$ rpki-client -vvf rpki.apnic.net/member_repository/A917BEA7/044F6448116811EEAC63C234C4F9AE02/99DA0A4C533C11EF92170913C4F9AE02.roa File: 99DA0A4C533C11EF92170913C4F9AE02.roa (raw, json) Hash identifier: NNWnPeY+H+OxjWlVfrs0w5U8TUAoL0DUbiwdZQKCLSk= Subject key identifier: F8:2B:65:03:42:60:1A:65:5A:FC:D3:62:68:20:43:2A:66:5B:6A:22 Certificate issuer: /CN=A917BEA7/serialNumber=0B8D638FFD38B1F77E48E1BB5DF29929CE7D78B5 Certificate serial: 01B7 Authority key identifier: 0B:8D:63:8F:FD:38:B1:F7:7E:48:E1:BB:5D:F2:99:29:CE:7D:78:B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C41jj_04sfd-SOG7XfKZKc59eLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BEA7/044F6448116811EEAC63C234C4F9AE02/99DA0A4C533C11EF92170913C4F9AE02.roa Signing time: Sun 13 Jul 2025 13:03:18 +0000 ROA not before: Sun 13 Jul 2025 13:03:18 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 61112 IP address blocks: 103.158.116.0/24 maxlen: 24 103.158.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BEA7/044F6448116811EEAC63C234C4F9AE02/C41jj_04sfd-SOG7XfKZKc59eLU.crl rsync://rpki.apnic.net/member_repository/A917BEA7/044F6448116811EEAC63C234C4F9AE02/C41jj_04sfd-SOG7XfKZKc59eLU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C41jj_04sfd-SOG7XfKZKc59eLU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 03:47:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 439 (0x1b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BEA7, serialNumber=0B8D638FFD38B1F77E48E1BB5DF29929CE7D78B5 Validity Not Before: Jul 13 13:03:18 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6873ae96-a114 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:5b:00:27:29:c0:c4:5e:c2:2d:85:b9:ac:16: 1e:4a:67:06:5c:1f:92:1b:7e:5c:37:ac:52:ff:7d: 60:74:8f:2d:55:04:47:c1:4c:01:a5:f1:32:c4:fe: d9:39:98:11:54:5c:58:d8:74:41:e9:28:86:8b:ee: d9:26:e6:33:65:9d:ec:24:d3:cd:50:a0:24:9c:22: 4d:f2:bf:19:76:70:6a:81:20:95:57:67:25:24:09: 56:aa:2e:c9:52:47:c5:b5:82:93:01:ca:aa:38:cb: 28:f9:25:0a:da:74:22:69:f9:2f:44:35:49:c8:cb: 29:28:88:78:ce:9a:98:31:e2:9f:a0:1c:85:53:89: 9b:c9:a0:41:d1:c4:76:86:e9:66:d0:c2:02:74:5c: b8:38:f5:a7:ba:11:80:df:6f:4f:c4:d8:5d:42:91: 8e:59:82:97:1a:c2:e4:e2:5e:56:a8:24:ca:ea:3d: ce:c7:13:19:30:7c:bb:ba:a0:91:e6:35:02:2e:40: 84:56:b9:39:ba:e7:8b:ea:9c:cf:b6:1c:47:b5:39: 21:9c:8f:0b:2a:5a:cf:7d:48:e4:b2:ae:24:20:77: ef:fc:bf:0e:46:bf:87:66:e8:1c:d7:cb:3e:d3:6a: cf:7c:36:88:f6:31:c7:90:1f:ae:cd:2e:ef:3e:24: 0c:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:2B:65:03:42:60:1A:65:5A:FC:D3:62:68:20:43:2A:66:5B:6A:22 X509v3 Authority Key Identifier: keyid:0B:8D:63:8F:FD:38:B1:F7:7E:48:E1:BB:5D:F2:99:29:CE:7D:78:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BEA7/044F6448116811EEAC63C234C4F9AE02/C41jj_04sfd-SOG7XfKZKc59eLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C41jj_04sfd-SOG7XfKZKc59eLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BEA7/044F6448116811EEAC63C234C4F9AE02/99DA0A4C533C11EF92170913C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.158.116.0/23 Signature Algorithm: sha256WithRSAEncryption 63:6d:b2:34:7d:a8:d4:b5:4b:63:af:e7:7d:b0:9d:a1:80:d7: 0f:31:09:7f:7a:f5:0c:ef:b8:26:dc:cb:01:6c:d8:60:ff:48: c5:93:3a:41:9d:35:37:fd:3d:58:08:4a:8c:8e:97:6f:3e:fb: 33:d2:0c:11:a6:2f:6b:5f:e9:d9:dd:99:e4:49:3f:68:7c:22: 6d:07:bf:62:8f:92:4a:9b:5f:60:95:0b:9a:f8:99:be:99:4d: 6d:00:55:5e:51:18:f1:86:37:5c:da:71:88:cb:80:2d:e6:57: 15:a1:ac:58:65:a5:8d:3e:cb:64:92:9f:1d:31:a0:0e:30:7e: c0:94:95:a5:71:f1:79:7b:86:dc:5f:e1:6e:5e:3d:6b:ba:4c: 64:a5:21:29:b8:2a:f0:82:da:29:ee:81:92:c4:05:cb:18:44: 27:c2:9b:b1:38:71:42:61:a9:b2:21:21:ef:b6:94:51:ad:ff: b6:81:1e:50:48:2c:25:cc:a2:aa:8d:f0:71:ed:92:4d:42:b1: 27:e4:a6:1e:f5:b8:e8:f4:6c:e2:11:2a:56:98:d3:e9:e4:47: 7f:0c:a5:79:85:e2:ae:f3:6c:a3:4d:1b:f1:5d:04:8c:53:32: d4:f5:3b:6d:77:d0:33:74:e1:13:b2:3f:2f:0f:63:5f:95:8e: 67:85:6a:fc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAbcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JFQTcxMTAvBgNVBAUTKDBCOEQ2MzhGRkQzOEIxRjc3RTQ4RTFCQjVERjI5OTI5 Q0U3RDc4QjUwHhcNMjUwNzEzMTMwMzE4WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODczYWU5Ni1hMTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxFsAJynAxF7CLYW5rBYeSmcGXB+SG35cN6xS/31gdI8tVQRHwUwBpfEyxP7Z OZgRVFxY2HRB6SiGi+7ZJuYzZZ3sJNPNUKAknCJN8r8ZdnBqgSCVV2clJAlWqi7J UkfFtYKTAcqqOMso+SUK2nQiafkvRDVJyMspKIh4zpqYMeKfoByFU4mbyaBB0cR2 hulm0MICdFy4OPWnuhGA329PxNhdQpGOWYKXGsLk4l5WqCTK6j3OxxMZMHy7uqCR 5jUCLkCEVrk5uueL6pzPthxHtTkhnI8LKlrPfUjksq4kIHfv/L8ORr+HZugc18s+ 02rPfDaI9jHHkB+uzS7vPiQM5wIDAQABo4IClTCCApEwHQYDVR0OBBYEFPgrZQNC YBplWvzTYmggQypmW2oiMB8GA1UdIwQYMBaAFAuNY4/9OLH3fkjhu13ymSnOfXi1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkVBNy8wNDRGNjQ0ODEx NjgxMUVFQUM2M0MyMzRDNEY5QUUwMi9DNDFqal8wNHNmZC1TT0c3WGZLWktjNTll TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M0MWpqXzA0c2ZkLVNPRzdYZktaS2M1OWVMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0JFQTcvMDQ0RjY0NDgxMTY4MTFFRUFDNjNDMjM0QzRGOUFFMDIvOTlEQTBBNEM1 MzNDMTFFRjkyMTcwOTEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnnnQwDQYJKoZIhvcNAQELBQADggEBAGNtsjR9qNS1S2Ov 532wnaGA1w8xCX969QzvuCbcywFs2GD/SMWTOkGdNTf9PVgISoyOl28++zPSDBGm L2tf6dndmeRJP2h8Im0Hv2KPkkqbX2CVC5r4mb6ZTW0AVV5RGPGGN1zacYjLgC3m VxWhrFhlpY0+y2SSnx0xoA4wfsCUlaVx8Xl7htxf4W5ePWu6TGSlISm4KvCC2inu gZLEBcsYRCfCm7E4cUJhqbIhIe+2lFGt/7aBHlBILCXMoqqN8HHtkk1CsSfkph71 uOj0bOIRKlaY0+nkR38MpXmF4q7zbKNNG/FdBIxTMtT1O2130DN04ROyPy8PY1+V jmeFavw= -----END CERTIFICATE-----Generated at Sun Jul 20 14:35:32 2025 by rpki-client