$ rpki-client -vvf rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/8BFE9EA6335911EDBC60AC44C4F9AE02.roa File: 8BFE9EA6335911EDBC60AC44C4F9AE02.roa (raw, json) Hash identifier: 8x2SsfQuIT881cDaqWjgKUso9bJl3sYc8ulFMGO/wmw= Subject key identifier: 1F:92:DD:C8:F5:24:14:BB:C9:FE:89:FF:B6:A2:01:43:7A:0C:D2:4D Certificate issuer: /CN=A9122905/serialNumber=0646C52291D5CD4DF4A0FF786784FCF528346324 Certificate serial: 0258 Authority key identifier: 06:46:C5:22:91:D5:CD:4D:F4:A0:FF:78:67:84:FC:F5:28:34:63:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BkbFIpHVzU30oP94Z4T89Sg0YyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/8BFE9EA6335911EDBC60AC44C4F9AE02.roa Signing time: Thu 25 Sep 2025 02:20:52 +0000 ROA not before: Thu 25 Sep 2025 02:20:52 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 146954 IP address blocks: 103.25.220.0/24 maxlen: 24 2001:df1:2a40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.crl rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BkbFIpHVzU30oP94Z4T89Sg0YyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:55:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 600 (0x258) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122905, serialNumber=0646C52291D5CD4DF4A0FF786784FCF528346324 Validity Not Before: Sep 25 02:20:52 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68d4a704-675f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d5:14:33:7f:af:38:8a:48:f3:50:20:af:5e: 11:a8:95:a8:b3:57:17:3f:9c:67:bb:2c:3d:fb:cd: 80:7c:07:a9:a0:26:b1:04:17:d9:fa:55:91:c8:1b: 13:08:4f:32:48:11:9c:c1:27:f7:77:a2:d8:0e:9c: 07:9a:56:ec:78:90:1d:1c:e9:f0:05:6d:f0:8b:6b: 52:1e:42:95:9f:4d:15:96:3d:da:e2:21:dc:fb:3a: 81:80:16:50:f2:89:ca:c2:fb:b1:1c:71:8a:8d:34: 76:5f:72:12:c5:0c:a6:ef:49:19:50:ce:6f:22:f7: 04:6e:fc:eb:66:12:de:1d:28:7f:00:a4:62:00:1f: 70:a0:da:11:03:c4:af:06:ec:d6:69:0f:76:b8:a5: be:4b:6c:d7:54:4d:a2:c3:ea:07:02:11:79:ca:26: 33:21:cc:ba:74:6a:f8:c8:27:c3:73:69:57:71:ad: a6:48:ff:54:fc:cd:11:f5:63:74:c0:f7:72:c4:0b: 5f:a8:9c:09:b3:bc:10:19:df:0c:0a:57:18:00:f2: 1d:0f:44:41:05:da:52:50:46:8b:72:09:b3:13:7c: f7:cc:dc:f9:e7:a6:57:a4:f1:cd:1f:dd:95:a2:86: 80:9e:53:b9:23:b7:39:10:5c:55:40:c2:4a:65:3f: 9f:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:92:DD:C8:F5:24:14:BB:C9:FE:89:FF:B6:A2:01:43:7A:0C:D2:4D X509v3 Authority Key Identifier: keyid:06:46:C5:22:91:D5:CD:4D:F4:A0:FF:78:67:84:FC:F5:28:34:63:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BkbFIpHVzU30oP94Z4T89Sg0YyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/8BFE9EA6335911EDBC60AC44C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.25.220.0/24 IPv6: 2001:df1:2a40::/48 Signature Algorithm: sha256WithRSAEncryption d6:d8:55:b2:de:6f:7a:ce:db:c8:1b:01:ec:7e:ea:c6:55:3f: 76:f5:e0:29:02:67:5e:1d:ef:81:bf:af:27:1d:99:e5:a5:ee: 3b:a1:64:d7:49:b9:18:a5:71:9b:be:e0:32:6e:fe:1d:5e:c3: d6:92:7e:bd:49:8e:40:c5:7c:71:34:81:42:2a:a7:92:0f:b5: 25:aa:38:d0:a8:48:de:09:bb:15:3e:c8:8c:63:16:7d:72:f6: 7c:aa:05:77:0a:b1:11:45:7f:e5:62:8c:f2:35:47:0d:ab:96: e5:ec:27:04:16:de:ea:55:2a:66:5b:ce:b0:33:db:24:34:5b: a2:ed:37:c2:ac:7b:b2:dc:36:5d:cf:3c:b9:e5:8e:b3:86:c1: b8:b1:b1:de:3e:73:d3:3a:c8:27:b3:08:2f:28:1b:fc:b1:78: ad:c2:dd:cb:90:c4:2b:b6:29:94:71:74:63:91:b4:d8:09:19: dc:b3:e8:32:2f:c5:56:42:97:3b:bf:91:79:3a:77:63:b4:8a: 8b:b9:28:aa:f3:ac:e8:d0:d9:fb:b1:e4:2e:65:e0:d5:3a:40: 01:85:15:24:d4:d7:92:56:46:ef:94:43:08:63:d9:65:fc:0d: 5f:24:b8:19:67:7f:94:bf:7c:09:30:1b:e6:7c:f6:75:a7:01: de:93:fd:41 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAlgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjI5MDUxMTAvBgNVBAUTKDA2NDZDNTIyOTFENUNENERGNEEwRkY3ODY3ODRGQ0Y1 MjgzNDYzMjQwHhcNMjUwOTI1MDIyMDUyWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ0YTcwNC02NzVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwdUUM3+vOIpI81Agr14RqJWos1cXP5xnuyw9+82AfAepoCaxBBfZ+lWRyBsT CE8ySBGcwSf3d6LYDpwHmlbseJAdHOnwBW3wi2tSHkKVn00Vlj3a4iHc+zqBgBZQ 8onKwvuxHHGKjTR2X3ISxQym70kZUM5vIvcEbvzrZhLeHSh/AKRiAB9woNoRA8Sv BuzWaQ92uKW+S2zXVE2iw+oHAhF5yiYzIcy6dGr4yCfDc2lXca2mSP9U/M0R9WN0 wPdyxAtfqJwJs7wQGd8MClcYAPIdD0RBBdpSUEaLcgmzE3z3zNz556ZXpPHNH92V ooaAnlO5I7c5EFxVQMJKZT+fpwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFB+S3cj1 JBS7yf6J/7aiAUN6DNJNMB8GA1UdIwQYMBaAFAZGxSKR1c1N9KD/eGeE/PUoNGMk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjkwNS8xMUVCMDg2QTMz NTUxMUVEOTQzRkE1M0JDNEY5QUUwMi9Ca2JGSXBIVnpVMzBvUDk0WjRUODlTZzBZ eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JrYkZJcEhWelUzMG9QOTRaNFQ4OVNnMFl5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjI5MDUvMTFFQjA4NkEzMzU1MTFFRDk0M0ZBNTNCQzRGOUFFMDIvOEJGRTlFQTYz MzU5MTFFREJDNjBBQzQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnGdwwDwQCAAIwCQMHACABDfEqQDANBgkqhkiG9w0BAQsF AAOCAQEA1thVst5ves7byBsB7H7qxlU/dvXgKQJnXh3vgb+vJx2Z5aXuO6Fk10m5 GKVxm77gMm7+HV7D1pJ+vUmOQMV8cTSBQiqnkg+1Jao40KhI3gm7FT7IjGMWfXL2 fKoFdwqxEUV/5WKM8jVHDauW5ewnBBbe6lUqZlvOsDPbJDRbou03wqx7stw2Xc88 ueWOs4bBuLGx3j5z0zrIJ7MILygb/LF4rcLdy5DEK7YplHF0Y5G02AkZ3LPoMi/F VkKXO7+ReTp3Y7SKi7koqvOs6NDZ+7HkLmXg1TpAAYUVJNTXklZG75RDCGPZZfwN XyS4GWd/lL98CTAb5nz2dacB3pP9QQ== -----END CERTIFICATE-----Generated at Mon Oct 20 19:48:23 2025 by rpki-client