$ rpki-client -vvf rpki.apnic.net/member_repository/A9139B49/0780B990C9F811E79EF12009C4F9AE02/1760C2F0DE0F11EFBC253748C4F9AE02.roa File: 1760C2F0DE0F11EFBC253748C4F9AE02.roa (raw, json) Hash identifier: G2dT/aqsMx0KoCwmXvgkhmTnoPOvK+397UePsMgxeC8= Subject key identifier: D3:C5:09:66:82:7E:31:D5:F7:01:CE:C0:E7:D9:F9:FC:70:F9:FF:9C Certificate issuer: /CN=A9139B49/serialNumber=4EE540A48AD973FBD831ABD02603B5FB0FB945BE Certificate serial: 183F Authority key identifier: 4E:E5:40:A4:8A:D9:73:FB:D8:31:AB:D0:26:03:B5:FB:0F:B9:45:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TuVApIrZc_vYMavQJgO1-w-5Rb4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139B49/0780B990C9F811E79EF12009C4F9AE02/1760C2F0DE0F11EFBC253748C4F9AE02.roa Signing time: Wed 12 Feb 2025 17:24:23 +0000 ROA not before: Wed 12 Feb 2025 17:24:23 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 134489 IP address blocks: 122.129.86.0/24 maxlen: 24 122.129.88.0/24 maxlen: 24 203.128.2.0/24 maxlen: 24 203.128.10.0/24 maxlen: 24 203.128.20.0/24 maxlen: 24 203.128.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139B49/0780B990C9F811E79EF12009C4F9AE02/TuVApIrZc_vYMavQJgO1-w-5Rb4.crl rsync://rpki.apnic.net/member_repository/A9139B49/0780B990C9F811E79EF12009C4F9AE02/TuVApIrZc_vYMavQJgO1-w-5Rb4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TuVApIrZc_vYMavQJgO1-w-5Rb4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:38:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6207 (0x183f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139B49, serialNumber=4EE540A48AD973FBD831ABD02603B5FB0FB945BE Validity Not Before: Feb 12 17:24:23 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67acd946-4ac3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:e0:2c:75:1c:52:06:c6:05:2b:0e:a3:df:ca: 92:48:69:5d:46:90:08:39:23:23:ec:7a:81:61:e4: ac:cd:5d:00:7d:f6:3b:ae:52:7e:6e:94:bd:54:f9: d0:ed:75:e6:db:5f:d0:e0:28:8a:2f:8c:fa:b8:cf: db:3f:c0:7a:7e:21:f8:ee:79:a8:e5:a9:df:da:c0: fa:6d:90:38:37:a7:b5:b1:fd:46:6d:30:66:bb:d2: 05:3b:e9:ee:48:d6:48:8d:c6:01:b5:9c:00:99:30: 6e:01:42:d4:fa:c8:82:3f:67:a7:49:25:1a:28:b9: ca:b3:f3:ad:30:06:ff:4e:15:15:fb:07:5e:57:5a: 89:c4:6f:bd:96:03:e1:2a:b9:2f:fc:33:1f:ac:3a: 36:37:92:7e:1c:ed:cc:3a:ab:1c:90:52:a2:23:32: f9:54:6f:a6:82:09:0b:32:7c:05:a4:f6:f8:4d:49: 5e:55:5d:23:62:54:cf:a0:e7:7a:7e:ee:56:74:b5: 67:ce:3a:88:ba:58:14:08:83:53:55:3a:e9:2c:51: f7:02:af:70:e9:cf:8e:49:89:8d:a8:fd:68:06:dc: dc:1e:84:0d:78:b4:d2:c1:77:a3:33:c3:09:12:b5: 1c:b9:a3:be:8d:00:e8:a9:30:2b:d4:d1:e8:78:2d: 7e:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:C5:09:66:82:7E:31:D5:F7:01:CE:C0:E7:D9:F9:FC:70:F9:FF:9C X509v3 Authority Key Identifier: keyid:4E:E5:40:A4:8A:D9:73:FB:D8:31:AB:D0:26:03:B5:FB:0F:B9:45:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139B49/0780B990C9F811E79EF12009C4F9AE02/TuVApIrZc_vYMavQJgO1-w-5Rb4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TuVApIrZc_vYMavQJgO1-w-5Rb4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139B49/0780B990C9F811E79EF12009C4F9AE02/1760C2F0DE0F11EFBC253748C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 122.129.86.0/24 122.129.88.0/24 203.128.2.0/24 203.128.10.0/24 203.128.20.0/24 203.128.24.0/24 Signature Algorithm: sha256WithRSAEncryption 86:9b:ba:5a:d0:ef:10:98:41:74:87:fb:7a:ca:d2:5b:78:45: f9:57:1d:51:37:13:f5:2a:7e:f5:29:f9:c3:69:0c:ad:7f:85: b5:ef:66:b0:a6:7b:11:2e:e3:28:46:d3:20:a9:b0:d9:ba:d7: 4f:34:81:27:72:f0:c9:a5:55:9f:19:03:a6:66:4c:24:c1:39: cc:f4:54:02:58:43:19:31:63:b7:5a:14:b1:0c:84:60:1b:a4: 8b:d9:e4:49:30:6b:51:c2:da:13:aa:bd:79:3d:61:68:38:53: ea:0b:00:8d:83:1f:40:58:b1:d6:7c:86:1e:7b:e5:0d:7b:f7: ad:40:94:44:98:f0:71:12:16:7b:52:aa:8e:b9:de:82:b4:f5: 86:57:32:b6:32:0d:8b:b6:c6:18:28:bf:6f:61:85:c8:89:71: 57:2a:4d:89:30:e0:c4:e9:cc:bf:d8:7e:a4:d3:03:98:0f:4a: 06:02:6f:55:17:67:b3:36:54:87:b2:38:04:eb:bb:40:be:89: 0d:43:55:d2:e7:52:6f:59:e2:9e:01:7c:32:53:d7:68:a0:13: 76:6f:e3:3a:7c:27:d4:d1:76:ea:04:c4:10:a2:a8:f4:c2:94: 05:29:4d:ad:cc:5a:68:b2:cc:9f:56:49:47:7b:fe:1a:e0:90: a8:d5:e4:9c -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICGD8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzlCNDkxMTAvBgNVBAUTKDRFRTU0MEE0OEFEOTczRkJEODMxQUJEMDI2MDNCNUZC MEZCOTQ1QkUwHhcNMjUwMjEyMTcyNDIzWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2FjZDk0Ni00YWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8OAsdRxSBsYFKw6j38qSSGldRpAIOSMj7HqBYeSszV0AffY7rlJ+bpS9VPnQ 7XXm21/Q4CiKL4z6uM/bP8B6fiH47nmo5anf2sD6bZA4N6e1sf1GbTBmu9IFO+nu SNZIjcYBtZwAmTBuAULU+siCP2enSSUaKLnKs/OtMAb/ThUV+wdeV1qJxG+9lgPh Krkv/DMfrDo2N5J+HO3MOqsckFKiIzL5VG+mggkLMnwFpPb4TUleVV0jYlTPoOd6 fu5WdLVnzjqIulgUCINTVTrpLFH3Aq9w6c+OSYmNqP1oBtzcHoQNeLTSwXejM8MJ ErUcuaO+jQDoqTAr1NHoeC1+fQIDAQABo4ICszCCAq8wHQYDVR0OBBYEFNPFCWaC fjHV9wHOwOfZ+fxw+f+cMB8GA1UdIwQYMBaAFE7lQKSK2XP72DGr0CYDtfsPuUW+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOUI0OS8wNzgwQjk5MEM5 RjgxMUU3OUVGMTIwMDlDNEY5QUUwMi9UdVZBcElyWmNfdllNYXZRSmdPMS13LTVS YjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1R1VkFwSXJaY192WU1hdlFKZ08xLXctNVJiNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzlCNDkvMDc4MEI5OTBDOUY4MTFFNzlFRjEyMDA5QzRGOUFFMDIvMTc2MEMyRjBE RTBGMTFFRkJDMjUzNzQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMCoEAgABMCQDBAB6gVYDBAB6gVgDBADLgAIDBADLgAoDBADLgBQDBADLgBgw DQYJKoZIhvcNAQELBQADggEBAIabulrQ7xCYQXSH+3rK0lt4RflXHVE3E/UqfvUp +cNpDK1/hbXvZrCmexEu4yhG0yCpsNm61080gSdy8MmlVZ8ZA6ZmTCTBOcz0VAJY QxkxY7daFLEMhGAbpIvZ5Ekwa1HC2hOqvXk9YWg4U+oLAI2DH0BYsdZ8hh575Q17 961AlESY8HESFntSqo653oK09YZXMrYyDYu2xhgov29hhciJcVcqTYkw4MTpzL/Y fqTTA5gPSgYCb1UXZ7M2VIeyOATru0C+iQ1DVdLnUm9Z4p4BfDJT12igE3Zv4zp8 J9TRduoExBCiqPTClAUpTa3MWmiyzJ9WSUd7/hrgkKjV5Jw= -----END CERTIFICATE-----Generated at Wed Nov 5 04:47:14 2025 by rpki-client