$ rpki-client -vvf rpki.apnic.net/member_repository/A9138478/6B8AD84E433011EBA6E0221EC4F9AE02/6AC2B9AA187B11ED92148716C4F9AE02.roa File: 6AC2B9AA187B11ED92148716C4F9AE02.roa (raw, json) Hash identifier: gX+GYBAPGbjqUnHfi91j/NNdMc3SWhzi/7eOCrrQtPM= Subject key identifier: 77:75:9D:A4:65:33:F6:74:48:CE:BF:CB:1C:B5:83:4D:0C:58:1D:00 Certificate issuer: /CN=A9138478/serialNumber=34E8C662AA9DCD51950DF5FAC405ACF16C8D30A0 Certificate serial: 0757 Authority key identifier: 34:E8:C6:62:AA:9D:CD:51:95:0D:F5:FA:C4:05:AC:F1:6C:8D:30:A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NOjGYqqdzVGVDfX6xAWs8WyNMKA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138478/6B8AD84E433011EBA6E0221EC4F9AE02/6AC2B9AA187B11ED92148716C4F9AE02.roa Signing time: Fri 24 Oct 2025 22:41:16 +0000 ROA not before: Fri 24 Oct 2025 22:41:16 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 134072 IP address blocks: 103.76.112.0/22 maxlen: 22 103.76.112.0/24 maxlen: 24 103.76.113.0/24 maxlen: 24 103.76.114.0/24 maxlen: 24 103.76.115.0/24 maxlen: 24 116.206.116.0/22 maxlen: 22 116.206.116.0/24 maxlen: 24 116.206.117.0/24 maxlen: 24 116.206.118.0/24 maxlen: 24 116.206.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138478/6B8AD84E433011EBA6E0221EC4F9AE02/NOjGYqqdzVGVDfX6xAWs8WyNMKA.crl rsync://rpki.apnic.net/member_repository/A9138478/6B8AD84E433011EBA6E0221EC4F9AE02/NOjGYqqdzVGVDfX6xAWs8WyNMKA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NOjGYqqdzVGVDfX6xAWs8WyNMKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:46:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1879 (0x757) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138478, serialNumber=34E8C662AA9DCD51950DF5FAC405ACF16C8D30A0 Validity Not Before: Oct 24 22:41:16 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68fc008b-1fb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:93:be:14:8f:37:8c:44:e2:4d:14:81:b2:d2: 67:e4:f4:a5:b4:a0:f3:3c:15:ce:c4:7b:e8:a9:66: 0c:6b:1a:ea:08:f8:78:db:75:12:d4:e3:78:c6:26: 34:c5:d8:6a:11:fc:f9:45:d4:c9:a5:dd:dd:b4:0d: b2:6c:e2:76:a9:2c:8e:ed:6c:fa:33:cd:1b:32:f4: 46:f4:2f:20:fd:a5:91:00:b5:4b:72:82:58:db:b5: 28:61:72:f8:fe:24:03:3c:93:69:01:ab:ea:82:ce: c0:25:3d:bc:a6:75:cd:f7:9a:5e:ab:88:41:54:1c: 6a:1f:4a:86:7b:ed:70:09:4e:65:08:fc:68:9a:a6: 82:c5:e9:12:ff:a2:2d:7e:cc:07:f1:db:d6:71:4e: 09:58:f9:e5:57:b9:bb:b1:b4:01:cb:58:e7:89:ea: 76:15:60:43:6e:b1:20:2b:9a:77:6a:85:d9:f1:20: 93:e7:89:ea:9c:1c:97:b9:59:f1:1e:79:6e:58:48: 50:4d:33:1d:4f:58:23:7b:ff:a2:5e:a3:22:9c:cf: d7:da:2e:99:f4:8a:8c:40:e5:20:f2:97:b8:01:66: 6f:55:e1:e4:c7:a7:01:0d:c0:96:48:2b:3f:87:98: b3:9f:13:56:8a:ae:a2:3f:9e:d0:2f:e6:d1:91:14: 41:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:75:9D:A4:65:33:F6:74:48:CE:BF:CB:1C:B5:83:4D:0C:58:1D:00 X509v3 Authority Key Identifier: keyid:34:E8:C6:62:AA:9D:CD:51:95:0D:F5:FA:C4:05:AC:F1:6C:8D:30:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138478/6B8AD84E433011EBA6E0221EC4F9AE02/NOjGYqqdzVGVDfX6xAWs8WyNMKA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NOjGYqqdzVGVDfX6xAWs8WyNMKA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138478/6B8AD84E433011EBA6E0221EC4F9AE02/6AC2B9AA187B11ED92148716C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.76.112.0/22 116.206.116.0/22 Signature Algorithm: sha256WithRSAEncryption 20:a1:41:23:d4:05:a6:e6:37:a5:9a:b6:a4:b0:7b:59:71:08: 83:e8:4e:54:6c:a6:53:47:0e:7a:9b:65:a9:83:a6:49:1b:4c: ba:c2:75:60:32:7b:11:aa:01:cc:26:6b:c9:aa:e8:a9:a8:b1: c2:e4:bc:c3:2a:10:b3:2e:2e:4c:00:db:42:ca:a1:a6:25:e4: db:d3:01:01:d1:5c:67:28:bc:a4:d7:34:2d:d9:93:f3:e2:cc: f7:a2:98:65:27:12:44:83:17:de:bd:d3:d4:cf:0a:0c:c4:b4: 75:5b:18:15:ae:e3:85:21:f1:6f:e9:17:3c:f1:7c:c1:e1:eb: e8:35:6b:84:e5:e0:37:81:fe:05:f2:1d:a0:fa:96:b9:9f:84: 45:58:c3:19:e9:5f:63:47:99:20:bb:fc:48:07:7e:bf:77:27: 5e:44:ae:cf:72:0d:40:be:28:21:fd:c2:3a:88:ff:f8:e7:cd: 7c:ed:ad:14:98:1b:73:ef:8d:15:18:91:c3:53:3e:bc:2a:9a: 66:4f:af:6f:87:83:cb:07:60:a6:ba:36:a5:0c:38:fb:c3:70: fa:14:82:14:de:2b:21:67:71:7c:cd:59:33:1a:ff:8c:08:1f: 37:16:85:d5:87:54:89:c5:9e:f0:cb:75:6e:0f:d3:3d:37:9d: 40:d4:60:ba -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICB1cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg0NzgxMTAvBgNVBAUTKDM0RThDNjYyQUE5RENENTE5NTBERjVGQUM0MDVBQ0Yx NkM4RDMwQTAwHhcNMjUxMDI0MjI0MTE2WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGZjMDA4Yi0xZmI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxpO+FI83jETiTRSBstJn5PSltKDzPBXOxHvoqWYMaxrqCPh423US1ON4xiY0 xdhqEfz5RdTJpd3dtA2ybOJ2qSyO7Wz6M80bMvRG9C8g/aWRALVLcoJY27UoYXL4 /iQDPJNpAavqgs7AJT28pnXN95peq4hBVBxqH0qGe+1wCU5lCPxomqaCxekS/6It fswH8dvWcU4JWPnlV7m7sbQBy1jniep2FWBDbrEgK5p3aoXZ8SCT54nqnByXuVnx HnluWEhQTTMdT1gje/+iXqMinM/X2i6Z9IqMQOUg8pe4AWZvVeHkx6cBDcCWSCs/ h5iznxNWiq6iP57QL+bRkRRB7wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFHd1naRl M/Z0SM6/yxy1g00MWB0AMB8GA1UdIwQYMBaAFDToxmKqnc1RlQ31+sQFrPFsjTCg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODQ3OC82QjhBRDg0RTQz MzAxMUVCQTZFMDIyMUVDNEY5QUUwMi9OT2pHWXFxZHpWR1ZEZlg2eEFXczhXeU5N S0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05PakdZcXFkelZHVkRmWDZ4QVdzOFd5Tk1LQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mzg0NzgvNkI4QUQ4NEU0MzMwMTFFQkE2RTAyMjFFQzRGOUFFMDIvNkFDMkI5QUEx ODdCMTFFRDkyMTQ4NzE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnTHADBAJ0znQwDQYJKoZIhvcNAQELBQADggEBACChQSPU BabmN6WatqSwe1lxCIPoTlRsplNHDnqbZamDpkkbTLrCdWAyexGqAcwma8mq6Kmo scLkvMMqELMuLkwA20LKoaYl5NvTAQHRXGcovKTXNC3Zk/PizPeimGUnEkSDF969 09TPCgzEtHVbGBWu44Uh8W/pFzzxfMHh6+g1a4Tl4DeB/gXyHaD6lrmfhEVYwxnp X2NHmSC7/EgHfr93J15Ers9yDUC+KCH9wjqI//jnzXztrRSYG3PvjRUYkcNTPrwq mmZPr2+Hg8sHYKa6NqUMOPvDcPoUghTeKyFncXzNWTMa/4wIHzcWhdWHVInFnvDL dW4P0z03nUDUYLo= -----END CERTIFICATE-----Generated at Wed Nov 5 19:48:47 2025 by rpki-client