$ rpki-client -vvf rpki.apnic.net/member_repository/A9158D75/7434940EF25E11E99130B181C4F9AE02/B5EA3B509EDD11EC85676D09C4F9AE02.roa File: B5EA3B509EDD11EC85676D09C4F9AE02.roa (raw, json) Hash identifier: PI+4io6zs54SvjfIWW1YmDzNzGjU5q2yfd6LaVWJgGw= Subject key identifier: 37:9C:C3:E9:10:80:37:46:48:34:CB:07:6B:94:6E:45:42:86:18:83 Certificate issuer: /CN=A9158D75/serialNumber=F4345C314D6EBEDEB45FE0755F8FFEACF363CB8A Certificate serial: 0C9F Authority key identifier: F4:34:5C:31:4D:6E:BE:DE:B4:5F:E0:75:5F:8F:FE:AC:F3:63:CB:8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9DRcMU1uvt60X-B1X4_-rPNjy4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158D75/7434940EF25E11E99130B181C4F9AE02/B5EA3B509EDD11EC85676D09C4F9AE02.roa Signing time: Fri 28 Mar 2025 18:29:24 +0000 ROA not before: Fri 28 Mar 2025 18:29:24 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 58803 IP address blocks: 43.254.96.0/22 maxlen: 24 103.245.96.0/22 maxlen: 22 103.245.98.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158D75/7434940EF25E11E99130B181C4F9AE02/9DRcMU1uvt60X-B1X4_-rPNjy4o.crl rsync://rpki.apnic.net/member_repository/A9158D75/7434940EF25E11E99130B181C4F9AE02/9DRcMU1uvt60X-B1X4_-rPNjy4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9DRcMU1uvt60X-B1X4_-rPNjy4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Nov 2025 18:26:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3231 (0xc9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158D75, serialNumber=F4345C314D6EBEDEB45FE0755F8FFEACF363CB8A Validity Not Before: Mar 28 18:29:24 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e6ea84-4471 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:87:21:62:ae:19:b5:00:b1:b8:1c:5c:d8:38: 79:41:4f:27:d9:71:fd:f2:cc:a0:29:fa:77:bf:cf: 59:0d:09:f5:00:a1:8d:cf:b7:f0:13:e0:45:c4:c4: b6:33:b7:a1:e2:e9:26:2d:62:c5:2d:48:d1:63:cf: eb:9b:c3:e5:c9:50:7b:30:e5:4c:73:f0:eb:1b:95: 75:13:19:b6:e7:f3:01:12:7a:f4:b9:82:a9:ff:45: 8c:37:bc:5d:77:23:84:63:9a:84:03:20:3d:4c:71: 58:01:12:10:33:fc:08:f2:da:30:71:9c:66:8c:fe: 54:7b:34:ab:ac:c4:8a:59:e0:43:94:10:39:a0:92: 08:25:0b:94:4b:eb:65:95:3a:d5:6f:4a:96:2a:3b: 28:89:ca:e6:8d:46:90:4e:40:af:81:07:d5:86:73: 1e:9f:57:3e:90:47:d6:aa:97:a4:84:53:79:aa:c5: 88:6a:54:0b:f7:df:8f:9d:ec:75:e9:87:0a:fc:a4: bb:08:85:d2:5e:21:30:e1:2e:ef:82:5c:4c:e8:c9: 9d:6a:40:9b:64:84:ff:63:6c:4d:44:12:f3:26:a4: 09:46:ae:5b:62:37:05:27:88:2a:91:2f:b9:1d:9f: 58:10:79:ba:b7:a7:c2:1f:10:d7:41:27:d1:53:c7: eb:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:9C:C3:E9:10:80:37:46:48:34:CB:07:6B:94:6E:45:42:86:18:83 X509v3 Authority Key Identifier: keyid:F4:34:5C:31:4D:6E:BE:DE:B4:5F:E0:75:5F:8F:FE:AC:F3:63:CB:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158D75/7434940EF25E11E99130B181C4F9AE02/9DRcMU1uvt60X-B1X4_-rPNjy4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9DRcMU1uvt60X-B1X4_-rPNjy4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158D75/7434940EF25E11E99130B181C4F9AE02/B5EA3B509EDD11EC85676D09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.254.96.0/22 103.245.96.0/22 Signature Algorithm: sha256WithRSAEncryption ae:85:c6:f9:33:42:cd:91:27:ca:fe:7c:0e:a4:fd:da:f9:54: a7:6c:3d:f2:ae:f6:41:10:5e:ef:63:29:84:30:40:e7:8c:29: 7f:2d:cb:66:bf:9c:9a:a6:c7:db:b9:e1:3c:a2:c7:83:00:17: 10:17:1c:95:36:7c:ad:45:03:5e:2d:e0:9c:4f:0f:5f:c5:ec: 27:ce:d5:9d:a0:77:e2:17:35:ce:5f:10:bc:00:17:f2:50:67: ea:2a:fc:fa:aa:24:1a:2d:b2:b9:b9:31:e9:d8:4f:68:b2:4c: 43:55:df:e9:74:68:c2:58:30:c5:fc:0c:d5:0b:b1:62:5c:77: 88:a2:93:60:c7:42:ea:e7:69:32:10:22:36:c3:a3:e1:72:f5: 02:cf:1b:fe:e9:72:44:0f:23:83:4b:be:5b:a7:07:88:3b:7c: c9:ea:a5:58:1e:06:e5:26:9d:b9:aa:c0:43:21:56:ef:aa:a1: 21:d0:ad:80:6c:c1:61:19:3f:e9:94:34:6c:3a:52:16:23:6c: f2:69:54:6b:c5:f1:df:08:1a:86:17:cb:7b:a8:c7:c4:2c:94: 48:5b:37:bd:94:34:97:69:4a:db:22:4f:85:81:dc:06:61:23: 41:ab:ef:da:ee:5c:3c:21:5a:b7:35:6a:17:48:02:4a:76:20: 09:10:2e:f3 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThENzUxMTAvBgNVBAUTKEY0MzQ1QzMxNEQ2RUJFREVCNDVGRTA3NTVGOEZGRUFD RjM2M0NCOEEwHhcNMjUwMzI4MTgyOTI0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2U2ZWE4NC00NDcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw4chYq4ZtQCxuBxc2Dh5QU8n2XH98sygKfp3v89ZDQn1AKGNz7fwE+BFxMS2 M7eh4ukmLWLFLUjRY8/rm8PlyVB7MOVMc/DrG5V1Exm25/MBEnr0uYKp/0WMN7xd dyOEY5qEAyA9THFYARIQM/wI8towcZxmjP5UezSrrMSKWeBDlBA5oJIIJQuUS+tl lTrVb0qWKjsoicrmjUaQTkCvgQfVhnMen1c+kEfWqpekhFN5qsWIalQL99+Pnex1 6YcK/KS7CIXSXiEw4S7vglxM6MmdakCbZIT/Y2xNRBLzJqQJRq5bYjcFJ4gqkS+5 HZ9YEHm6t6fCHxDXQSfRU8frPQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDecw+kQ gDdGSDTLB2uUbkVChhiDMB8GA1UdIwQYMBaAFPQ0XDFNbr7etF/gdV+P/qzzY8uK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEQ3NS83NDM0OTQwRUYy NUUxMUU5OTEzMEIxODFDNEY5QUUwMi85RFJjTVUxdXZ0NjBYLUIxWDRfLXJQTmp5 NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlEUmNNVTF1dnQ2MFgtQjFYNF8tclBOank0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NThENzUvNzQzNDk0MEVGMjVFMTFFOTkxMzBCMTgxQzRGOUFFMDIvQjVFQTNCNTA5 RUREMTFFQzg1Njc2RDA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr/mADBAJn9WAwDQYJKoZIhvcNAQELBQADggEBAK6Fxvkz Qs2RJ8r+fA6k/dr5VKdsPfKu9kEQXu9jKYQwQOeMKX8ty2a/nJqmx9u54Tyix4MA FxAXHJU2fK1FA14t4JxPD1/F7CfO1Z2gd+IXNc5fELwAF/JQZ+oq/PqqJBotsrm5 MenYT2iyTENV3+l0aMJYMMX8DNULsWJcd4iik2DHQurnaTIQIjbDo+Fy9QLPG/7p ckQPI4NLvlunB4g7fMnqpVgeBuUmnbmqwEMhVu+qoSHQrYBswWEZP+mUNGw6UhYj bPJpVGvF8d8IGoYXy3uox8QslEhbN72UNJdpStsiT4WB3AZhI0Gr79ruXDwhWrc1 ahdIAkp2IAkQLvM= -----END CERTIFICATE-----Generated at Mon Oct 27 17:35:50 2025 by rpki-client