$ rpki-client -vvf rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/35A768B8563B11EC94608B5BC4F9AE02.roa File: 35A768B8563B11EC94608B5BC4F9AE02.roa (raw, json) Hash identifier: P6wLHpQqCHGL554TbsS5XznXqZdAAm0+usW172StxkE= Subject key identifier: 9B:8D:D6:31:FF:40:52:97:32:AE:C4:FF:FA:17:DA:58:A5:8C:22:D3 Certificate issuer: /CN=A9145D25/serialNumber=C2F28E9D188439C4FE69F63A4CAA6DA42496291D Certificate serial: 05B7 Authority key identifier: C2:F2:8E:9D:18:84:39:C4:FE:69:F6:3A:4C:AA:6D:A4:24:96:29:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/35A768B8563B11EC94608B5BC4F9AE02.roa Signing time: Wed 08 Oct 2025 06:53:10 +0000 ROA not before: Wed 08 Oct 2025 06:53:10 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 13335 IP address blocks: 103.172.110.0/23 maxlen: 23 125.3.192.0/21 maxlen: 21 203.168.192.0/20 maxlen: 20 222.167.32.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.crl rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:09:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1463 (0x5b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145D25, serialNumber=C2F28E9D188439C4FE69F63A4CAA6DA42496291D Validity Not Before: Oct 8 06:53:10 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68e60a56-8f68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ea:6f:eb:c6:79:96:16:55:2d:1a:99:82:5f: c6:1a:d7:43:52:73:a3:e8:41:cd:8b:82:b4:3a:98: de:13:04:e1:80:d5:dd:fd:87:35:12:50:d7:fc:80: 24:b6:f2:00:7b:8f:60:ac:55:41:db:6d:59:93:3c: 1c:6f:22:c9:b8:05:45:37:ff:3e:38:8b:6a:90:61: d3:2d:89:5f:07:f6:66:0c:b7:3d:52:93:b8:18:11: a4:bf:31:d6:9f:77:7b:22:48:1f:0f:14:9c:ad:cc: d6:f8:44:85:69:58:93:e5:a5:b4:93:8b:29:bf:c0: 79:d4:17:05:a6:e5:6f:6d:b9:6d:22:79:b7:db:ed: a9:f8:35:8a:1e:0c:9b:d5:d5:d0:2c:b3:2a:f5:bc: a3:1b:e1:7d:c3:2e:e8:28:f5:b5:26:62:9f:90:7b: f3:35:ad:f3:03:01:f8:d2:d7:0e:c4:4f:95:66:8c: df:66:20:49:59:ab:31:f4:77:99:b3:0f:32:af:89: b2:6f:3d:24:e4:b1:81:40:cf:9d:cf:24:bd:89:0d: 21:25:6a:23:18:53:d9:e2:6e:32:c3:3b:27:f2:87: 2f:6e:94:8a:f5:a6:59:ab:9f:9d:4a:67:c1:5a:87: 68:b1:28:1b:85:56:ca:1f:b7:20:c7:9f:07:97:5d: df:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:8D:D6:31:FF:40:52:97:32:AE:C4:FF:FA:17:DA:58:A5:8C:22:D3 X509v3 Authority Key Identifier: keyid:C2:F2:8E:9D:18:84:39:C4:FE:69:F6:3A:4C:AA:6D:A4:24:96:29:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/35A768B8563B11EC94608B5BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.110.0/23 125.3.192.0/21 203.168.192.0/20 222.167.32.0/22 Signature Algorithm: sha256WithRSAEncryption 64:ee:55:1c:07:5b:88:7b:4c:2e:af:dd:82:9c:d3:d4:a5:86: 13:4e:b3:bd:5b:78:2e:da:d5:4a:dd:05:f0:1e:b5:c8:e3:40: c5:7f:90:7c:d7:44:05:09:27:39:b1:ea:4b:cd:c0:d5:64:4c: ee:42:89:4d:4e:1a:21:a2:89:1a:18:ee:fd:f2:52:5b:b2:3a: 6b:2c:c7:83:27:71:52:6d:a6:26:20:18:be:da:7e:00:7f:35: 25:5d:fb:88:09:eb:2f:ae:0c:81:85:72:9f:0c:11:49:e0:84: 8b:37:eb:63:d8:68:84:2c:a1:c4:13:79:01:db:ac:57:06:42: 6f:89:53:14:31:7c:4e:0b:9f:c8:15:98:30:0b:56:71:d7:c4: e4:ed:82:75:7e:bb:c3:27:82:37:0c:36:87:f4:9d:03:3b:b2: 58:88:90:6f:af:f1:18:f2:1f:3f:30:95:4b:17:11:41:dc:ed: dc:62:0c:96:75:f8:72:05:0d:a8:f7:24:53:63:22:56:08:10: 40:f5:24:8e:09:f1:35:ea:d3:af:11:50:77:9a:d1:ce:04:b4: 8b:0d:fe:3e:6c:04:ad:36:75:c8:41:d3:e8:1d:1f:35:6c:66: d5:0d:6e:0c:0f:8b:98:ad:0d:27:10:0c:81:73:fe:cd:1a:ae: 32:35:6c:f3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICBbcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVEMjUxMTAvBgNVBAUTKEMyRjI4RTlEMTg4NDM5QzRGRTY5RjYzQTRDQUE2REE0 MjQ5NjI5MUQwHhcNMjUxMDA4MDY1MzEwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU2MGE1Ni04ZjY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsOpv68Z5lhZVLRqZgl/GGtdDUnOj6EHNi4K0OpjeEwThgNXd/Yc1ElDX/IAk tvIAe49grFVB221ZkzwcbyLJuAVFN/8+OItqkGHTLYlfB/ZmDLc9UpO4GBGkvzHW n3d7IkgfDxScrczW+ESFaViT5aW0k4spv8B51BcFpuVvbbltInm32+2p+DWKHgyb 1dXQLLMq9byjG+F9wy7oKPW1JmKfkHvzNa3zAwH40tcOxE+VZozfZiBJWasx9HeZ sw8yr4mybz0k5LGBQM+dzyS9iQ0hJWojGFPZ4m4ywzsn8ocvbpSK9aZZq5+dSmfB WodosSgbhVbKH7cgx58Hl13fTwIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFJuN1jH/ QFKXMq7E//oX2liljCLTMB8GA1UdIwQYMBaAFMLyjp0YhDnE/mn2OkyqbaQklikd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUQyNS82N0YyQjBEODBC RDIxMUVDQkFBNDgwNkFDNEY5QUUwMi93dktPblJpRU9jVC1hZlk2VEtwdHBDU1dL UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3d2S09uUmlFT2NULWFmWTZUS3B0cENTV0tSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDVEMjUvNjdGMkIwRDgwQkQyMTFFQ0JBQTQ4MDZBQzRGOUFFMDIvMzVBNzY4Qjg1 NjNCMTFFQzk0NjA4QjVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAFnrG4DBAN9A8ADBATLqMADBALepyAwDQYJKoZIhvcNAQEL BQADggEBAGTuVRwHW4h7TC6v3YKc09SlhhNOs71beC7a1UrdBfAetcjjQMV/kHzX RAUJJzmx6kvNwNVkTO5CiU1OGiGiiRoY7v3yUluyOmssx4MncVJtpiYgGL7afgB/ NSVd+4gJ6y+uDIGFcp8MEUnghIs362PYaIQsocQTeQHbrFcGQm+JUxQxfE4Ln8gV mDALVnHXxOTtgnV+u8MngjcMNof0nQM7sliIkG+v8RjyHz8wlUsXEUHc7dxiDJZ1 +HIFDaj3JFNjIlYIEED1JI4J8TXq068RUHea0c4EtIsN/j5sBK02dchB0+gdHzVs ZtUNbgwPi5itDScQDIFz/s0arjI1bPM= -----END CERTIFICATE-----Generated at Sun Oct 19 19:08:47 2025 by rpki-client