$ rpki-client -vvf rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/F392CF9E53A311EAB1641213C4F9AE02.roa File: F392CF9E53A311EAB1641213C4F9AE02.roa (raw, json) Hash identifier: xmLzVeIZmzkbeElNyJqCqgJSwLYX+MndAV0BI8RRNy0= Subject key identifier: F4:74:C4:6C:50:22:07:23:7F:2A:55:6F:F4:D0:F0:50:87:EE:AC:B6 Certificate issuer: /CN=A9196F73/serialNumber=89A31D44E94F1CC27850BBAC16C02C20AAB39CE5 Certificate serial: 0B00 Authority key identifier: 89:A3:1D:44:E9:4F:1C:C2:78:50:BB:AC:16:C0:2C:20:AA:B3:9C:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaMdROlPHMJ4ULusFsAsIKqznOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/F392CF9E53A311EAB1641213C4F9AE02.roa Signing time: Wed 24 Sep 2025 19:38:46 +0000 ROA not before: Wed 24 Sep 2025 19:38:46 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 14618 IP address blocks: 103.39.86.0/23 maxlen: 23 103.39.112.0/24 maxlen: 24 103.211.172.0/24 maxlen: 24 202.8.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.crl rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaMdROlPHMJ4ULusFsAsIKqznOU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:18:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2816 (0xb00) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196F73, serialNumber=89A31D44E94F1CC27850BBAC16C02C20AAB39CE5 Validity Not Before: Sep 24 19:38:46 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68d448c5-8481 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:70:0d:64:f6:15:09:20:80:44:57:24:37:26: 3d:11:8d:07:f5:0d:0d:4d:b0:ee:ab:6b:f6:90:c4: 42:45:fa:5e:e4:d0:9e:8f:20:15:14:f6:c2:98:11: 90:d4:f8:a4:b3:40:6c:0b:32:5e:47:cf:b2:58:de: 5d:e2:8d:fc:66:0c:f7:eb:48:8a:2a:64:8e:54:df: cb:f1:cf:f2:53:4e:b6:08:ae:3e:65:14:3e:f7:07: 34:62:14:a5:89:bd:d8:75:5a:3e:ea:d3:a8:dc:1f: 05:24:5c:e4:18:02:94:44:4e:a3:76:3a:b3:ec:e7: 45:1c:0f:86:c4:59:ba:eb:ed:af:13:7d:2d:e6:c6: ca:3f:70:cf:fd:68:70:98:c8:fd:f5:ae:39:ce:1c: 4e:e9:d9:9c:30:9b:cb:14:db:9c:df:96:76:e1:9f: b1:9a:93:ab:d1:81:65:67:6c:5c:9e:21:d7:36:ec: e0:0c:76:de:14:78:a9:39:a1:4f:55:99:9f:a9:9e: 8e:ce:f0:70:d4:f5:a8:22:d7:82:45:6c:0d:92:97: 52:6c:c1:1d:88:89:40:e9:3c:04:c0:57:48:02:58: 66:b2:fa:22:83:6a:6b:43:e3:5d:ec:9f:e2:1b:0c: 22:ca:0e:b4:08:d7:4b:3f:a8:b9:0d:6b:92:7a:9e: 15:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:74:C4:6C:50:22:07:23:7F:2A:55:6F:F4:D0:F0:50:87:EE:AC:B6 X509v3 Authority Key Identifier: keyid:89:A3:1D:44:E9:4F:1C:C2:78:50:BB:AC:16:C0:2C:20:AA:B3:9C:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaMdROlPHMJ4ULusFsAsIKqznOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/F392CF9E53A311EAB1641213C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.39.86.0/23 103.39.112.0/24 103.211.172.0/24 202.8.25.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:8e:83:3c:f5:54:98:a7:4a:e0:d7:78:0b:31:ba:65:0c:d9: 1b:fd:8c:a4:fc:3d:24:ef:bd:9c:c6:72:f2:77:b0:fb:fb:3d: d4:f9:e5:10:f6:19:5d:69:42:27:c1:d3:50:d7:ab:a8:32:40: 46:64:6e:43:ec:81:90:92:48:fa:57:0b:17:8b:61:4b:92:79: d6:e3:88:98:da:73:b5:68:f1:9c:2a:04:2a:3e:2a:59:52:64: b4:8e:72:bd:a9:87:f9:07:10:cc:aa:28:30:72:88:ff:f1:0e: 2b:3d:93:30:56:f2:e2:ad:37:26:a2:ad:16:1b:3b:22:b8:e4: 70:ae:23:5c:eb:50:b0:a1:29:be:f7:17:dc:2e:fb:9a:e8:3e: 2f:be:c9:84:60:0b:42:eb:43:8d:55:94:8a:c8:d3:83:c6:6a: cc:b2:e6:c1:8a:be:82:18:7b:be:29:b4:f7:b0:14:b0:4f:a6: 4b:40:2f:18:38:44:81:f5:26:d9:d0:3c:50:90:7a:53:78:bb: 8e:97:ef:ac:73:05:f7:6b:af:4a:c5:f6:ae:4b:05:e7:ea:ac: dd:cf:4f:5b:91:c9:44:e0:8d:3a:30:4e:87:8c:41:76:22:14: 36:53:dd:c2:c1:22:c1:70:2d:d8:75:06:47:20:94:5d:16:71: 16:95:c6:cf -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICCwAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZGNzMxMTAvBgNVBAUTKDg5QTMxRDQ0RTk0RjFDQzI3ODUwQkJBQzE2QzAyQzIw QUFCMzlDRTUwHhcNMjUwOTI0MTkzODQ2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ0NDhjNS04NDgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0nANZPYVCSCARFckNyY9EY0H9Q0NTbDuq2v2kMRCRfpe5NCejyAVFPbCmBGQ 1Piks0BsCzJeR8+yWN5d4o38Zgz360iKKmSOVN/L8c/yU062CK4+ZRQ+9wc0YhSl ib3YdVo+6tOo3B8FJFzkGAKURE6jdjqz7OdFHA+GxFm66+2vE30t5sbKP3DP/Whw mMj99a45zhxO6dmcMJvLFNuc35Z24Z+xmpOr0YFlZ2xcniHXNuzgDHbeFHipOaFP VZmfqZ6OzvBw1PWoIteCRWwNkpdSbMEdiIlA6TwEwFdIAlhmsvoig2prQ+Nd7J/i Gwwiyg60CNdLP6i5DWuSep4VywIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFPR0xGxQ IgcjfypVb/TQ8FCH7qy2MB8GA1UdIwQYMBaAFImjHUTpTxzCeFC7rBbALCCqs5zl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkY3My9BMjk3MDdGNjUz QTExMUVBQUVFRUJFMEJDNEY5QUUwMi9pYU1kUk9sUEhNSjRVTHVzRnNBc0lLcXpu T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lhTWRST2xQSE1KNFVMdXNGc0FzSUtxem5PVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTZGNzMvQTI5NzA3RjY1M0ExMTFFQUFFRUVCRTBCQzRGOUFFMDIvRjM5MkNGOUU1 M0EzMTFFQUIxNjQxMjEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAFnJ1YDBABnJ3ADBABn06wDBADKCBkwDQYJKoZIhvcNAQEL BQADggEBAJ6Ogzz1VJinSuDXeAsxumUM2Rv9jKT8PSTvvZzGcvJ3sPv7PdT55RD2 GV1pQifB01DXq6gyQEZkbkPsgZCSSPpXCxeLYUuSedbjiJjac7Vo8ZwqBCo+KllS ZLSOcr2ph/kHEMyqKDByiP/xDis9kzBW8uKtNyairRYbOyK45HCuI1zrULChKb73 F9wu+5roPi++yYRgC0LrQ41VlIrI04PGasyy5sGKvoIYe74ptPewFLBPpktALxg4 RIH1JtnQPFCQelN4u46X76xzBfdrr0rF9q5LBefqrN3PT1uRyUTgjTowToeMQXYi FDZT3cLBIsFwLdh1BkcglF0WcRaVxs8= -----END CERTIFICATE-----Generated at Sun Oct 19 23:31:35 2025 by rpki-client