$ rpki-client -vvf rpki.apnic.net/member_repository/A9188CCC/7E6E0014454711EEACD35F41C4F9AE02/9B2C760CD89B11EF8D75534EC4F9AE02.roa File: 9B2C760CD89B11EF8D75534EC4F9AE02.roa (raw, json) Hash identifier: Uy5zrbL2pI5z6ViK9IXiOIdBb841QWHkAKP7kKyILAQ= Subject key identifier: 51:E9:FA:18:54:63:D9:96:7F:0C:4D:AB:7A:37:9E:61:96:53:0B:6B Certificate issuer: /CN=A9188CCC/serialNumber=E231D30927E49A6A22D9F6ACD706103BE3E5DC16 Certificate serial: 017A Authority key identifier: E2:31:D3:09:27:E4:9A:6A:22:D9:F6:AC:D7:06:10:3B:E3:E5:DC:16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4jHTCSfkmmoi2fas1wYQO-Pl3BY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188CCC/7E6E0014454711EEACD35F41C4F9AE02/9B2C760CD89B11EF8D75534EC4F9AE02.roa Signing time: Sun 03 Aug 2025 04:41:25 +0000 ROA not before: Sun 03 Aug 2025 04:41:25 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 55734 IP address blocks: 43.245.0.0/22 maxlen: 24 103.232.184.0/22 maxlen: 24 223.27.120.0/22 maxlen: 24 2401:4ce0::/32 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188CCC/7E6E0014454711EEACD35F41C4F9AE02/4jHTCSfkmmoi2fas1wYQO-Pl3BY.crl rsync://rpki.apnic.net/member_repository/A9188CCC/7E6E0014454711EEACD35F41C4F9AE02/4jHTCSfkmmoi2fas1wYQO-Pl3BY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4jHTCSfkmmoi2fas1wYQO-Pl3BY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:29:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 378 (0x17a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188CCC, serialNumber=E231D30927E49A6A22D9F6ACD706103BE3E5DC16 Validity Not Before: Aug 3 04:41:25 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=688ee875-89f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f0:a0:51:5a:e2:9f:79:68:f6:e5:69:68:e7: f8:de:2e:94:41:ec:32:f6:c5:0f:f4:b7:13:e8:74: 26:cc:b7:df:a2:65:cb:a0:79:31:99:24:7f:1d:53: 68:c7:d8:da:01:b4:db:bd:17:1d:f9:3f:5c:0c:43: 95:77:c8:2d:6e:c5:da:96:3c:24:53:f3:a9:74:f8: 80:28:b9:7c:59:3c:ed:1f:ac:3c:39:0c:88:63:2b: 88:7b:80:09:8d:f3:1d:09:2d:56:36:2b:0a:a6:f6: 21:25:de:57:e0:df:73:54:eb:65:14:68:c7:0c:37: b8:87:cf:57:13:25:9d:23:e0:74:75:f1:fe:87:bc: b9:f9:53:1c:35:eb:a3:75:c5:83:cc:d4:c7:6c:db: 28:57:40:30:c0:90:25:0e:e9:ec:64:c8:03:5a:62: 47:79:03:c3:f7:7c:05:79:70:1e:b4:e5:23:ab:4b: 80:ce:11:4f:be:69:fd:5a:1e:f8:b5:39:a4:f6:98: bb:e3:d7:57:f2:ad:f7:fb:ae:4b:b8:fe:c4:d0:22: d6:24:3c:9d:40:1f:fb:76:8e:d4:7c:08:ea:34:12: 0d:e1:0d:9e:a5:bb:fc:05:90:67:88:14:65:cf:a3: ec:c4:2d:d3:99:76:e6:40:88:4d:4b:49:0c:15:b1: 6c:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:E9:FA:18:54:63:D9:96:7F:0C:4D:AB:7A:37:9E:61:96:53:0B:6B X509v3 Authority Key Identifier: keyid:E2:31:D3:09:27:E4:9A:6A:22:D9:F6:AC:D7:06:10:3B:E3:E5:DC:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188CCC/7E6E0014454711EEACD35F41C4F9AE02/4jHTCSfkmmoi2fas1wYQO-Pl3BY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4jHTCSfkmmoi2fas1wYQO-Pl3BY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188CCC/7E6E0014454711EEACD35F41C4F9AE02/9B2C760CD89B11EF8D75534EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.245.0.0/22 103.232.184.0/22 223.27.120.0/22 IPv6: 2401:4ce0::/32 Signature Algorithm: sha256WithRSAEncryption 27:c5:19:c5:2e:1d:ed:b2:88:6b:69:af:9e:dc:b4:19:f7:d5: 91:93:57:3a:2e:93:54:9e:8a:e1:fe:44:09:29:44:44:b9:45: 6b:23:c5:e6:18:05:9a:04:75:25:5f:91:e0:fc:cb:6d:06:40: 1a:99:44:c7:ba:e0:2a:c0:74:d8:47:d4:fd:2c:2b:bf:25:f9: d2:18:40:7f:87:b9:2d:6a:b0:ba:c8:23:f7:28:14:31:cb:a2: 1c:21:55:9c:d6:a1:9d:be:86:8e:14:e5:a2:88:ff:ff:71:2c: 0d:e6:f8:b9:a4:00:8b:26:40:b5:a0:4f:c6:18:47:cc:9e:f3: bf:ac:81:74:81:b0:00:69:77:f9:c5:27:bd:8c:e9:63:58:13: dd:85:78:87:8f:46:80:83:e2:2c:06:28:9d:bb:2c:b5:e8:10: 78:57:4e:d0:98:db:ab:67:f2:b0:f4:e7:50:ab:06:8a:e7:8d: f8:3e:74:0c:87:45:3e:26:1c:8c:d6:e6:b3:cd:f4:87:65:03: e8:f1:6e:da:dc:98:d0:56:72:a8:cd:8f:e9:82:a0:01:06:5b: a0:70:96:da:7c:36:64:63:63:db:e8:02:84:83:9d:72:c4:74: 3c:4a:b4:60:6a:c1:01:58:eb:09:92:b7:67:85:21:26:42:fd: 87:04:79:6a -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICAXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODhDQ0MxMTAvBgNVBAUTKEUyMzFEMzA5MjdFNDlBNkEyMkQ5RjZBQ0Q3MDYxMDNC RTNFNURDMTYwHhcNMjUwODAzMDQ0MTI1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhlZTg3NS04OWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx/CgUVrin3lo9uVpaOf43i6UQewy9sUP9LcT6HQmzLffomXLoHkxmSR/HVNo x9jaAbTbvRcd+T9cDEOVd8gtbsXaljwkU/OpdPiAKLl8WTztH6w8OQyIYyuIe4AJ jfMdCS1WNisKpvYhJd5X4N9zVOtlFGjHDDe4h89XEyWdI+B0dfH+h7y5+VMcNeuj dcWDzNTHbNsoV0AwwJAlDunsZMgDWmJHeQPD93wFeXAetOUjq0uAzhFPvmn9Wh74 tTmk9pi749dX8q33+65LuP7E0CLWJDydQB/7do7UfAjqNBIN4Q2epbv8BZBniBRl z6PsxC3TmXbmQIhNS0kMFbFsYQIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFFHp+hhU Y9mWfwxNq3o3nmGWUwtrMB8GA1UdIwQYMBaAFOIx0wkn5JpqItn2rNcGEDvj5dwW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OENDQy83RTZFMDAxNDQ1 NDcxMUVFQUNEMzVGNDFDNEY5QUUwMi80akhUQ1Nma21tb2kyZmFzMXdZUU8tUGwz QlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRqSFRDU2ZrbW1vaTJmYXMxd1lRTy1QbDNCWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODhDQ0MvN0U2RTAwMTQ0NTQ3MTFFRUFDRDM1RjQxQzRGOUFFMDIvOUIyQzc2MENE ODlCMTFFRjhENzU1MzRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAIr9QADBAJn6LgDBALfG3gwDQQCAAIwBwMFACQBTOAwDQYJ KoZIhvcNAQELBQADggEBACfFGcUuHe2yiGtpr57ctBn31ZGTVzouk1SeiuH+RAkp RES5RWsjxeYYBZoEdSVfkeD8y20GQBqZRMe64CrAdNhH1P0sK78l+dIYQH+HuS1q sLrII/coFDHLohwhVZzWoZ2+ho4U5aKI//9xLA3m+LmkAIsmQLWgT8YYR8ye87+s gXSBsABpd/nFJ72M6WNYE92FeIePRoCD4iwGKJ27LLXoEHhXTtCY26tn8rD051Cr Bornjfg+dAyHRT4mHIzW5rPN9IdlA+jxbtrcmNBWcqjNj+mCoAEGW6Bwltp8NmRj Y9voAoSDnXLEdDxKtGBqwQFY6wmSt2eFISZC/YcEeWo= -----END CERTIFICATE-----Generated at Wed Nov 5 18:09:17 2025 by rpki-client