$ rpki-client -vvf rpki.apnic.net/member_repository/A9167B50/9D1305C81D8F11E2A02BCDEE08B02CD2/925D8646772A11EBAE8A8181C4F9AE02.roa File: 925D8646772A11EBAE8A8181C4F9AE02.roa (raw, json) Hash identifier: V+iG3uoTEhOB1RpnqXAIwFGBw4WNdCYvL4uQOduviF4= Subject key identifier: 2C:41:8D:67:75:AB:BC:19:E5:CC:33:85:88:7B:A4:CB:A1:DF:8D:A0 Certificate issuer: /CN=A9167B50/serialNumber=991B3F17084F76F12F9F0509D597F0FFECA04B4A Certificate serial: 3558 Authority key identifier: 99:1B:3F:17:08:4F:76:F1:2F:9F:05:09:D5:97:F0:FF:EC:A0:4B:4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mRs_FwhPdvEvnwUJ1Zfw_-ygS0o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167B50/9D1305C81D8F11E2A02BCDEE08B02CD2/925D8646772A11EBAE8A8181C4F9AE02.roa Signing time: Thu 30 Oct 2025 15:00:45 +0000 ROA not before: Thu 30 Oct 2025 15:00:45 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 198949 IP address blocks: 112.121.110.0/24 maxlen: 24 112.121.111.0/24 maxlen: 24 112.121.118.0/24 maxlen: 24 112.121.119.0/24 maxlen: 24 112.121.124.0/24 maxlen: 24 112.121.125.0/24 maxlen: 24 112.121.126.0/24 maxlen: 24 112.121.127.0/24 maxlen: 24 202.80.109.0/24 maxlen: 24 202.80.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167B50/9D1305C81D8F11E2A02BCDEE08B02CD2/mRs_FwhPdvEvnwUJ1Zfw_-ygS0o.crl rsync://rpki.apnic.net/member_repository/A9167B50/9D1305C81D8F11E2A02BCDEE08B02CD2/mRs_FwhPdvEvnwUJ1Zfw_-ygS0o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mRs_FwhPdvEvnwUJ1Zfw_-ygS0o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 14:41:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13656 (0x3558) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167B50, serialNumber=991B3F17084F76F12F9F0509D597F0FFECA04B4A Validity Not Before: Oct 30 15:00:45 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69037d9d-8006 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:4b:04:5e:85:48:c7:6e:37:06:5f:83:5a:ab: 1d:76:47:74:8d:b3:c1:e2:31:b8:9f:5c:d1:50:cf: 3c:06:0d:0c:fa:d8:7a:21:88:9e:2a:67:d1:0b:9f: 62:ca:aa:43:8b:60:84:a4:82:52:41:d9:86:c4:46: 2e:4e:04:c8:05:90:d2:50:71:17:25:87:83:fc:f8: b1:2d:d4:b3:e1:bd:a4:5d:6f:bb:2c:a5:ec:78:7e: 76:90:91:ff:3b:97:e2:34:12:f3:a0:e2:36:df:8c: 49:c0:5b:ef:23:3a:57:56:f0:8c:9f:c2:cd:64:cc: 3f:a3:08:ed:a5:53:dc:56:31:e1:4c:8b:3d:8a:bd: 6a:1c:39:8c:fa:63:0c:57:33:a5:b6:f1:89:10:d7: 48:b2:76:d5:c0:3c:fb:48:f6:4d:1d:dd:4f:d8:e1: bb:2b:22:34:20:85:c0:8b:f9:c6:73:a1:35:77:89: ee:78:42:16:e6:6e:7a:f1:e7:65:99:59:82:be:1f: 97:5d:2f:34:60:c3:6b:60:90:b8:c1:47:cc:dc:a9: f8:b7:1b:c7:6e:80:6e:31:8a:04:18:6c:0e:84:70: cd:43:04:09:8d:75:f2:4c:4c:05:5c:7d:3a:6f:96: 7b:33:df:87:db:a3:15:9d:a3:06:e2:56:56:32:cd: 1d:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:41:8D:67:75:AB:BC:19:E5:CC:33:85:88:7B:A4:CB:A1:DF:8D:A0 X509v3 Authority Key Identifier: keyid:99:1B:3F:17:08:4F:76:F1:2F:9F:05:09:D5:97:F0:FF:EC:A0:4B:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167B50/9D1305C81D8F11E2A02BCDEE08B02CD2/mRs_FwhPdvEvnwUJ1Zfw_-ygS0o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mRs_FwhPdvEvnwUJ1Zfw_-ygS0o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167B50/9D1305C81D8F11E2A02BCDEE08B02CD2/925D8646772A11EBAE8A8181C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 112.121.110.0/23 112.121.118.0/23 112.121.124.0/22 202.80.109.0-202.80.110.255 Signature Algorithm: sha256WithRSAEncryption 7b:46:c1:16:27:0f:49:f5:0b:dd:db:2b:cb:f1:f6:fd:19:75: c0:1b:c2:b9:64:af:c0:da:57:6d:27:b6:4c:07:4d:ef:3c:21: d3:93:0a:01:f3:0f:99:8c:55:96:b2:00:e0:65:cc:e5:1f:6c: 7f:83:b6:bd:df:0f:70:c1:a9:f3:3d:21:a4:5f:01:71:31:24: c3:ba:9c:a6:49:b7:24:2a:62:2e:b5:55:83:d0:40:f0:7d:10: 9b:f7:38:6f:6a:3f:27:ea:08:1b:2e:ad:52:2c:c3:05:14:53: 4a:4d:ce:e8:63:4f:c5:b6:60:2b:54:96:3b:47:49:65:5d:0f: a3:55:54:e1:a1:e9:1a:cb:71:a1:63:8c:5b:7b:f8:55:da:10: b7:61:8c:3a:a0:5e:b6:78:70:de:ac:3c:44:8a:70:01:b8:14: 35:05:76:c6:2c:0f:d3:46:06:b6:27:4e:55:b9:80:48:83:7b: 96:16:93:5a:19:a8:c7:78:92:6b:46:26:06:7a:ab:9b:21:12: f2:80:c1:77:42:04:b3:47:77:aa:26:3a:0d:e1:77:8f:4e:94: 64:e7:7a:ae:55:b0:90:59:f2:68:1d:5a:b5:b0:de:e1:0c:c5: 19:36:b2:7b:27:fa:95:93:82:56:9f:b0:56:2b:5d:5e:89:7d: 19:f8:ef:22 -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICNVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdCNTAxMTAvBgNVBAUTKDk5MUIzRjE3MDg0Rjc2RjEyRjlGMDUwOUQ1OTdGMEZG RUNBMDRCNEEwHhcNMjUxMDMwMTUwMDQ1WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTAzN2Q5ZC04MDA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzEsEXoVIx243Bl+DWqsddkd0jbPB4jG4n1zRUM88Bg0M+th6IYieKmfRC59i yqpDi2CEpIJSQdmGxEYuTgTIBZDSUHEXJYeD/PixLdSz4b2kXW+7LKXseH52kJH/ O5fiNBLzoOI234xJwFvvIzpXVvCMn8LNZMw/owjtpVPcVjHhTIs9ir1qHDmM+mMM VzOltvGJENdIsnbVwDz7SPZNHd1P2OG7KyI0IIXAi/nGc6E1d4nueEIW5m568edl mVmCvh+XXS80YMNrYJC4wUfM3Kn4txvHboBuMYoEGGwOhHDNQwQJjXXyTEwFXH06 b5Z7M9+H26MVnaMG4lZWMs0dCQIDAQABo4ICrzCCAqswHQYDVR0OBBYEFCxBjWd1 q7wZ5cwzhYh7pMuh342gMB8GA1UdIwQYMBaAFJkbPxcIT3bxL58FCdWX8P/soEtK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0I1MC85RDEzMDVDODFE OEYxMUUyQTAyQkNERUUwOEIwMkNEMi9tUnNfRndoUGR2RXZud1VKMVpmd18teWdT MG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21Sc19Gd2hQZHZFdm53VUoxWmZ3Xy15Z1Mwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjdCNTAvOUQxMzA1QzgxRDhGMTFFMkEwMkJDREVFMDhCMDJDRDIvOTI1RDg2NDY3 NzJBMTFFQkFFOEE4MTgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMCYEAgABMCADBAFweW4DBAFweXYDBAJweXwwDAMEAMpQbQMEAMpQbjANBgkq hkiG9w0BAQsFAAOCAQEAe0bBFicPSfUL3dsry/H2/Rl1wBvCuWSvwNpXbSe2TAdN 7zwh05MKAfMPmYxVlrIA4GXM5R9sf4O2vd8PcMGp8z0hpF8BcTEkw7qcpkm3JCpi LrVVg9BA8H0Qm/c4b2o/J+oIGy6tUizDBRRTSk3O6GNPxbZgK1SWO0dJZV0Po1VU 4aHpGstxoWOMW3v4VdoQt2GMOqBetnhw3qw8RIpwAbgUNQV2xiwP00YGtidOVbmA SIN7lhaTWhmox3iSa0YmBnqrmyES8oDBd0IEs0d3qiY6DeF3j06UZOd6rlWwkFny aB1atbDe4QzFGTayeyf6lZOCVp+wVitdXol9GfjvIg== -----END CERTIFICATE-----Generated at Mon Nov 3 22:13:08 2025 by rpki-client