$ rpki-client -vvf rpki.apnic.net/member_repository/A9123D19/40ED8020429F11E486B44D72C4F9AE02/73E0191A967811EA92E45A27C4F9AE02.roa File: 73E0191A967811EA92E45A27C4F9AE02.roa (raw, json) Hash identifier: tpW2hEp1WUinGORU3b4Fa8fzBLaeCCXQIdHVixzwtfg= Subject key identifier: C4:04:01:46:48:94:C9:D2:C3:A6:2C:FE:10:75:73:67:3D:5B:A4:35 Certificate issuer: /CN=A9123D19/serialNumber=BE9854B9849936643E0D4015A3B37B5E4484AD5A Certificate serial: 2A0E Authority key identifier: BE:98:54:B9:84:99:36:64:3E:0D:40:15:A3:B3:7B:5E:44:84:AD:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vphUuYSZNmQ-DUAVo7N7XkSErVo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123D19/40ED8020429F11E486B44D72C4F9AE02/73E0191A967811EA92E45A27C4F9AE02.roa Signing time: Wed 08 Oct 2025 15:42:52 +0000 ROA not before: Wed 08 Oct 2025 15:42:52 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 56304 IP address blocks: 103.39.44.0/22 maxlen: 24 202.36.170.0/24 maxlen: 24 202.49.187.0/24 maxlen: 24 2401:9480::/32 maxlen: 32 2401:9480:300::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123D19/40ED8020429F11E486B44D72C4F9AE02/vphUuYSZNmQ-DUAVo7N7XkSErVo.crl rsync://rpki.apnic.net/member_repository/A9123D19/40ED8020429F11E486B44D72C4F9AE02/vphUuYSZNmQ-DUAVo7N7XkSErVo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vphUuYSZNmQ-DUAVo7N7XkSErVo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 15:46:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10766 (0x2a0e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123D19, serialNumber=BE9854B9849936643E0D4015A3B37B5E4484AD5A Validity Not Before: Oct 8 15:42:52 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68e6867b-da3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:7c:09:8b:c7:a6:6d:1e:f8:cb:ed:ee:8a:2f: 51:0d:ef:84:0d:99:5d:f9:7b:43:38:91:86:e9:d8: a8:dd:1c:54:26:11:1b:ef:09:1d:79:f5:bd:f1:c6: b5:8c:fb:b5:37:23:d8:a0:5d:ac:f6:7b:40:51:60: f1:7b:b2:dc:ef:87:ef:64:19:29:f2:53:8e:6d:84: 5e:38:92:2e:7b:8d:19:e9:44:50:3f:27:d5:78:a6: 4a:35:b6:4c:ca:82:2f:50:f7:13:45:32:85:c6:a7: 83:8d:72:3b:6e:45:55:ff:b1:1c:fa:15:6f:84:0d: 5a:76:00:e3:42:72:15:d1:ee:23:56:ca:32:92:ca: 84:53:04:65:58:02:25:a9:2a:24:c1:f4:2a:ae:22: fb:9a:00:42:fc:44:f0:7d:9b:95:65:52:26:1a:5a: b8:a6:29:81:1b:a1:5a:0d:5e:c8:7c:97:78:b1:a2: cf:a5:74:3f:2d:2e:09:87:b0:d4:76:f2:e5:fd:55: 50:94:9b:e9:b8:ff:6c:a5:d3:89:f0:fc:01:b0:6f: 07:a6:1b:65:c7:46:b8:e4:9a:30:53:ad:23:2f:c2: 84:27:67:62:ed:25:de:76:0b:bd:2b:0b:53:67:21: bd:7d:88:03:fd:7f:52:3e:0c:47:89:ec:e3:c8:ce: d9:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:04:01:46:48:94:C9:D2:C3:A6:2C:FE:10:75:73:67:3D:5B:A4:35 X509v3 Authority Key Identifier: keyid:BE:98:54:B9:84:99:36:64:3E:0D:40:15:A3:B3:7B:5E:44:84:AD:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123D19/40ED8020429F11E486B44D72C4F9AE02/vphUuYSZNmQ-DUAVo7N7XkSErVo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vphUuYSZNmQ-DUAVo7N7XkSErVo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123D19/40ED8020429F11E486B44D72C4F9AE02/73E0191A967811EA92E45A27C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.39.44.0/22 202.36.170.0/24 202.49.187.0/24 IPv6: 2401:9480::/32 Signature Algorithm: sha256WithRSAEncryption 65:14:30:62:1b:0b:a7:01:97:dd:be:1b:35:0d:e8:fe:ea:61: 69:45:3a:13:e8:30:64:10:62:28:61:b7:02:7a:bd:1f:f1:cb: 9e:14:4c:92:12:c2:ce:d8:58:68:26:ae:e7:e5:4e:e9:40:87: db:31:78:0e:cc:22:f7:5c:2b:2b:f3:4a:68:db:40:a7:8a:8d: ab:86:57:3b:95:56:13:45:44:fe:42:89:67:59:b4:c3:cb:75: 7c:bf:60:4b:87:61:ff:01:25:5d:47:b2:c6:d7:12:18:a8:1e: 29:1e:b7:74:f5:62:d3:ed:59:b5:87:59:29:66:a2:d4:86:e2: 18:b2:d3:5e:79:b3:bf:a1:7e:6e:c3:5e:dc:af:0b:43:bf:29: 96:1c:d9:d1:c1:22:b1:b9:6b:64:ed:75:5e:38:f5:15:06:b5: 0f:2f:05:3a:e5:ef:a3:96:d2:08:7c:e9:5d:ce:59:6b:98:0a: fc:3c:1a:b4:04:37:b2:6c:11:4a:ee:f4:6c:fb:98:48:91:23: a6:b6:0a:03:5a:a6:30:f8:66:f3:b2:3d:1b:85:f3:52:85:33: 49:c6:12:4f:74:fb:1d:6e:dc:f7:84:98:b0:72:f8:6c:2c:66: 67:40:48:c5:37:8e:d3:11:3e:3d:25:81:c3:04:82:d5:a0:12: be:a9:a9:ae -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICKg4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNEMTkxMTAvBgNVBAUTKEJFOTg1NEI5ODQ5OTM2NjQzRTBENDAxNUEzQjM3QjVF NDQ4NEFENUEwHhcNMjUxMDA4MTU0MjUyWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU2ODY3Yi1kYTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA23wJi8embR74y+3uii9RDe+EDZld+XtDOJGG6dio3RxUJhEb7wkdefW98ca1 jPu1NyPYoF2s9ntAUWDxe7Lc74fvZBkp8lOObYReOJIue40Z6URQPyfVeKZKNbZM yoIvUPcTRTKFxqeDjXI7bkVV/7Ec+hVvhA1adgDjQnIV0e4jVsoyksqEUwRlWAIl qSokwfQqriL7mgBC/ETwfZuVZVImGlq4pimBG6FaDV7IfJd4saLPpXQ/LS4Jh7DU dvLl/VVQlJvpuP9spdOJ8PwBsG8Hphtlx0a45JowU60jL8KEJ2di7SXedgu9KwtT ZyG9fYgD/X9SPgxHiezjyM7Z/wIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFMQEAUZI lMnSw6Ys/hB1c2c9W6Q1MB8GA1UdIwQYMBaAFL6YVLmEmTZkPg1AFaOze15EhK1a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0QxOS80MEVEODAyMDQy OUYxMUU0ODZCNDRENzJDNEY5QUUwMi92cGhVdVlTWk5tUS1EVUFWbzdON1hrU0Vy Vm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZwaFV1WVNaTm1RLURVQVZvN043WGtTRXJWby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjNEMTkvNDBFRDgwMjA0MjlGMTFFNDg2QjQ0RDcyQzRGOUFFMDIvNzNFMDE5MUE5 Njc4MTFFQTkyRTQ1QTI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAJnJywDBADKJKoDBADKMbswDQQCAAIwBwMFACQBlIAwDQYJ KoZIhvcNAQELBQADggEBAGUUMGIbC6cBl92+GzUN6P7qYWlFOhPoMGQQYihhtwJ6 vR/xy54UTJISws7YWGgmruflTulAh9sxeA7MIvdcKyvzSmjbQKeKjauGVzuVVhNF RP5CiWdZtMPLdXy/YEuHYf8BJV1HssbXEhioHiket3T1YtPtWbWHWSlmotSG4hiy 0155s7+hfm7DXtyvC0O/KZYc2dHBIrG5a2TtdV449RUGtQ8vBTrl76OW0gh86V3O WWuYCvw8GrQEN7JsEUru9Gz7mEiRI6a2CgNapjD4ZvOyPRuF81KFM0nGEk90+x1u 3PeEmLBy+GwsZmdASMU3jtMRPj0lgcMEgtWgEr6pqa4= -----END CERTIFICATE-----Generated at Tue Oct 21 00:52:18 2025 by rpki-client