$ rpki-client -vvf rpki.apnic.net/member_repository/A9144160/DD6571A64F9211E9AD10AA13C4F9AE02/378459525C6511E989D03610C4F9AE02.roa File: 378459525C6511E989D03610C4F9AE02.roa (raw, json) Hash identifier: UeTUI1DlYZHvBOxwqKa9VAajPRoI3BhfLzrzdSlATns= Subject key identifier: E0:1A:8F:C4:91:E3:7E:EB:89:D7:86:05:B0:4D:A7:1F:FE:F9:9E:BE Certificate issuer: /CN=A9144160/serialNumber=FD7450B118150A9B214F1A0BEEDF3E3B26FED04B Certificate serial: 1039 Authority key identifier: FD:74:50:B1:18:15:0A:9B:21:4F:1A:0B:EE:DF:3E:3B:26:FE:D0:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_XRQsRgVCpshTxoL7t8-Oyb-0Es.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144160/DD6571A64F9211E9AD10AA13C4F9AE02/378459525C6511E989D03610C4F9AE02.roa Signing time: Tue 04 Nov 2025 17:36:21 +0000 ROA not before: Tue 04 Nov 2025 17:36:21 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 138431 IP address blocks: 103.125.96.0/22 maxlen: 22 103.125.96.0/24 maxlen: 24 103.125.97.0/24 maxlen: 24 103.125.98.0/24 maxlen: 24 103.125.99.0/24 maxlen: 24 2403:f0c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144160/DD6571A64F9211E9AD10AA13C4F9AE02/_XRQsRgVCpshTxoL7t8-Oyb-0Es.crl rsync://rpki.apnic.net/member_repository/A9144160/DD6571A64F9211E9AD10AA13C4F9AE02/_XRQsRgVCpshTxoL7t8-Oyb-0Es.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_XRQsRgVCpshTxoL7t8-Oyb-0Es.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:36:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4153 (0x1039) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144160, serialNumber=FD7450B118150A9B214F1A0BEEDF3E3B26FED04B Validity Not Before: Nov 4 17:36:21 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=690a3995-9bd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:29:9a:d6:63:3a:fe:b1:ee:47:bd:ea:36:f3: 68:d1:38:04:03:d0:ea:b7:60:76:42:f2:22:14:7d: 2c:2e:6c:17:67:d2:e9:62:c1:83:07:bc:86:5d:59: 92:86:c4:9e:46:0c:89:f3:df:ff:78:b4:e0:56:a3: 63:65:c7:dd:97:f7:75:6f:6d:c5:5e:e3:3a:d9:85: b1:ef:c4:71:e3:f1:a0:aa:fd:43:da:52:58:ff:f7: e7:66:75:06:8a:33:5f:cf:86:6a:37:47:d9:c6:23: 9e:b3:2d:1b:9d:f7:6e:81:7f:10:61:80:9d:73:f3: 80:34:5b:43:56:3f:60:95:f0:da:6a:7d:95:a6:d3: fb:94:4f:bd:cf:51:42:2d:b1:4a:a7:ba:3d:eb:76: f0:ce:1d:aa:a5:07:f4:d4:55:d8:f7:d0:01:66:25: 84:fb:d3:20:15:eb:34:8e:5f:c1:dc:5b:08:32:11: ee:91:c8:e7:70:44:b6:60:17:4a:c1:1b:53:84:fa: a5:a7:dd:0c:07:ca:2a:c8:e3:5c:0f:f1:0a:8b:e3: 1d:e6:ed:79:1f:b5:1c:52:fb:4a:cd:58:82:85:29: 43:da:81:b1:31:23:d0:01:43:b5:ca:90:cb:e4:e5: 65:22:0b:66:33:76:82:65:e2:da:2c:53:3b:15:a1: ef:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:1A:8F:C4:91:E3:7E:EB:89:D7:86:05:B0:4D:A7:1F:FE:F9:9E:BE X509v3 Authority Key Identifier: keyid:FD:74:50:B1:18:15:0A:9B:21:4F:1A:0B:EE:DF:3E:3B:26:FE:D0:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144160/DD6571A64F9211E9AD10AA13C4F9AE02/_XRQsRgVCpshTxoL7t8-Oyb-0Es.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_XRQsRgVCpshTxoL7t8-Oyb-0Es.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144160/DD6571A64F9211E9AD10AA13C4F9AE02/378459525C6511E989D03610C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.125.96.0/22 IPv6: 2403:f0c0::/32 Signature Algorithm: sha256WithRSAEncryption 48:d1:e5:d7:b3:3a:b3:4d:53:00:16:67:e8:30:4c:61:64:99: 34:46:3e:28:35:83:2d:cb:d0:10:6f:65:82:d7:2b:fe:da:f3: c8:d5:99:96:58:9c:d3:e3:3e:bf:99:14:0b:5a:e8:c0:26:16: 70:67:d8:47:c4:8e:89:bb:20:e0:cf:87:f8:2d:9e:59:52:6b: a1:41:cc:f6:93:38:83:3d:bb:34:ef:ae:c9:a4:f0:3d:9e:88: ee:17:e2:0e:65:4a:ed:18:36:f4:7e:2a:02:2d:1f:59:22:56: ac:2e:9d:0d:d4:8f:45:86:30:53:11:8a:19:31:42:bc:03:1b: f1:91:76:be:a8:70:93:4d:84:f6:ca:25:e8:98:3d:be:d6:8a: 48:29:5b:f8:e0:a9:07:43:c2:51:b8:96:17:91:e9:67:1f:96: ab:25:48:8c:9d:0d:46:0b:72:2f:3f:b8:37:88:e4:c2:cb:1a: 48:b8:60:be:0e:ea:d0:f9:63:76:b5:e0:07:cf:8c:5d:47:db: 32:b8:05:32:2a:d3:c6:37:fa:36:10:94:97:16:62:e0:70:c9: 7e:3e:fa:0e:35:df:25:ec:2e:ff:3f:1b:30:6a:c7:ef:b8:e1: e3:3f:80:80:27:da:d1:b5:3a:75:15:2b:4c:90:00:92:14:7f: 71:5b:14:a2 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICEDkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQxNjAxMTAvBgNVBAUTKEZENzQ1MEIxMTgxNTBBOUIyMTRGMUEwQkVFREYzRTNC MjZGRUQwNEIwHhcNMjUxMTA0MTczNjIxWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTBhMzk5NS05YmQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvCma1mM6/rHuR73qNvNo0TgEA9Dqt2B2QvIiFH0sLmwXZ9LpYsGDB7yGXVmS hsSeRgyJ89//eLTgVqNjZcfdl/d1b23FXuM62YWx78Rx4/Ggqv1D2lJY//fnZnUG ijNfz4ZqN0fZxiOesy0bnfdugX8QYYCdc/OANFtDVj9glfDaan2VptP7lE+9z1FC LbFKp7o963bwzh2qpQf01FXY99ABZiWE+9MgFes0jl/B3FsIMhHukcjncES2YBdK wRtThPqlp90MB8oqyONcD/EKi+Md5u15H7UcUvtKzViChSlD2oGxMSPQAUO1ypDL 5OVlIgtmM3aCZeLaLFM7FaHvowIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFOAaj8SR 437rideGBbBNpx/++Z6+MB8GA1UdIwQYMBaAFP10ULEYFQqbIU8aC+7fPjsm/tBL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDE2MC9ERDY1NzFBNjRG OTIxMUU5QUQxMEFBMTNDNEY5QUUwMi9fWFJRc1JnVkNwc2hUeG9MN3Q4LU95Yi0w RXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19YUlFzUmdWQ3BzaFR4b0w3dDgtT3liLTBFcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDQxNjAvREQ2NTcxQTY0RjkyMTFFOUFEMTBBQTEzQzRGOUFFMDIvMzc4NDU5NTI1 QzY1MTFFOTg5RDAzNjEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnfWAwDQQCAAIwBwMFACQD8MAwDQYJKoZIhvcNAQELBQAD ggEBAEjR5dezOrNNUwAWZ+gwTGFkmTRGPig1gy3L0BBvZYLXK/7a88jVmZZYnNPj Pr+ZFAta6MAmFnBn2EfEjom7IODPh/gtnllSa6FBzPaTOIM9uzTvrsmk8D2eiO4X 4g5lSu0YNvR+KgItH1kiVqwunQ3Uj0WGMFMRihkxQrwDG/GRdr6ocJNNhPbKJeiY Pb7WikgpW/jgqQdDwlG4lheR6WcflqslSIydDUYLci8/uDeI5MLLGki4YL4O6tD5 Y3a14AfPjF1H2zK4BTIq08Y3+jYQlJcWYuBwyX4++g413yXsLv8/GzBqx++44eM/ gIAn2tG1OnUVK0yQAJIUf3FbFKI= -----END CERTIFICATE-----Generated at Wed Nov 5 15:42:15 2025 by rpki-client