$ rpki-client -vvf rpki.apnic.net/member_repository/A9188F6D/9A5B1A9EF66A11E9BF50697AC4F9AE02/C22B92AA081011EDBC3C4374C4F9AE02.roa File: C22B92AA081011EDBC3C4374C4F9AE02.roa (raw, json) Hash identifier: Z4p5IL2wEtdYmX76by5DzgGIGhxAsMyvBXYRGxm6vYc= Subject key identifier: 0F:DF:37:7D:12:14:DF:86:29:F5:60:67:E3:6C:F2:6A:2F:31:36:FA Certificate issuer: /CN=A9188F6D/serialNumber=FD06B1508557F65F68CCBA3C203ECAAD075DD19B Certificate serial: 0D71 Authority key identifier: FD:06:B1:50:85:57:F6:5F:68:CC:BA:3C:20:3E:CA:AD:07:5D:D1:9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_QaxUIVX9l9ozLo8ID7KrQdd0Zs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188F6D/9A5B1A9EF66A11E9BF50697AC4F9AE02/C22B92AA081011EDBC3C4374C4F9AE02.roa Signing time: Wed 22 Oct 2025 07:16:27 +0000 ROA not before: Wed 22 Oct 2025 07:16:26 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 135341 IP address blocks: 103.109.92.0/24 maxlen: 24 103.109.93.0/24 maxlen: 24 103.109.95.0/24 maxlen: 24 103.214.200.0/24 maxlen: 24 103.214.201.0/24 maxlen: 24 103.214.202.0/24 maxlen: 24 103.214.203.0/24 maxlen: 24 144.48.150.0/24 maxlen: 24 144.48.151.0/24 maxlen: 24 2001:df4:3100::/48 maxlen: 48 2404:4c0:10::/48 maxlen: 48 2404:4c0:10a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188F6D/9A5B1A9EF66A11E9BF50697AC4F9AE02/_QaxUIVX9l9ozLo8ID7KrQdd0Zs.crl rsync://rpki.apnic.net/member_repository/A9188F6D/9A5B1A9EF66A11E9BF50697AC4F9AE02/_QaxUIVX9l9ozLo8ID7KrQdd0Zs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_QaxUIVX9l9ozLo8ID7KrQdd0Zs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Nov 2025 18:04:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3441 (0xd71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188F6D, serialNumber=FD06B1508557F65F68CCBA3C203ECAAD075DD19B Validity Not Before: Oct 22 07:16:26 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=68f884ca-a5b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:45:74:2d:0b:95:73:f1:0c:f2:ac:e7:34:19: 3f:63:ed:05:83:6e:24:50:1d:7e:00:ca:30:30:59: 09:43:c5:86:18:ee:12:ba:80:db:cf:d1:11:11:fc: 37:88:61:76:a5:fc:16:ac:ce:d9:d2:1c:33:96:77: 4d:23:5a:55:09:71:95:5a:75:35:d7:b3:21:4f:9a: ff:6f:40:4d:8d:a0:9d:46:2b:25:0f:a5:d4:8b:92: 99:88:ca:35:f8:5b:d3:e4:0a:b7:99:ca:d7:9c:e3: bf:cc:c3:d8:bc:e0:09:22:f9:43:8f:e4:2a:ff:45: 72:60:38:28:62:34:b2:ec:4a:6e:e0:68:97:f2:3f: f4:07:4b:cb:1a:90:87:bb:db:93:78:7b:fe:15:4a: e8:88:47:a8:05:05:9c:1f:e8:7b:fe:61:27:c3:5b: c1:6b:32:63:ba:65:3e:cb:c8:20:f2:f7:fb:a9:30: 65:44:53:e3:1d:9a:a8:62:c9:71:fe:fd:4e:67:07: cc:06:c5:c4:ff:2d:58:5a:de:66:96:34:7b:3c:bc: 2d:ea:3c:c4:62:b4:1d:d7:84:fd:39:80:d4:e5:b4: 3b:c8:db:d7:cc:cc:22:45:86:7e:ec:a4:d5:ae:a9: 76:de:85:40:95:69:33:94:4f:6f:7a:0d:46:ab:38: 4b:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:DF:37:7D:12:14:DF:86:29:F5:60:67:E3:6C:F2:6A:2F:31:36:FA X509v3 Authority Key Identifier: keyid:FD:06:B1:50:85:57:F6:5F:68:CC:BA:3C:20:3E:CA:AD:07:5D:D1:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188F6D/9A5B1A9EF66A11E9BF50697AC4F9AE02/_QaxUIVX9l9ozLo8ID7KrQdd0Zs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_QaxUIVX9l9ozLo8ID7KrQdd0Zs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188F6D/9A5B1A9EF66A11E9BF50697AC4F9AE02/C22B92AA081011EDBC3C4374C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.109.92.0/23 103.109.95.0/24 103.214.200.0/22 144.48.150.0/23 IPv6: 2001:df4:3100::/48 2404:4c0:10::/48 2404:4c0:10a::/48 Signature Algorithm: sha256WithRSAEncryption 2a:fb:38:3e:83:60:ba:9b:9d:02:d7:72:54:ce:c1:07:5f:92: db:72:6c:42:7e:a7:41:3e:fb:2e:24:6c:6f:b1:c1:a1:03:00: 53:50:b3:13:96:20:ee:4c:ac:55:4b:1d:0a:69:c9:5e:1f:b6: 7b:d5:cf:88:3d:a8:47:82:1c:81:cc:0b:37:c5:02:06:88:93: e4:44:94:f5:f3:c2:91:8b:a5:ca:64:0f:ac:20:4e:1b:3e:5e: 0d:96:16:c9:b3:d7:8f:07:61:85:fb:52:74:2e:18:1d:5d:59: e8:75:1b:77:d5:5c:9c:ab:d0:82:3c:a3:ff:39:6a:64:3c:64: a6:b0:fa:83:28:37:ab:4e:8b:cf:24:39:d0:65:db:06:c3:47: c0:6e:39:60:df:8a:22:02:f6:8e:72:b9:a8:81:7d:40:e4:31: ae:de:21:49:b2:95:bb:53:4d:cc:0e:87:88:31:4f:4a:39:d3: 87:e0:7f:35:18:24:87:86:5d:14:7b:a0:71:c4:80:42:33:34: 2e:a4:e8:89:68:76:28:c9:77:fe:69:16:b9:0d:72:f0:a0:a2: 67:24:c8:8e:4d:b2:3e:09:df:d6:2f:83:2d:54:bb:1d:c8:13: 47:c1:bf:d0:d2:e8:df:03:f0:c4:f1:be:dc:15:65:49:3f:d9: a8:89:71:2c -----BEGIN CERTIFICATE----- MIIFpjCCBI6gAwIBAgICDXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODhGNkQxMTAvBgNVBAUTKEZEMDZCMTUwODU1N0Y2NUY2OENDQkEzQzIwM0VDQUFE MDc1REQxOUIwHhcNMjUxMDIyMDcxNjI2WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGY4ODRjYS1hNWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5UV0LQuVc/EM8qznNBk/Y+0Fg24kUB1+AMowMFkJQ8WGGO4SuoDbz9EREfw3 iGF2pfwWrM7Z0hwzlndNI1pVCXGVWnU117MhT5r/b0BNjaCdRislD6XUi5KZiMo1 +FvT5Aq3mcrXnOO/zMPYvOAJIvlDj+Qq/0VyYDgoYjSy7Epu4GiX8j/0B0vLGpCH u9uTeHv+FUroiEeoBQWcH+h7/mEnw1vBazJjumU+y8gg8vf7qTBlRFPjHZqoYslx /v1OZwfMBsXE/y1YWt5mljR7PLwt6jzEYrQd14T9OYDU5bQ7yNvXzMwiRYZ+7KTV rql23oVAlWkzlE9veg1GqzhLAQIDAQABo4ICyjCCAsYwHQYDVR0OBBYEFA/fN30S FN+GKfVgZ+Ns8movMTb6MB8GA1UdIwQYMBaAFP0GsVCFV/ZfaMy6PCA+yq0HXdGb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OEY2RC85QTVCMUE5RUY2 NkExMUU5QkY1MDY5N0FDNEY5QUUwMi9fUWF4VUlWWDlsOW96TG84SUQ3S3JRZGQw WnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19RYXhVSVZYOWw5b3pMbzhJRDdLclFkZDBacy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODhGNkQvOUE1QjFBOUVGNjZBMTFFOUJGNTA2OTdBQzRGOUFFMDIvQzIyQjkyQUEw ODEwMTFFREJDM0M0Mzc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwVAYIKwYBBQUHAQcBAf8E RTBDMB4EAgABMBgDBAFnbVwDBABnbV8DBAJn1sgDBAGQMJYwIQQCAAIwGwMHACAB DfQxAAMHACQEBMAAEAMHACQEBMABCjANBgkqhkiG9w0BAQsFAAOCAQEAKvs4PoNg upudAtdyVM7BB1+S23JsQn6nQT77LiRsb7HBoQMAU1CzE5Yg7kysVUsdCmnJXh+2 e9XPiD2oR4IcgcwLN8UCBoiT5ESU9fPCkYulymQPrCBOGz5eDZYWybPXjwdhhftS dC4YHV1Z6HUbd9VcnKvQgjyj/zlqZDxkprD6gyg3q06LzyQ50GXbBsNHwG45YN+K IgL2jnK5qIF9QOQxrt4hSbKVu1NNzA6HiDFPSjnTh+B/NRgkh4ZdFHugccSAQjM0 LqToiWh2KMl3/mkWuQ1y8KCiZyTIjk2yPgnf1i+DLVS7HcgTR8G/0NLo3wPwxPG+ 3BVlST/ZqIlxLA== -----END CERTIFICATE-----Generated at Wed Oct 29 16:09:45 2025 by rpki-client