$ rpki-client -vvf rpki.apnic.net/member_repository/A9125590/FC44B38A1D7011E28951A9B508B02CD2/26E02598562F11EB94FD0463C4F9AE02.roa File: 26E02598562F11EB94FD0463C4F9AE02.roa (raw, json) Hash identifier: yi83MC4bGsYsYYIO3cLCV7chmo/rO1rwAJjntq4bNoU= Subject key identifier: 53:1F:8E:0A:B5:89:AB:7A:C2:07:C6:4E:3C:15:E0:C6:C9:69:7C:23 Certificate issuer: /CN=A9125590/serialNumber=C40EB7816451875486DA643F8F9361B77DFB21A3 Certificate serial: 34FF Authority key identifier: C4:0E:B7:81:64:51:87:54:86:DA:64:3F:8F:93:61:B7:7D:FB:21:A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xA63gWRRh1SG2mQ_j5Nht337IaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125590/FC44B38A1D7011E28951A9B508B02CD2/26E02598562F11EB94FD0463C4F9AE02.roa Signing time: Wed 08 Oct 2025 14:40:11 +0000 ROA not before: Wed 08 Oct 2025 14:40:11 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 55789 IP address blocks: 103.9.116.0/24 maxlen: 24 103.9.117.0/24 maxlen: 24 103.9.118.0/24 maxlen: 24 103.9.119.0/24 maxlen: 24 202.59.250.0/23 maxlen: 23 202.59.250.0/24 maxlen: 24 202.59.251.0/24 maxlen: 24 2001:df4:8a00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125590/FC44B38A1D7011E28951A9B508B02CD2/xA63gWRRh1SG2mQ_j5Nht337IaM.crl rsync://rpki.apnic.net/member_repository/A9125590/FC44B38A1D7011E28951A9B508B02CD2/xA63gWRRh1SG2mQ_j5Nht337IaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xA63gWRRh1SG2mQ_j5Nht337IaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 14:20:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13567 (0x34ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125590, serialNumber=C40EB7816451875486DA643F8F9361B77DFB21A3 Validity Not Before: Oct 8 14:40:11 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68e677ca-aed6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d5:4e:d2:66:ac:5f:67:20:84:83:25:5a:ab: b1:90:14:c0:11:f7:a5:31:a0:0f:17:1f:89:cb:1e: 36:33:7b:3f:7b:3b:f0:42:b5:24:85:dd:3d:fe:42: 62:82:e8:fc:65:8d:01:1f:23:79:c4:31:af:fe:ce: 17:29:28:22:ef:e3:99:57:06:14:7d:5d:c5:9e:22: 4f:70:3b:4d:30:9a:62:a4:ae:f7:d3:ec:59:fe:1a: e5:14:6b:38:c5:6e:f7:02:36:fd:8c:d6:4a:fd:2b: 76:b3:8c:87:c3:12:54:83:2e:3d:b1:f8:66:27:91: d5:8e:ec:df:e2:b3:a1:5b:b6:6a:58:58:d5:4a:db: c4:26:a0:dd:3f:8a:4d:98:68:94:8d:0d:92:4f:8f: b4:bb:87:41:9d:8a:15:10:c8:60:24:57:98:0e:4e: 0a:bd:c9:87:c1:a9:9b:cd:54:b8:ac:87:10:55:48: 77:59:23:c0:dc:7b:29:17:0b:7b:b5:93:9b:66:ed: 5f:5f:b0:f5:de:bb:84:33:12:91:02:da:d3:c7:28: b0:e1:c5:1d:b9:12:a9:68:8a:28:9b:50:ea:67:4b: 43:9b:45:72:58:1b:95:b9:6e:5b:82:09:e1:41:29: 3f:f4:f7:38:63:71:a8:49:2f:d2:5b:57:46:b0:c8: ba:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:1F:8E:0A:B5:89:AB:7A:C2:07:C6:4E:3C:15:E0:C6:C9:69:7C:23 X509v3 Authority Key Identifier: keyid:C4:0E:B7:81:64:51:87:54:86:DA:64:3F:8F:93:61:B7:7D:FB:21:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125590/FC44B38A1D7011E28951A9B508B02CD2/xA63gWRRh1SG2mQ_j5Nht337IaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xA63gWRRh1SG2mQ_j5Nht337IaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125590/FC44B38A1D7011E28951A9B508B02CD2/26E02598562F11EB94FD0463C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.9.116.0/22 202.59.250.0/23 IPv6: 2001:df4:8a00::/48 Signature Algorithm: sha256WithRSAEncryption 97:0b:6a:d3:88:08:f9:85:6b:fc:30:b3:e3:1e:45:ff:38:ad: af:0c:ab:ce:42:7f:69:f7:d7:f8:f8:39:d3:2d:8e:29:a3:0b: 3f:05:e9:ba:80:05:02:3b:2f:f4:c5:43:f2:67:2c:f6:59:90: c2:4f:26:1a:83:b3:ac:b8:e4:10:f0:f1:1f:b2:62:6f:e5:81: 82:df:7e:3b:6c:c1:d5:c1:33:52:4d:79:16:43:17:66:27:3f: 22:c6:d6:b8:43:3b:1e:2e:53:e9:dd:cf:3d:b8:d5:e7:24:a7: 68:33:f9:7f:91:9b:85:e8:20:25:8c:0a:dd:cf:cb:25:12:95: f2:72:a9:06:e3:7f:de:0f:5f:65:4b:54:1d:4d:ab:45:21:3e: 88:83:e9:fe:8c:44:c9:f1:8a:85:74:e3:05:a8:8c:87:18:d9: cd:e5:bb:57:12:40:2d:57:fa:0e:ad:21:d7:01:a1:54:93:8f: ff:24:28:c8:a8:a2:95:83:b3:07:fb:f0:b9:b9:1c:50:8a:fb: e1:60:57:55:5c:5f:b7:16:6f:49:59:bf:3d:82:14:43:a5:b4: 73:87:31:35:35:50:92:83:7b:68:87:d0:6e:77:fd:bb:d3:90: 88:84:04:13:60:16:79:c7:05:84:18:4b:75:1f:e3:73:58:6a: 91:18:bc:76 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICNP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU1OTAxMTAvBgNVBAUTKEM0MEVCNzgxNjQ1MTg3NTQ4NkRBNjQzRjhGOTM2MUI3 N0RGQjIxQTMwHhcNMjUxMDA4MTQ0MDExWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU2NzdjYS1hZWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwtVO0masX2cghIMlWquxkBTAEfelMaAPFx+Jyx42M3s/ezvwQrUkhd09/kJi guj8ZY0BHyN5xDGv/s4XKSgi7+OZVwYUfV3FniJPcDtNMJpipK730+xZ/hrlFGs4 xW73Ajb9jNZK/St2s4yHwxJUgy49sfhmJ5HVjuzf4rOhW7ZqWFjVStvEJqDdP4pN mGiUjQ2ST4+0u4dBnYoVEMhgJFeYDk4KvcmHwambzVS4rIcQVUh3WSPA3HspFwt7 tZObZu1fX7D13ruEMxKRAtrTxyiw4cUduRKpaIoom1DqZ0tDm0VyWBuVuW5bggnh QSk/9Pc4Y3GoSS/SW1dGsMi6VQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFFMfjgq1 iat6wgfGTjwV4MbJaXwjMB8GA1UdIwQYMBaAFMQOt4FkUYdUhtpkP4+TYbd9+yGj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTU5MC9GQzQ0QjM4QTFE NzAxMUUyODk1MUE5QjUwOEIwMkNEMi94QTYzZ1dSUmgxU0cybVFfajVOaHQzMzdJ YU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hBNjNnV1JSaDFTRzJtUV9qNU5odDMzN0lhTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjU1OTAvRkM0NEIzOEExRDcwMTFFMjg5NTFBOUI1MDhCMDJDRDIvMjZFMDI1OTg1 NjJGMTFFQjk0RkQwNDYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAJnCXQDBAHKO/owDwQCAAIwCQMHACABDfSKADANBgkqhkiG 9w0BAQsFAAOCAQEAlwtq04gI+YVr/DCz4x5F/zitrwyrzkJ/affX+Pg50y2OKaML PwXpuoAFAjsv9MVD8mcs9lmQwk8mGoOzrLjkEPDxH7Jib+WBgt9+O2zB1cEzUk15 FkMXZic/IsbWuEM7Hi5T6d3PPbjV5ySnaDP5f5GbheggJYwK3c/LJRKV8nKpBuN/ 3g9fZUtUHU2rRSE+iIPp/oxEyfGKhXTjBaiMhxjZzeW7VxJALVf6Dq0h1wGhVJOP /yQoyKiilYOzB/vwubkcUIr74WBXVVxftxZvSVm/PYIUQ6W0c4cxNTVQkoN7aIfQ bnf9u9OQiIQEE2AWeccFhBhLdR/jc1hqkRi8dg== -----END CERTIFICATE-----Generated at Mon Oct 20 19:25:36 2025 by rpki-client