$ rpki-client -vvf rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/ED8E5BC8CFD411EBA3172446C4F9AE02.roa File: ED8E5BC8CFD411EBA3172446C4F9AE02.roa (raw, json) Hash identifier: 1IWRKHioOXMwyjTTWNWycmySSHih4LoHTQzkoE2T/Mc= Subject key identifier: 8D:7E:CE:D9:C9:B8:CC:B9:56:E4:0E:E7:F0:CB:81:69:A8:19:9B:16 Certificate issuer: /CN=A9140A8F/serialNumber=3D93EB66D81A276A039246168D3278B267EBAEEC Certificate serial: 07B9 Authority key identifier: 3D:93:EB:66:D8:1A:27:6A:03:92:46:16:8D:32:78:B2:67:EB:AE:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PZPrZtgaJ2oDkkYWjTJ4smfrruw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/ED8E5BC8CFD411EBA3172446C4F9AE02.roa Signing time: Sat 04 Oct 2025 21:52:02 +0000 ROA not before: Sat 04 Oct 2025 21:52:02 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 45426 IP address blocks: 103.198.41.0/24 maxlen: 24 103.198.42.0/24 maxlen: 24 202.129.244.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/PZPrZtgaJ2oDkkYWjTJ4smfrruw.crl rsync://rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/PZPrZtgaJ2oDkkYWjTJ4smfrruw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PZPrZtgaJ2oDkkYWjTJ4smfrruw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:29:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1977 (0x7b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140A8F, serialNumber=3D93EB66D81A276A039246168D3278B267EBAEEC Validity Not Before: Oct 4 21:52:02 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68e19702-0044 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:37:1e:98:68:c1:44:3f:9f:a1:f5:cb:56:51: 46:81:7e:ed:85:63:26:e7:b3:0b:c4:9c:66:a5:c0: 08:5e:d1:69:2a:68:9a:52:ab:49:2b:ff:3d:88:a7: 6d:eb:c5:cb:b4:9c:5b:80:2b:c5:1f:11:8f:30:e9: 2e:fd:48:3f:1e:42:4a:fc:2a:4a:4d:4a:64:0a:37: 1e:b2:95:55:06:12:e9:34:54:2f:9a:68:a9:7b:83: d6:2c:06:ce:92:79:fa:71:15:84:37:21:3e:f5:83: ac:30:67:8b:6c:79:a1:a2:4b:83:ab:17:f3:12:71: 0d:c9:6c:d7:3f:7b:40:ac:50:6d:e9:bf:2d:70:07: f8:47:a2:a1:76:1c:e5:d3:9c:52:57:42:49:6c:84: af:f9:6e:3a:f4:f9:2c:1c:2a:6b:43:c7:f9:c3:99: 7c:b1:ea:9d:87:d8:f1:99:62:3e:a3:26:71:e2:00: 39:87:9b:b6:55:a3:00:5d:be:b2:28:31:e8:5e:ff: 99:5d:4c:31:a9:43:09:44:8d:fc:06:c9:5a:18:4e: df:67:d1:0a:de:d6:c6:e8:b4:f3:4d:76:ba:9f:7b: 61:55:02:00:cb:ec:cd:41:71:37:e8:74:dd:b1:d0: 46:95:95:69:ca:f7:f6:80:7f:85:9d:af:45:7f:23: d6:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:7E:CE:D9:C9:B8:CC:B9:56:E4:0E:E7:F0:CB:81:69:A8:19:9B:16 X509v3 Authority Key Identifier: keyid:3D:93:EB:66:D8:1A:27:6A:03:92:46:16:8D:32:78:B2:67:EB:AE:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/PZPrZtgaJ2oDkkYWjTJ4smfrruw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PZPrZtgaJ2oDkkYWjTJ4smfrruw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/ED8E5BC8CFD411EBA3172446C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.198.41.0-103.198.42.255 202.129.244.0/22 Signature Algorithm: sha256WithRSAEncryption 5e:ed:76:de:3e:8a:97:d9:2e:75:bc:d6:37:e6:f1:5c:66:67: 31:33:b3:f0:55:1e:06:e9:c4:b7:6f:ac:3b:6d:2a:78:bf:81: 9b:c6:ee:e7:6d:8b:5d:1e:63:38:6e:23:de:f2:7f:2a:21:d2: 53:0d:97:98:dd:09:76:68:1a:a1:2a:75:53:f7:6a:50:ee:ec: 64:77:34:e3:18:d3:0a:38:c6:e7:c1:1a:de:96:5a:47:e1:b0: 30:eb:b8:49:52:32:82:51:9b:6d:d5:27:df:85:0c:28:2c:21: 8e:5e:81:86:40:be:2c:5f:8a:08:59:44:28:81:63:ee:f2:59: 38:56:bd:01:5a:e5:8c:28:71:66:07:42:35:5d:a0:89:26:15: e4:40:b0:ab:5e:b8:39:b4:67:c6:d6:5b:18:1a:2d:f6:96:42: c8:d3:90:19:6a:e0:be:d0:e6:fc:1b:b8:35:48:f7:a2:eb:01: 06:5d:69:c5:11:26:cd:cb:fc:18:b7:e2:87:0c:51:f9:49:42: 75:20:5e:cb:1c:97:20:b2:8c:63:63:b1:80:c5:e3:be:56:be: 79:9e:59:4d:f0:49:66:58:67:74:6d:a1:62:62:5c:d9:a9:7b: a1:bf:d9:d0:ba:57:5a:fc:ec:e0:a0:7c:eb:c7:b8:91:99:21: d8:7b:37:a7 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICB7kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBBOEYxMTAvBgNVBAUTKDNEOTNFQjY2RDgxQTI3NkEwMzkyNDYxNjhEMzI3OEIy NjdFQkFFRUMwHhcNMjUxMDA0MjE1MjAyWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OGUxOTcwMi0wMDQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxjcemGjBRD+fofXLVlFGgX7thWMm57MLxJxmpcAIXtFpKmiaUqtJK/89iKdt 68XLtJxbgCvFHxGPMOku/Ug/HkJK/CpKTUpkCjcespVVBhLpNFQvmmipe4PWLAbO knn6cRWENyE+9YOsMGeLbHmhokuDqxfzEnENyWzXP3tArFBt6b8tcAf4R6Khdhzl 05xSV0JJbISv+W469PksHCprQ8f5w5l8seqdh9jxmWI+oyZx4gA5h5u2VaMAXb6y KDHoXv+ZXUwxqUMJRI38BslaGE7fZ9EK3tbG6LTzTXa6n3thVQIAy+zNQXE36HTd sdBGlZVpyvf2gH+Fna9FfyPW9QIDAQABo4ICozCCAp8wHQYDVR0OBBYEFI1+ztnJ uMy5VuQO5/DLgWmoGZsWMB8GA1UdIwQYMBaAFD2T62bYGidqA5JGFo0yeLJn667s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEE4Ri8zMzA1MjQ3QTIz M0MxMUVCODQ5QzVENkVDNEY5QUUwMi9QWlByWnRnYUoyb0Rra1lXalRKNHNtZnJy dXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BaUHJadGdhSjJvRGtrWVdqVEo0c21mcnJ1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDBBOEYvMzMwNTI0N0EyMzNDMTFFQjg0OUM1RDZFQzRGOUFFMDIvRUQ4RTVCQzhD RkQ0MTFFQkEzMTcyNDQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEAGfGKQMEAGfGKgMEAsqB9DANBgkqhkiG9w0BAQsFAAOC AQEAXu123j6Kl9kudbzWN+bxXGZnMTOz8FUeBunEt2+sO20qeL+Bm8bu522LXR5j OG4j3vJ/KiHSUw2XmN0JdmgaoSp1U/dqUO7sZHc04xjTCjjG58Ea3pZaR+GwMOu4 SVIyglGbbdUn34UMKCwhjl6BhkC+LF+KCFlEKIFj7vJZOFa9AVrljChxZgdCNV2g iSYV5ECwq164ObRnxtZbGBot9pZCyNOQGWrgvtDm/Bu4NUj3ousBBl1pxREmzcv8 GLfihwxR+UlCdSBeyxyXILKMY2OxgMXjvla+eZ5ZTfBJZlhndG2hYmJc2al7ob/Z 0LpXWvzs4KB868e4kZkh2Hs3pw== -----END CERTIFICATE-----Generated at Wed Nov 5 11:55:56 2025 by rpki-client