$ rpki-client -vvf rpki.apnic.net/member_repository/A9167B50/9D1305C81D8F11E2A02BCDEE08B02CD2/9322B46CAEB111EA8EFC2878C4F9AE02.roa File: 9322B46CAEB111EA8EFC2878C4F9AE02.roa (raw, json) Hash identifier: 4O6f6zO4+rp67RvHt+QYmoPjYNWBYX03aCYC6rT0bKY= Subject key identifier: DB:B4:A1:A0:EF:1A:E7:3F:C5:3A:2B:D6:9F:51:FD:D1:62:41:BD:59 Certificate issuer: /CN=A9167B50/serialNumber=991B3F17084F76F12F9F0509D597F0FFECA04B4A Certificate serial: 355A Authority key identifier: 99:1B:3F:17:08:4F:76:F1:2F:9F:05:09:D5:97:F0:FF:EC:A0:4B:4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mRs_FwhPdvEvnwUJ1Zfw_-ygS0o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167B50/9D1305C81D8F11E2A02BCDEE08B02CD2/9322B46CAEB111EA8EFC2878C4F9AE02.roa Signing time: Thu 30 Oct 2025 15:00:47 +0000 ROA not before: Thu 30 Oct 2025 15:00:47 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 45761 IP address blocks: 112.121.110.0/24 maxlen: 24 112.121.111.0/24 maxlen: 24 112.121.118.0/24 maxlen: 24 112.121.119.0/24 maxlen: 24 112.121.124.0/23 maxlen: 23 112.121.124.0/24 maxlen: 24 112.121.125.0/24 maxlen: 24 112.121.126.0/24 maxlen: 24 112.121.127.0/24 maxlen: 24 202.80.109.0/24 maxlen: 24 202.80.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167B50/9D1305C81D8F11E2A02BCDEE08B02CD2/mRs_FwhPdvEvnwUJ1Zfw_-ygS0o.crl rsync://rpki.apnic.net/member_repository/A9167B50/9D1305C81D8F11E2A02BCDEE08B02CD2/mRs_FwhPdvEvnwUJ1Zfw_-ygS0o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mRs_FwhPdvEvnwUJ1Zfw_-ygS0o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 14:41:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13658 (0x355a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167B50, serialNumber=991B3F17084F76F12F9F0509D597F0FFECA04B4A Validity Not Before: Oct 30 15:00:47 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69037d9f-c5b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:77:df:22:e3:7c:4d:53:28:56:ca:48:2d:3d: f0:ed:c6:e6:cd:0e:e3:0d:dc:e3:cd:ea:24:95:6d: 9b:96:79:1e:39:f9:e1:00:09:04:c4:21:d7:38:81: 31:10:81:27:e6:5a:3f:8e:c5:6d:0d:e2:41:05:22: a9:7a:6a:7c:dd:5e:3f:41:ce:89:6d:e3:2d:4f:b7: b5:b2:8f:5b:1e:52:89:ec:1a:6e:43:5d:86:c0:da: c4:b8:9f:4c:6e:55:4f:55:47:24:e9:0c:6d:5a:86: 8c:ac:fa:f4:de:52:ba:31:64:5a:86:0c:52:a6:8c: 3f:1c:5c:75:15:7e:6c:56:4a:ba:c6:03:ed:8d:18: 65:fd:7a:8a:ad:67:ea:ae:72:e9:ac:78:d0:dd:f0: c7:62:7c:1b:5f:b8:e4:49:83:3b:00:b2:60:87:7a: 19:37:cb:e3:b5:57:66:5b:0d:b3:31:4c:52:8b:56: 97:bc:73:65:c6:58:0c:cd:44:28:68:dc:39:00:f0: 69:4e:41:60:df:76:a6:55:9c:49:3a:f0:e4:dd:9a: a9:8d:55:e4:5c:a9:9a:0f:df:8b:bb:bd:eb:bc:15: 57:fc:4d:bd:fc:60:c8:fc:4e:e2:6a:37:b1:8a:7d: ba:7c:f1:4e:a8:65:70:7d:21:40:25:6a:41:26:a0: c4:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:B4:A1:A0:EF:1A:E7:3F:C5:3A:2B:D6:9F:51:FD:D1:62:41:BD:59 X509v3 Authority Key Identifier: keyid:99:1B:3F:17:08:4F:76:F1:2F:9F:05:09:D5:97:F0:FF:EC:A0:4B:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167B50/9D1305C81D8F11E2A02BCDEE08B02CD2/mRs_FwhPdvEvnwUJ1Zfw_-ygS0o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mRs_FwhPdvEvnwUJ1Zfw_-ygS0o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167B50/9D1305C81D8F11E2A02BCDEE08B02CD2/9322B46CAEB111EA8EFC2878C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 112.121.110.0/23 112.121.118.0/23 112.121.124.0/22 202.80.109.0-202.80.110.255 Signature Algorithm: sha256WithRSAEncryption 62:12:f1:b4:b6:8b:2d:d4:e5:e5:27:0a:b3:f4:d5:90:ec:6f: a1:51:b8:f0:06:4e:68:2a:7a:54:ed:f1:11:28:36:1b:22:6a: a1:4c:59:b4:ea:4d:7c:50:d3:88:8d:39:c9:92:76:1f:d7:c5: fa:27:5d:1e:cb:b8:c4:20:33:ea:35:4e:4a:2d:a4:42:44:32: 19:67:17:a1:e6:69:38:3a:90:f6:5a:4e:d3:52:91:51:01:38: 3b:e7:3c:af:6b:92:21:ab:fe:38:9b:f1:5c:a3:c2:ee:a7:c6: 78:bb:c0:d8:fd:6b:f4:21:6b:5c:68:91:4e:6f:e5:aa:0c:88: 46:2d:2e:d3:38:14:9a:8d:9e:ae:d4:8f:21:f2:8b:e0:f6:c1: 06:f1:73:9d:cd:07:bf:59:2f:fb:1d:93:53:7e:5f:18:0d:7e: 05:a7:7e:a6:ac:4d:ce:26:08:2d:50:f9:18:81:b8:09:e3:fc: 95:ad:ff:52:97:d4:16:8d:50:72:75:e6:47:be:d5:5c:34:ec: 91:0b:53:b3:3e:b1:f1:55:dc:64:b2:b9:1b:f3:77:bc:da:6c: 95:6e:8b:5a:ce:0c:ae:3f:65:17:1e:3f:39:b3:6d:fe:7f:e9: a5:07:f9:3d:7b:20:74:3d:69:0a:1a:2c:e8:1e:e6:b3:fc:24: 0f:2f:a5:a4 -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICNVowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdCNTAxMTAvBgNVBAUTKDk5MUIzRjE3MDg0Rjc2RjEyRjlGMDUwOUQ1OTdGMEZG RUNBMDRCNEEwHhcNMjUxMDMwMTUwMDQ3WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTAzN2Q5Zi1jNWI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4XffIuN8TVMoVspILT3w7cbmzQ7jDdzjzeoklW2blnkeOfnhAAkExCHXOIEx EIEn5lo/jsVtDeJBBSKpemp83V4/Qc6JbeMtT7e1so9bHlKJ7BpuQ12GwNrEuJ9M blVPVUck6QxtWoaMrPr03lK6MWRahgxSpow/HFx1FX5sVkq6xgPtjRhl/XqKrWfq rnLprHjQ3fDHYnwbX7jkSYM7ALJgh3oZN8vjtVdmWw2zMUxSi1aXvHNlxlgMzUQo aNw5APBpTkFg33amVZxJOvDk3ZqpjVXkXKmaD9+Lu73rvBVX/E29/GDI/E7iajex in26fPFOqGVwfSFAJWpBJqDElQIDAQABo4ICrzCCAqswHQYDVR0OBBYEFNu0oaDv Guc/xTor1p9R/dFiQb1ZMB8GA1UdIwQYMBaAFJkbPxcIT3bxL58FCdWX8P/soEtK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0I1MC85RDEzMDVDODFE OEYxMUUyQTAyQkNERUUwOEIwMkNEMi9tUnNfRndoUGR2RXZud1VKMVpmd18teWdT MG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21Sc19Gd2hQZHZFdm53VUoxWmZ3Xy15Z1Mwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjdCNTAvOUQxMzA1QzgxRDhGMTFFMkEwMkJDREVFMDhCMDJDRDIvOTMyMkI0NkNB RUIxMTFFQThFRkMyODc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMCYEAgABMCADBAFweW4DBAFweXYDBAJweXwwDAMEAMpQbQMEAMpQbjANBgkq hkiG9w0BAQsFAAOCAQEAYhLxtLaLLdTl5ScKs/TVkOxvoVG48AZOaCp6VO3xESg2 GyJqoUxZtOpNfFDTiI05yZJ2H9fF+iddHsu4xCAz6jVOSi2kQkQyGWcXoeZpODqQ 9lpO01KRUQE4O+c8r2uSIav+OJvxXKPC7qfGeLvA2P1r9CFrXGiRTm/lqgyIRi0u 0zgUmo2ertSPIfKL4PbBBvFznc0Hv1kv+x2TU35fGA1+Bad+pqxNziYILVD5GIG4 CeP8la3/UpfUFo1QcnXmR77VXDTskQtTsz6x8VXcZLK5G/N3vNpslW6LWs4Mrj9l Fx4/ObNt/n/ppQf5PXsgdD1pChos6B7ms/wkDy+lpA== -----END CERTIFICATE-----Generated at Tue Nov 4 09:46:19 2025 by rpki-client