$ rpki-client -vvf rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/B12A25C49A0311F09156AE56C4F9AE02.roa File: B12A25C49A0311F09156AE56C4F9AE02.roa (raw, json) Hash identifier: qyAII90csy0Rn8L/6v873TKIy8BdpI8H9BwdfO34meM= Subject key identifier: 2B:5B:0D:7A:27:38:C0:1B:5F:3B:64:E6:83:86:9B:68:FA:97:76:9F Certificate issuer: /CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Certificate serial: 0767 Authority key identifier: ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/B12A25C49A0311F09156AE56C4F9AE02.roa Signing time: Thu 25 Sep 2025 11:35:10 +0000 ROA not before: Thu 25 Sep 2025 11:35:10 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 21859 IP address blocks: 103.231.58.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:56:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1895 (0x767) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139322, serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Validity Not Before: Sep 25 11:35:10 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68d528ed-e032 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:0f:77:b9:20:15:85:2c:ed:25:29:2d:d5:7e: fe:b7:f8:8e:8e:5e:67:71:8f:6a:71:a7:ae:34:68: af:33:07:2c:72:74:67:f3:e4:2d:73:bd:e3:0f:30: 75:ad:9b:c2:ac:a1:c3:cb:ed:77:53:2e:a3:f8:ab: 9a:73:12:3b:51:54:45:05:50:da:cb:ed:d8:a0:ef: 61:4e:b7:40:a4:c4:b3:8b:37:a0:d0:8b:c9:ff:47: e9:1f:ba:ab:1e:60:6b:7a:08:3f:7f:ee:ca:b6:85: 78:36:b4:9a:c7:d8:ae:e0:d6:94:39:37:45:bb:6a: 8e:35:40:d4:ed:8a:b8:f2:f5:19:b1:3f:8d:18:dd: bf:2c:1f:a5:ae:00:fd:03:47:fc:9c:15:fc:a3:02: e5:67:4f:63:9a:46:7d:94:39:a7:2d:0b:ef:10:ed: 79:ed:f4:05:31:5e:73:19:36:21:b2:8a:e2:1b:ec: 3b:27:ce:75:7e:13:f7:45:77:fb:22:c0:24:10:50: 7e:50:97:79:94:ed:e7:57:d1:7a:8b:7f:bc:a9:f4: 3f:c5:7d:6c:eb:e2:59:68:3f:08:de:3e:05:11:45: d5:88:db:2a:b1:0e:15:98:63:1f:59:3c:19:29:7b: eb:b0:4e:2b:82:77:8c:ff:66:4b:31:2c:6b:15:d5: 36:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:5B:0D:7A:27:38:C0:1B:5F:3B:64:E6:83:86:9B:68:FA:97:76:9F X509v3 Authority Key Identifier: keyid:ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/B12A25C49A0311F09156AE56C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.231.58.0/24 Signature Algorithm: sha256WithRSAEncryption 55:0e:28:9b:f6:97:b9:f5:17:3d:46:57:e0:b3:e4:c5:df:ea: 41:9a:77:51:15:85:ec:9f:c0:6c:84:de:83:5a:f7:57:54:2d: 9a:07:21:a4:33:ec:09:3b:f3:de:b7:8b:ab:3a:9e:1f:0d:e2: 08:87:64:66:00:b1:ed:e3:da:a9:52:66:6a:bc:46:8f:83:64: f5:1c:fe:11:96:03:f4:cb:49:a3:6b:63:4f:5e:dd:6f:31:ce: 9c:6b:7e:b1:1e:f0:ed:1e:30:c3:2e:a2:7a:7d:ec:d7:1d:a2: c0:60:a2:8c:ac:52:b0:f1:62:4e:37:3b:5b:14:67:bf:7e:e3: e9:83:86:96:1a:ce:72:27:2c:62:86:8f:fb:e4:4d:8b:da:dd: df:28:f1:3f:b5:af:4e:c9:b4:01:49:c3:76:02:49:42:24:d8: 30:40:03:a5:4d:4b:ac:0b:91:18:39:3f:d1:73:35:8e:76:22: 61:12:99:6a:f9:ca:4a:a4:71:35:2c:63:f7:12:a2:e3:2b:f1: 9e:bb:95:5c:e8:1e:7b:cc:08:59:a2:16:9f:9b:d5:47:07:14: 16:81:14:57:a8:9f:ec:08:a9:21:87:8e:0d:51:0e:f6:2d:5f: 36:c2:59:1e:32:c9:62:8a:92:23:98:10:34:5c:35:40:92:9e: d6:ce:d0:66 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB2cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzMjIxMTAvBgNVBAUTKEVEQzU0N0JEMEU2QzBDMDcwNkExODU4MzM4MzVGNjVF QTNDNzEwMTMwHhcNMjUwOTI1MTEzNTEwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ1MjhlZC1lMDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9w93uSAVhSztJSkt1X7+t/iOjl5ncY9qcaeuNGivMwcscnRn8+Qtc73jDzB1 rZvCrKHDy+13Uy6j+KuacxI7UVRFBVDay+3YoO9hTrdApMSzizeg0IvJ/0fpH7qr HmBregg/f+7KtoV4NrSax9iu4NaUOTdFu2qONUDU7Yq48vUZsT+NGN2/LB+lrgD9 A0f8nBX8owLlZ09jmkZ9lDmnLQvvEO157fQFMV5zGTYhsoriG+w7J851fhP3RXf7 IsAkEFB+UJd5lO3nV9F6i3+8qfQ/xX1s6+JZaD8I3j4FEUXViNsqsQ4VmGMfWTwZ KXvrsE4rgneM/2ZLMSxrFdU2CwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCtbDXon OMAbXztk5oOGm2j6l3afMB8GA1UdIwQYMBaAFO3FR70ObAwHBqGFgzg19l6jxxAT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTMyMi8yQ0IxRUVCQUY2 NTMxMUVCQTFCNEE2MUFDNEY5QUUwMi83Y1ZIdlE1c0RBY0dvWVdET0RYMlhxUEhF Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdjVkh2UTVzREFjR29ZV0RPRFgyWHFQSEVCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzkzMjIvMkNCMUVFQkFGNjUzMTFFQkExQjRBNjFBQzRGOUFFMDIvQjEyQTI1QzQ5 QTAzMTFGMDkxNTZBRTU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn5zowDQYJKoZIhvcNAQELBQADggEBAFUOKJv2l7n1Fz1G V+Cz5MXf6kGad1EVheyfwGyE3oNa91dULZoHIaQz7Ak78963i6s6nh8N4giHZGYA se3j2qlSZmq8Ro+DZPUc/hGWA/TLSaNrY09e3W8xzpxrfrEe8O0eMMMuonp97Ncd osBgooysUrDxYk43O1sUZ79+4+mDhpYaznInLGKGj/vkTYva3d8o8T+1r07JtAFJ w3YCSUIk2DBAA6VNS6wLkRg5P9FzNY52ImESmWr5ykqkcTUsY/cSouMr8Z67lVzo HnvMCFmiFp+b1UcHFBaBFFeon+wIqSGHjg1RDvYtXzbCWR4yyWKKkiOYEDRcNUCS ntbO0GY= -----END CERTIFICATE-----Generated at Sun Oct 19 20:06:22 2025 by rpki-client