$ rpki-client -vvf rpki.apnic.net/member_repository/A9135033/5D00AE52DD4C11E9A6D4BB1DC4F9AE02/2328656A840211EEB9348E11C4F9AE02.roa File: 2328656A840211EEB9348E11C4F9AE02.roa (raw, json) Hash identifier: 0IRldC+hawtZkd2Iq9YFUMYJkucfDEzFvM/nRTLCHH8= Subject key identifier: 7C:8A:92:35:1B:16:5A:D4:6C:8C:0A:9D:64:FD:B9:74:BA:BB:F8:9F Certificate issuer: /CN=A9135033/serialNumber=0DE596CB2C60CB757DB8F40EB86F247652C13A30 Certificate serial: 0D75 Authority key identifier: 0D:E5:96:CB:2C:60:CB:75:7D:B8:F4:0E:B8:6F:24:76:52:C1:3A:30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeWWyyxgy3V9uPQOuG8kdlLBOjA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135033/5D00AE52DD4C11E9A6D4BB1DC4F9AE02/2328656A840211EEB9348E11C4F9AE02.roa Signing time: Sun 02 Nov 2025 18:06:32 +0000 ROA not before: Sun 02 Nov 2025 18:06:32 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 63989 IP address blocks: 103.131.64.0/24 maxlen: 24 103.131.65.0/24 maxlen: 24 103.131.66.0/24 maxlen: 24 103.131.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135033/5D00AE52DD4C11E9A6D4BB1DC4F9AE02/DeWWyyxgy3V9uPQOuG8kdlLBOjA.crl rsync://rpki.apnic.net/member_repository/A9135033/5D00AE52DD4C11E9A6D4BB1DC4F9AE02/DeWWyyxgy3V9uPQOuG8kdlLBOjA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeWWyyxgy3V9uPQOuG8kdlLBOjA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:06:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3445 (0xd75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135033, serialNumber=0DE596CB2C60CB757DB8F40EB86F247652C13A30 Validity Not Before: Nov 2 18:06:32 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=69079da8-7d95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:1b:ac:65:4d:e9:28:68:72:da:fc:5d:a2:60: 09:ff:c4:50:ef:38:03:97:ab:e1:63:b9:94:cc:78: 01:6a:b2:9f:e0:da:f5:00:50:70:35:9b:b4:ea:f7: 3e:7b:e8:0c:f8:f3:80:b6:53:1d:f0:05:23:da:c8: e6:36:33:af:60:d2:a9:6e:65:63:c8:78:d1:5e:e6: 5b:e4:b4:d6:a3:1e:7f:ea:55:a2:6a:1a:70:12:28: 3e:98:1b:32:17:ce:a2:db:6b:91:02:f1:97:97:4e: 19:6a:d0:9c:5f:73:91:07:21:de:0f:b0:af:1b:90: d3:20:5b:99:96:46:40:50:96:81:17:36:f5:c4:ee: 94:af:05:ec:40:db:fb:84:b9:ea:11:0d:5f:09:93: b1:d7:0a:08:b9:d5:21:f0:a1:27:23:14:39:d3:1e: b0:c0:05:66:a5:2b:5f:d9:54:8c:9c:7e:2a:8b:91: 87:c5:1b:ec:d0:01:88:18:54:ca:73:35:7f:f9:78: 0c:8f:aa:30:2e:eb:9e:8d:ce:44:0d:f6:0b:d6:dc: e5:e7:5f:30:8d:53:1e:c6:34:7d:4d:ad:f3:e8:18: 7c:47:ae:c0:e4:e7:7f:96:12:12:ea:b8:56:f9:76: 08:d8:cf:b6:27:2a:d6:2a:f8:0e:db:49:8a:b5:04: a3:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:8A:92:35:1B:16:5A:D4:6C:8C:0A:9D:64:FD:B9:74:BA:BB:F8:9F X509v3 Authority Key Identifier: keyid:0D:E5:96:CB:2C:60:CB:75:7D:B8:F4:0E:B8:6F:24:76:52:C1:3A:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135033/5D00AE52DD4C11E9A6D4BB1DC4F9AE02/DeWWyyxgy3V9uPQOuG8kdlLBOjA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeWWyyxgy3V9uPQOuG8kdlLBOjA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135033/5D00AE52DD4C11E9A6D4BB1DC4F9AE02/2328656A840211EEB9348E11C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.131.64.0/22 Signature Algorithm: sha256WithRSAEncryption 45:c0:86:42:6f:16:bd:fe:9e:1c:e7:e4:57:5b:2b:6c:3b:4a: f8:a2:ec:62:55:1f:3b:4b:0c:50:e6:b6:5c:28:f2:56:91:a3: a6:50:fc:3d:b6:6a:f5:7d:15:37:af:59:3b:1b:b5:e4:7a:0c: 19:91:67:98:69:bd:0d:74:a9:45:63:a7:c6:e7:0f:13:43:0a: 88:73:e8:ce:e4:54:22:11:0a:8d:2e:56:36:8a:52:96:a7:c0: 4d:ee:79:1d:d1:dc:9a:03:66:46:3b:4d:ce:69:0c:3a:8e:24: 1e:af:ae:1c:49:70:ac:19:5c:7f:57:b5:82:e5:2c:4c:7a:65: 24:49:82:6b:e7:68:4f:4a:c9:2e:3a:43:24:ea:dc:c1:5e:36: c6:bf:2e:73:66:a2:36:a7:ac:f9:ca:1e:a0:77:ce:4e:e4:79: 85:87:31:78:9e:b2:34:a4:18:06:6b:83:63:32:39:32:00:b9: 22:ab:97:3f:bc:c9:31:3b:7f:79:7d:c5:7f:0c:93:c6:ee:2b: e8:0f:5d:17:70:8b:c8:6d:78:be:d3:82:b1:d9:fc:86:d6:3b: 27:c7:00:8e:a7:48:5c:4b:e6:72:b9:42:ab:4a:b7:4b:ba:52: ac:bb:89:b8:5a:1a:16:7e:84:3c:55:c6:31:39:2c:2f:dd:58: 13:66:ca:5a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDXUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzUwMzMxMTAvBgNVBAUTKDBERTU5NkNCMkM2MENCNzU3REI4RjQwRUI4NkYyNDc2 NTJDMTNBMzAwHhcNMjUxMTAyMTgwNjMyWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA3OWRhOC03ZDk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0RusZU3pKGhy2vxdomAJ/8RQ7zgDl6vhY7mUzHgBarKf4Nr1AFBwNZu06vc+ e+gM+POAtlMd8AUj2sjmNjOvYNKpbmVjyHjRXuZb5LTWox5/6lWiahpwEig+mBsy F86i22uRAvGXl04ZatCcX3ORByHeD7CvG5DTIFuZlkZAUJaBFzb1xO6UrwXsQNv7 hLnqEQ1fCZOx1woIudUh8KEnIxQ50x6wwAVmpStf2VSMnH4qi5GHxRvs0AGIGFTK czV/+XgMj6owLuuejc5EDfYL1tzl518wjVMexjR9Ta3z6Bh8R67A5Od/lhIS6rhW +XYI2M+2JyrWKvgO20mKtQSj1wIDAQABo4IClTCCApEwHQYDVR0OBBYEFHyKkjUb FlrUbIwKnWT9uXS6u/ifMB8GA1UdIwQYMBaAFA3llsssYMt1fbj0DrhvJHZSwTow MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTAzMy81RDAwQUU1MkRE NEMxMUU5QTZENEJCMURDNEY5QUUwMi9EZVdXeXl4Z3kzVjl1UFFPdUc4a2RsTEJP akEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RlV1d5eXhneTNWOXVQUU91RzhrZGxMQk9qQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzUwMzMvNUQwMEFFNTJERDRDMTFFOUE2RDRCQjFEQzRGOUFFMDIvMjMyODY1NkE4 NDAyMTFFRUI5MzQ4RTExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJng0AwDQYJKoZIhvcNAQELBQADggEBAEXAhkJvFr3+nhzn 5FdbK2w7Svii7GJVHztLDFDmtlwo8laRo6ZQ/D22avV9FTevWTsbteR6DBmRZ5hp vQ10qUVjp8bnDxNDCohz6M7kVCIRCo0uVjaKUpanwE3ueR3R3JoDZkY7Tc5pDDqO JB6vrhxJcKwZXH9XtYLlLEx6ZSRJgmvnaE9KyS46QyTq3MFeNsa/LnNmojanrPnK HqB3zk7keYWHMXiesjSkGAZrg2MyOTIAuSKrlz+8yTE7f3l9xX8Mk8buK+gPXRdw i8hteL7TgrHZ/IbWOyfHAI6nSFxL5nK5QqtKt0u6Uqy7ibhaGhZ+hDxVxjE5LC/d WBNmylo= -----END CERTIFICATE-----Generated at Tue Nov 4 01:05:17 2025 by rpki-client