$ rpki-client -vvf rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/78585C5EB6E011EFBB3E2A0DC4F9AE02.roa File: 78585C5EB6E011EFBB3E2A0DC4F9AE02.roa (raw, json) Hash identifier: WBqt8bWcN7f1UBdrAmgdhcX9VMn7anvz2CtIGPkbbz8= Subject key identifier: 5B:03:3D:AA:65:61:22:89:DB:DD:BC:3C:C3:EB:FC:AE:0C:36:4C:C3 Certificate issuer: /CN=A912B23F/serialNumber=69A993A1882198ACAD5F1CEA35066BAF49E7D5D0 Certificate serial: 0117 Authority key identifier: 69:A9:93:A1:88:21:98:AC:AD:5F:1C:EA:35:06:6B:AF:49:E7:D5:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aamToYghmKytXxzqNQZrr0nn1dA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/78585C5EB6E011EFBB3E2A0DC4F9AE02.roa Signing time: Fri 29 Aug 2025 08:53:12 +0000 ROA not before: Fri 29 Aug 2025 08:53:12 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 24109 IP address blocks: 45.120.173.0/24 maxlen: 24 121.50.3.0/24 maxlen: 24 121.50.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.crl rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aamToYghmKytXxzqNQZrr0nn1dA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:26:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 279 (0x117) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B23F, serialNumber=69A993A1882198ACAD5F1CEA35066BAF49E7D5D0 Validity Not Before: Aug 29 08:53:12 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68b16a78-a38f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:13:e0:04:fe:c6:4c:05:e1:7a:4b:7e:7f:e6: 76:e2:20:6a:4d:9b:fa:ee:c1:d7:46:f1:99:58:c9: 44:07:c0:f3:f3:d8:d3:a2:78:3b:7c:a5:2a:e1:90: d7:29:42:e1:fa:f2:8d:00:c0:14:21:a2:16:50:f8: 64:50:04:26:28:0f:50:d3:0f:67:72:66:45:8d:6b: 9a:10:1a:c4:fb:9a:8a:96:94:84:81:9c:fe:5e:27: 8b:14:7c:1d:5f:0e:11:6c:b6:72:2c:02:7e:af:1a: 37:fd:eb:0c:1e:51:33:8e:83:31:1b:51:a4:ef:20: f4:db:50:22:f6:34:5c:7c:a9:de:78:44:0e:20:21: 60:68:34:16:3c:49:d3:67:2f:f3:4b:ae:8d:51:71: 70:85:ce:99:c9:b0:ee:ea:dc:27:19:84:85:a4:16: 53:8e:0a:01:f0:ca:b1:b9:07:82:37:8a:96:e8:02: 2a:aa:37:bc:d8:ef:46:ea:f0:d3:23:1c:c9:0a:9e: 5f:d7:71:c3:df:d4:0b:00:7d:d4:37:56:7d:e1:fd: 75:68:af:91:b8:91:b9:ef:0a:c2:72:ea:c0:2f:0c: 4c:4b:7a:c3:f4:b0:86:50:15:fa:5f:18:09:7c:52: a2:4c:8b:ec:0e:e7:cb:0b:28:7a:43:51:09:fe:f3: c1:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:03:3D:AA:65:61:22:89:DB:DD:BC:3C:C3:EB:FC:AE:0C:36:4C:C3 X509v3 Authority Key Identifier: keyid:69:A9:93:A1:88:21:98:AC:AD:5F:1C:EA:35:06:6B:AF:49:E7:D5:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/aamToYghmKytXxzqNQZrr0nn1dA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aamToYghmKytXxzqNQZrr0nn1dA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B23F/670C2F2CE29F11EEB682C611C4F9AE02/78585C5EB6E011EFBB3E2A0DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.120.173.0/24 121.50.3.0/24 121.50.5.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:27:14:ad:e0:06:1d:77:73:a4:d5:52:69:41:07:a9:dc:62: 3d:b9:25:90:95:8f:c2:e9:f4:66:5f:d7:51:93:dc:66:9e:ac: 32:8e:77:69:fe:e1:dc:4e:7c:49:22:e0:f5:aa:a4:26:ac:69: c6:48:bb:3d:37:b0:4b:bb:be:39:fd:78:79:9c:6e:af:23:ee: 1a:74:37:bc:e5:14:9c:c7:a3:df:4c:f3:10:12:a5:07:59:1e: ad:a9:4d:d3:d0:b3:5f:cd:6f:05:b4:18:c5:f2:e5:1e:af:a2: bc:43:b1:e4:66:f4:01:04:0c:5b:e1:f9:30:22:8e:e7:cd:75: f8:10:96:12:6d:e0:42:9c:2d:1a:5e:59:b8:22:78:b1:81:4e: f1:2e:bb:67:bc:19:ed:7d:01:ed:d7:ac:61:4a:c4:96:ae:6a: 60:b8:b7:57:67:c6:dd:a0:4f:d9:1b:ab:bd:ac:b1:22:7b:5a: 9b:9a:db:fc:76:d9:c9:17:8d:de:09:c6:a4:c7:04:bf:37:a7: 74:b0:c3:bb:de:e2:dc:d6:d7:66:44:70:f4:3e:87:fc:76:9c: 32:09:f0:f2:c9:62:a9:8f:62:65:ea:92:12:67:0e:d7:d5:de: b5:f0:28:4c:03:e1:17:a4:1f:e4:f3:fa:3f:05:16:11:57:87: 59:1b:97:ef -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICARcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkIyM0YxMTAvBgNVBAUTKDY5QTk5M0ExODgyMTk4QUNBRDVGMUNFQTM1MDY2QkFG NDlFN0Q1RDAwHhcNMjUwODI5MDg1MzEyWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIxNmE3OC1hMzhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6BPgBP7GTAXhekt+f+Z24iBqTZv67sHXRvGZWMlEB8Dz89jTong7fKUq4ZDX KULh+vKNAMAUIaIWUPhkUAQmKA9Q0w9ncmZFjWuaEBrE+5qKlpSEgZz+XieLFHwd Xw4RbLZyLAJ+rxo3/esMHlEzjoMxG1Gk7yD021Ai9jRcfKneeEQOICFgaDQWPEnT Zy/zS66NUXFwhc6ZybDu6twnGYSFpBZTjgoB8MqxuQeCN4qW6AIqqje82O9G6vDT IxzJCp5f13HD39QLAH3UN1Z94f11aK+RuJG57wrCcurALwxMS3rD9LCGUBX6XxgJ fFKiTIvsDufLCyh6Q1EJ/vPBEQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFFsDPapl YSKJ2928PMPr/K4MNkzDMB8GA1UdIwQYMBaAFGmpk6GIIZisrV8c6jUGa69J59XQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjIzRi82NzBDMkYyQ0Uy OUYxMUVFQjY4MkM2MTFDNEY5QUUwMi9hYW1Ub1lnaG1LeXRYeHpxTlFacnIwbm4x ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FhbVRvWWdobUt5dFh4enFOUVpycjBubjFkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkIyM0YvNjcwQzJGMkNFMjlGMTFFRUI2ODJDNjExQzRGOUFFMDIvNzg1ODVDNUVC NkUwMTFFRkJCM0UyQTBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAAteK0DBAB5MgMDBAB5MgUwDQYJKoZIhvcNAQELBQADggEB AJ4nFK3gBh13c6TVUmlBB6ncYj25JZCVj8Lp9GZf11GT3GaerDKOd2n+4dxOfEki 4PWqpCasacZIuz03sEu7vjn9eHmcbq8j7hp0N7zlFJzHo99M8xASpQdZHq2pTdPQ s1/NbwW0GMXy5R6vorxDseRm9AEEDFvh+TAijufNdfgQlhJt4EKcLRpeWbgieLGB TvEuu2e8Ge19Ae3XrGFKxJauamC4t1dnxt2gT9kbq72ssSJ7Wpua2/x22ckXjd4J xqTHBL83p3Sww7ve4tzW12ZEcPQ+h/x2nDIJ8PLJYqmPYmXqkhJnDtfV3rXwKEwD 4RekH+Tz+j8FFhFXh1kbl+8= -----END CERTIFICATE-----Generated at Tue Oct 21 00:50:43 2025 by rpki-client