$ rpki-client -vvf rpki.apnic.net/member_repository/A9199231/08FDCD503C8111EA820D7F49C4F9AE02/84DF7DDE361211EBACEF8647C4F9AE02.roa File: 84DF7DDE361211EBACEF8647C4F9AE02.roa (raw, json) Hash identifier: 3j6fcjarkwTsrFF+jI5l1fkUVOMv+A+fXywGLnEk9ME= Subject key identifier: 56:C9:1B:9F:62:D0:15:B3:E4:61:B2:7D:7E:57:66:38:02:25:91:C3 Certificate issuer: /CN=A9199231/serialNumber=ADA730063A4618C26D15543581953B0185FD9C85 Certificate serial: 075A Authority key identifier: AD:A7:30:06:3A:46:18:C2:6D:15:54:35:81:95:3B:01:85:FD:9C:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/racwBjpGGMJtFVQ1gZU7AYX9nIU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199231/08FDCD503C8111EA820D7F49C4F9AE02/84DF7DDE361211EBACEF8647C4F9AE02.roa Signing time: Mon 28 Jul 2025 19:29:58 +0000 ROA not before: Mon 28 Jul 2025 19:29:58 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 139338 IP address blocks: 103.141.123.0/24 maxlen: 24 103.141.132.0/24 maxlen: 24 2001:df0:fc80::/48 maxlen: 52 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199231/08FDCD503C8111EA820D7F49C4F9AE02/racwBjpGGMJtFVQ1gZU7AYX9nIU.crl rsync://rpki.apnic.net/member_repository/A9199231/08FDCD503C8111EA820D7F49C4F9AE02/racwBjpGGMJtFVQ1gZU7AYX9nIU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/racwBjpGGMJtFVQ1gZU7AYX9nIU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:09:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1882 (0x75a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199231, serialNumber=ADA730063A4618C26D15543581953B0185FD9C85 Validity Not Before: Jul 28 19:29:58 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6887cfb5-88bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:eb:99:71:9a:48:fc:3b:79:e6:4c:bb:c6:a5: 07:3f:6c:33:d3:26:de:d7:cc:04:ff:f9:46:6b:80: ce:93:67:6d:74:f5:39:da:8c:fe:3f:c7:c5:cb:7a: 3e:40:f5:4d:55:ce:fd:51:14:97:77:94:3e:e4:ff: 14:de:a8:dc:76:0a:ae:38:bd:7c:aa:98:a9:bd:54: 4d:5f:38:40:f3:43:63:a7:d0:75:d1:dd:28:4e:8b: aa:a8:6f:df:10:7b:fd:90:fa:70:04:03:50:c1:4e: ca:c4:a6:b1:d5:41:16:31:0b:41:64:b5:be:b5:ab: 54:19:2e:2e:b5:fb:39:d5:4a:b3:f8:9c:d3:79:6a: dc:c7:89:51:87:c5:aa:66:74:55:a0:9e:9a:e7:17: 60:3a:6e:91:1e:b0:f4:41:a2:09:bd:dc:a3:5e:80: 5c:ae:a8:fe:66:19:c5:46:33:a8:e3:25:ed:6e:9b: 03:19:38:4e:1b:7b:f2:d9:c0:fd:3e:5e:c4:eb:54: e2:31:4d:30:90:1a:c1:e5:55:52:5f:50:e2:19:0d: 6e:34:08:1d:fa:5c:af:20:10:56:d2:c9:21:e1:84: 4c:6f:19:63:a7:06:79:23:50:6c:65:4c:11:d0:5e: 67:44:8c:38:6a:0a:c8:7f:0a:7d:24:fd:15:d3:f7: 11:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:C9:1B:9F:62:D0:15:B3:E4:61:B2:7D:7E:57:66:38:02:25:91:C3 X509v3 Authority Key Identifier: keyid:AD:A7:30:06:3A:46:18:C2:6D:15:54:35:81:95:3B:01:85:FD:9C:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199231/08FDCD503C8111EA820D7F49C4F9AE02/racwBjpGGMJtFVQ1gZU7AYX9nIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/racwBjpGGMJtFVQ1gZU7AYX9nIU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199231/08FDCD503C8111EA820D7F49C4F9AE02/84DF7DDE361211EBACEF8647C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.141.123.0/24 103.141.132.0/24 IPv6: 2001:df0:fc80::/48 Signature Algorithm: sha256WithRSAEncryption bb:62:bf:a6:57:f3:76:53:2f:f5:5d:e3:92:87:5a:f2:21:55: 86:ff:e7:2d:8d:92:bf:6c:d5:54:e6:f9:46:94:e1:12:92:30: a4:d5:31:29:82:d1:43:b1:11:8c:f2:ac:8f:92:3a:14:be:81: ec:4c:7e:a9:c5:ea:da:1f:77:b4:98:ab:6a:bc:4f:7f:da:4a: df:10:47:40:14:58:95:40:1a:dc:3a:84:b5:b0:cc:7f:3d:8c: d4:0c:8c:48:ad:1a:74:9d:77:3f:59:60:df:09:25:77:ef:41: 3c:25:1c:c8:39:9d:13:2e:95:68:24:0b:a3:06:f8:d3:7e:3d: 7d:60:76:8d:d8:fa:9d:ff:0b:53:c7:03:a8:20:eb:df:90:91: c7:cc:95:d2:bf:cd:e1:69:33:43:0e:1d:11:c6:ab:5f:be:1b: f4:de:9b:dd:5e:1f:e6:09:1a:22:3b:b1:86:15:3b:d6:f3:ac: 8d:94:0b:61:8c:ef:ce:ce:14:67:4a:f2:61:1e:4c:95:7a:3a: c2:b3:53:78:e2:c9:63:94:5d:34:58:b3:1d:55:05:50:e0:e9: 3d:b7:25:34:d0:b5:16:95:57:32:bc:01:6f:40:b0:d1:10:b3: 50:60:34:ed:67:e5:97:7e:16:c3:78:76:ba:9b:7a:45:1c:bf: ee:78:9c:85 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICB1owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkyMzExMTAvBgNVBAUTKEFEQTczMDA2M0E0NjE4QzI2RDE1NTQzNTgxOTUzQjAx ODVGRDlDODUwHhcNMjUwNzI4MTkyOTU4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODg3Y2ZiNS04OGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAweuZcZpI/Dt55ky7xqUHP2wz0ybe18wE//lGa4DOk2dtdPU52oz+P8fFy3o+ QPVNVc79URSXd5Q+5P8U3qjcdgquOL18qpipvVRNXzhA80Njp9B10d0oTouqqG/f EHv9kPpwBANQwU7KxKax1UEWMQtBZLW+tatUGS4utfs51Uqz+JzTeWrcx4lRh8Wq ZnRVoJ6a5xdgOm6RHrD0QaIJvdyjXoBcrqj+ZhnFRjOo4yXtbpsDGThOG3vy2cD9 Pl7E61TiMU0wkBrB5VVSX1DiGQ1uNAgd+lyvIBBW0skh4YRMbxljpwZ5I1BsZUwR 0F5nRIw4agrIfwp9JP0V0/cR8wIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFFbJG59i 0BWz5GGyfX5XZjgCJZHDMB8GA1UdIwQYMBaAFK2nMAY6RhjCbRVUNYGVOwGF/ZyF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTIzMS8wOEZEQ0Q1MDND ODExMUVBODIwRDdGNDlDNEY5QUUwMi9yYWN3QmpwR0dNSnRGVlExZ1pVN0FZWDlu SVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JhY3dCanBHR01KdEZWUTFnWlU3QVlYOW5JVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTkyMzEvMDhGRENENTAzQzgxMTFFQTgyMEQ3RjQ5QzRGOUFFMDIvODRERjdEREUz NjEyMTFFQkFDRUY4NjQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnjXsDBABnjYQwDwQCAAIwCQMHACABDfD8gDANBgkqhkiG 9w0BAQsFAAOCAQEAu2K/plfzdlMv9V3jkoda8iFVhv/nLY2Sv2zVVOb5RpThEpIw pNUxKYLRQ7ERjPKsj5I6FL6B7Ex+qcXq2h93tJirarxPf9pK3xBHQBRYlUAa3DqE tbDMfz2M1AyMSK0adJ13P1lg3wkld+9BPCUcyDmdEy6VaCQLowb40349fWB2jdj6 nf8LU8cDqCDr35CRx8yV0r/N4WkzQw4dEcarX74b9N6b3V4f5gkaIjuxhhU71vOs jZQLYYzvzs4UZ0ryYR5MlXo6wrNTeOLJY5RdNFizHVUFUODpPbclNNC1FpVXMrwB b0Cw0RCzUGA07Wfll34Ww3h2upt6RRy/7nichQ== -----END CERTIFICATE-----Generated at Wed Nov 5 18:11:10 2025 by rpki-client