$ rpki-client -vvf rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/09EC8E16662211EFB6FA446CC4F9AE02.roa File: 09EC8E16662211EFB6FA446CC4F9AE02.roa (raw, json) Hash identifier: KgWGTanyX6yUWjTf/f+n7HM6qpw4Ft2mJJiD1oMoEsc= Subject key identifier: 21:B5:B1:57:F9:C6:6B:3D:1C:5E:44:38:1D:C3:78:D7:2D:A4:C6:53 Certificate issuer: /CN=A912DD36/serialNumber=04DEDACBDBAFA5C1C14F92817B96F7F503100A28 Certificate serial: EF Authority key identifier: 04:DE:DA:CB:DB:AF:A5:C1:C1:4F:92:81:7B:96:F7:F5:03:10:0A:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/09EC8E16662211EFB6FA446CC4F9AE02.roa Signing time: Wed 03 Sep 2025 05:55:30 +0000 ROA not before: Wed 03 Sep 2025 05:55:30 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 56106 IP address blocks: 45.124.212.0/22 maxlen: 22 45.124.212.0/24 maxlen: 24 45.124.213.0/24 maxlen: 24 45.124.214.0/24 maxlen: 24 45.124.215.0/24 maxlen: 24 103.193.80.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.crl rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 05:53:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 239 (0xef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DD36, serialNumber=04DEDACBDBAFA5C1C14F92817B96F7F503100A28 Validity Not Before: Sep 3 05:55:30 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b7d852-2168 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:3f:a4:80:63:70:62:6e:32:29:08:98:ff:cf: 72:64:26:1f:4d:66:81:c8:f9:00:25:fd:57:99:b7: 42:1c:c8:d1:22:d9:14:f8:f5:e6:67:c9:6c:1d:96: 24:2f:81:8f:6e:9f:38:1a:44:27:dd:68:ab:4c:5d: 04:58:9e:18:10:f2:0c:e7:cd:26:6e:f3:ef:89:33: 9d:dc:b6:5f:77:26:53:a6:95:da:02:62:fb:25:4d: d0:00:19:f3:50:03:53:41:26:c6:09:10:62:77:f8: 0a:93:82:c2:33:3e:e7:e7:2d:6b:78:7c:97:76:ea: 02:92:5f:fe:58:83:07:48:03:36:6a:24:eb:32:6f: 83:0f:e4:27:2f:1f:e1:22:c8:4f:d9:dd:77:d0:b5: 0e:33:69:95:1d:08:eb:7e:7f:7e:22:8b:20:62:64: ae:cc:77:3e:33:d5:f7:2b:b9:07:24:7e:46:68:aa: 97:12:31:d2:75:7e:38:15:97:57:b5:13:d9:9b:5a: 8f:33:9c:2d:03:78:3d:22:83:24:a4:45:a5:72:cf: db:c8:f2:e5:fd:b8:eb:68:b1:da:ee:92:27:ba:92: 69:e2:a2:40:6c:3f:92:09:d4:3c:ba:1f:cf:b4:05: 4e:d4:88:bb:09:5e:5e:13:4d:96:08:d7:69:26:35: f3:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:B5:B1:57:F9:C6:6B:3D:1C:5E:44:38:1D:C3:78:D7:2D:A4:C6:53 X509v3 Authority Key Identifier: keyid:04:DE:DA:CB:DB:AF:A5:C1:C1:4F:92:81:7B:96:F7:F5:03:10:0A:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/BN7ay9uvpcHBT5KBe5b39QMQCig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BN7ay9uvpcHBT5KBe5b39QMQCig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DD36/7F4023F2253211EFBC93211AC4F9AE02/09EC8E16662211EFB6FA446CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.124.212.0/22 103.193.80.0/22 Signature Algorithm: sha256WithRSAEncryption 8c:2d:b3:5b:3d:31:fb:70:e7:81:39:46:f5:98:0c:b8:09:c3: 23:c4:e7:0d:5b:fe:55:2b:4a:75:e7:70:68:17:b3:cd:d4:bb: 7b:08:42:bf:dc:e2:a5:89:61:43:0b:f0:3a:55:14:05:53:ec: d9:7b:42:3b:25:cf:a6:f5:70:0f:49:b1:5f:df:77:aa:b1:b5: 88:b4:15:c3:41:ad:2d:b2:f7:b7:c2:f6:1a:7d:e3:29:c8:91: 3e:1c:fd:8e:fb:e2:67:65:fd:15:e4:62:5b:a9:65:ac:7e:43: 8c:ed:64:16:ca:d1:d0:ef:46:df:9b:67:20:5f:57:77:18:ef: fe:f6:45:c6:db:19:0f:bf:56:2b:44:23:8b:a7:d3:96:77:19: 2c:c0:0a:90:de:aa:03:97:1a:02:7d:c7:48:b5:04:ec:b3:c0: 26:ff:68:51:d9:a4:ad:bc:f6:65:0b:d9:eb:c0:b2:77:7f:f7: c2:c5:c1:36:49:d0:6c:99:93:47:7b:5c:2c:a3:6a:2d:9b:1e: a2:76:90:7c:15:04:b3:d0:07:27:6a:96:e3:46:aa:97:af:dc: 2a:d2:05:8f:e1:96:4f:cb:f1:c2:7d:cc:bc:6e:72:ab:dc:4a: 59:2a:d8:be:5a:e5:94:3f:26:7f:22:23:3e:c7:f9:91:fa:72: 82:d5:04:32 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkREMzYxMTAvBgNVBAUTKDA0REVEQUNCREJBRkE1QzFDMTRGOTI4MTdCOTZGN0Y1 MDMxMDBBMjgwHhcNMjUwOTAzMDU1NTMwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3ZDg1Mi0yMTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4z+kgGNwYm4yKQiY/89yZCYfTWaByPkAJf1XmbdCHMjRItkU+PXmZ8lsHZYk L4GPbp84GkQn3WirTF0EWJ4YEPIM580mbvPviTOd3LZfdyZTppXaAmL7JU3QABnz UANTQSbGCRBid/gKk4LCMz7n5y1reHyXduoCkl/+WIMHSAM2aiTrMm+DD+QnLx/h IshP2d130LUOM2mVHQjrfn9+IosgYmSuzHc+M9X3K7kHJH5GaKqXEjHSdX44FZdX tRPZm1qPM5wtA3g9IoMkpEWlcs/byPLl/bjraLHa7pInupJp4qJAbD+SCdQ8uh/P tAVO1Ii7CV5eE02WCNdpJjXz9wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCG1sVf5 xms9HF5EOB3DeNctpMZTMB8GA1UdIwQYMBaAFATe2svbr6XBwU+SgXuW9/UDEAoo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREQzNi83RjQwMjNGMjI1 MzIxMUVGQkM5MzIxMUFDNEY5QUUwMi9CTjdheTl1dnBjSEJUNUtCZTViMzlRTVFD aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JON2F5OXV2cGNIQlQ1S0JlNWIzOVFNUUNpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkREMzYvN0Y0MDIzRjIyNTMyMTFFRkJDOTMyMTFBQzRGOUFFMDIvMDlFQzhFMTY2 NjIyMTFFRkI2RkE0NDZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAItfNQDBAJnwVAwDQYJKoZIhvcNAQELBQADggEBAIwts1s9 Mftw54E5RvWYDLgJwyPE5w1b/lUrSnXncGgXs83Uu3sIQr/c4qWJYUML8DpVFAVT 7Nl7Qjslz6b1cA9JsV/fd6qxtYi0FcNBrS2y97fC9hp94ynIkT4c/Y774mdl/RXk YlupZax+Q4ztZBbK0dDvRt+bZyBfV3cY7/72RcbbGQ+/VitEI4un05Z3GSzACpDe qgOXGgJ9x0i1BOyzwCb/aFHZpK289mUL2evAsnd/98LFwTZJ0GyZk0d7XCyjai2b HqJ2kHwVBLPQBydqluNGqpev3CrSBY/hlk/L8cJ9zLxucqvcSlkq2L5a5ZQ/Jn8i Iz7H+ZH6coLVBDI= -----END CERTIFICATE-----Generated at Fri Sep 19 05:32:40 2025 by rpki-client