$ rpki-client -vvf rpki.apnic.net/member_repository/A912296A/C59659B0936B11EE9E4C3885C4F9AE02/4A426668936C11EEBE0C2786C4F9AE02.roa File: 4A426668936C11EEBE0C2786C4F9AE02.roa (raw, json) Hash identifier: qaJjnM/nFYTPN1/4OCWjrzD56e+pIDcvzqv8I7CMWas= Subject key identifier: C4:21:44:5E:26:D8:C8:6A:7B:5D:64:C4:ED:5F:D1:7E:BA:4E:E3:48 Certificate issuer: /CN=A912296A/serialNumber=F193604695146EBE1DBF73FDE0EB6621FD9FB8F9 Certificate serial: 0167 Authority key identifier: F1:93:60:46:95:14:6E:BE:1D:BF:73:FD:E0:EB:66:21:FD:9F:B8:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ZNgRpUUbr4dv3P94OtmIf2fuPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912296A/C59659B0936B11EE9E4C3885C4F9AE02/4A426668936C11EEBE0C2786C4F9AE02.roa Signing time: Mon 27 Oct 2025 06:18:00 +0000 ROA not before: Mon 27 Oct 2025 06:18:00 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 62856 IP address blocks: 103.158.122.0/23 maxlen: 23 103.158.122.0/24 maxlen: 24 103.158.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912296A/C59659B0936B11EE9E4C3885C4F9AE02/8ZNgRpUUbr4dv3P94OtmIf2fuPk.crl rsync://rpki.apnic.net/member_repository/A912296A/C59659B0936B11EE9E4C3885C4F9AE02/8ZNgRpUUbr4dv3P94OtmIf2fuPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ZNgRpUUbr4dv3P94OtmIf2fuPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:58:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 359 (0x167) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912296A, serialNumber=F193604695146EBE1DBF73FDE0EB6621FD9FB8F9 Validity Not Before: Oct 27 06:18:00 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68ff0e98-6f61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:92:3a:48:8e:9e:95:b7:bb:e0:ba:b0:4a:e0: 78:e5:6a:dc:14:7c:e3:5f:e8:bf:0f:d5:1e:b4:8d: 3b:4a:da:ab:83:cb:1f:c6:8c:7e:96:ac:03:46:8c: 8a:2a:30:32:d5:c4:8b:c4:c3:6f:5e:b7:e3:90:f9: 81:19:1f:43:6f:80:88:4c:cb:be:e6:e1:bf:a0:28: af:5f:fb:0e:60:30:82:80:c1:f7:1a:11:7d:49:2c: c6:da:8d:d2:28:bd:80:c3:78:77:58:82:b5:f7:27: 7e:5e:63:67:f2:2e:94:13:f7:a7:e3:a1:7c:8a:58: 90:7f:ae:e7:1e:f4:45:8d:07:16:ca:85:ee:22:d4: 84:fb:3d:28:8c:a5:ca:dd:0d:b9:68:ca:aa:d6:88: dd:ea:90:ea:aa:2a:18:13:e4:13:a3:cb:eb:1f:ae: a2:0a:5c:0b:03:9c:a0:87:51:7a:3d:96:7e:7f:a9: 29:0b:ec:16:42:bc:9a:d4:1d:8f:9a:e6:f2:f3:02: d3:d6:a1:42:eb:d9:6d:98:ea:05:40:3c:9f:86:a2: 74:d9:b9:87:34:d7:06:ea:0d:da:c2:8e:80:2d:9f: bb:54:76:3c:37:d8:5a:ff:16:09:49:06:66:89:52: 09:8d:42:40:2e:e1:b2:72:70:91:a2:b8:a6:10:48: c6:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:21:44:5E:26:D8:C8:6A:7B:5D:64:C4:ED:5F:D1:7E:BA:4E:E3:48 X509v3 Authority Key Identifier: keyid:F1:93:60:46:95:14:6E:BE:1D:BF:73:FD:E0:EB:66:21:FD:9F:B8:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912296A/C59659B0936B11EE9E4C3885C4F9AE02/8ZNgRpUUbr4dv3P94OtmIf2fuPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ZNgRpUUbr4dv3P94OtmIf2fuPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912296A/C59659B0936B11EE9E4C3885C4F9AE02/4A426668936C11EEBE0C2786C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.158.122.0/23 Signature Algorithm: sha256WithRSAEncryption a3:8f:25:29:e6:86:53:7c:2a:5b:ca:64:c9:c9:10:d3:e9:42: a2:9f:96:84:22:70:8e:4e:e5:b0:dc:d0:55:0f:13:3f:72:b6: d8:1f:72:e9:fd:66:ba:8b:5c:7d:6b:0d:25:d7:83:ae:af:15: 3d:41:a2:29:6d:48:69:37:e9:ee:45:d8:ff:65:87:c0:36:17: 5d:05:d2:91:c9:b3:f9:7a:e7:df:9f:c7:6c:cb:c6:6a:58:a0: e3:43:80:df:97:df:87:4d:19:56:50:34:36:6d:86:99:0e:f7: 62:11:b9:81:60:cb:2a:a5:85:0a:76:2c:b0:f1:c4:26:ac:44: ef:ca:33:50:4b:40:b3:72:2a:0e:fc:5d:b5:94:1c:92:ba:2f: b6:86:bd:4f:bd:13:cc:57:d3:fb:05:87:79:77:63:fd:c9:b8: 5b:24:86:cc:8f:39:cf:4f:b6:29:4f:52:5a:cd:89:a5:1a:eb: a1:da:bf:b4:4a:ba:0a:60:aa:18:b8:58:bc:96:e5:a9:79:f8: 09:a8:5d:23:3a:20:0a:cb:2c:d9:f6:59:b0:3a:48:ab:c4:fd: 46:48:b2:d2:42:51:b8:34:b7:d3:c2:17:65:ca:1c:22:f0:27: f0:d8:fd:56:df:2d:25:11:37:5d:0a:04:7c:c5:7d:bb:47:c6: b9:37:f5:01 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjI5NkExMTAvBgNVBAUTKEYxOTM2MDQ2OTUxNDZFQkUxREJGNzNGREUwRUI2NjIx RkQ5RkI4RjkwHhcNMjUxMDI3MDYxODAwWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGZmMGU5OC02ZjYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtJI6SI6elbe74LqwSuB45WrcFHzjX+i/D9UetI07Stqrg8sfxox+lqwDRoyK KjAy1cSLxMNvXrfjkPmBGR9Db4CITMu+5uG/oCivX/sOYDCCgMH3GhF9SSzG2o3S KL2Aw3h3WIK19yd+XmNn8i6UE/en46F8iliQf67nHvRFjQcWyoXuItSE+z0ojKXK 3Q25aMqq1ojd6pDqqioYE+QTo8vrH66iClwLA5ygh1F6PZZ+f6kpC+wWQrya1B2P muby8wLT1qFC69ltmOoFQDyfhqJ02bmHNNcG6g3awo6ALZ+7VHY8N9ha/xYJSQZm iVIJjUJALuGycnCRorimEEjGXwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMQhRF4m 2Mhqe11kxO1f0X66TuNIMB8GA1UdIwQYMBaAFPGTYEaVFG6+Hb9z/eDrZiH9n7j5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjk2QS9DNTk2NTlCMDkz NkIxMUVFOUU0QzM4ODVDNEY5QUUwMi84Wk5nUnBVVWJyNGR2M1A5NE90bUlmMmZ1 UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhaTmdScFVVYnI0ZHYzUDk0T3RtSWYyZnVQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjI5NkEvQzU5NjU5QjA5MzZCMTFFRTlFNEMzODg1QzRGOUFFMDIvNEE0MjY2Njg5 MzZDMTFFRUJFMEMyNzg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnnnowDQYJKoZIhvcNAQELBQADggEBAKOPJSnmhlN8KlvK ZMnJENPpQqKfloQicI5O5bDc0FUPEz9yttgfcun9ZrqLXH1rDSXXg66vFT1Boilt SGk36e5F2P9lh8A2F10F0pHJs/l659+fx2zLxmpYoONDgN+X34dNGVZQNDZthpkO 92IRuYFgyyqlhQp2LLDxxCasRO/KM1BLQLNyKg78XbWUHJK6L7aGvU+9E8xX0/sF h3l3Y/3JuFskhsyPOc9PtilPUlrNiaUa66Hav7RKugpgqhi4WLyW5al5+AmoXSM6 IArLLNn2WbA6SKvE/UZIstJCUbg0t9PCF2XKHCLwJ/DY/VbfLSURN10KBHzFfbtH xrk39QE= -----END CERTIFICATE-----Generated at Tue Nov 4 01:11:50 2025 by rpki-client