$ rpki-client -vvf rpki.apnic.net/member_repository/A9125E89/76010778B24111EB99DAE928C4F9AE02/12CC9D1857A711EDB284106DC4F9AE02.roa File: 12CC9D1857A711EDB284106DC4F9AE02.roa (raw, json) Hash identifier: BveT190IYa4IZx/c6x7to7FKf5iRH7eeNb+xgKFxkXc= Subject key identifier: 38:3A:50:9E:EF:E5:1D:10:E0:99:39:FF:79:C2:9B:C6:44:D6:44:FB Certificate issuer: /CN=A9125E89/serialNumber=7C2A96A5A9034CDF2A786F64BDF27FD8AC51C92B Certificate serial: 0681 Authority key identifier: 7C:2A:96:A5:A9:03:4C:DF:2A:78:6F:64:BD:F2:7F:D8:AC:51:C9:2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fCqWpakDTN8qeG9kvfJ_2KxRySs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125E89/76010778B24111EB99DAE928C4F9AE02/12CC9D1857A711EDB284106DC4F9AE02.roa Signing time: Sun 01 Mar 2026 09:49:06 +0000 ROA not before: Thu 04 Sep 2025 23:04:38 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 18196 IP address blocks: 103.97.249.0/24 maxlen: 24 103.122.6.0/24 maxlen: 24 103.122.12.0/23 maxlen: 23 103.122.12.0/24 maxlen: 24 103.122.13.0/24 maxlen: 24 2001:df2:700::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125E89/76010778B24111EB99DAE928C4F9AE02/fCqWpakDTN8qeG9kvfJ_2KxRySs.crl rsync://rpki.apnic.net/member_repository/A9125E89/76010778B24111EB99DAE928C4F9AE02/fCqWpakDTN8qeG9kvfJ_2KxRySs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fCqWpakDTN8qeG9kvfJ_2KxRySs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 02:06:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1665 (0x681) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125E89, serialNumber=7C2A96A5A9034CDF2A786F64BDF27FD8AC51C92B Validity Not Before: Sep 4 23:04:38 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a40b92-0467 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:92:b1:3a:4b:d6:a3:9e:47:e4:00:81:50:d2: c9:2d:4c:55:95:cd:5d:23:70:20:88:6b:66:a8:b3: 8c:c1:8c:14:6b:ea:bb:2e:ef:9d:df:d0:39:d2:9a: 18:59:2a:9d:36:d2:d0:e0:bf:b6:ca:dd:dd:43:1c: 0f:05:9b:ae:b8:c3:5d:79:33:7b:c8:2e:17:c9:98: 20:92:99:5c:2d:cc:90:9a:d5:e7:38:91:95:06:31: 1a:be:88:fd:44:0f:ec:25:17:0e:18:87:5b:34:e9: 42:12:47:a0:0f:49:91:eb:9d:be:8d:88:1f:25:de: bd:46:3d:c0:0c:54:d6:9a:57:81:30:1a:f3:5a:83: 49:09:52:4c:7b:ee:14:1d:b7:2e:da:77:1f:9b:14: f5:a6:54:cc:84:3c:e5:e6:6e:2d:26:4b:f5:b6:5c: cf:88:98:20:ec:8d:7d:71:9f:c8:98:4f:e6:98:57: c3:2f:0b:10:8c:4c:f6:73:03:80:1a:fc:70:4a:7e: 94:cf:a7:48:06:c4:b6:9c:84:a6:39:33:ee:7d:c7: 84:9f:80:66:86:0f:27:3c:eb:3c:48:2f:97:cc:e7: 73:b2:d4:f3:cf:30:12:1c:e6:7f:f8:39:42:e4:a2: d3:12:62:da:4f:7d:2d:64:b5:bc:68:d5:eb:04:ba: 03:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:3A:50:9E:EF:E5:1D:10:E0:99:39:FF:79:C2:9B:C6:44:D6:44:FB X509v3 Authority Key Identifier: keyid:7C:2A:96:A5:A9:03:4C:DF:2A:78:6F:64:BD:F2:7F:D8:AC:51:C9:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125E89/76010778B24111EB99DAE928C4F9AE02/fCqWpakDTN8qeG9kvfJ_2KxRySs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fCqWpakDTN8qeG9kvfJ_2KxRySs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125E89/76010778B24111EB99DAE928C4F9AE02/12CC9D1857A711EDB284106DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.97.249.0/24 103.122.6.0/24 103.122.12.0/23 IPv6: 2001:df2:700::/48 Signature Algorithm: sha256WithRSAEncryption 69:d1:73:86:e5:05:70:32:8e:80:9f:e9:3c:57:62:6b:ee:d6: 64:f0:a0:88:7d:b1:e8:ea:30:3a:c6:ba:3c:82:00:2b:90:9a: 2d:a4:46:22:fc:81:bb:3e:d7:81:41:68:7f:eb:30:fc:8b:93: 78:02:5c:5f:0e:27:fe:9c:28:5a:a3:b1:d4:d3:6a:62:da:0c: 32:64:21:d1:73:e1:84:91:52:9f:b2:a5:a4:90:78:44:f7:23: f5:62:49:b2:3b:43:9b:86:44:06:45:a3:b3:82:8f:92:44:91: 2c:ba:3b:a7:18:78:28:7c:b2:93:8d:c3:00:fc:30:fa:99:08: d9:42:4f:2b:97:d6:74:13:a2:06:a7:0b:27:e1:b8:ba:13:57: b5:fb:84:e7:14:8a:fe:b8:9e:db:5d:8c:03:91:62:ab:77:b3: a7:34:b7:d8:e0:0b:98:aa:31:3d:ad:07:cd:30:63:10:2c:43: f5:96:98:91:14:eb:e3:88:5d:39:61:98:4d:6d:d2:81:af:56: 65:76:a7:c7:a3:73:31:3f:6f:ac:5d:07:d1:cc:c0:1d:99:da: 3c:67:17:db:ac:8b:1e:69:1d:c5:ce:eb:77:bb:69:b4:ef:41: 86:f6:23:be:e6:69:cd:40:ca:01:19:83:7f:17:f6:d6:eb:b2: 42:c8:af:ce -----BEGIN CERTIFICATE----- MIIFWTCCBEGgAwIBAgICBoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVFODkxMTAvBgNVBAUTKDdDMkE5NkE1QTkwMzRDREYyQTc4NkY2NEJERjI3RkQ4 QUM1MUM5MkIwHhcNMjUwOTA0MjMwNDM4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0MGI5Mi0wNDY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt5KxOkvWo55H5ACBUNLJLUxVlc1dI3AgiGtmqLOMwYwUa+q7Lu+d39A50poY WSqdNtLQ4L+2yt3dQxwPBZuuuMNdeTN7yC4XyZggkplcLcyQmtXnOJGVBjEavoj9 RA/sJRcOGIdbNOlCEkegD0mR652+jYgfJd69Rj3ADFTWmleBMBrzWoNJCVJMe+4U Hbcu2ncfmxT1plTMhDzl5m4tJkv1tlzPiJgg7I19cZ/ImE/mmFfDLwsQjEz2cwOA GvxwSn6Uz6dIBsS2nISmOTPufceEn4Bmhg8nPOs8SC+XzOdzstTzzzASHOZ/+DlC 5KLTEmLaT30tZLW8aNXrBLoDLQIDAQABo4ICfTCCAnkwHQYDVR0OBBYEFDg6UJ7v 5R0Q4Jk5/3nCm8ZE1kT7MB8GA1UdIwQYMBaAFHwqlqWpA0zfKnhvZL3yf9isUckr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUU4OS83NjAxMDc3OEIy NDExMUVCOTlEQUU5MjhDNEY5QUUwMi9mQ3FXcGFrRFROOHFlRzlrdmZKXzJLeFJ5 U3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZDcVdwYWtEVE44cWVHOWt2ZkpfMkt4UnlTcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjVFODkvNzYwMTA3NzhCMjQxMTFFQjk5REFFOTI4QzRGOUFFMDIvMTJDQzlEMTg1 N0E3MTFFREIyODQxMDZEQzRGOUFFMDIucm9hMDwGCCsGAQUFBwEHAQH/BC0wKzAY BAIAATASAwQAZ2H5AwQAZ3oGAwQBZ3oMMA8EAgACMAkDBwAgAQ3yBwAwDQYJKoZI hvcNAQELBQADggEBAGnRc4blBXAyjoCf6TxXYmvu1mTwoIh9sejqMDrGujyCACuQ mi2kRiL8gbs+14FBaH/rMPyLk3gCXF8OJ/6cKFqjsdTTamLaDDJkIdFz4YSRUp+y paSQeET3I/ViSbI7Q5uGRAZFo7OCj5JEkSy6O6cYeCh8spONwwD8MPqZCNlCTyuX 1nQToganCyfhuLoTV7X7hOcUiv64nttdjAORYqt3s6c0t9jgC5iqMT2tB80wYxAs Q/WWmJEU6+OIXTlhmE1t0oGvVmV2p8ejczE/b6xdB9HMwB2Z2jxnF9usix5pHcXO 63e7abTvQYb2I77mac1AygEZg38X9tbrskLIr84= -----END CERTIFICATE-----Generated at Mon Mar 2 06:17:41 2026 by rpki-client