$ rpki-client -vvf rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/5D79BDF8486C11EEB3C19A71C4F9AE02.roa File: 5D79BDF8486C11EEB3C19A71C4F9AE02.roa (raw, json) Hash identifier: Pq73PgAG6oMeQVEVi6eMUHjuXX4heTdR3HOjLtOdzzc= Subject key identifier: AF:05:E9:E7:58:83:13:62:0F:EA:C4:6D:A9:92:2F:5B:91:C2:91:E5 Certificate issuer: /CN=A9119C32/serialNumber=DE09525F57A955BA6F2D32AD2283304215182E45 Certificate serial: 018E Authority key identifier: DE:09:52:5F:57:A9:55:BA:6F:2D:32:AD:22:83:30:42:15:18:2E:45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3glSX1epVbpvLTKtIoMwQhUYLkU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/5D79BDF8486C11EEB3C19A71C4F9AE02.roa Signing time: Wed 01 Oct 2025 04:31:40 +0000 ROA not before: Wed 01 Oct 2025 04:31:40 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 151654 IP address blocks: 103.250.122.0/24 maxlen: 24 103.250.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.crl rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3glSX1epVbpvLTKtIoMwQhUYLkU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:30:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 398 (0x18e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119C32, serialNumber=DE09525F57A955BA6F2D32AD2283304215182E45 Validity Not Before: Oct 1 04:31:40 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68dcaeac-3eed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c5:21:4e:b0:8c:29:e1:ed:a1:71:d8:97:77: dc:9b:93:f0:51:49:0c:ef:e3:1e:7a:f2:65:eb:d2: af:2c:ec:41:0b:72:69:de:d0:55:72:57:e2:7a:d9: 22:bd:54:e1:b9:f2:77:b8:04:ee:ad:62:9b:92:e8: c2:4e:58:d0:4c:4f:6b:23:a9:2b:ab:07:dc:c6:48: d8:78:09:42:db:eb:40:0c:2f:81:03:62:5c:c6:6a: 60:68:52:43:e5:41:48:98:72:b0:da:a8:55:bf:38: 88:e8:fe:fe:74:d3:f0:d0:cd:da:bf:5c:d2:fc:ec: 81:e9:27:2b:5e:58:28:38:a1:a4:6e:7d:6c:69:79: a3:1b:2b:96:eb:34:21:b5:d8:59:a5:91:0d:f6:9d: f5:37:38:4d:95:33:b5:d3:4b:7f:b2:20:f6:17:fb: f8:5b:d2:9c:e0:45:b3:cd:92:46:d7:5d:fc:9e:a9: 88:36:94:f9:da:f0:91:67:df:12:42:24:12:96:0c: 91:72:48:af:c3:c5:06:c9:11:aa:ac:ec:4c:58:d1: 8e:b1:ec:73:fc:62:cc:f8:64:72:7e:40:7b:26:71: 9c:82:0a:d8:0b:93:b3:3c:3c:5e:dc:9b:c8:8f:67: a6:b0:ec:49:2c:fd:d5:9d:af:91:ee:78:ea:8f:d2: a7:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:05:E9:E7:58:83:13:62:0F:EA:C4:6D:A9:92:2F:5B:91:C2:91:E5 X509v3 Authority Key Identifier: keyid:DE:09:52:5F:57:A9:55:BA:6F:2D:32:AD:22:83:30:42:15:18:2E:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/3glSX1epVbpvLTKtIoMwQhUYLkU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3glSX1epVbpvLTKtIoMwQhUYLkU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119C32/C4EA1B9E46E211EEA2372F41C4F9AE02/5D79BDF8486C11EEB3C19A71C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.250.122.0/23 Signature Algorithm: sha256WithRSAEncryption 77:de:78:53:38:89:6b:2f:91:fd:46:5b:83:6a:a0:6b:05:c9: f1:c5:ae:42:d6:dc:01:20:7b:76:c0:09:c8:d9:a7:bb:e5:08: 83:42:9a:4f:95:9e:63:9f:b0:af:c2:43:d0:6b:01:00:54:ed: 77:d5:f4:1e:43:20:e5:8d:18:ea:84:38:15:ef:49:d7:18:e3: 8b:f9:b9:dd:65:9c:ee:d6:a9:4c:1c:5e:3d:13:69:61:cd:96: ab:a9:80:21:ca:b2:50:8c:34:36:dc:74:48:d9:c3:fb:8a:14: 3d:1f:79:5c:ef:5f:4f:f8:a3:ed:72:5e:c6:0a:d6:c1:96:b7: 27:f6:e9:2b:26:9b:d6:5f:a5:ae:33:21:50:f1:34:95:09:3a: 86:82:c9:a9:5f:2f:79:5f:f8:ca:36:be:d1:4d:98:a3:c3:a9: 6a:d2:9a:97:fc:a9:e5:d9:98:54:dd:a3:80:c5:69:27:e5:8f: 66:54:b6:35:20:ea:98:fc:02:38:4a:19:74:a9:26:ef:50:17: 88:82:5a:1b:f3:43:02:14:c7:9e:2b:c9:a6:2a:28:8b:79:5e: dd:8d:2c:38:b6:25:99:05:c7:93:88:9a:a9:d4:9f:58:0e:56: 67:8a:ef:92:43:24:80:f6:68:a3:17:f7:f5:31:e5:18:2c:bd: 2c:d6:29:0a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlDMzIxMTAvBgNVBAUTKERFMDk1MjVGNTdBOTU1QkE2RjJEMzJBRDIyODMzMDQy MTUxODJFNDUwHhcNMjUxMDAxMDQzMTQwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRjYWVhYy0zZWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu8UhTrCMKeHtoXHYl3fcm5PwUUkM7+MeevJl69KvLOxBC3Jp3tBVclfietki vVThufJ3uATurWKbkujCTljQTE9rI6krqwfcxkjYeAlC2+tADC+BA2JcxmpgaFJD 5UFImHKw2qhVvziI6P7+dNPw0M3av1zS/OyB6ScrXlgoOKGkbn1saXmjGyuW6zQh tdhZpZEN9p31NzhNlTO100t/siD2F/v4W9Kc4EWzzZJG1138nqmINpT52vCRZ98S QiQSlgyRckivw8UGyRGqrOxMWNGOsexz/GLM+GRyfkB7JnGcggrYC5OzPDxe3JvI j2emsOxJLP3Vna+R7njqj9Kn2QIDAQABo4IClTCCApEwHQYDVR0OBBYEFK8F6edY gxNiD+rEbamSL1uRwpHlMB8GA1UdIwQYMBaAFN4JUl9XqVW6by0yrSKDMEIVGC5F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOUMzMi9DNEVBMUI5RTQ2 RTIxMUVFQTIzNzJGNDFDNEY5QUUwMi8zZ2xTWDFlcFZicHZMVEt0SW9Nd1FoVVlM a1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNnbFNYMWVwVmJwdkxUS3RJb013UWhVWUxrVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTlDMzIvQzRFQTFCOUU0NkUyMTFFRUEyMzcyRjQxQzRGOUFFMDIvNUQ3OUJERjg0 ODZDMTFFRUIzQzE5QTcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn+nowDQYJKoZIhvcNAQELBQADggEBAHfeeFM4iWsvkf1G W4NqoGsFyfHFrkLW3AEge3bACcjZp7vlCINCmk+VnmOfsK/CQ9BrAQBU7XfV9B5D IOWNGOqEOBXvSdcY44v5ud1lnO7WqUwcXj0TaWHNlqupgCHKslCMNDbcdEjZw/uK FD0feVzvX0/4o+1yXsYK1sGWtyf26Ssmm9Zfpa4zIVDxNJUJOoaCyalfL3lf+Mo2 vtFNmKPDqWrSmpf8qeXZmFTdo4DFaSflj2ZUtjUg6pj8AjhKGXSpJu9QF4iCWhvz QwIUx54ryaYqKIt5Xt2NLDi2JZkFx5OImqnUn1gOVmeK75JDJID2aKMX9/Ux5Rgs vSzWKQo= -----END CERTIFICATE-----Generated at Wed Nov 5 12:23:32 2025 by rpki-client