$ rpki-client -vvf rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/AD46C158EDA911EA977E1C36C4F9AE02.roa File: AD46C158EDA911EA977E1C36C4F9AE02.roa (raw, json) Hash identifier: AyCP93l17PVAvsWp7E1MG1o/2qev6JZiBs4CqJLmMrU= Subject key identifier: 95:2C:FA:FA:39:6C:D8:5C:62:81:14:74:FF:55:5E:BD:E1:92:E1:DE Certificate issuer: /CN=A9120119/serialNumber=9A44030403D50B71B998463B3AE56843B92595E1 Certificate serial: 0814 Authority key identifier: 9A:44:03:04:03:D5:0B:71:B9:98:46:3B:3A:E5:68:43:B9:25:95:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mkQDBAPVC3G5mEY7OuVoQ7klleE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/AD46C158EDA911EA977E1C36C4F9AE02.roa Signing time: Sat 02 Aug 2025 17:27:09 +0000 ROA not before: Sat 02 Aug 2025 17:27:09 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 135553 IP address blocks: 103.65.188.0/22 maxlen: 24 202.3.75.0/24 maxlen: 24 203.20.63.0/24 maxlen: 24 203.28.143.0/24 maxlen: 24 203.34.154.0/24 maxlen: 24 2405:d680::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/mkQDBAPVC3G5mEY7OuVoQ7klleE.crl rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/mkQDBAPVC3G5mEY7OuVoQ7klleE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mkQDBAPVC3G5mEY7OuVoQ7klleE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 17:27:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2068 (0x814) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120119, serialNumber=9A44030403D50B71B998463B3AE56843B92595E1 Validity Not Before: Aug 2 17:27:09 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=688e4a6d-93bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e5:89:08:08:ab:27:23:96:e4:d7:70:b4:be: 2b:46:42:f4:80:56:85:de:31:e5:72:d7:64:00:cc: 74:cc:09:3b:2a:81:31:f9:67:41:a1:63:eb:71:39: 22:05:d2:c2:54:b7:2a:9a:10:90:92:68:a0:5b:3c: 8b:00:49:00:e0:d3:ec:3b:19:f7:c5:85:fc:b6:dd: ff:80:dc:e5:b9:b5:28:55:29:6b:43:2e:87:18:a0: 8b:3c:f3:5b:eb:f3:d0:82:ed:82:29:fe:35:3b:2e: f1:ed:6a:80:e8:b9:1c:13:7f:25:8d:e1:05:a3:d8: 12:83:6c:ec:db:1e:7c:3a:f4:0e:f0:e5:d6:97:5a: 76:be:50:0d:4d:35:a3:b2:a8:4a:cd:9e:8c:e2:9c: 2f:25:7e:23:b6:5c:43:73:06:a4:ec:89:13:95:6e: db:34:4f:05:14:6e:52:bf:db:e1:59:2b:fe:4a:65: 8b:51:ec:a4:73:12:e1:35:37:82:c8:14:70:e6:e7: a9:c3:1b:0d:a0:98:f4:c6:86:5a:06:3d:96:33:5e: 50:14:5e:ad:11:d8:4c:a6:06:12:69:9a:47:cf:49: 38:2c:97:4c:15:04:b2:53:43:29:91:c3:e1:42:34: 3e:b6:08:42:28:c1:5e:df:4d:cb:50:93:94:8d:93: 0c:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:2C:FA:FA:39:6C:D8:5C:62:81:14:74:FF:55:5E:BD:E1:92:E1:DE X509v3 Authority Key Identifier: keyid:9A:44:03:04:03:D5:0B:71:B9:98:46:3B:3A:E5:68:43:B9:25:95:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/mkQDBAPVC3G5mEY7OuVoQ7klleE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mkQDBAPVC3G5mEY7OuVoQ7klleE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/AD46C158EDA911EA977E1C36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.65.188.0/22 202.3.75.0/24 203.20.63.0/24 203.28.143.0/24 203.34.154.0/24 IPv6: 2405:d680::/32 Signature Algorithm: sha256WithRSAEncryption 80:d3:0c:20:4e:25:80:6c:44:78:6d:50:f9:ce:95:bf:13:91: 15:92:2e:50:09:97:2b:05:d2:2e:78:3e:14:56:46:13:65:62: 50:73:62:3d:15:a7:b7:34:38:9b:6c:12:af:55:6c:af:b7:c9: 7f:a5:c5:4a:60:0a:23:2a:bd:4a:ba:bf:f2:de:bd:a1:54:a4: 9a:79:ca:fb:de:53:a7:67:92:f8:ac:e1:54:6e:b1:f1:1a:70: a4:f0:c9:2b:48:7d:3c:4c:f2:fb:8b:03:8d:45:aa:43:46:b2: b7:6d:55:58:d9:ce:56:38:71:d3:a5:6a:d2:a6:99:d4:54:b6: be:43:f1:94:0c:1b:60:f3:1f:09:e1:f0:a9:17:c2:aa:5d:8c: 37:6b:5d:3c:08:23:d8:42:eb:48:a9:fa:41:96:90:8d:a0:da: d8:c1:d5:13:5e:f2:4e:45:93:cf:5f:9b:06:cf:be:5e:2a:e6: f3:fa:bc:e4:00:6c:a8:dd:9b:65:11:0b:e3:d1:76:10:cd:6c: db:fc:bf:7a:1a:9b:77:57:5b:68:1a:1b:4c:4b:dd:0e:36:d9: 06:54:fb:fb:8c:7c:b7:05:19:c5:e6:1c:99:01:fd:81:54:fb: 23:1c:3b:22:ba:2e:57:53:10:02:bd:c0:69:bf:db:45:99:d4: e6:09:8c:52 -----BEGIN CERTIFICATE----- MIIFmDCCBICgAwIBAgICCBQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjAxMTkxMTAvBgNVBAUTKDlBNDQwMzA0MDNENTBCNzFCOTk4NDYzQjNBRTU2ODQz QjkyNTk1RTEwHhcNMjUwODAyMTcyNzA5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhlNGE2ZC05M2JiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv+WJCAirJyOW5NdwtL4rRkL0gFaF3jHlctdkAMx0zAk7KoEx+WdBoWPrcTki BdLCVLcqmhCQkmigWzyLAEkA4NPsOxn3xYX8tt3/gNzlubUoVSlrQy6HGKCLPPNb 6/PQgu2CKf41Oy7x7WqA6LkcE38ljeEFo9gSg2zs2x58OvQO8OXWl1p2vlANTTWj sqhKzZ6M4pwvJX4jtlxDcwak7IkTlW7bNE8FFG5Sv9vhWSv+SmWLUeykcxLhNTeC yBRw5uepwxsNoJj0xoZaBj2WM15QFF6tEdhMpgYSaZpHz0k4LJdMFQSyU0MpkcPh QjQ+tghCKMFe303LUJOUjZMM9wIDAQABo4ICvDCCArgwHQYDVR0OBBYEFJUs+vo5 bNhcYoEUdP9VXr3hkuHeMB8GA1UdIwQYMBaAFJpEAwQD1QtxuZhGOzrlaEO5JZXh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDExOS9FRUI3MUJFMjEz RjMxMUU5ODgyRjlCNjdDNEY5QUUwMi9ta1FEQkFQVkMzRzVtRVk3T3VWb1E3a2xs ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21rUURCQVBWQzNHNW1FWTdPdVZvUTdrbGxlRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjAxMTkvRUVCNzFCRTIxM0YzMTFFOTg4MkY5QjY3QzRGOUFFMDIvQUQ0NkMxNThF REE5MTFFQTk3N0UxQzM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRgYIKwYBBQUHAQcBAf8E NzA1MCQEAgABMB4DBAJnQbwDBADKA0sDBADLFD8DBADLHI8DBADLIpowDQQCAAIw BwMFACQF1oAwDQYJKoZIhvcNAQELBQADggEBAIDTDCBOJYBsRHhtUPnOlb8TkRWS LlAJlysF0i54PhRWRhNlYlBzYj0Vp7c0OJtsEq9VbK+3yX+lxUpgCiMqvUq6v/Le vaFUpJp5yvveU6dnkvis4VRusfEacKTwyStIfTxM8vuLA41FqkNGsrdtVVjZzlY4 cdOlatKmmdRUtr5D8ZQMG2DzHwnh8KkXwqpdjDdrXTwII9hC60ip+kGWkI2g2tjB 1RNe8k5Fk89fmwbPvl4q5vP6vOQAbKjdm2URC+PRdhDNbNv8v3oam3dXW2gaG0xL 3Q422QZU+/uMfLcFGcXmHJkB/YFU+yMcOyK6LldTEAK9wGm/20WZ1OYJjFI= -----END CERTIFICATE-----Generated at Mon Oct 20 19:25:56 2025 by rpki-client