$ rpki-client -vvf rpki.apnic.net/member_repository/A9119A40/0BD45622007A11EAB8B31B10C4F9AE02/D5DBA6BC63ED11ED851C647DC4F9AE02.roa File: D5DBA6BC63ED11ED851C647DC4F9AE02.roa (raw, json) Hash identifier: mgb6NflmQm35vBEH6/rdIKJ5eJitJ9zemuTs4qdaAl8= Subject key identifier: F1:72:22:32:77:F4:9E:6E:4D:95:81:F7:53:F5:F9:F8:D9:D3:92:DE Certificate issuer: /CN=A9119A40/serialNumber=BD14CF1A9F08F68137FE8116CD776ADBDB2FEFB4 Certificate serial: 0411 Authority key identifier: BD:14:CF:1A:9F:08:F6:81:37:FE:81:16:CD:77:6A:DB:DB:2F:EF:B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vRTPGp8I9oE3_oEWzXdq29sv77Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119A40/0BD45622007A11EAB8B31B10C4F9AE02/D5DBA6BC63ED11ED851C647DC4F9AE02.roa Signing time: Thu 18 Sep 2025 18:28:25 +0000 ROA not before: Thu 18 Sep 2025 18:28:25 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 138205 IP address blocks: 103.129.236.0/24 maxlen: 24 103.129.237.0/24 maxlen: 24 2403:8b40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119A40/0BD45622007A11EAB8B31B10C4F9AE02/vRTPGp8I9oE3_oEWzXdq29sv77Q.crl rsync://rpki.apnic.net/member_repository/A9119A40/0BD45622007A11EAB8B31B10C4F9AE02/vRTPGp8I9oE3_oEWzXdq29sv77Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vRTPGp8I9oE3_oEWzXdq29sv77Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 18:23:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1041 (0x411) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119A40, serialNumber=BD14CF1A9F08F68137FE8116CD776ADBDB2FEFB4 Validity Not Before: Sep 18 18:28:25 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68cc4f49-6340 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:5a:da:f0:71:6f:05:4a:95:63:1c:96:eb:fc: 68:b3:6b:c0:2c:51:ba:49:4b:08:e0:ea:88:4f:9e: 40:75:7e:56:bf:bb:b9:9e:29:85:8f:a9:df:ae:ab: bb:02:a2:2e:ba:52:5b:c2:e0:b3:3d:d3:4b:2d:87: 71:00:e6:4f:65:be:c8:fe:36:70:e3:cc:1d:d7:8a: 09:c5:0d:a7:94:51:d9:26:df:25:6b:20:e8:3d:ae: 1a:78:8d:f1:b1:b1:06:b8:0d:de:bb:6e:5f:e1:a4: 16:ae:28:8b:8a:f3:0a:bf:27:63:0c:37:bf:b9:db: cf:50:81:37:a0:f2:36:55:db:78:c0:3b:15:97:d6: a0:9c:3f:18:ad:76:e5:5c:66:69:74:c5:be:27:ac: 89:0c:a9:ef:6b:92:2a:e6:1a:27:f9:e7:8b:09:5e: fe:ed:ae:52:2f:22:a1:28:de:76:34:13:30:7e:02: c2:f8:ad:6a:49:97:c0:d5:db:c5:12:c2:25:ad:59: 90:07:e4:0a:ff:65:03:46:ea:38:92:1a:a3:c8:09: ce:5a:7f:fe:4b:ab:62:c0:88:25:8a:3b:6f:88:02: ae:6c:53:77:71:07:ae:35:24:8b:a6:84:1f:a2:52: d6:0f:1d:bc:fc:2f:d5:1c:3d:a6:47:c1:59:8c:b1: 01:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:72:22:32:77:F4:9E:6E:4D:95:81:F7:53:F5:F9:F8:D9:D3:92:DE X509v3 Authority Key Identifier: keyid:BD:14:CF:1A:9F:08:F6:81:37:FE:81:16:CD:77:6A:DB:DB:2F:EF:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119A40/0BD45622007A11EAB8B31B10C4F9AE02/vRTPGp8I9oE3_oEWzXdq29sv77Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vRTPGp8I9oE3_oEWzXdq29sv77Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119A40/0BD45622007A11EAB8B31B10C4F9AE02/D5DBA6BC63ED11ED851C647DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.129.236.0/23 IPv6: 2403:8b40::/32 Signature Algorithm: sha256WithRSAEncryption 16:91:89:50:5f:7b:65:f4:f9:bb:7b:18:dc:1e:89:a4:ee:d6: 0a:c6:9b:ae:ee:ca:67:6d:26:15:aa:eb:56:84:f7:b9:d1:14: b5:b7:da:f6:0c:e9:95:04:22:92:2a:07:e8:35:da:5c:9b:00: 04:0e:3c:b8:0d:fd:3c:ae:cc:92:c8:5c:81:54:a2:4f:ea:95: e9:f1:3f:2e:9b:7a:96:cf:1b:08:77:77:74:96:b8:28:7b:f5: b9:9a:e6:b4:f5:a5:2e:a7:aa:f1:f7:ec:a9:dd:9c:8f:66:fd: 3b:f9:aa:64:57:11:ab:83:a5:bd:b6:c4:ed:f9:6a:29:94:f0: 52:ba:9c:19:c7:80:e9:05:dd:82:01:1d:7b:cc:2b:ce:19:df: c1:d4:cf:2c:03:fe:3f:c2:b5:fb:28:53:f2:35:0e:2b:5f:26: 13:cb:56:eb:d8:c2:b1:c0:0f:7f:e3:fe:9c:41:96:66:e5:cb: 7c:c7:db:7a:2d:bf:32:05:ef:dc:36:cd:3a:0c:38:76:10:44: 70:c0:3a:9f:7d:e5:04:d0:80:b7:40:08:91:a9:c4:13:b2:78: 6c:83:a1:7c:20:9c:b1:c8:8c:90:ae:ae:87:47:c1:77:cf:e4: 4c:29:bf:d7:b5:83:e0:53:44:4c:54:78:6e:ea:e9:95:37:07: e2:fb:29:e0 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBBEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlBNDAxMTAvBgNVBAUTKEJEMTRDRjFBOUYwOEY2ODEzN0ZFODExNkNENzc2QURC REIyRkVGQjQwHhcNMjUwOTE4MTgyODI1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGNjNGY0OS02MzQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsVra8HFvBUqVYxyW6/xos2vALFG6SUsI4OqIT55AdX5Wv7u5nimFj6nfrqu7 AqIuulJbwuCzPdNLLYdxAOZPZb7I/jZw48wd14oJxQ2nlFHZJt8layDoPa4aeI3x sbEGuA3eu25f4aQWriiLivMKvydjDDe/udvPUIE3oPI2Vdt4wDsVl9agnD8YrXbl XGZpdMW+J6yJDKnva5Iq5hon+eeLCV7+7a5SLyKhKN52NBMwfgLC+K1qSZfA1dvF EsIlrVmQB+QK/2UDRuo4khqjyAnOWn/+S6tiwIglijtviAKubFN3cQeuNSSLpoQf olLWDx28/C/VHD2mR8FZjLEBrwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFPFyIjJ3 9J5uTZWB91P1+fjZ05LeMB8GA1UdIwQYMBaAFL0UzxqfCPaBN/6BFs13atvbL++0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOUE0MC8wQkQ0NTYyMjAw N0ExMUVBQjhCMzFCMTBDNEY5QUUwMi92UlRQR3A4STlvRTNfb0VXelhkcTI5c3Y3 N1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZSVFBHcDhJOW9FM19vRVd6WGRxMjlzdjc3US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTlBNDAvMEJENDU2MjIwMDdBMTFFQUI4QjMxQjEwQzRGOUFFMDIvRDVEQkE2QkM2 M0VEMTFFRDg1MUM2NDdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFngewwDQQCAAIwBwMFACQDi0AwDQYJKoZIhvcNAQELBQAD ggEBABaRiVBfe2X0+bt7GNweiaTu1grGm67uymdtJhWq61aE97nRFLW32vYM6ZUE IpIqB+g12lybAAQOPLgN/TyuzJLIXIFUok/qlenxPy6bepbPGwh3d3SWuCh79bma 5rT1pS6nqvH37KndnI9m/Tv5qmRXEauDpb22xO35aimU8FK6nBnHgOkF3YIBHXvM K84Z38HUzywD/j/CtfsoU/I1DitfJhPLVuvYwrHAD3/j/pxBlmbly3zH23otvzIF 79w2zToMOHYQRHDAOp995QTQgLdACJGpxBOyeGyDoXwgnLHIjJCurodHwXfP5Ewp v9e1g+BTRExUeG7q6ZU3B+L7KeA= -----END CERTIFICATE-----Generated at Mon Oct 20 21:36:32 2025 by rpki-client