$ rpki-client -vvf rpki.apnic.net/member_repository/A911F8BC/B1706F48D3D811EBAA1BF410C4F9AE02/99B4BAA6D3E411EBB67F2616C4F9AE02.roa File: 99B4BAA6D3E411EBB67F2616C4F9AE02.roa (raw, json) Hash identifier: 2CCQESvocpfwmEybaJ8bYgcDotITBOYZN57oNNZ0pLY= Subject key identifier: C0:A8:24:F8:41:E6:59:9E:D3:C1:F7:5F:D4:E1:7F:15:E4:A1:55:B6 Certificate issuer: /CN=A911F8BC/serialNumber=5A07E6D8F7197E34A93944EAF69398E4AA7428E9 Certificate serial: 05B8 Authority key identifier: 5A:07:E6:D8:F7:19:7E:34:A9:39:44:EA:F6:93:98:E4:AA:74:28:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wgfm2PcZfjSpOUTq9pOY5Kp0KOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F8BC/B1706F48D3D811EBAA1BF410C4F9AE02/99B4BAA6D3E411EBB67F2616C4F9AE02.roa Signing time: Fri 11 Jul 2025 00:05:46 +0000 ROA not before: Fri 11 Jul 2025 00:05:46 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 137967 IP address blocks: 103.168.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F8BC/B1706F48D3D811EBAA1BF410C4F9AE02/Wgfm2PcZfjSpOUTq9pOY5Kp0KOk.crl rsync://rpki.apnic.net/member_repository/A911F8BC/B1706F48D3D811EBAA1BF410C4F9AE02/Wgfm2PcZfjSpOUTq9pOY5Kp0KOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wgfm2PcZfjSpOUTq9pOY5Kp0KOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 23:19:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1464 (0x5b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F8BC, serialNumber=5A07E6D8F7197E34A93944EAF69398E4AA7428E9 Validity Not Before: Jul 11 00:05:46 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6870555a-62fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:89:c4:90:79:2c:76:24:60:c2:3b:6c:bb:85: 9c:57:a6:33:da:57:86:47:2b:c7:b5:1c:34:e0:db: e6:5f:60:c5:ff:60:86:17:9c:e1:d2:d7:0a:6f:27: be:32:99:89:58:ef:92:a1:e0:4a:6e:e2:5b:c6:8a: ac:39:14:f0:31:2e:09:65:4d:bc:45:21:a3:35:1f: b5:f8:f9:c2:4a:69:87:b5:ec:43:14:d3:7c:6a:ce: b8:44:a1:5f:2a:4b:fe:9e:97:91:14:c0:65:06:f6: ad:0c:3d:fe:f7:ef:9d:0f:6c:9e:77:0a:62:4c:d8: d2:d5:ab:ea:e7:81:2f:b0:ac:88:bb:77:bf:de:58: e3:c9:6b:4e:a3:7a:54:0a:63:d4:1d:09:0c:05:60: 48:dd:7d:4e:c4:fd:f2:d4:bd:2a:0e:72:ee:17:af: ff:0c:2f:05:a9:21:31:1c:7f:19:38:dd:b4:d2:98: 70:5d:92:14:60:31:3d:74:e2:81:0d:d5:2b:00:8d: 3f:79:f3:34:4e:ad:93:fa:17:5e:07:ca:48:1e:c1: 88:12:44:b2:26:26:d6:bb:f1:d9:79:50:b9:81:30: 7b:5a:fd:4c:e5:8e:05:03:ec:e1:db:65:93:bc:b8: 86:2c:36:43:d2:a8:6d:d7:5b:b8:a2:dd:54:8c:27: 06:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:A8:24:F8:41:E6:59:9E:D3:C1:F7:5F:D4:E1:7F:15:E4:A1:55:B6 X509v3 Authority Key Identifier: keyid:5A:07:E6:D8:F7:19:7E:34:A9:39:44:EA:F6:93:98:E4:AA:74:28:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F8BC/B1706F48D3D811EBAA1BF410C4F9AE02/Wgfm2PcZfjSpOUTq9pOY5Kp0KOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wgfm2PcZfjSpOUTq9pOY5Kp0KOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F8BC/B1706F48D3D811EBAA1BF410C4F9AE02/99B4BAA6D3E411EBB67F2616C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.168.207.0/24 Signature Algorithm: sha256WithRSAEncryption 35:42:6d:f3:44:6f:72:eb:82:ee:86:76:f7:73:c7:89:e9:b0: 90:5d:48:22:a8:d2:aa:3c:ef:47:6e:00:76:7a:8b:e6:7b:fa: e0:f2:1a:97:f8:96:18:f0:e2:e5:5b:06:08:6f:b9:91:35:b3: 9e:ab:4c:10:0a:c3:10:d8:4f:9c:bd:d2:94:a0:01:50:68:7e: 33:c5:09:b3:a3:ca:5d:25:ab:47:f5:96:4b:21:24:4a:93:0a: 7f:fe:97:a8:f9:ed:f0:35:d5:9b:c0:1a:81:b9:a7:55:30:92: 48:54:75:43:1f:96:82:c8:95:9b:6e:40:85:8f:32:65:de:b1: c5:f7:6a:3c:cc:78:c0:66:e5:d6:48:69:41:b4:fc:93:9c:49: 57:dd:7f:01:d0:df:6e:ca:59:57:dc:e5:9d:a0:89:a4:50:19: c0:7e:11:1a:9a:4b:94:77:ec:c9:96:16:07:7d:5d:3c:fa:b7: 03:1a:1f:85:0d:84:2a:c8:53:fd:f7:eb:18:da:2c:d6:18:87: 21:cd:bb:65:e8:61:16:5a:13:7b:01:d1:9a:35:f2:0f:16:b5: cb:53:28:18:03:de:85:c3:62:75:dc:d4:23:d3:46:cb:7c:92: 20:95:f6:f1:d7:59:28:48:be:f5:83:ee:c8:63:cc:65:2f:aa: 88:27:bd:a7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBbgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY4QkMxMTAvBgNVBAUTKDVBMDdFNkQ4RjcxOTdFMzRBOTM5NDRFQUY2OTM5OEU0 QUE3NDI4RTkwHhcNMjUwNzExMDAwNTQ2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODcwNTU1YS02MmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnYnEkHksdiRgwjtsu4WcV6Yz2leGRyvHtRw04NvmX2DF/2CGF5zh0tcKbye+ MpmJWO+SoeBKbuJbxoqsORTwMS4JZU28RSGjNR+1+PnCSmmHtexDFNN8as64RKFf Kkv+npeRFMBlBvatDD3+9++dD2yedwpiTNjS1avq54EvsKyIu3e/3ljjyWtOo3pU CmPUHQkMBWBI3X1OxP3y1L0qDnLuF6//DC8FqSExHH8ZON200phwXZIUYDE9dOKB DdUrAI0/efM0Tq2T+hdeB8pIHsGIEkSyJibWu/HZeVC5gTB7Wv1M5Y4FA+zh22WT vLiGLDZD0qht11u4ot1UjCcGJQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMCoJPhB 5lme08H3X9ThfxXkoVW2MB8GA1UdIwQYMBaAFFoH5tj3GX40qTlE6vaTmOSqdCjp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjhCQy9CMTcwNkY0OEQz RDgxMUVCQUExQkY0MTBDNEY5QUUwMi9XZ2ZtMlBjWmZqU3BPVVRxOXBPWTVLcDBL T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dnZm0yUGNaZmpTcE9VVHE5cE9ZNUtwMEtPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUY4QkMvQjE3MDZGNDhEM0Q4MTFFQkFBMUJGNDEwQzRGOUFFMDIvOTlCNEJBQTZE M0U0MTFFQkI2N0YyNjE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnqM8wDQYJKoZIhvcNAQELBQADggEBADVCbfNEb3Lrgu6G dvdzx4npsJBdSCKo0qo870duAHZ6i+Z7+uDyGpf4lhjw4uVbBghvuZE1s56rTBAK wxDYT5y90pSgAVBofjPFCbOjyl0lq0f1lkshJEqTCn/+l6j57fA11ZvAGoG5p1Uw kkhUdUMfloLIlZtuQIWPMmXescX3ajzMeMBm5dZIaUG0/JOcSVfdfwHQ327KWVfc 5Z2giaRQGcB+ERqaS5R37MmWFgd9XTz6twMaH4UNhCrIU/336xjaLNYYhyHNu2Xo YRZaE3sB0Zo18g8WtctTKBgD3oXDYnXc1CPTRst8kiCV9vHXWShIvvWD7shjzGUv qognvac= -----END CERTIFICATE-----Generated at Mon Jul 21 12:43:37 2025 by rpki-client