$ rpki-client -vvf rpki.apnic.net/member_repository/A9116119/5448179E1ABC11E9BDA4FC48C4F9AE02/991E066C1DB711EB95324E17C4F9AE02.roa File: 991E066C1DB711EB95324E17C4F9AE02.roa (raw, json) Hash identifier: aSeUfkVwR//SK7D+tzKs0QDgJME6lZysD7HNSISzHbo= Subject key identifier: 5B:F9:22:A9:C2:A6:40:EE:CB:D5:B5:84:FA:0E:B6:78:3A:82:9F:F0 Certificate issuer: /CN=A9116119/serialNumber=54B6DE0691A9C6D565CD18011DD22B109E02379B Certificate serial: 1139 Authority key identifier: 54:B6:DE:06:91:A9:C6:D5:65:CD:18:01:1D:D2:2B:10:9E:02:37:9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VLbeBpGpxtVlzRgBHdIrEJ4CN5s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116119/5448179E1ABC11E9BDA4FC48C4F9AE02/991E066C1DB711EB95324E17C4F9AE02.roa Signing time: Tue 14 Oct 2025 18:16:40 +0000 ROA not before: Tue 14 Oct 2025 18:16:40 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 138147 IP address blocks: 103.121.80.0/24 maxlen: 24 103.121.81.0/24 maxlen: 24 103.121.82.0/24 maxlen: 24 103.121.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116119/5448179E1ABC11E9BDA4FC48C4F9AE02/VLbeBpGpxtVlzRgBHdIrEJ4CN5s.crl rsync://rpki.apnic.net/member_repository/A9116119/5448179E1ABC11E9BDA4FC48C4F9AE02/VLbeBpGpxtVlzRgBHdIrEJ4CN5s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VLbeBpGpxtVlzRgBHdIrEJ4CN5s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 17:42:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4409 (0x1139) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116119, serialNumber=54B6DE0691A9C6D565CD18011DD22B109E02379B Validity Not Before: Oct 14 18:16:40 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68ee9388-b9a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b6:9d:fc:11:95:2c:71:62:7d:13:7f:94:4b: 22:f7:dc:87:ec:3c:08:fa:54:d7:cb:fd:68:f9:ff: dd:9d:7f:df:4e:b6:db:34:c1:93:61:1c:19:7f:0a: d2:1c:6d:ea:46:cf:ec:dc:b9:df:4a:08:87:c0:fc: f2:7a:01:65:ab:26:3c:7d:f8:ea:5b:ab:f2:32:5c: 78:68:a9:ed:17:46:7c:0f:fd:50:08:ae:fa:c8:a3: 41:3a:f9:bd:c6:a1:50:64:fa:be:d6:8d:90:12:09: 53:d0:30:4a:ab:fc:46:33:f4:99:c3:2f:29:18:48: 31:5f:f5:38:e9:31:01:9c:2a:02:d9:2b:1c:a4:9d: 89:f2:3e:fc:b6:e2:58:21:89:fd:97:13:28:6e:a8: dc:61:68:13:07:2a:80:15:ae:da:d8:37:0b:a6:76: e8:60:80:fb:10:c5:42:5a:2f:3f:c4:4d:07:9a:06: d0:5c:af:37:30:5c:ba:0c:7a:77:41:28:ef:28:c8: 44:f3:f4:da:87:61:82:b0:f8:9b:f9:16:e5:a1:78: 68:63:46:ec:69:88:8b:62:f6:d3:25:75:2e:3e:1d: 1f:52:5c:1e:d3:c6:39:98:34:cb:8f:8d:d0:fc:4f: 9d:7b:e1:ba:47:c0:dc:a4:94:b5:31:bb:ca:43:77: 98:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:F9:22:A9:C2:A6:40:EE:CB:D5:B5:84:FA:0E:B6:78:3A:82:9F:F0 X509v3 Authority Key Identifier: keyid:54:B6:DE:06:91:A9:C6:D5:65:CD:18:01:1D:D2:2B:10:9E:02:37:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116119/5448179E1ABC11E9BDA4FC48C4F9AE02/VLbeBpGpxtVlzRgBHdIrEJ4CN5s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VLbeBpGpxtVlzRgBHdIrEJ4CN5s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116119/5448179E1ABC11E9BDA4FC48C4F9AE02/991E066C1DB711EB95324E17C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.121.80.0/22 Signature Algorithm: sha256WithRSAEncryption 87:35:b0:3f:34:fc:4a:c2:68:e2:3b:f3:2e:57:a9:1d:7a:ae: ad:5d:3d:11:8b:97:41:6d:41:d1:6c:35:d8:9b:84:b5:29:85: 1d:4b:04:bd:64:4c:0e:c5:3a:bb:e1:a1:3a:92:d1:3e:39:69: 4d:28:61:bb:38:df:e9:49:8d:9b:87:32:19:e6:df:db:aa:9a: 03:99:87:ee:b9:cd:f1:72:f2:84:fd:c5:73:dc:2c:21:15:c0: e3:b9:2a:b2:06:44:9b:eb:37:9a:39:62:2d:52:05:4b:ae:d5: 68:07:ba:7c:c2:d7:9f:64:9c:d6:f9:2b:d6:aa:57:45:8c:35: 0a:40:6a:01:58:49:cb:f1:5a:3e:46:11:64:fe:91:53:87:99: 1c:85:b6:59:f6:5c:c9:8d:aa:ad:6e:d0:5e:dc:e5:83:32:fa: 71:32:ba:db:fd:d6:6e:fe:9a:c9:50:4e:19:fe:f3:8b:e2:52: 33:13:ed:83:4f:01:89:a6:d0:c6:2b:be:58:73:52:71:b0:9f: 96:7f:d3:66:0d:3e:25:45:e3:d8:9e:c5:a4:87:07:8d:f8:32: 4f:cb:d7:66:0d:d5:13:04:9f:39:f9:8e:30:89:2e:59:04:1a: 26:85:f0:37:5b:53:7f:7f:99:e6:80:e6:26:6b:7f:27:ed:88: 55:91:56:f7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICETkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTYxMTkxMTAvBgNVBAUTKDU0QjZERTA2OTFBOUM2RDU2NUNEMTgwMTFERDIyQjEw OUUwMjM3OUIwHhcNMjUxMDE0MTgxNjQwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGVlOTM4OC1iOWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyLad/BGVLHFifRN/lEsi99yH7DwI+lTXy/1o+f/dnX/fTrbbNMGTYRwZfwrS HG3qRs/s3LnfSgiHwPzyegFlqyY8ffjqW6vyMlx4aKntF0Z8D/1QCK76yKNBOvm9 xqFQZPq+1o2QEglT0DBKq/xGM/SZwy8pGEgxX/U46TEBnCoC2SscpJ2J8j78tuJY IYn9lxMobqjcYWgTByqAFa7a2DcLpnboYID7EMVCWi8/xE0HmgbQXK83MFy6DHp3 QSjvKMhE8/Tah2GCsPib+RbloXhoY0bsaYiLYvbTJXUuPh0fUlwe08Y5mDTLj43Q /E+de+G6R8DcpJS1MbvKQ3eY4wIDAQABo4IClTCCApEwHQYDVR0OBBYEFFv5IqnC pkDuy9W1hPoOtng6gp/wMB8GA1UdIwQYMBaAFFS23gaRqcbVZc0YAR3SKxCeAjeb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjExOS81NDQ4MTc5RTFB QkMxMUU5QkRBNEZDNDhDNEY5QUUwMi9WTGJlQnBHcHh0Vmx6UmdCSGRJckVKNENO NXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZMYmVCcEdweHRWbHpSZ0JIZElyRUo0Q041cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTYxMTkvNTQ0ODE3OUUxQUJDMTFFOUJEQTRGQzQ4QzRGOUFFMDIvOTkxRTA2NkMx REI3MTFFQjk1MzI0RTE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJneVAwDQYJKoZIhvcNAQELBQADggEBAIc1sD80/ErCaOI7 8y5XqR16rq1dPRGLl0FtQdFsNdibhLUphR1LBL1kTA7FOrvhoTqS0T45aU0oYbs4 3+lJjZuHMhnm39uqmgOZh+65zfFy8oT9xXPcLCEVwOO5KrIGRJvrN5o5Yi1SBUuu 1WgHunzC159knNb5K9aqV0WMNQpAagFYScvxWj5GEWT+kVOHmRyFtln2XMmNqq1u 0F7c5YMy+nEyutv91m7+mslQThn+84viUjMT7YNPAYmm0MYrvlhzUnGwn5Z/02YN PiVF49iexaSHB434Mk/L12YN1RMEnzn5jjCJLlkEGiaF8DdbU39/meaA5iZrfyft iFWRVvc= -----END CERTIFICATE-----Generated at Tue Oct 21 02:58:45 2025 by rpki-client