:05:CA:37:E7:4F:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193045/BFADC6109F2911EC9C2D6785C4F9AE02/ZuhUYbs1KkmNtVcDZGMFyjfnT7Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZuhUYbs1KkmNtVcDZGMFyjfnT7Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193045/BFADC6109F2911EC9C2D6785C4F9AE02/0D0600B08F8811F088E19383C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.245.212.0/23 103.29.152.0/22 IPv6: 2401:af00::/32 Signature Algorithm: sha256WithRSAEncryption 77:70:a2:ce:ec:bd:a7:ba:30:c4:14:f1:58:8d:34:99:2a:c4: bc:40:ea:d7:6f:42:86:b0:67:80:89:d0:b0:64:60:ad:42:04: c4:f6:4d:e0:09:51:7d:8c:dd:6d:19:60:64:d2:04:9b:c8:6b: f4:40:ed:59:b4:ae:17:d0:48:25:0f:2c:2a:c7:6b:0b:76:52: 42:1b:e8:5c:3d:21:36:6b:eb:a4:06:92:17:d3:11:14:84:9e: a8:7f:39:5e:4f:b4:3e:05:f0:c9:de:73:04:5f:44:72:38:83: b1:a0:03:dd:11:58:4b:f0:60:1d:e1:9d:59:04:78:fd:28:4b: 6b:cc:92:82:ac:c6:a6:5e:8d:27:8e:a9:18:69:91:3b:4a:38: a4:22:34:cb:24:3d:ef:6a:d8:02:be:84:4d:84:d4:e6:b2:d1: 9e:c0:d6:13:d8:be:3d:81:b5:b8:3a:1f:d2:71:d3:17:17:cd: 7f:2e:99:b7:03:a0:02:9a:07:05:0a:16:e2:49:0d:c7:48:2d: 54:9e:2f:ce:a2:92:b2:dd:9d:a9:c6:46:80:9e:0e:40:cc:9c: 67:a3:5c:73:c9:3f:21:99:22:cf:d4:2a:d2:5a:dd:ed:ab:d6: 29:c2:59:1f:5c:b1:36:80:dc:6e:e1:c2:7f:7c:49:fe:c5:d7: 41:16:c1:60 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICA+YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTMwNDUxMTAvBgNVBAUTKDY2RTg1NDYxQkIzNTJBNDk4REI1NTcwMzY0NjMwNUNB MzdFNzRGQjQwHhcNMjUwOTE5MDEwNzQ1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGNjYWNlMC02NWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvs6yAtF+1Lrjy9Qi/IOkH+AtZ/SkxVvyO1TsN8O5bZE6F7muZx8zp9Ahtyyq 9zqIbxNkuphYXWmlcKORUz5qV5+g4ZRthMvgHVD01LS/8nE8jmvYs9ly/asrgqNl m/EuxiDQI5gZw8JXoAO2PbvEU8YYElL6u/t1YgFOKtuabH1K4tGPZjMgXbmoygRs aG/bMPSyYF3/qeHgNf0lgzKs8ITj0QSlSlhGwfRzBYGHB4J4TerLvoRpq0OE2Ri3 tKugtpxlQ6gaTF0z4okg9rJWGySs5xZdb7+dES+Hm3DjzGJboIvXW3ckH6J2toUT Mr0hVRE7MSP394+DQ1lCSNImFwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFNaqydLe Wfazut7gun5DlJW6af4sMB8GA1UdIwQYMBaAFGboVGG7NSpJjbVXA2RjBco350+0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzA0NS9CRkFEQzYxMDlG MjkxMUVDOUMyRDY3ODVDNEY5QUUwMi9adWhVWWJzMUtrbU50VmNEWkdNRnlqZm5U N1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p1aFVZYnMxS2ttTnRWY0RaR01GeWpmblQ3US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTMwNDUvQkZBREM2MTA5RjI5MTFFQzlDMkQ2Nzg1QzRGOUFFMDIvMEQwNjAwQjA4 Rjg4MTFGMDg4RTE5MzgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAEr9dQDBAJnHZgwDQQCAAIwBwMFACQBrwAwDQYJKoZIhvcN AQELBQADggEBAHdwos7svae6MMQU8ViNNJkqxLxA6tdvQoawZ4CJ0LBkYK1CBMT2 TeAJUX2M3W0ZYGTSBJvIa/RA7Vm0rhfQSCUPLCrHawt2UkIb6Fw9ITZr66QGkhfT ERSEnqh/OV5PtD4F8MnecwRfRHI4g7GgA90RWEvwYB3hnVkEeP0oS2vMkoKsxqZe jSeOqRhpkTtKOKQiNMskPe9q2AK+hE2E1Oay0Z7A1hPYvj2Btbg6H9Jx0xcXzX8u mbcDoAKaBwUKFuJJDcdILVSeL86ikrLdnanGRoCeDkDMnGejXHPJPyGZIs/UKtJa 3e2r1inCWR9csTaA3G7hwn98Sf7F10EWwWA= -----END CERTIFICATE-----Generated at Mon Oct 20 13:01:05 2025 by rpki-client