$ rpki-client -vvf rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/EF9395EA6A1511E9808D417CC4F9AE02.roa File: EF9395EA6A1511E9808D417CC4F9AE02.roa (raw, json) Hash identifier: 6C/a3Wj9og9vwBBN5UoCzfPyuDE6Bklz8AODGS07vlI= Subject key identifier: C2:EF:F8:43:D6:26:FB:40:BC:05:D7:5A:CD:C5:2D:E4:A0:47:B8:D2 Certificate issuer: /CN=A9154657/serialNumber=2093A98B0DA548CC0D1C5FBCA3D725146F444D72 Certificate serial: 3516 Authority key identifier: 20:93:A9:8B:0D:A5:48:CC:0D:1C:5F:BC:A3:D7:25:14:6F:44:4D:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IJOpiw2lSMwNHF-8o9clFG9ETXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/EF9395EA6A1511E9808D417CC4F9AE02.roa Signing time: Wed 22 Oct 2025 14:30:07 +0000 ROA not before: Wed 22 Oct 2025 14:30:07 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 58979 IP address blocks: 103.5.92.0/24 maxlen: 24 103.5.93.0/24 maxlen: 24 103.5.94.0/24 maxlen: 24 103.5.95.0/24 maxlen: 24 2402:8700::/32 maxlen: 32 2402:8700:53::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.crl rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IJOpiw2lSMwNHF-8o9clFG9ETXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 14:30:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13590 (0x3516) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154657, serialNumber=2093A98B0DA548CC0D1C5FBCA3D725146F444D72 Validity Not Before: Oct 22 14:30:07 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68f8ea6f-1b4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c6:4b:23:2b:7f:0c:16:e7:61:d2:73:19:6a: 1a:36:41:73:c9:8f:9c:c3:a3:3f:d0:8c:1c:61:d8: 46:b8:dd:4d:0b:19:7b:2f:93:92:a1:99:57:b4:7e: 57:b5:6f:01:09:e7:04:ec:b2:4b:78:7e:13:d3:be: c7:ba:f6:82:f7:0d:6b:c5:31:e2:48:c8:26:8c:3c: 48:3c:a5:52:e6:ab:92:4a:51:f8:eb:ce:8b:03:2e: e1:06:6a:6b:56:1c:4b:b6:a3:e7:56:0c:5d:15:ef: d0:a0:f6:40:78:cc:dd:d8:35:d6:b8:25:22:f9:51: 79:f3:3f:ea:78:1c:d5:ae:d3:2f:32:c6:ac:45:b7: 12:20:a9:45:d9:19:d0:b9:09:14:e7:2d:ee:d1:31: 34:25:e8:86:db:59:3c:3d:02:7f:3b:04:23:b9:f9: fc:92:61:6d:34:f4:a1:33:4b:f3:25:e2:1a:c2:bb: 73:ea:ed:3d:e3:50:6a:30:61:ee:d8:6b:0e:38:c2: dc:23:15:cb:5f:07:68:e9:22:d0:5b:11:6f:ff:ee: 20:69:16:d1:35:be:28:83:09:f7:53:78:ba:56:87: 52:65:04:63:65:e5:ef:89:37:3b:44:b7:e7:47:3e: dc:e3:b0:13:61:68:67:c8:f7:70:f9:c8:47:c5:7e: a8:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:EF:F8:43:D6:26:FB:40:BC:05:D7:5A:CD:C5:2D:E4:A0:47:B8:D2 X509v3 Authority Key Identifier: keyid:20:93:A9:8B:0D:A5:48:CC:0D:1C:5F:BC:A3:D7:25:14:6F:44:4D:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/IJOpiw2lSMwNHF-8o9clFG9ETXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IJOpiw2lSMwNHF-8o9clFG9ETXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154657/715F33341D7111E2A2DB44B608B02CD2/EF9395EA6A1511E9808D417CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.5.92.0/22 IPv6: 2402:8700::/32 Signature Algorithm: sha256WithRSAEncryption 95:da:17:ba:37:30:20:86:8e:f3:86:a2:1a:03:4d:6e:6d:33: bf:25:90:36:1f:25:ac:ba:60:9c:ed:7f:e3:2f:26:8c:ae:9f: 8e:b2:b5:f5:9e:91:42:91:2c:f2:a8:af:44:a2:2b:ba:26:50: 0d:5f:56:7c:f0:56:fe:6b:af:07:a6:26:30:00:b8:6e:cd:63: 9d:b7:12:27:30:ea:2a:3b:d5:10:99:43:9e:f4:3c:db:4c:00: 52:13:65:4c:e0:ba:93:a0:e8:4f:07:87:05:0a:a0:0a:25:70: 56:ce:3c:0c:6a:25:0a:77:00:be:2e:10:1a:70:5d:3b:16:d0: bf:b1:eb:8d:41:97:3d:cd:2b:6f:4b:86:e4:81:e2:ee:03:d3: d7:b3:9f:f2:fa:0d:9f:c4:94:5f:fa:37:ea:e3:5d:da:f3:30: 53:ba:e7:03:eb:b8:c3:54:81:72:48:a1:cc:2f:48:13:d5:bf: 17:78:10:c2:55:cc:f8:8e:aa:4c:52:2f:0d:1d:82:ac:59:b7: 6f:66:db:0a:c5:b0:32:93:72:b4:3c:e5:be:50:f8:71:f8:33: 26:62:2a:17:42:80:84:70:c5:ea:6a:c6:82:65:ab:6d:ed:7a: ab:51:82:88:3a:ee:90:46:a9:56:22:2b:26:0a:a1:22:df:a4: 61:24:fc:e7 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICNRYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQ2NTcxMTAvBgNVBAUTKDIwOTNBOThCMERBNTQ4Q0MwRDFDNUZCQ0EzRDcyNTE0 NkY0NDRENzIwHhcNMjUxMDIyMTQzMDA3WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGY4ZWE2Zi0xYjRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvMZLIyt/DBbnYdJzGWoaNkFzyY+cw6M/0IwcYdhGuN1NCxl7L5OSoZlXtH5X tW8BCecE7LJLeH4T077HuvaC9w1rxTHiSMgmjDxIPKVS5quSSlH4686LAy7hBmpr VhxLtqPnVgxdFe/QoPZAeMzd2DXWuCUi+VF58z/qeBzVrtMvMsasRbcSIKlF2RnQ uQkU5y3u0TE0JeiG21k8PQJ/OwQjufn8kmFtNPShM0vzJeIawrtz6u0941BqMGHu 2GsOOMLcIxXLXwdo6SLQWxFv/+4gaRbRNb4ogwn3U3i6VodSZQRjZeXviTc7RLfn Rz7c47ATYWhnyPdw+chHxX6oswIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFMLv+EPW JvtAvAXXWs3FLeSgR7jSMB8GA1UdIwQYMBaAFCCTqYsNpUjMDRxfvKPXJRRvRE1y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDY1Ny83MTVGMzMzNDFE NzExMUUyQTJEQjQ0QjYwOEIwMkNEMi9JSk9waXcybFNNd05IRi04bzljbEZHOUVU WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lKT3BpdzJsU013TkhGLThvOWNsRkc5RVRYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTQ2NTcvNzE1RjMzMzQxRDcxMTFFMkEyREI0NEI2MDhCMDJDRDIvRUY5Mzk1RUE2 QTE1MTFFOTgwOEQ0MTdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnBVwwDQQCAAIwBwMFACQChwAwDQYJKoZIhvcNAQELBQAD ggEBAJXaF7o3MCCGjvOGohoDTW5tM78lkDYfJay6YJztf+MvJoyun46ytfWekUKR LPKor0SiK7omUA1fVnzwVv5rrwemJjAAuG7NY523Eicw6io71RCZQ570PNtMAFIT ZUzgupOg6E8HhwUKoAolcFbOPAxqJQp3AL4uEBpwXTsW0L+x641Blz3NK29LhuSB 4u4D09ezn/L6DZ/ElF/6N+rjXdrzMFO65wPruMNUgXJIocwvSBPVvxd4EMJVzPiO qkxSLw0dgqxZt29m2wrFsDKTcrQ85b5Q+HH4MyZiKhdCgIRwxepqxoJlq23teqtR gog67pBGqVYiKyYKoSLfpGEk/Oc= -----END CERTIFICATE-----Generated at Thu Oct 23 07:44:40 2025 by rpki-client