$ rpki-client -vvf rpki.apnic.net/member_repository/A9165CEF/27749C36577211EE9DAE6155C4F9AE02/CC954D50577211EEA63EF217C4F9AE02.roa File: CC954D50577211EEA63EF217C4F9AE02.roa (raw, json) Hash identifier: G/lc0ZJgssXnnKfa+ln20gT1bMCoGUtTDqNS7CqtsRg= Subject key identifier: 1C:6C:AB:02:69:D8:C9:1F:C3:CF:C8:17:FB:BD:62:D1:F2:B8:AB:CB Certificate issuer: /CN=A9165CEF/serialNumber=B44A307A58C26D6FAE07FE3F285ED6A382B4CB43 Certificate serial: 0190 Authority key identifier: B4:4A:30:7A:58:C2:6D:6F:AE:07:FE:3F:28:5E:D6:A3:82:B4:CB:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tEoweljCbW-uB_4_KF7Wo4K0y0M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165CEF/27749C36577211EE9DAE6155C4F9AE02/CC954D50577211EEA63EF217C4F9AE02.roa Signing time: Fri 31 Oct 2025 03:47:59 +0000 ROA not before: Fri 31 Oct 2025 03:47:59 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 151815 IP address blocks: 103.140.110.0/23 maxlen: 23 103.140.110.0/24 maxlen: 24 103.140.111.0/24 maxlen: 24 2401:3ae0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165CEF/27749C36577211EE9DAE6155C4F9AE02/tEoweljCbW-uB_4_KF7Wo4K0y0M.crl rsync://rpki.apnic.net/member_repository/A9165CEF/27749C36577211EE9DAE6155C4F9AE02/tEoweljCbW-uB_4_KF7Wo4K0y0M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tEoweljCbW-uB_4_KF7Wo4K0y0M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:39:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 400 (0x190) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165CEF, serialNumber=B44A307A58C26D6FAE07FE3F285ED6A382B4CB43 Validity Not Before: Oct 31 03:47:59 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=6904316e-adb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d0:58:6f:d2:05:e9:9b:68:89:69:e4:8d:71: 0c:d3:40:3c:df:24:aa:6f:11:84:2c:8f:4f:44:0b: 78:d7:1b:ad:11:41:bf:a5:82:f2:0c:7c:1a:b8:ff: f4:59:25:1d:3b:94:95:e9:ad:7a:2a:88:86:cb:39: c3:ea:50:f7:f7:8e:0f:37:50:aa:2b:f6:1a:0e:4c: 7d:1d:ff:c1:43:56:d6:e0:98:76:db:6d:c3:13:4f: 10:66:09:c9:a9:ff:68:c0:9e:29:f6:58:0b:01:dc: 9f:93:02:8f:27:c9:4b:b9:7b:0d:c3:ec:27:f1:34: c3:50:95:32:07:39:73:b4:8c:45:88:a2:6e:82:a4: b6:67:40:16:4b:fb:74:57:5c:51:f7:2d:d4:dc:5c: 49:e5:14:13:b3:f1:4e:ef:ac:cc:84:6a:eb:c7:d7: 02:f0:32:68:59:58:bb:9d:b6:fa:1d:ba:47:ad:5d: 42:7e:44:f0:fe:84:32:51:1e:d4:79:83:4d:55:28: e8:bc:9f:02:eb:c3:dc:0d:14:00:34:48:28:ba:45: bb:c9:4c:65:f9:e9:78:ad:57:1b:73:fb:63:78:47: 4d:99:96:d2:fd:95:81:07:71:ea:8e:56:28:2e:ef: 11:33:02:24:38:0c:ba:69:fa:05:ca:79:c1:73:81: 4e:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:6C:AB:02:69:D8:C9:1F:C3:CF:C8:17:FB:BD:62:D1:F2:B8:AB:CB X509v3 Authority Key Identifier: keyid:B4:4A:30:7A:58:C2:6D:6F:AE:07:FE:3F:28:5E:D6:A3:82:B4:CB:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165CEF/27749C36577211EE9DAE6155C4F9AE02/tEoweljCbW-uB_4_KF7Wo4K0y0M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tEoweljCbW-uB_4_KF7Wo4K0y0M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165CEF/27749C36577211EE9DAE6155C4F9AE02/CC954D50577211EEA63EF217C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.110.0/23 IPv6: 2401:3ae0::/32 Signature Algorithm: sha256WithRSAEncryption 01:a0:74:5d:08:6b:c7:45:b7:85:17:ce:9b:c2:f5:e7:44:e2: 97:ef:66:15:7a:0c:ac:c2:d2:3f:e7:16:42:44:ee:4c:2a:a5: ec:31:47:6b:a6:f8:47:c0:c3:22:b9:56:c6:17:e9:7c:31:aa: 4c:d3:49:9c:05:40:74:e4:21:a1:32:0c:1d:ab:d0:37:7f:ff: 3d:90:53:7a:dd:88:63:71:c6:33:70:aa:e5:4c:06:05:c8:13: 97:9b:ea:7f:dd:d8:37:dc:1b:05:ad:0a:ef:9c:97:54:e9:00: 75:be:52:3a:c1:fd:c9:8a:ff:d9:ef:ff:8e:cb:68:6b:41:20: 39:0f:cd:10:99:29:75:b6:80:0b:33:5f:7e:5d:45:0e:1b:d2: cf:9d:4b:9b:b1:6e:4b:0d:c7:a7:30:1f:d6:51:90:e0:e2:4f: c9:79:a7:21:7b:b2:e1:97:cd:ac:64:02:5b:7c:71:ed:12:a8: df:9d:df:0d:a5:f6:a4:73:a1:92:14:23:15:32:97:4d:4e:0b: bb:9d:2e:82:80:e2:7d:60:09:1e:0e:d7:99:d0:a3:65:c3:b3: a8:6f:10:6a:6c:d7:86:96:a1:5b:15:c4:fa:92:e3:d2:78:94: aa:c4:9e:c5:0a:cb:a2:64:fe:4a:54:ac:f7:84:75:77:e8:ac: f3:49:72:81 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVDRUYxMTAvBgNVBAUTKEI0NEEzMDdBNThDMjZENkZBRTA3RkUzRjI4NUVENkEz ODJCNENCNDMwHhcNMjUxMDMxMDM0NzU5WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA0MzE2ZS1hZGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArtBYb9IF6ZtoiWnkjXEM00A83ySqbxGELI9PRAt41xutEUG/pYLyDHwauP/0 WSUdO5SV6a16KoiGyznD6lD3944PN1CqK/YaDkx9Hf/BQ1bW4Jh2223DE08QZgnJ qf9owJ4p9lgLAdyfkwKPJ8lLuXsNw+wn8TTDUJUyBzlztIxFiKJugqS2Z0AWS/t0 V1xR9y3U3FxJ5RQTs/FO76zMhGrrx9cC8DJoWVi7nbb6HbpHrV1CfkTw/oQyUR7U eYNNVSjovJ8C68PcDRQANEgoukW7yUxl+el4rVcbc/tjeEdNmZbS/ZWBB3HqjlYo Lu8RMwIkOAy6afoFynnBc4FOrQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFBxsqwJp 2Mkfw8/IF/u9YtHyuKvLMB8GA1UdIwQYMBaAFLRKMHpYwm1vrgf+Pyhe1qOCtMtD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUNFRi8yNzc0OUMzNjU3 NzIxMUVFOURBRTYxNTVDNEY5QUUwMi90RW93ZWxqQ2JXLXVCXzRfS0Y3V280SzB5 ME0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RFb3dlbGpDYlctdUJfNF9LRjdXbzRLMHkwTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjVDRUYvMjc3NDlDMzY1NzcyMTFFRTlEQUU2MTU1QzRGOUFFMDIvQ0M5NTRENTA1 NzcyMTFFRUE2M0VGMjE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnjG4wDQQCAAIwBwMFACQBOuAwDQYJKoZIhvcNAQELBQAD ggEBAAGgdF0Ia8dFt4UXzpvC9edE4pfvZhV6DKzC0j/nFkJE7kwqpewxR2um+EfA wyK5VsYX6XwxqkzTSZwFQHTkIaEyDB2r0Dd//z2QU3rdiGNxxjNwquVMBgXIE5eb 6n/d2DfcGwWtCu+cl1TpAHW+UjrB/cmK/9nv/47LaGtBIDkPzRCZKXW2gAszX35d RQ4b0s+dS5uxbksNx6cwH9ZRkODiT8l5pyF7suGXzaxkAlt8ce0SqN+d3w2l9qRz oZIUIxUyl01OC7udLoKA4n1gCR4O15nQo2XDs6hvEGps14aWoVsVxPqS49J4lKrE nsUKy6Jk/kpUrPeEdXforPNJcoE= -----END CERTIFICATE-----Generated at Wed Nov 5 11:55:47 2025 by rpki-client