$ rpki-client -vvf rpki.apnic.net/member_repository/A912B129/4B3CEEB4933D11EE8A950253C4F9AE02/A5F4A536933D11EEA6B4A653C4F9AE02.roa File: A5F4A536933D11EEA6B4A653C4F9AE02.roa (raw, json) Hash identifier: 6tIF2i7E6pEkUpHmxtY4OrrXsVv0qE0EUaxM0hPMQog= Subject key identifier: 01:E4:F4:3C:78:C4:68:3E:CA:7C:6E:CF:7D:5C:67:FC:7A:8D:ED:0A Certificate issuer: /CN=A912B129/serialNumber=2C8D1A58056ED188FE8580E70D1DE50F4C3DA270 Certificate serial: 0168 Authority key identifier: 2C:8D:1A:58:05:6E:D1:88:FE:85:80:E7:0D:1D:E5:0F:4C:3D:A2:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LI0aWAVu0Yj-hYDnDR3lD0w9onA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B129/4B3CEEB4933D11EE8A950253C4F9AE02/A5F4A536933D11EEA6B4A653C4F9AE02.roa Signing time: Wed 29 Oct 2025 03:48:43 +0000 ROA not before: Wed 29 Oct 2025 03:48:43 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 55832 IP address blocks: 45.64.16.0/24 maxlen: 24 45.64.17.0/24 maxlen: 24 45.64.18.0/24 maxlen: 24 45.64.19.0/24 maxlen: 24 103.14.181.0/24 maxlen: 24 103.14.182.0/24 maxlen: 24 103.14.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B129/4B3CEEB4933D11EE8A950253C4F9AE02/LI0aWAVu0Yj-hYDnDR3lD0w9onA.crl rsync://rpki.apnic.net/member_repository/A912B129/4B3CEEB4933D11EE8A950253C4F9AE02/LI0aWAVu0Yj-hYDnDR3lD0w9onA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LI0aWAVu0Yj-hYDnDR3lD0w9onA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:07:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 360 (0x168) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B129, serialNumber=2C8D1A58056ED188FE8580E70D1DE50F4C3DA270 Validity Not Before: Oct 29 03:48:43 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69018e9b-4951 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d8:3a:5f:3e:df:d7:8a:8c:c3:83:97:4d:4e: f6:c6:58:df:01:ff:94:89:a8:a9:7a:f7:ab:c5:67: 97:11:b4:e1:e0:e6:27:73:1a:cd:7a:05:c0:9e:0a: 84:e9:57:af:0d:1a:f8:e2:53:8d:9e:2b:e0:2d:a6: 99:62:a1:1c:24:15:6d:47:a3:04:1c:0a:fe:2d:3f: ef:1f:c2:bf:bf:f5:7f:34:f1:22:4b:70:73:f5:9f: ea:82:fd:92:5c:aa:7d:b9:3c:3c:32:3f:f2:53:46: a1:eb:29:c6:03:4c:56:73:61:01:f3:e5:0e:63:4d: 02:27:c3:1c:52:10:28:88:6e:06:a2:43:3e:57:aa: 5e:cb:35:2a:b1:4a:67:73:dc:5c:2e:33:ba:78:04: fb:c2:19:1d:ac:e1:e2:1c:d4:b2:a8:46:2e:4b:fa: 88:c1:54:9b:92:21:e4:29:9e:f7:db:0b:37:86:e0: e4:f8:ca:db:9c:50:e3:23:fa:5a:71:6c:97:6f:ba: ab:3a:26:86:38:75:fc:e3:12:89:07:39:91:e9:44: 24:6e:a2:84:de:e6:4f:83:64:eb:11:17:ce:b6:24: 6c:d4:c3:44:0f:4a:9f:7a:62:90:5f:df:77:26:ff: 1f:5e:83:5e:cf:e5:4e:ef:09:69:9d:84:59:b7:ce: 4d:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:E4:F4:3C:78:C4:68:3E:CA:7C:6E:CF:7D:5C:67:FC:7A:8D:ED:0A X509v3 Authority Key Identifier: keyid:2C:8D:1A:58:05:6E:D1:88:FE:85:80:E7:0D:1D:E5:0F:4C:3D:A2:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B129/4B3CEEB4933D11EE8A950253C4F9AE02/LI0aWAVu0Yj-hYDnDR3lD0w9onA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LI0aWAVu0Yj-hYDnDR3lD0w9onA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B129/4B3CEEB4933D11EE8A950253C4F9AE02/A5F4A536933D11EEA6B4A653C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.64.16.0/22 103.14.181.0-103.14.183.255 Signature Algorithm: sha256WithRSAEncryption 8f:f3:69:b3:ef:b4:14:a7:84:b2:f0:b4:b0:9a:cd:a0:c3:0a: 48:56:18:f0:fd:e9:8a:8d:88:d0:2b:f2:eb:72:10:8b:37:d5: dc:b7:f8:af:3e:6b:60:d1:15:78:16:6b:a7:79:c9:95:5e:cf: a1:ff:ed:e7:b2:5f:17:08:68:dd:e1:49:03:1c:1e:73:cf:6d: 61:ef:4c:43:95:29:63:5b:b0:6f:f9:1e:97:bb:f2:28:61:d4: fd:b4:7e:8c:da:3c:9b:e5:a1:44:92:a3:d6:b2:66:24:2a:73: 0d:74:f3:87:c5:5b:3a:23:34:b3:1a:26:30:ae:1b:3e:3a:e9: 5b:ce:de:35:f3:87:60:22:6b:c7:d2:7c:35:61:37:5c:31:9e: ef:e1:c0:f6:8d:eb:bb:d1:d0:7b:76:8e:9e:8d:65:d9:8c:69: c7:b5:ff:94:d2:dc:6d:bd:3f:91:ea:3f:b3:fa:56:10:88:7b: ca:f7:59:c9:15:ce:df:be:0e:a8:74:9e:0a:68:7f:40:59:4e: 64:90:3b:4a:a4:39:16:e9:b3:8e:f3:49:e4:5f:e5:b3:ce:53: 13:a7:c1:bd:75:e8:ec:e8:e5:8f:99:ff:c9:56:ea:14:df:ea: 7e:9d:d3:97:06:77:d1:96:e1:a9:13:8c:d2:83:97:87:7d:62: c0:46:61:ea -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICAWgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkIxMjkxMTAvBgNVBAUTKDJDOEQxQTU4MDU2RUQxODhGRTg1ODBFNzBEMURFNTBG NEMzREEyNzAwHhcNMjUxMDI5MDM0ODQzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTAxOGU5Yi00OTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtNg6Xz7f14qMw4OXTU72xljfAf+UiaipeverxWeXEbTh4OYncxrNegXAngqE 6VevDRr44lONnivgLaaZYqEcJBVtR6MEHAr+LT/vH8K/v/V/NPEiS3Bz9Z/qgv2S XKp9uTw8Mj/yU0ah6ynGA0xWc2EB8+UOY00CJ8McUhAoiG4GokM+V6peyzUqsUpn c9xcLjO6eAT7whkdrOHiHNSyqEYuS/qIwVSbkiHkKZ732ws3huDk+MrbnFDjI/pa cWyXb7qrOiaGOHX84xKJBzmR6UQkbqKE3uZPg2TrERfOtiRs1MNED0qfemKQX993 Jv8fXoNez+VO7wlpnYRZt85NfQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFAHk9Dx4 xGg+ynxuz31cZ/x6je0KMB8GA1UdIwQYMBaAFCyNGlgFbtGI/oWA5w0d5Q9MPaJw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjEyOS80QjNDRUVCNDkz M0QxMUVFOEE5NTAyNTNDNEY5QUUwMi9MSTBhV0FWdTBZai1oWURuRFIzbEQwdzlv bkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xJMGFXQVZ1MFlqLWhZRG5EUjNsRDB3OW9uQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkIxMjkvNEIzQ0VFQjQ5MzNEMTFFRThBOTUwMjUzQzRGOUFFMDIvQTVGNEE1MzY5 MzNEMTFFRUE2QjRBNjUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBAItQBAwDAMEAGcOtQMEA2cOsDANBgkqhkiG9w0BAQsFAAOC AQEAj/Nps++0FKeEsvC0sJrNoMMKSFYY8P3pio2I0Cvy63IQizfV3Lf4rz5rYNEV eBZrp3nJlV7Pof/t57JfFwho3eFJAxwec89tYe9MQ5UpY1uwb/kel7vyKGHU/bR+ jNo8m+WhRJKj1rJmJCpzDXTzh8VbOiM0sxomMK4bPjrpW87eNfOHYCJrx9J8NWE3 XDGe7+HA9o3ru9HQe3aOno1l2Yxpx7X/lNLcbb0/keo/s/pWEIh7yvdZyRXO374O qHSeCmh/QFlOZJA7SqQ5FumzjvNJ5F/ls85TE6fBvXXo7Ojlj5n/yVbqFN/qfp3T lwZ30ZbhqROM0oOXh31iwEZh6g== -----END CERTIFICATE-----Generated at Wed Nov 5 12:23:27 2025 by rpki-client