$ rpki-client -vvf rpki.apnic.net/member_repository/A9171996/AF7F4D6CAE6711F0B534F626C4F9AE02/125C30DAAE6811F09E31E129C4F9AE02.roa File: 125C30DAAE6811F09E31E129C4F9AE02.roa (raw, json) Hash identifier: AgPQ+g0vVS1AcBmkA5KDmZRoTP4TQytZY60/q5U1Jhg= Subject key identifier: FA:C3:55:4C:60:60:D5:14:3A:C8:41:08:35:E8:4F:36:66:48:FF:1B Certificate issuer: /CN=A9171996/serialNumber=704C39E9B2302EC97A9CAE99ECE7945B81F2CBED Certificate serial: 02 Authority key identifier: 70:4C:39:E9:B2:30:2E:C9:7A:9C:AE:99:EC:E7:94:5B:81:F2:CB:ED Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cEw56bIwLsl6nK6Z7OeUW4Hyy-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171996/AF7F4D6CAE6711F0B534F626C4F9AE02/125C30DAAE6811F09E31E129C4F9AE02.roa Signing time: Tue 21 Oct 2025 10:24:06 +0000 ROA not before: Tue 21 Oct 2025 10:24:06 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 151330 IP address blocks: 138.252.74.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171996/AF7F4D6CAE6711F0B534F626C4F9AE02/cEw56bIwLsl6nK6Z7OeUW4Hyy-0.crl rsync://rpki.apnic.net/member_repository/A9171996/AF7F4D6CAE6711F0B534F626C4F9AE02/cEw56bIwLsl6nK6Z7OeUW4Hyy-0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cEw56bIwLsl6nK6Z7OeUW4Hyy-0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 10:21:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171996, serialNumber=704C39E9B2302EC97A9CAE99ECE7945B81F2CBED Validity Not Before: Oct 21 10:24:06 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=68f75f45-cd80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e0:6a:f4:ba:32:98:88:0a:11:b7:4e:52:d9: ec:61:ad:f4:a5:fa:d8:86:d9:84:69:da:fc:4d:68: a2:38:6b:f6:3b:9f:60:65:1f:b4:b9:b1:00:1f:8a: a1:b4:21:41:ec:47:dd:8b:d3:c0:30:f4:d2:d7:2f: 40:52:cc:be:4f:5e:29:89:4a:41:4c:8f:52:19:e2: dc:ee:f0:bb:12:5b:69:ca:e6:62:e8:71:b0:de:4e: 3d:49:e5:f3:e9:55:5d:99:48:87:61:4e:31:c1:91: 9a:bb:3a:e6:e5:d9:76:f1:63:f5:11:d8:7b:59:e8: 4a:f1:f9:42:02:00:ae:14:5d:cf:8a:b5:fd:5b:5c: 36:39:01:ca:6e:44:94:24:cf:3b:ce:b5:cb:cc:df: 45:b2:7a:ba:89:a1:eb:57:56:dd:6a:ea:9e:5a:87: 61:e3:57:b6:07:b0:5d:ef:ee:aa:09:ad:17:b6:00: ca:49:61:49:3d:f5:ee:36:50:49:46:6b:11:78:9f: e1:4c:6b:73:b4:7f:04:8e:d4:1b:ab:c3:3f:9b:ad: a9:57:96:50:f1:37:61:03:df:2e:63:d6:f0:59:df: 7a:78:19:6d:5d:5b:b2:d2:8b:93:ee:6e:6c:7f:35: 69:bd:f5:2a:d6:99:17:75:55:6b:9d:06:cf:be:e6: 10:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:C3:55:4C:60:60:D5:14:3A:C8:41:08:35:E8:4F:36:66:48:FF:1B X509v3 Authority Key Identifier: keyid:70:4C:39:E9:B2:30:2E:C9:7A:9C:AE:99:EC:E7:94:5B:81:F2:CB:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171996/AF7F4D6CAE6711F0B534F626C4F9AE02/cEw56bIwLsl6nK6Z7OeUW4Hyy-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cEw56bIwLsl6nK6Z7OeUW4Hyy-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171996/AF7F4D6CAE6711F0B534F626C4F9AE02/125C30DAAE6811F09E31E129C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 138.252.74.0/23 Signature Algorithm: sha256WithRSAEncryption 13:7b:b7:0c:9c:26:5f:d1:0c:53:b4:58:bf:21:2f:69:bd:83: fa:74:78:13:9e:46:4f:a2:6c:2b:59:46:81:3b:36:95:5a:3a: 81:ce:ed:14:13:0e:ed:5d:ca:7c:63:7b:80:aa:79:9d:37:c4: f8:a2:31:15:e5:fa:f8:24:10:d0:ae:8f:f2:3a:7f:ac:ae:b2: be:51:96:68:b9:17:04:6d:42:bd:51:9c:9d:17:15:59:db:26: 69:37:3d:9b:0f:41:96:f3:b7:81:82:74:b4:b2:65:8c:7b:a7: 7c:82:ef:4b:c9:6b:3d:71:7b:a3:1b:d8:78:e1:b6:41:dc:5e: 35:1a:a1:2b:89:3d:52:2e:0a:22:0e:26:f9:06:71:16:cc:68: b6:f4:a3:f6:b7:95:29:27:88:c8:4d:8a:94:69:bb:38:bf:fc: 67:6c:8f:85:47:8c:08:1f:cb:12:c1:b1:3b:00:11:99:80:80: 48:d6:cd:bf:5d:db:2f:bf:19:4e:73:4a:c8:c4:70:1d:18:aa: c5:49:61:97:87:bf:9e:03:5b:3b:35:73:08:26:09:36:81:a0: 6f:fb:2f:b3:89:24:5e:cf:c1:7f:07:26:01:66:71:bc:90:0b: 70:45:3c:ec:96:3c:41:8c:42:71:b1:6f:70:ff:19:dc:9f:9e: a0:90:08:03 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MTk5NjExMC8GA1UEBRMoNzA0QzM5RTlCMjMwMkVDOTdBOUNBRTk5RUNFNzk0NUI4 MUYyQ0JFRDAeFw0yNTEwMjExMDI0MDZaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4Zjc1ZjQ1LWNkODAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC14Gr0ujKYiAoRt05S2exhrfSl+tiG2YRp2vxNaKI4a/Y7n2BlH7S5sQAfiqG0 IUHsR92L08Aw9NLXL0BSzL5PXimJSkFMj1IZ4tzu8LsSW2nK5mLocbDeTj1J5fPp VV2ZSIdhTjHBkZq7Oubl2XbxY/UR2HtZ6Erx+UICAK4UXc+Ktf1bXDY5AcpuRJQk zzvOtcvM30WyerqJoetXVt1q6p5ah2HjV7YHsF3v7qoJrRe2AMpJYUk99e42UElG axF4n+FMa3O0fwSO1Burwz+bralXllDxN2ED3y5j1vBZ33p4GW1dW7LSi5Pubmx/ NWm99SrWmRd1VWudBs++5hDPAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU+sNVTGBg 1RQ6yEEINehPNmZI/xswHwYDVR0jBBgwFoAUcEw56bIwLsl6nK6Z7OeUW4Hyy+0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcxOTk2L0FGN0Y0RDZDQUU2 NzExRjBCNTM0RjYyNkM0RjlBRTAyL2NFdzU2Ykl3THNsNm5LNlo3T2VVVzRIeXkt MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvY0V3NTZiSXdMc2w2bks2WjdPZVVXNEh5eS0wLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTk5Ni9BRjdGNEQ2Q0FFNjcxMUYwQjUzNEY2MjZDNEY5QUUwMi8xMjVDMzBEQUFF NjgxMUYwOUUzMUUxMjlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAYr8SjANBgkqhkiG9w0BAQsFAAOCAQEAE3u3DJwmX9EMU7RY vyEvab2D+nR4E55GT6JsK1lGgTs2lVo6gc7tFBMO7V3KfGN7gKp5nTfE+KIxFeX6 +CQQ0K6P8jp/rK6yvlGWaLkXBG1CvVGcnRcVWdsmaTc9mw9BlvO3gYJ0tLJljHun fILvS8lrPXF7oxvYeOG2QdxeNRqhK4k9Ui4KIg4m+QZxFsxotvSj9reVKSeIyE2K lGm7OL/8Z2yPhUeMCB/LEsGxOwARmYCASNbNv13bL78ZTnNKyMRwHRiqxUlhl4e/ ngNbOzVzCCYJNoGgb/svs4kkXs/BfwcmAWZxvJALcEU87JY8QYxCcbFvcP8Z3J+e oJAIAw== -----END CERTIFICATE-----Generated at Sat Oct 25 10:54:18 2025 by rpki-client