$ rpki-client -vvf rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/B6EB7E8ED14511EC89527642C4F9AE02.roa File: B6EB7E8ED14511EC89527642C4F9AE02.roa (raw, json) Hash identifier: zOa4PF6DbTNRPznC3F2BR2cHewtdmnvs1jqCDBbkuO0= Subject key identifier: 53:85:0F:2E:16:5F:66:DA:29:BD:19:17:C6:3F:E8:90:64:7E:49:AD Certificate issuer: /CN=A9199DF5/serialNumber=A570F370D54ED02454C57F83EEC3E4F44A7A8B76 Certificate serial: 0328 Authority key identifier: A5:70:F3:70:D5:4E:D0:24:54:C5:7F:83:EE:C3:E4:F4:4A:7A:8B:76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/B6EB7E8ED14511EC89527642C4F9AE02.roa Signing time: Tue 01 Jul 2025 02:07:41 +0000 ROA not before: Tue 01 Jul 2025 02:07:41 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 149825 IP address blocks: 103.187.28.0/23 maxlen: 23 103.187.28.0/24 maxlen: 24 103.187.29.0/24 maxlen: 24 2001:df0:b740::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.crl rsync://rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:02:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 808 (0x328) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199DF5, serialNumber=A570F370D54ED02454C57F83EEC3E4F44A7A8B76 Validity Not Before: Jul 1 02:07:41 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=686342ed-ebb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:b6:d4:9f:ec:2f:bb:db:1b:81:82:16:f1:6f: fa:67:08:b7:57:80:5b:ec:63:00:71:d7:bc:19:02: ae:ee:e5:23:43:64:c1:a4:72:90:e7:a8:75:48:2c: 78:18:ac:15:9d:13:d4:8f:25:e4:1e:f7:e7:81:38: 53:5a:9f:48:a0:56:d3:48:5a:5a:fe:29:2e:5d:7a: cc:f5:33:f1:6f:18:53:ee:0a:8e:1f:ab:b8:50:6c: 7b:57:85:70:b6:d6:ad:2e:68:cf:53:d4:70:91:62: 79:ea:fd:26:fe:59:95:49:43:9f:d6:9e:bb:37:45: 07:7e:4a:2b:23:46:d2:2f:bf:24:e9:01:56:49:0a: a4:04:96:eb:58:0e:68:b3:dc:71:8c:8e:e5:f4:de: 69:2c:05:d0:da:1d:fe:a7:7b:bf:34:22:24:cb:a2: ed:b2:65:11:e9:6f:48:3c:cd:a8:48:c7:ec:d3:8e: f9:0b:c4:32:b3:dc:0b:95:e0:91:35:32:09:b6:70: 20:e2:24:b9:82:46:62:80:c6:82:83:aa:f7:5e:53: 7c:73:ed:85:eb:59:c6:22:ea:08:96:d3:aa:77:c6: 83:2b:c6:db:00:2d:d3:36:b0:fc:cc:24:1e:9c:98: aa:4e:60:09:ed:dd:fd:7b:c1:69:2d:c4:95:f2:96: 34:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:85:0F:2E:16:5F:66:DA:29:BD:19:17:C6:3F:E8:90:64:7E:49:AD X509v3 Authority Key Identifier: keyid:A5:70:F3:70:D5:4E:D0:24:54:C5:7F:83:EE:C3:E4:F4:4A:7A:8B:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pXDzcNVO0CRUxX-D7sPk9Ep6i3Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199DF5/C240B794D14111ECA553843AC4F9AE02/B6EB7E8ED14511EC89527642C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.187.28.0/23 IPv6: 2001:df0:b740::/48 Signature Algorithm: sha256WithRSAEncryption 29:fd:e3:17:36:24:44:f9:84:f7:1d:7c:9a:45:ab:d8:65:19: f1:a3:2d:f7:15:6e:05:3d:dd:3e:64:96:b0:c7:22:2a:f3:86: 3d:d1:ee:dc:26:2b:df:8f:63:ae:83:3c:a7:0e:40:f6:ca:d3: 83:11:46:54:41:fd:e2:6c:5d:be:e3:d9:5b:1e:6f:89:18:e9: ed:6e:45:90:22:4d:06:ac:d8:e1:38:53:57:de:dd:53:cd:31: cd:81:c8:88:3a:b2:a6:30:d2:3d:21:58:87:96:38:da:d7:6b: ff:41:3b:d8:d7:5c:4e:16:0e:52:e8:41:77:47:6e:4a:ed:93: 53:20:2c:78:cf:93:53:08:26:ac:d6:10:6c:8d:43:96:fb:4e: 43:ac:40:2e:c9:67:50:8f:79:59:95:af:e3:36:a0:cd:2f:a0: 58:fd:f3:ba:65:12:82:74:1a:d0:dd:85:7c:fb:92:d8:87:71: 03:7a:13:05:1a:7a:47:42:f0:95:13:21:cb:f9:6f:50:af:c0: 0e:f6:b5:8e:32:5e:a7:42:18:d4:5c:da:c0:f3:a6:c3:43:14: 96:a6:46:fb:bd:09:06:f2:f8:17:5b:13:70:38:0b:a3:80:05: 7f:9e:13:0d:0e:d6:4a:ea:af:14:78:f2:2c:a3:3d:2c:f0:0a: 22:dd:95:44 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAygwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlERjUxMTAvBgNVBAUTKEE1NzBGMzcwRDU0RUQwMjQ1NEM1N0Y4M0VFQzNFNEY0 NEE3QThCNzYwHhcNMjUwNzAxMDIwNzQxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYzNDJlZC1lYmI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq7bUn+wvu9sbgYIW8W/6Zwi3V4Bb7GMAcde8GQKu7uUjQ2TBpHKQ56h1SCx4 GKwVnRPUjyXkHvfngThTWp9IoFbTSFpa/ikuXXrM9TPxbxhT7gqOH6u4UGx7V4Vw ttatLmjPU9RwkWJ56v0m/lmVSUOf1p67N0UHfkorI0bSL78k6QFWSQqkBJbrWA5o s9xxjI7l9N5pLAXQ2h3+p3u/NCIky6LtsmUR6W9IPM2oSMfs0475C8Qys9wLleCR NTIJtnAg4iS5gkZigMaCg6r3XlN8c+2F61nGIuoIltOqd8aDK8bbAC3TNrD8zCQe nJiqTmAJ7d39e8FpLcSV8pY04wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFFOFDy4W X2baKb0ZF8Y/6JBkfkmtMB8GA1UdIwQYMBaAFKVw83DVTtAkVMV/g+7D5PRKeot2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OURGNS9DMjQwQjc5NEQx NDExMUVDQTU1Mzg0M0FDNEY5QUUwMi9wWER6Y05WTzBDUlV4WC1EN3NQazlFcDZp M1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BYRHpjTlZPMENSVXhYLUQ3c1BrOUVwNmkzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTlERjUvQzI0MEI3OTREMTQxMTFFQ0E1NTM4NDNBQzRGOUFFMDIvQjZFQjdFOEVE MTQ1MTFFQzg5NTI3NjQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnuxwwDwQCAAIwCQMHACABDfC3QDANBgkqhkiG9w0BAQsF AAOCAQEAKf3jFzYkRPmE9x18mkWr2GUZ8aMt9xVuBT3dPmSWsMciKvOGPdHu3CYr 349jroM8pw5A9srTgxFGVEH94mxdvuPZWx5viRjp7W5FkCJNBqzY4ThTV97dU80x zYHIiDqypjDSPSFYh5Y42tdr/0E72NdcThYOUuhBd0duSu2TUyAseM+TUwgmrNYQ bI1DlvtOQ6xALslnUI95WZWv4zagzS+gWP3zumUSgnQa0N2FfPuS2IdxA3oTBRp6 R0LwlRMhy/lvUK/ADva1jjJep0IY1FzawPOmw0MUlqZG+70JBvL4F1sTcDgLo4AF f54TDQ7WSuqvFHjyLKM9LPAKIt2VRA== -----END CERTIFICATE-----Generated at Wed Nov 5 17:00:51 2025 by rpki-client