$ rpki-client -vvf rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/EF14DD34B6E211EAB3BA9536C4F9AE02.roa File: EF14DD34B6E211EAB3BA9536C4F9AE02.roa (raw, json) Hash identifier: JvXhjoE9cUV4jCMwgWZkjIHHf+CaNT0a6L5+glk4qjE= Subject key identifier: 45:25:67:AA:A6:28:FC:EE:1B:B6:1A:E6:6F:1B:53:1F:C9:28:25:36 Certificate issuer: /CN=A9173BC9/serialNumber=4A152333C405F56642C2FD03B1C0F1E51F7B64D6 Certificate serial: 0C5F Authority key identifier: 4A:15:23:33:C4:05:F5:66:42:C2:FD:03:B1:C0:F1:E5:1F:7B:64:D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/EF14DD34B6E211EAB3BA9536C4F9AE02.roa Signing time: Fri 12 Sep 2025 18:58:40 +0000 ROA not before: Fri 12 Sep 2025 18:58:40 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 136224 IP address blocks: 103.192.156.0/22 maxlen: 22 103.192.156.0/23 maxlen: 23 103.192.156.0/24 maxlen: 24 103.192.157.0/24 maxlen: 24 103.192.158.0/23 maxlen: 23 103.192.158.0/24 maxlen: 24 103.192.159.0/24 maxlen: 24 202.91.40.0/22 maxlen: 22 202.91.40.0/23 maxlen: 23 202.91.40.0/24 maxlen: 24 202.91.41.0/24 maxlen: 24 202.91.42.0/23 maxlen: 23 202.91.42.0/24 maxlen: 24 202.91.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.crl rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 18:50:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3167 (0xc5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173BC9, serialNumber=4A152333C405F56642C2FD03B1C0F1E51F7B64D6 Validity Not Before: Sep 12 18:58:40 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68c46d5f-68e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:10:c7:64:dd:61:a3:d8:b9:35:5e:54:ee:bd: 6c:24:fd:6d:47:8e:a9:64:b4:6a:3a:11:09:58:46: c4:dc:7f:d8:4e:fb:d9:0f:85:7f:16:bf:c8:75:dd: 57:2c:81:de:c0:b3:5d:4c:d2:a0:cd:84:2c:0e:24: ed:9c:2e:6b:bd:e1:15:90:42:51:53:fe:3f:13:21: b7:d0:1c:57:34:9f:64:26:e5:84:c1:16:25:12:98: 6b:42:20:19:de:a7:98:84:23:12:5f:bf:91:64:ee: d0:46:10:b0:07:91:8e:85:08:9b:31:e6:eb:ee:3e: f7:d8:9d:36:c1:d6:20:5a:fe:88:05:79:c5:bd:aa: 1a:62:83:f7:1f:f1:06:09:4a:3d:76:33:47:da:a8: cf:9e:37:bc:3b:9a:bf:02:f4:06:7a:a6:8f:bf:03: 36:24:a6:29:fb:05:47:7f:25:13:1e:0d:6e:ce:dc: 6a:01:4c:ae:a6:29:19:83:96:30:24:08:bb:4b:da: 9c:b4:2e:40:6e:ce:1b:98:1d:d3:1b:35:52:b5:d3: ae:40:f7:28:de:61:27:14:01:ed:ae:f2:76:b7:c7: cb:b4:0c:39:21:e9:6f:bd:16:5d:fb:13:b1:36:8d: 0d:82:36:96:ad:c3:4c:76:1c:f3:df:99:dd:4a:3f: 29:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:25:67:AA:A6:28:FC:EE:1B:B6:1A:E6:6F:1B:53:1F:C9:28:25:36 X509v3 Authority Key Identifier: keyid:4A:15:23:33:C4:05:F5:66:42:C2:FD:03:B1:C0:F1:E5:1F:7B:64:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/EF14DD34B6E211EAB3BA9536C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.192.156.0/22 202.91.40.0/22 Signature Algorithm: sha256WithRSAEncryption 62:9e:93:50:c9:e6:7e:9b:3f:ec:62:cb:55:e0:1e:c9:42:8d: cd:19:29:ef:e1:ff:3a:31:8c:3e:66:41:4f:46:41:5b:f3:4b: 05:67:a0:dd:15:c3:57:b2:8a:a4:61:bc:ae:33:78:ba:eb:7b: 19:48:00:da:f2:5b:9f:57:00:09:78:c4:f0:11:b2:6d:96:e9: 9b:1e:13:a9:66:e7:5a:f9:9a:00:a4:db:8e:c2:89:cd:6a:f4: 59:be:06:6f:9c:59:17:6c:50:41:32:f2:9f:d6:df:10:28:67: 0b:99:7f:c6:ed:3d:52:16:3a:9f:32:e2:7d:1c:18:fb:5d:f3: 05:9b:e6:71:b5:24:85:b2:9e:1c:bd:3e:dc:98:5b:4f:cf:1b: 08:79:c9:72:12:68:4f:45:24:aa:71:33:91:78:02:ba:19:2c: c6:95:03:79:74:73:03:46:0b:8f:ea:05:37:4e:4c:ce:66:0c: 9a:e8:e3:d5:60:0f:cf:78:b5:60:53:cc:cf:a6:82:50:f8:e2: d2:7e:aa:1e:53:c5:aa:67:31:4e:36:1e:da:f3:b0:71:62:60: f0:4e:f8:a0:25:44:4c:11:a0:29:52:0a:84:c3:cf:c8:c2:48: b1:84:20:4d:4d:e3:25:df:54:23:d6:6f:1f:cd:c3:6f:59:2b: ad:3b:7c:d2 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDF8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNCQzkxMTAvBgNVBAUTKDRBMTUyMzMzQzQwNUY1NjY0MkMyRkQwM0IxQzBGMUU1 MUY3QjY0RDYwHhcNMjUwOTEyMTg1ODQwWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM0NmQ1Zi02OGU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6xDHZN1ho9i5NV5U7r1sJP1tR46pZLRqOhEJWEbE3H/YTvvZD4V/Fr/Idd1X LIHewLNdTNKgzYQsDiTtnC5rveEVkEJRU/4/EyG30BxXNJ9kJuWEwRYlEphrQiAZ 3qeYhCMSX7+RZO7QRhCwB5GOhQibMebr7j732J02wdYgWv6IBXnFvaoaYoP3H/EG CUo9djNH2qjPnje8O5q/AvQGeqaPvwM2JKYp+wVHfyUTHg1uztxqAUyupikZg5Yw JAi7S9qctC5Abs4bmB3TGzVStdOuQPco3mEnFAHtrvJ2t8fLtAw5IelvvRZd+xOx No0NgjaWrcNMdhzz35ndSj8poQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFEUlZ6qm KPzuG7Ya5m8bUx/JKCU2MB8GA1UdIwQYMBaAFEoVIzPEBfVmQsL9A7HA8eUfe2TW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0JDOS9DNUM4M0NBRTEz QTAxMUVBOTNFRUVGNjVDNEY5QUUwMi9TaFVqTThRRjlXWkN3djBEc2NEeDVSOTda TlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NoVWpNOFFGOVdaQ3d2MERzY0R4NVI5N1pOWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzNCQzkvQzVDODNDQUUxM0EwMTFFQTkzRUVFRjY1QzRGOUFFMDIvRUYxNEREMzRC NkUyMTFFQUIzQkE5NTM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnwJwDBALKWygwDQYJKoZIhvcNAQELBQADggEBAGKek1DJ 5n6bP+xiy1XgHslCjc0ZKe/h/zoxjD5mQU9GQVvzSwVnoN0Vw1eyiqRhvK4zeLrr exlIANryW59XAAl4xPARsm2W6ZseE6lm51r5mgCk247Cic1q9Fm+Bm+cWRdsUEEy 8p/W3xAoZwuZf8btPVIWOp8y4n0cGPtd8wWb5nG1JIWynhy9PtyYW0/PGwh5yXIS aE9FJKpxM5F4AroZLMaVA3l0cwNGC4/qBTdOTM5mDJro49VgD894tWBTzM+mglD4 4tJ+qh5TxapnMU42HtrzsHFiYPBO+KAlREwRoClSCoTDz8jCSLGEIE1N4yXfVCPW bx/Nw29ZK607fNI= -----END CERTIFICATE-----Generated at Fri Sep 19 02:50:37 2025 by rpki-client