$ rpki-client -vvf rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/5C9259B631DA11EEBE28A546C4F9AE02.roa File: 5C9259B631DA11EEBE28A546C4F9AE02.roa (raw, json) Hash identifier: pvpEbEfqZdjndo8RBto5eKruE3bPcyFLbyyWJ+EWD5A= Subject key identifier: 8C:68:5D:21:A1:55:D5:55:ED:67:53:19:2E:4A:69:41:FB:A2:E6:70 Certificate issuer: /CN=A9148AC0/serialNumber=766857BA3F7C728B680525AC41FA7CE2A1F0092D Certificate serial: 01B5 Authority key identifier: 76:68:57:BA:3F:7C:72:8B:68:05:25:AC:41:FA:7C:E2:A1:F0:09:2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmhXuj98cotoBSWsQfp84qHwCS0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/5C9259B631DA11EEBE28A546C4F9AE02.roa Signing time: Wed 05 Nov 2025 03:47:39 +0000 ROA not before: Wed 05 Nov 2025 03:47:39 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 139671 IP address blocks: 103.143.112.0/23 maxlen: 23 2405:4cc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.crl rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmhXuj98cotoBSWsQfp84qHwCS0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:47:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 437 (0x1b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148AC0, serialNumber=766857BA3F7C728B680525AC41FA7CE2A1F0092D Validity Not Before: Nov 5 03:47:39 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=690ac8db-207d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:98:cc:0b:2e:d7:a3:b6:34:10:0c:ee:0d:18: d7:d0:db:08:e0:b1:be:cd:86:4f:54:39:52:b9:2a: 5d:81:26:59:07:ec:94:46:57:62:84:98:4a:2d:90: 4f:a4:1d:b6:03:89:a0:04:cb:58:02:8d:cb:4e:7a: ba:ac:ca:01:a7:5a:6d:49:53:5b:74:da:41:42:46: 2d:e5:ba:7f:da:22:0d:ee:a0:5c:d1:8b:d5:dc:87: d2:ce:4f:8b:df:26:6c:65:85:4b:86:89:38:68:a5: 42:3a:b6:4b:90:ea:15:46:ce:7c:11:27:64:34:ed: eb:bd:0d:2a:af:02:fe:b0:15:23:f1:ab:38:b5:d8: c0:b0:1d:2b:ef:71:14:4b:04:03:c1:47:ff:6a:8a: 1a:d3:e0:33:83:85:00:02:50:f7:c0:3e:93:9d:46: b0:05:e7:a7:ed:e7:66:20:5f:cf:23:82:84:6a:21: 84:32:ec:f3:ae:5e:c0:55:06:aa:29:31:c5:98:7a: 60:b8:df:da:dd:a4:19:01:1e:16:22:40:54:6a:b6: 2c:df:ee:1c:0e:15:6d:87:7a:3e:83:fb:41:5e:d3: a9:97:c8:b3:68:06:56:ff:4f:2f:90:51:6c:09:3d: fb:56:93:05:b0:78:64:da:46:51:7a:02:0d:5b:09: 24:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:68:5D:21:A1:55:D5:55:ED:67:53:19:2E:4A:69:41:FB:A2:E6:70 X509v3 Authority Key Identifier: keyid:76:68:57:BA:3F:7C:72:8B:68:05:25:AC:41:FA:7C:E2:A1:F0:09:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/dmhXuj98cotoBSWsQfp84qHwCS0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmhXuj98cotoBSWsQfp84qHwCS0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148AC0/E4ED539431D811EE83006A41C4F9AE02/5C9259B631DA11EEBE28A546C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.143.112.0/23 IPv6: 2405:4cc0::/32 Signature Algorithm: sha256WithRSAEncryption 61:38:6d:2b:22:a3:b0:f7:b5:fb:05:e8:ea:86:36:13:91:a3: 18:1f:fe:86:9b:07:87:64:61:d3:0a:63:4d:dc:2b:7d:12:eb: fe:5f:a2:a9:30:d5:64:8a:cf:f8:7b:66:8b:22:97:23:6b:f2: e8:12:22:ee:83:89:e8:46:be:09:9e:e7:9e:b6:de:db:cb:3b: 4f:a4:e7:39:2a:0a:30:57:a3:21:dd:0f:a9:c8:36:db:21:7c: c3:de:15:fe:52:7a:e5:d9:6a:79:8d:ff:2a:9a:b7:d6:6c:28: 34:9b:6f:0c:8c:f6:29:4e:52:df:a6:07:d2:3f:2e:ac:40:bf: 64:c6:cb:4c:a7:9b:a0:64:3d:f6:61:a9:e4:03:ae:69:62:4d: 2c:32:0c:8c:37:f4:75:be:34:cf:27:e1:10:ff:72:b3:1f:55: e0:4a:54:19:a6:23:55:c9:8d:f1:cd:83:cb:f0:3a:37:9b:ed: e5:e1:10:06:39:9c:13:84:df:f7:d1:1e:2e:f1:e3:af:89:ec: 83:7f:fe:79:ef:9a:b6:dd:68:fa:9c:71:b5:38:21:dc:c1:7e: d5:35:86:76:06:19:19:1b:98:ff:b6:06:4a:c4:c7:5a:a9:34: 2b:4d:71:2e:fa:19:e0:ef:bd:ea:fb:4f:97:a2:79:4c:66:33: 3b:18:12:08 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAbUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhBQzAxMTAvBgNVBAUTKDc2Njg1N0JBM0Y3QzcyOEI2ODA1MjVBQzQxRkE3Q0Uy QTFGMDA5MkQwHhcNMjUxMTA1MDM0NzM5WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTBhYzhkYi0yMDdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxJjMCy7Xo7Y0EAzuDRjX0NsI4LG+zYZPVDlSuSpdgSZZB+yURldihJhKLZBP pB22A4mgBMtYAo3LTnq6rMoBp1ptSVNbdNpBQkYt5bp/2iIN7qBc0YvV3IfSzk+L 3yZsZYVLhok4aKVCOrZLkOoVRs58ESdkNO3rvQ0qrwL+sBUj8as4tdjAsB0r73EU SwQDwUf/aooa0+Azg4UAAlD3wD6TnUawBeen7edmIF/PI4KEaiGEMuzzrl7AVQaq KTHFmHpguN/a3aQZAR4WIkBUarYs3+4cDhVth3o+g/tBXtOpl8izaAZW/08vkFFs CT37VpMFsHhk2kZRegINWwkkpwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFIxoXSGh VdVV7WdTGS5KaUH7ouZwMB8GA1UdIwQYMBaAFHZoV7o/fHKLaAUlrEH6fOKh8Akt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEFDMC9FNEVENTM5NDMx RDgxMUVFODMwMDZBNDFDNEY5QUUwMi9kbWhYdWo5OGNvdG9CU1dzUWZwODRxSHdD UzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RtaFh1ajk4Y290b0JTV3NRZnA4NHFId0NTMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDhBQzAvRTRFRDUzOTQzMUQ4MTFFRTgzMDA2QTQxQzRGOUFFMDIvNUM5MjU5QjYz MURBMTFFRUJFMjhBNTQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnj3AwDQQCAAIwBwMFACQFTMAwDQYJKoZIhvcNAQELBQAD ggEBAGE4bSsio7D3tfsF6OqGNhORoxgf/oabB4dkYdMKY03cK30S6/5foqkw1WSK z/h7ZosilyNr8ugSIu6DiehGvgme55623tvLO0+k5zkqCjBXoyHdD6nINtshfMPe Ff5SeuXZanmN/yqat9ZsKDSbbwyM9ilOUt+mB9I/LqxAv2TGy0ynm6BkPfZhqeQD rmliTSwyDIw39HW+NM8n4RD/crMfVeBKVBmmI1XJjfHNg8vwOjeb7eXhEAY5nBOE 3/fRHi7x46+J7IN//nnvmrbdaPqccbU4IdzBftU1hnYGGRkbmP+2BkrEx1qpNCtN cS76GeDvver7T5eieUxmMzsYEgg= -----END CERTIFICATE-----Generated at Wed Nov 5 08:10:03 2025 by rpki-client