$ rpki-client -vvf rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/8497885E04F911E9AF13ED31C4F9AE02.roa File: 8497885E04F911E9AF13ED31C4F9AE02.roa (raw, json) Hash identifier: C3b1kJVj/ZgKAe5Ws86NLC+2MF3aglPyf/qxRhLS+ZQ= Subject key identifier: 9A:E7:A5:AF:57:75:75:9C:07:A0:6F:01:48:E1:DB:40:9C:67:87:B0 Certificate issuer: /CN=A91112BC/serialNumber=6FF31B0659A6AE16C7A0A4EE0EE6A22910EC2E00 Certificate serial: 11A1 Authority key identifier: 6F:F3:1B:06:59:A6:AE:16:C7:A0:A4:EE:0E:E6:A2:29:10:EC:2E:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_MbBlmmrhbHoKTuDuaiKRDsLgA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/8497885E04F911E9AF13ED31C4F9AE02.roa Signing time: Fri 06 Jun 2025 17:30:05 +0000 ROA not before: Fri 06 Jun 2025 17:30:05 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 63682 IP address blocks: 103.59.50.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.crl rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_MbBlmmrhbHoKTuDuaiKRDsLgA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 17:38:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4513 (0x11a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91112BC, serialNumber=6FF31B0659A6AE16C7A0A4EE0EE6A22910EC2E00 Validity Not Before: Jun 6 17:30:05 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6843259d-28f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:9f:0e:2b:33:b6:03:f7:24:1d:b8:04:08:0c: 14:b5:28:cd:52:ea:98:c6:cc:64:65:e5:fc:6f:cd: 57:2e:56:a6:4e:4a:4a:28:b6:aa:41:10:42:2e:ff: b7:1e:8b:f8:54:81:40:76:95:f6:3c:13:40:b5:2f: 09:e6:d6:f7:ed:3b:6c:e0:e0:10:92:87:5a:db:b6: ed:d1:37:10:25:f5:d5:9b:f1:93:f7:f0:48:dc:05: ac:d3:aa:c2:28:da:f7:42:c0:55:2a:dc:fe:6a:fc: ea:76:12:28:70:ee:cb:c1:49:68:93:40:f4:c6:c8: bc:85:e8:5c:16:f5:83:c2:72:cb:e7:29:4f:13:da: ee:b0:8e:87:3f:ff:d6:b9:cc:c2:68:71:21:da:22: 08:e2:70:de:2a:2a:dc:3e:4c:74:61:04:21:9e:69: 2e:2a:9f:e3:a5:c5:11:34:b0:56:b5:ff:be:42:cd: f0:2f:10:8f:1f:29:b4:b2:53:c2:d2:ca:95:0f:2b: 00:e7:b9:93:cf:5b:f1:2a:03:f2:ab:f1:d2:f8:0e: 01:aa:f9:28:63:ec:dc:bb:92:6d:7b:43:9e:20:2c: 98:77:fd:63:0e:9b:2f:58:b8:c7:8f:69:07:bd:40: 56:75:92:e9:26:e2:21:81:c2:ee:8e:63:20:c5:e8: ce:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:E7:A5:AF:57:75:75:9C:07:A0:6F:01:48:E1:DB:40:9C:67:87:B0 X509v3 Authority Key Identifier: keyid:6F:F3:1B:06:59:A6:AE:16:C7:A0:A4:EE:0E:E6:A2:29:10:EC:2E:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_MbBlmmrhbHoKTuDuaiKRDsLgA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/8497885E04F911E9AF13ED31C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.59.50.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:90:2e:83:bc:08:ac:d8:59:a1:a3:2d:af:f0:31:4a:65:c5: ea:8b:e2:66:f2:66:a0:0a:e8:d1:a3:f0:55:89:94:46:41:ac: 85:03:19:a1:96:74:21:c9:77:f9:c2:bb:86:66:32:5b:8f:d6: 9e:99:42:87:7e:b6:0a:52:c2:eb:e5:19:5a:81:be:6e:64:77: 24:51:46:d9:3e:2b:b9:d3:b6:04:54:e1:83:7f:7e:2f:59:f5: 7a:33:b2:9b:23:20:a0:69:89:f0:8d:3b:b3:13:66:0a:2a:86: 38:93:4e:26:51:ea:87:4c:1e:69:2b:30:18:69:e8:90:19:30: 7b:53:5f:44:38:61:6b:48:64:15:88:05:81:41:28:c4:df:7d: 12:f5:15:ea:2d:d0:80:c3:e7:30:24:b5:90:b9:a9:29:62:d6: 38:fe:18:92:a9:56:58:7c:75:b6:75:eb:97:56:95:2b:e7:a7: d6:e1:88:87:ee:fa:6c:4c:dd:a7:94:1d:53:26:97:e8:df:d7: db:a4:b4:3e:8b:49:f1:4d:8a:9a:c9:4f:40:bb:1b:e2:40:75: ff:b0:7f:57:21:bd:b9:74:f1:97:f6:d6:62:12:76:32:10:c6: 62:cd:70:14:59:3d:0b:78:f6:3a:15:b3:72:9d:44:c1:a6:bc: d7:d8:91:2e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEaEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTEyQkMxMTAvBgNVBAUTKDZGRjMxQjA2NTlBNkFFMTZDN0EwQTRFRTBFRTZBMjI5 MTBFQzJFMDAwHhcNMjUwNjA2MTczMDA1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQzMjU5ZC0yOGY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9J8OKzO2A/ckHbgECAwUtSjNUuqYxsxkZeX8b81XLlamTkpKKLaqQRBCLv+3 Hov4VIFAdpX2PBNAtS8J5tb37Tts4OAQkoda27bt0TcQJfXVm/GT9/BI3AWs06rC KNr3QsBVKtz+avzqdhIocO7LwUlok0D0xsi8hehcFvWDwnLL5ylPE9rusI6HP//W uczCaHEh2iII4nDeKircPkx0YQQhnmkuKp/jpcURNLBWtf++Qs3wLxCPHym0slPC 0sqVDysA57mTz1vxKgPyq/HS+A4BqvkoY+zcu5Jte0OeICyYd/1jDpsvWLjHj2kH vUBWdZLpJuIhgcLujmMgxejO+wIDAQABo4IClTCCApEwHQYDVR0OBBYEFJrnpa9X dXWcB6BvAUjh20CcZ4ewMB8GA1UdIwQYMBaAFG/zGwZZpq4Wx6Ck7g7moikQ7C4A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTJCQy9FQkNGMTY4MjA0 RjgxMUU5QkE1MDI0MzFDNEY5QUUwMi9iX01iQmxtbXJoYkhvS1R1RHVhaUtSRHNM Z0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JfTWJCbG1tcmhiSG9LVHVEdWFpS1JEc0xnQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTEyQkMvRUJDRjE2ODIwNEY4MTFFOUJBNTAyNDMxQzRGOUFFMDIvODQ5Nzg4NUUw NEY5MTFFOUFGMTNFRDMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnOzIwDQYJKoZIhvcNAQELBQADggEBAB+QLoO8CKzYWaGj La/wMUplxeqL4mbyZqAK6NGj8FWJlEZBrIUDGaGWdCHJd/nCu4ZmMluP1p6ZQod+ tgpSwuvlGVqBvm5kdyRRRtk+K7nTtgRU4YN/fi9Z9XozspsjIKBpifCNO7MTZgoq hjiTTiZR6odMHmkrMBhp6JAZMHtTX0Q4YWtIZBWIBYFBKMTffRL1Feot0IDD5zAk tZC5qSli1jj+GJKpVlh8dbZ165dWlSvnp9bhiIfu+mxM3aeUHVMml+jf19uktD6L SfFNiprJT0C7G+JAdf+wf1chvbl08Zf21mISdjIQxmLNcBRZPQt49joVs3KdRMGm vNfYkS4= -----END CERTIFICATE-----Generated at Sun Oct 26 12:09:12 2025 by rpki-client