$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/8A389AC25C4811EEBE1CF06BC4F9AE02.roa File: 8A389AC25C4811EEBE1CF06BC4F9AE02.roa (raw, json) Hash identifier: vn17TWtmnQ+kaPqXgcDq2YoeKGokw+dq87l/z9Wtkuk= Subject key identifier: B0:90:C7:F2:E9:AA:92:F3:9F:EE:9B:01:B9:0B:E9:6A:08:43:9A:72 Certificate issuer: /CN=A9120AAA/serialNumber=6B57093290D11F65CFB91F1212C28CF733F9C2B5 Certificate serial: 0189 Authority key identifier: 6B:57:09:32:90:D1:1F:65:CF:B9:1F:12:12:C2:8C:F7:33:F9:C2:B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1cJMpDRH2XPuR8SEsKM9zP5wrU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/8A389AC25C4811EEBE1CF06BC4F9AE02.roa Signing time: Wed 29 Oct 2025 03:48:01 +0000 ROA not before: Wed 29 Oct 2025 03:48:01 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 151824 IP address blocks: 103.150.71.0/24 maxlen: 24 2001:df2:f540::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.crl rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1cJMpDRH2XPuR8SEsKM9zP5wrU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:41:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 393 (0x189) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AAA, serialNumber=6B57093290D11F65CFB91F1212C28CF733F9C2B5 Validity Not Before: Oct 29 03:48:01 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69018e71-a2be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:73:0a:e0:4a:0b:6a:bc:62:84:98:47:bc:b6: 5a:54:02:45:7f:a5:a6:d7:2f:56:56:51:01:8a:e3: 14:44:e6:49:d3:b6:fa:f8:70:19:9f:ca:60:9d:9f: 58:32:a1:e1:13:63:d6:14:d4:ed:70:e7:4e:17:30: 38:4c:55:ae:c9:b6:8b:6c:96:5b:72:88:0e:74:14: 8b:00:e1:bf:15:78:33:b3:17:eb:cd:5b:c3:96:c5: 9f:99:35:59:c9:70:25:a2:80:1b:08:e1:66:55:ce: 59:da:d5:1d:8a:97:fc:78:b3:6b:7f:ad:db:88:72: 59:17:de:2f:4f:4e:5e:2b:6e:2d:37:de:37:7e:82: e1:3b:2f:ec:25:b8:0b:22:07:d1:f3:3f:41:bb:33: a5:e8:92:1f:ce:6a:81:d4:73:a6:47:d2:7b:b2:95: 62:e7:91:06:8b:d2:cd:8f:b5:9b:3c:08:d4:a5:94: c4:22:cd:43:1e:9b:3c:32:29:f5:64:cf:0b:da:80: 0b:a2:62:7e:e6:ce:a4:10:fa:8b:50:4d:fe:ec:10: 8f:12:65:2b:d8:ce:eb:09:15:67:1a:5c:64:7a:c9: 63:19:d5:f8:cc:ab:42:11:61:e9:61:19:71:4a:6b: 3b:5c:3e:8a:74:94:c0:0e:91:6a:c9:b2:87:27:91: 37:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:90:C7:F2:E9:AA:92:F3:9F:EE:9B:01:B9:0B:E9:6A:08:43:9A:72 X509v3 Authority Key Identifier: keyid:6B:57:09:32:90:D1:1F:65:CF:B9:1F:12:12:C2:8C:F7:33:F9:C2:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/a1cJMpDRH2XPuR8SEsKM9zP5wrU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1cJMpDRH2XPuR8SEsKM9zP5wrU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AAA/0CA77C825C4711EEAA9FE966C4F9AE02/8A389AC25C4811EEBE1CF06BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.71.0/24 IPv6: 2001:df2:f540::/48 Signature Algorithm: sha256WithRSAEncryption 1d:63:db:ea:67:c6:45:4e:4e:8b:a7:11:ca:1c:10:c9:e9:4d: be:25:e1:f9:04:88:cf:46:f1:52:5a:8b:49:3f:b6:56:42:3f: 81:0d:5f:a3:91:c1:b5:8e:6a:8d:af:98:68:33:3b:f5:2a:eb: 65:34:f4:4f:1f:57:e9:35:fc:bc:7a:7d:d1:f5:4a:4c:9b:0c: a3:5a:59:3e:c6:92:9d:c2:8f:f7:df:a2:01:42:3b:8f:ff:ba: fa:a0:85:a6:7e:60:fb:e9:af:9b:97:63:5e:bc:81:57:be:3e: c0:9a:c8:b2:0f:8c:fb:30:79:42:c9:f2:77:08:c1:32:6a:1d: 58:ef:7f:e6:ef:4f:8e:17:44:83:1b:dd:87:70:e5:c0:43:1c: 12:fa:06:e1:a3:33:ec:13:bc:7c:47:a7:35:c0:fa:a1:e6:95: 6e:f9:b5:67:f8:01:b1:12:76:17:40:f8:75:d0:92:3c:ba:33: 04:74:24:41:ee:74:43:ac:63:29:d3:d9:cc:4d:05:59:0d:f2: d9:c9:ba:66:01:2b:0c:7b:ad:54:a1:5f:54:95:bc:f5:49:a0: c9:71:05:17:ff:21:55:6e:8d:90:93:81:f6:b8:ed:86:7b:6c: bb:9a:f6:3f:60:84:79:03:36:1b:03:6b:42:23:bf:ac:a8:79: c1:9b:ef:d6 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQUExMTAvBgNVBAUTKDZCNTcwOTMyOTBEMTFGNjVDRkI5MUYxMjEyQzI4Q0Y3 MzNGOUMyQjUwHhcNMjUxMDI5MDM0ODAxWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTAxOGU3MS1hMmJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHMK4EoLarxihJhHvLZaVAJFf6Wm1y9WVlEBiuMUROZJ07b6+HAZn8pgnZ9Y MqHhE2PWFNTtcOdOFzA4TFWuybaLbJZbcogOdBSLAOG/FXgzsxfrzVvDlsWfmTVZ yXAlooAbCOFmVc5Z2tUdipf8eLNrf63biHJZF94vT05eK24tN943foLhOy/sJbgL IgfR8z9BuzOl6JIfzmqB1HOmR9J7spVi55EGi9LNj7WbPAjUpZTEIs1DHps8Min1 ZM8L2oALomJ+5s6kEPqLUE3+7BCPEmUr2M7rCRVnGlxkesljGdX4zKtCEWHpYRlx Sms7XD6KdJTADpFqybKHJ5E3EwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFLCQx/Lp qpLzn+6bAbkL6WoIQ5pyMB8GA1UdIwQYMBaAFGtXCTKQ0R9lz7kfEhLCjPcz+cK1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFBQS8wQ0E3N0M4MjVD NDcxMUVFQUE5RkU5NjZDNEY5QUUwMi9hMWNKTXBEUkgyWFB1UjhTRXNLTTl6UDV3 clUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ExY0pNcERSSDJYUHVSOFNFc0tNOXpQNXdyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjBBQUEvMENBNzdDODI1QzQ3MTFFRUFBOUZFOTY2QzRGOUFFMDIvOEEzODlBQzI1 QzQ4MTFFRUJFMUNGMDZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnlkcwDwQCAAIwCQMHACABDfL1QDANBgkqhkiG9w0BAQsF AAOCAQEAHWPb6mfGRU5Oi6cRyhwQyelNviXh+QSIz0bxUlqLST+2VkI/gQ1fo5HB tY5qja+YaDM79SrrZTT0Tx9X6TX8vHp90fVKTJsMo1pZPsaSncKP99+iAUI7j/+6 +qCFpn5g++mvm5djXryBV74+wJrIsg+M+zB5QsnydwjBMmodWO9/5u9PjhdEgxvd h3DlwEMcEvoG4aMz7BO8fEenNcD6oeaVbvm1Z/gBsRJ2F0D4ddCSPLozBHQkQe50 Q6xjKdPZzE0FWQ3y2cm6ZgErDHutVKFfVJW89UmgyXEFF/8hVW6NkJOB9rjthnts u5r2P2CEeQM2GwNrQiO/rKh5wZvv1g== -----END CERTIFICATE-----Generated at Wed Nov 5 11:38:08 2025 by rpki-client