$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/F9E12AD89D0011F08C93B545C4F9AE02.roa File: F9E12AD89D0011F08C93B545C4F9AE02.roa (raw, json) Hash identifier: fPmtLcUFfqmnk0wi645J2lDvp8Mqyw6eXt3q3C30cuA= Subject key identifier: 1C:00:3A:9D:CF:99:35:2C:31:73:26:50:9F:B3:13:93:7B:E4:DF:C2 Certificate issuer: /CN=A91C0BDE/serialNumber=A4B50BECD8BBA285587128D5919283DBE1690918 Certificate serial: 095D Authority key identifier: A4:B5:0B:EC:D8:BB:A2:85:58:71:28:D5:91:92:83:DB:E1:69:09:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/F9E12AD89D0011F08C93B545C4F9AE02.roa Signing time: Mon 29 Sep 2025 06:53:17 +0000 ROA not before: Mon 29 Sep 2025 06:53:17 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 38138 IP address blocks: 114.129.12.0/24 maxlen: 24 2405:eec0::/32 maxlen: 32 2405:eec0:1::/48 maxlen: 48 2405:eec0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.crl rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:56:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2397 (0x95d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0BDE, serialNumber=A4B50BECD8BBA285587128D5919283DBE1690918 Validity Not Before: Sep 29 06:53:17 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68da2cdc-47eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:aa:40:2b:8b:48:0c:2e:3b:4c:55:c2:4a:3f: 6a:62:06:4b:35:18:48:9d:af:aa:ca:88:1c:84:0b: 4b:93:38:9b:b1:19:6b:4c:da:61:76:77:ab:fd:41: c6:e8:b2:e2:4f:0d:95:fa:b4:65:31:7e:67:55:34: c3:06:01:70:ed:ec:67:82:d7:17:3d:f9:8f:58:7b: 2d:4e:27:b2:00:f0:55:0a:b4:fb:08:29:71:40:d7: 4c:d4:70:c3:41:cf:cc:96:5e:6f:0b:56:2d:da:c3: 57:2b:ca:9d:79:41:b3:64:80:83:55:09:f0:33:7e: d3:43:5e:c7:da:23:05:94:27:cf:8f:b5:32:f5:eb: 6f:87:c3:9c:ac:db:2a:db:02:ff:c0:a6:20:7b:87: c5:41:bc:ee:18:c0:88:9f:16:1c:d1:1e:6f:45:1a: 17:78:fc:36:8d:4c:62:30:fb:e5:81:99:31:99:f7: 1a:36:8d:1d:50:d8:54:4e:a2:80:df:f0:ad:7d:66: 99:c2:4f:5d:d9:8b:0d:a1:41:1b:d1:34:ef:07:90: 91:9f:91:67:10:d7:de:8e:d2:3b:a2:c8:0d:f0:3c: 8b:96:69:14:96:8b:31:79:57:b2:86:7a:d7:62:df: 73:bc:e7:50:b2:4f:2c:d9:c9:6a:d9:27:1e:8a:59: 1d:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:00:3A:9D:CF:99:35:2C:31:73:26:50:9F:B3:13:93:7B:E4:DF:C2 X509v3 Authority Key Identifier: keyid:A4:B5:0B:EC:D8:BB:A2:85:58:71:28:D5:91:92:83:DB:E1:69:09:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/F9E12AD89D0011F08C93B545C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 114.129.12.0/24 IPv6: 2405:eec0::/32 Signature Algorithm: sha256WithRSAEncryption bb:34:1e:39:7d:1b:96:0d:11:1c:7c:ab:12:70:b7:af:a1:f0: 84:82:35:22:f7:5c:06:20:97:7e:3a:d7:ce:f4:fe:19:d4:dc: 52:e8:93:34:7a:ee:9c:80:e7:2d:4a:de:36:12:1b:68:b3:5a: e0:55:bd:ea:72:a5:e4:f8:7f:7d:06:47:d1:e2:1c:ae:81:a9: cc:01:2e:8a:00:62:b6:ad:64:9e:a3:41:bf:f8:f4:93:ab:86: ad:71:da:a5:18:0b:d1:2f:06:aa:d1:a7:67:f1:16:8e:e7:b4: 18:39:a2:53:9e:e6:0a:8f:a6:64:05:0b:99:52:65:d0:04:7b: 89:b3:6c:cc:29:21:57:61:60:67:7f:03:00:ad:6a:9f:97:3e: f0:c1:ef:84:a4:aa:cc:f6:14:8d:0b:2f:e6:09:80:d7:9f:e2: 47:3f:5f:4e:7f:d8:d0:2b:cc:82:b7:98:8e:40:24:84:4e:48: 94:b2:17:12:1b:5e:dd:12:98:56:d1:02:c6:42:3c:a5:f7:b7: 0a:54:9a:7e:17:21:e2:4b:23:d1:77:00:f7:a5:af:b0:20:9c: d8:30:5f:ce:94:1e:a6:7d:a2:ac:1d:e3:18:a8:7d:dc:c9:9d: f2:34:36:d6:72:bc:89:60:09:b1:80:05:87:4a:c1:21:00:b7: e3:a5:9c:ab -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCV0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBCREUxMTAvBgNVBAUTKEE0QjUwQkVDRDhCQkEyODU1ODcxMjhENTkxOTI4M0RC RTE2OTA5MTgwHhcNMjUwOTI5MDY1MzE3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRhMmNkYy00N2ViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzapAK4tIDC47TFXCSj9qYgZLNRhIna+qyogchAtLkzibsRlrTNphdner/UHG 6LLiTw2V+rRlMX5nVTTDBgFw7exngtcXPfmPWHstTieyAPBVCrT7CClxQNdM1HDD Qc/Mll5vC1Yt2sNXK8qdeUGzZICDVQnwM37TQ17H2iMFlCfPj7Uy9etvh8OcrNsq 2wL/wKYge4fFQbzuGMCInxYc0R5vRRoXePw2jUxiMPvlgZkxmfcaNo0dUNhUTqKA 3/CtfWaZwk9d2YsNoUEb0TTvB5CRn5FnENfejtI7osgN8DyLlmkUlosxeVeyhnrX Yt9zvOdQsk8s2clq2SceilkdiwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFBwAOp3P mTUsMXMmUJ+zE5N75N/CMB8GA1UdIwQYMBaAFKS1C+zYu6KFWHEo1ZGSg9vhaQkY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEJERS83RTVBQzNFMDg5 NzExMUVBOTI0MDJBMEFDNEY5QUUwMi9wTFVMN05pN29vVlljU2pWa1pLRDItRnBD UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BMVUw3Tmk3b29WWWNTalZrWktEMi1GcENSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzBCREUvN0U1QUMzRTA4OTcxMTFFQTkyNDAyQTBBQzRGOUFFMDIvRjlFMTJBRDg5 RDAwMTFGMDhDOTNCNTQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBABygQwwDQQCAAIwBwMFACQF7sAwDQYJKoZIhvcNAQELBQAD ggEBALs0Hjl9G5YNERx8qxJwt6+h8ISCNSL3XAYgl3461870/hnU3FLokzR67pyA 5y1K3jYSG2izWuBVvepypeT4f30GR9HiHK6BqcwBLooAYratZJ6jQb/49JOrhq1x 2qUYC9EvBqrRp2fxFo7ntBg5olOe5gqPpmQFC5lSZdAEe4mzbMwpIVdhYGd/AwCt ap+XPvDB74Skqsz2FI0LL+YJgNef4kc/X05/2NArzIK3mI5AJIROSJSyFxIbXt0S mFbRAsZCPKX3twpUmn4XIeJLI9F3APelr7AgnNgwX86UHqZ9oqwd4xiofdzJnfI0 NtZyvIlgCbGABYdKwSEAt+OlnKs= -----END CERTIFICATE-----Generated at Mon Oct 20 13:00:24 2025 by rpki-client