$ rpki-client -vvf rpki.apnic.net/member_repository/A9142BCC/8A56C09E983E11E7B47DE57AC4F9AE02/46BEDD64662411EBADFEB364C4F9AE02.roa File: 46BEDD64662411EBADFEB364C4F9AE02.roa (raw, json) Hash identifier: hzFVXlwfRqwuiNn/Z2NEoFkVKW39Hvwn8Qm2xuVV6R0= Subject key identifier: 8B:73:5D:4F:67:E8:9E:B4:E3:0C:94:23:B5:BE:FF:FB:59:EC:D6:16 Certificate issuer: /CN=A9142BCC/serialNumber=020556F97D545434D2C854121DC5DC64634A64AC Certificate serial: 190A Authority key identifier: 02:05:56:F9:7D:54:54:34:D2:C8:54:12:1D:C5:DC:64:63:4A:64:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AgVW-X1UVDTSyFQSHcXcZGNKZKw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142BCC/8A56C09E983E11E7B47DE57AC4F9AE02/46BEDD64662411EBADFEB364C4F9AE02.roa Signing time: Wed 01 Oct 2025 18:58:41 +0000 ROA not before: Wed 01 Oct 2025 18:58:41 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 134732 IP address blocks: 59.153.100.0/22 maxlen: 24 103.119.100.0/22 maxlen: 22 103.119.100.0/23 maxlen: 24 103.119.102.0/24 maxlen: 24 103.119.103.0/24 maxlen: 24 103.198.136.0/22 maxlen: 24 2401:f40::/32 maxlen: 36 2401:f40:8::/48 maxlen: 48 2401:f40:e::/48 maxlen: 48 2401:f40:f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142BCC/8A56C09E983E11E7B47DE57AC4F9AE02/AgVW-X1UVDTSyFQSHcXcZGNKZKw.crl rsync://rpki.apnic.net/member_repository/A9142BCC/8A56C09E983E11E7B47DE57AC4F9AE02/AgVW-X1UVDTSyFQSHcXcZGNKZKw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AgVW-X1UVDTSyFQSHcXcZGNKZKw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 16:48:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6410 (0x190a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142BCC, serialNumber=020556F97D545434D2C854121DC5DC64634A64AC Validity Not Before: Oct 1 18:58:41 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=68dd79e0-e4d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:31:22:6c:e0:18:e4:2c:0f:8b:0b:47:c5:1d: 7a:42:d0:85:f0:c0:f2:b7:b6:e4:db:fd:84:9f:e4: f6:cf:02:2f:d1:cc:d8:81:e6:da:72:6b:70:0d:19: 1d:5c:4a:78:75:d2:78:4a:b5:6d:e9:8f:f7:c7:c6: d4:73:04:25:e9:2f:a0:b1:22:dd:99:c5:bf:76:37: 6e:0c:f1:c7:7b:0e:b8:28:10:d5:45:22:30:d3:7f: cd:09:b3:6d:35:dc:92:d7:17:f3:a3:9f:29:a9:a8: a1:17:0d:f6:db:89:73:c8:f6:2f:0e:92:4a:4b:ef: ed:61:d3:9b:f0:1d:aa:bd:8a:e7:1d:6d:4b:f1:21: 3d:32:72:6d:e0:87:d1:cd:a4:3b:1d:9e:59:1a:09: 14:74:4f:b1:6e:b1:b4:d0:e1:dd:5b:9b:c5:b5:89: 2e:e3:b1:6c:2d:10:c0:72:12:54:f2:c6:6c:3a:57: c1:6b:2e:5c:77:25:ca:9a:45:cd:12:78:9c:98:64: 4c:34:e9:b9:fa:ec:9c:0c:bf:3b:27:03:67:46:6e: ea:1f:03:fb:46:ec:d4:d7:82:28:a1:10:4a:a5:45: b7:3c:c8:05:15:04:75:fb:fa:10:0c:1b:ed:6a:fd: 6a:f5:11:4a:cf:fa:c7:2a:e6:02:c5:a2:00:35:0a: 69:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:73:5D:4F:67:E8:9E:B4:E3:0C:94:23:B5:BE:FF:FB:59:EC:D6:16 X509v3 Authority Key Identifier: keyid:02:05:56:F9:7D:54:54:34:D2:C8:54:12:1D:C5:DC:64:63:4A:64:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142BCC/8A56C09E983E11E7B47DE57AC4F9AE02/AgVW-X1UVDTSyFQSHcXcZGNKZKw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AgVW-X1UVDTSyFQSHcXcZGNKZKw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142BCC/8A56C09E983E11E7B47DE57AC4F9AE02/46BEDD64662411EBADFEB364C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.153.100.0/22 103.119.100.0/22 103.198.136.0/22 IPv6: 2401:f40::/32 Signature Algorithm: sha256WithRSAEncryption b6:d3:95:4f:05:ed:1f:6d:5d:4f:56:4c:53:55:9b:0d:94:e7: 6e:ad:49:56:e8:ac:e1:bf:43:e2:d7:38:98:e2:ab:b1:80:51: b1:9b:e6:10:db:b4:a2:51:6d:50:23:4b:d4:d1:aa:b8:d0:17: 86:cb:c2:be:56:41:db:74:7c:fb:3b:6b:1e:03:1f:3e:a9:dd: 23:88:b8:71:a1:ed:7b:3c:58:74:7a:eb:34:6d:f2:f6:92:3a: 65:c6:53:26:08:53:4d:03:db:4d:ed:00:6d:d5:0f:b2:b4:8e: bb:1c:e2:7d:2a:a5:39:12:f3:e4:4e:69:37:84:99:b6:b6:3a: c5:2e:67:3d:04:dd:0e:47:32:96:6a:96:cc:90:dd:bb:18:63: 45:ec:7b:c6:63:e0:16:dd:07:63:2b:07:e8:2e:59:7b:77:69: e1:cd:1a:65:d9:5e:57:4b:8d:c6:a8:46:f8:eb:6d:9e:c9:bf: 97:0c:b1:a8:56:c1:65:d9:87:93:98:35:10:4d:e9:a1:3d:ca: ea:ef:52:ac:89:79:7c:67:6f:96:2b:e7:f5:97:d3:d0:9f:28: de:b8:3c:09:9c:21:26:6e:86:dc:fb:5f:c5:6a:77:5e:b5:0f: 42:ef:e0:96:b8:8f:17:0b:c1:e7:03:95:e2:21:bc:66:7b:1b: f4:45:b0:ac -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICGQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJCQ0MxMTAvBgNVBAUTKDAyMDU1NkY5N0Q1NDU0MzREMkM4NTQxMjFEQzVEQzY0 NjM0QTY0QUMwHhcNMjUxMDAxMTg1ODQxWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRkNzllMC1lNGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsDEibOAY5CwPiwtHxR16QtCF8MDyt7bk2/2En+T2zwIv0czYgebacmtwDRkd XEp4ddJ4SrVt6Y/3x8bUcwQl6S+gsSLdmcW/djduDPHHew64KBDVRSIw03/NCbNt NdyS1xfzo58pqaihFw3224lzyPYvDpJKS+/tYdOb8B2qvYrnHW1L8SE9MnJt4IfR zaQ7HZ5ZGgkUdE+xbrG00OHdW5vFtYku47FsLRDAchJU8sZsOlfBay5cdyXKmkXN EnicmGRMNOm5+uycDL87JwNnRm7qHwP7RuzU14IooRBKpUW3PMgFFQR1+/oQDBvt av1q9RFKz/rHKuYCxaIANQpp0wIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFItzXU9n 6J604wyUI7W+//tZ7NYWMB8GA1UdIwQYMBaAFAIFVvl9VFQ00shUEh3F3GRjSmSs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkJDQy84QTU2QzA5RTk4 M0UxMUU3QjQ3REU1N0FDNEY5QUUwMi9BZ1ZXLVgxVVZEVFN5RlFTSGNYY1pHTkta S3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FnVlctWDFVVkRUU3lGUVNIY1hjWkdOS1pLdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDJCQ0MvOEE1NkMwOUU5ODNFMTFFN0I0N0RFNTdBQzRGOUFFMDIvNDZCRURENjQ2 NjI0MTFFQkFERkVCMzY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAI7mWQDBAJnd2QDBAJnxogwDQQCAAIwBwMFACQBD0AwDQYJ KoZIhvcNAQELBQADggEBALbTlU8F7R9tXU9WTFNVmw2U526tSVborOG/Q+LXOJji q7GAUbGb5hDbtKJRbVAjS9TRqrjQF4bLwr5WQdt0fPs7ax4DHz6p3SOIuHGh7Xs8 WHR66zRt8vaSOmXGUyYIU00D203tAG3VD7K0jrsc4n0qpTkS8+ROaTeEmba2OsUu Zz0E3Q5HMpZqlsyQ3bsYY0Xse8Zj4BbdB2MrB+guWXt3aeHNGmXZXldLjcaoRvjr bZ7Jv5cMsahWwWXZh5OYNRBN6aE9yurvUqyJeXxnb5Yr5/WX09CfKN64PAmcISZu htz7X8Vqd161D0Lv4Ja4jxcLwecDleIhvGZ7G/RFsKw= -----END CERTIFICATE-----Generated at Sat Oct 25 22:20:48 2025 by rpki-client