$ rpki-client -vvf rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/2A9AFB320BC911EBBA11562FC4F9AE02.roa File: 2A9AFB320BC911EBBA11562FC4F9AE02.roa (raw, json) Hash identifier: B9PgWoUF+TKonGl7pCL92WHmVPwhmrPhSj6ll1DGQwA= Subject key identifier: 7F:70:03:D4:7C:DF:6B:E8:B2:1B:1A:45:05:D4:14:7C:5C:84:EC:49 Certificate issuer: /CN=A9173BC9/serialNumber=4A152333C405F56642C2FD03B1C0F1E51F7B64D6 Certificate serial: 0C5E Authority key identifier: 4A:15:23:33:C4:05:F5:66:42:C2:FD:03:B1:C0:F1:E5:1F:7B:64:D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/2A9AFB320BC911EBBA11562FC4F9AE02.roa Signing time: Fri 12 Sep 2025 18:58:39 +0000 ROA not before: Fri 12 Sep 2025 18:58:39 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 134404 IP address blocks: 103.192.156.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.crl rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 18:50:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3166 (0xc5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173BC9, serialNumber=4A152333C405F56642C2FD03B1C0F1E51F7B64D6 Validity Not Before: Sep 12 18:58:39 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68c46d5f-5c27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:7d:b4:d8:c2:34:c5:17:fe:44:03:90:cd:db: de:76:be:fc:12:64:18:08:d4:ec:ee:3f:60:a0:5f: 08:ca:d6:63:fb:2d:b2:53:9b:88:1e:bc:bf:1b:50: a7:15:e0:90:87:64:72:85:0b:bf:17:78:3c:15:db: 05:74:cf:e2:a3:98:e0:3b:5b:7d:f8:31:3c:14:aa: b2:14:ea:c2:b3:62:b6:ee:7c:7b:93:09:33:01:16: 55:e0:d4:ee:dc:7d:aa:11:a7:7c:93:8b:6b:bf:06: 05:ab:a2:3f:d6:82:21:e5:4e:6f:37:b3:03:59:8e: 47:9b:09:f1:eb:28:67:2d:55:eb:e4:77:1e:11:e4: f1:12:e5:83:aa:f8:c4:02:cf:31:43:f4:e7:12:16: f0:f8:0a:c2:e5:9e:f3:0f:a2:65:37:32:12:28:c4: 31:06:a7:bf:d8:a3:bf:1e:20:1c:7c:64:6e:77:1d: a2:3f:87:cd:96:2a:23:52:60:43:19:73:6c:73:d7: 6c:25:24:da:e4:29:65:41:47:f7:8f:8c:df:af:91: 1b:e0:92:80:64:f6:e3:5f:2a:32:f1:98:ff:35:e6: c7:75:f3:1e:b0:6e:ef:33:7e:ff:4b:d6:e3:c9:4e: 7b:c3:71:7a:53:e6:30:52:f6:8e:ed:58:6f:e4:56: 4b:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:70:03:D4:7C:DF:6B:E8:B2:1B:1A:45:05:D4:14:7C:5C:84:EC:49 X509v3 Authority Key Identifier: keyid:4A:15:23:33:C4:05:F5:66:42:C2:FD:03:B1:C0:F1:E5:1F:7B:64:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/2A9AFB320BC911EBBA11562FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.192.156.0/22 Signature Algorithm: sha256WithRSAEncryption 07:36:87:02:d5:d1:44:f1:ab:c5:34:e6:a4:4f:b8:97:26:78: 6f:51:8b:ee:36:e4:c6:53:6e:15:46:99:7f:c6:32:3e:9b:2a: cd:f2:eb:dc:d8:42:17:ac:dc:67:38:a5:a4:b5:71:5b:49:ec: 08:db:be:5a:38:32:36:bd:5d:78:8c:35:8c:76:aa:10:4a:6f: bc:2b:ba:88:94:8d:09:09:7a:a3:41:ca:e3:30:04:53:71:ec: 87:c7:51:75:35:7d:1c:0d:c4:4c:1c:4c:35:bc:93:db:23:81: 68:4d:9b:50:d1:4b:00:e7:da:cd:a8:07:05:a7:b8:b3:49:b4: 2a:68:dd:3d:ff:29:16:29:a7:ff:f7:f7:d8:d0:ed:93:62:a2: 79:10:ff:df:26:3b:ce:0b:f0:7e:37:d2:a4:05:71:94:8f:ed: 04:33:be:02:54:68:0a:e4:df:ff:e2:7b:c8:4b:64:dc:6f:a1: 7c:eb:2c:cc:4c:38:c0:33:13:8e:18:e5:f3:6d:5e:d3:7e:d2: 37:eb:4d:01:7b:93:68:a4:ce:38:56:e8:cd:b5:bf:68:27:3a: 07:bc:11:9d:18:08:3a:ca:90:df:b1:81:40:71:5a:5b:1f:75: 6a:0c:f8:a7:ad:73:0a:1a:19:24:3a:90:04:4f:28:b4:25:95: 67:81:c6:c2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDF4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNCQzkxMTAvBgNVBAUTKDRBMTUyMzMzQzQwNUY1NjY0MkMyRkQwM0IxQzBGMUU1 MUY3QjY0RDYwHhcNMjUwOTEyMTg1ODM5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM0NmQ1Zi01YzI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwH202MI0xRf+RAOQzdvedr78EmQYCNTs7j9goF8IytZj+y2yU5uIHry/G1Cn FeCQh2RyhQu/F3g8FdsFdM/io5jgO1t9+DE8FKqyFOrCs2K27nx7kwkzARZV4NTu 3H2qEad8k4trvwYFq6I/1oIh5U5vN7MDWY5Hmwnx6yhnLVXr5HceEeTxEuWDqvjE As8xQ/TnEhbw+ArC5Z7zD6JlNzISKMQxBqe/2KO/HiAcfGRudx2iP4fNliojUmBD GXNsc9dsJSTa5CllQUf3j4zfr5Eb4JKAZPbjXyoy8Zj/NebHdfMesG7vM37/S9bj yU57w3F6U+YwUvaO7Vhv5FZLPQIDAQABo4IClTCCApEwHQYDVR0OBBYEFH9wA9R8 32voshsaRQXUFHxchOxJMB8GA1UdIwQYMBaAFEoVIzPEBfVmQsL9A7HA8eUfe2TW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0JDOS9DNUM4M0NBRTEz QTAxMUVBOTNFRUVGNjVDNEY5QUUwMi9TaFVqTThRRjlXWkN3djBEc2NEeDVSOTda TlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NoVWpNOFFGOVdaQ3d2MERzY0R4NVI5N1pOWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzNCQzkvQzVDODNDQUUxM0EwMTFFQTkzRUVFRjY1QzRGOUFFMDIvMkE5QUZCMzIw QkM5MTFFQkJBMTE1NjJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnwJwwDQYJKoZIhvcNAQELBQADggEBAAc2hwLV0UTxq8U0 5qRPuJcmeG9Ri+425MZTbhVGmX/GMj6bKs3y69zYQhes3Gc4paS1cVtJ7Ajbvlo4 Mja9XXiMNYx2qhBKb7wruoiUjQkJeqNByuMwBFNx7IfHUXU1fRwNxEwcTDW8k9sj gWhNm1DRSwDn2s2oBwWnuLNJtCpo3T3/KRYpp//399jQ7ZNionkQ/98mO84L8H43 0qQFcZSP7QQzvgJUaArk3//ie8hLZNxvoXzrLMxMOMAzE44Y5fNtXtN+0jfrTQF7 k2ikzjhW6M21v2gnOge8EZ0YCDrKkN+xgUBxWlsfdWoM+KetcwoaGSQ6kARPKLQl lWeBxsI= -----END CERTIFICATE-----Generated at Fri Sep 19 08:51:26 2025 by rpki-client