$ rpki-client -vvf rpki.apnic.net/member_repository/A912AF79/D0F86D72FE0411ED905E216BC4F9AE02/476C306204A711EEA68A0D2FC4F9AE02.roa File: 476C306204A711EEA68A0D2FC4F9AE02.roa (raw, json) Hash identifier: RyO6brDZcon28lskHekrQI6icOmLyy8RHSVJF6PV6RM= Subject key identifier: 91:FF:88:F4:FB:9E:7D:9B:5A:6F:D7:60:3E:BE:6F:C9:A7:91:F5:A5 Certificate issuer: /CN=A912AF79/serialNumber=6BD8C0A11500B3CA0FEC4A9FD340C3120595B0C7 Certificate serial: 0189 Authority key identifier: 6B:D8:C0:A1:15:00:B3:CA:0F:EC:4A:9F:D3:40:C3:12:05:95:B0:C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9jAoRUAs8oP7Eqf00DDEgWVsMc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912AF79/D0F86D72FE0411ED905E216BC4F9AE02/476C306204A711EEA68A0D2FC4F9AE02.roa Signing time: Fri 27 Jun 2025 03:01:34 +0000 ROA not before: Fri 27 Jun 2025 03:01:34 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 151329 IP address blocks: 103.170.98.0/24 maxlen: 24 103.170.99.0/24 maxlen: 24 2001:df2:7440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912AF79/D0F86D72FE0411ED905E216BC4F9AE02/a9jAoRUAs8oP7Eqf00DDEgWVsMc.crl rsync://rpki.apnic.net/member_repository/A912AF79/D0F86D72FE0411ED905E216BC4F9AE02/a9jAoRUAs8oP7Eqf00DDEgWVsMc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9jAoRUAs8oP7Eqf00DDEgWVsMc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 393 (0x189) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912AF79, serialNumber=6BD8C0A11500B3CA0FEC4A9FD340C3120595B0C7 Validity Not Before: Jun 27 03:01:34 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=685e098e-9177 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:91:2e:7b:17:98:8a:ba:e9:6e:32:10:7d:ae: fc:41:51:1e:1d:59:4f:42:84:81:e4:f9:e4:ed:77: 7f:79:01:ff:01:05:76:06:36:7e:bb:ef:47:29:34: 38:c3:aa:26:f2:bf:19:93:20:24:60:5c:3b:10:51: 37:56:eb:01:55:3e:5c:07:a1:92:c8:54:9e:97:d9: d4:83:2c:e2:70:4e:be:e0:6c:5a:74:39:57:53:ed: f6:b5:23:b6:34:1a:80:eb:5a:17:f7:04:b8:b2:a0: 84:74:0b:7b:14:b5:67:06:4f:48:40:55:49:f7:81: 54:22:14:86:28:ca:e2:fb:c6:b5:7c:00:e3:18:de: 0d:b5:b5:c5:40:c2:70:d2:e1:5d:4b:8d:c7:a5:55: 63:e4:d7:e4:68:b1:13:aa:d0:42:56:65:9a:30:9e: fb:53:fe:40:09:af:4f:72:80:7d:23:9d:45:7a:42: 19:92:88:c2:91:38:51:40:42:c1:6c:e7:e9:5d:a4: 81:e4:87:1e:0b:e2:67:51:98:99:7b:2c:c6:4d:17: 74:29:c9:ff:b2:c9:e1:9d:4c:14:17:67:37:35:b7: 47:53:60:d7:fe:f7:35:df:58:23:ad:95:36:3f:f0: 14:1f:aa:99:41:14:3b:bc:0a:88:7e:36:91:ac:30: d7:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:FF:88:F4:FB:9E:7D:9B:5A:6F:D7:60:3E:BE:6F:C9:A7:91:F5:A5 X509v3 Authority Key Identifier: keyid:6B:D8:C0:A1:15:00:B3:CA:0F:EC:4A:9F:D3:40:C3:12:05:95:B0:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912AF79/D0F86D72FE0411ED905E216BC4F9AE02/a9jAoRUAs8oP7Eqf00DDEgWVsMc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9jAoRUAs8oP7Eqf00DDEgWVsMc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AF79/D0F86D72FE0411ED905E216BC4F9AE02/476C306204A711EEA68A0D2FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.170.98.0/23 IPv6: 2001:df2:7440::/48 Signature Algorithm: sha256WithRSAEncryption 65:29:2f:f3:7b:22:05:3d:c4:2b:35:32:28:4a:94:bd:8e:21: 91:d7:93:84:a0:1c:a8:1d:df:f9:e8:e0:ad:f1:24:5c:7a:39: 7f:6d:51:82:3f:a8:97:ea:01:d8:8a:99:d5:ed:00:6f:cc:a1: 9c:8d:26:73:ed:dd:09:10:a9:cb:9e:b6:6c:3b:3d:44:dc:17: 6f:17:dc:96:c9:5b:25:ec:61:64:04:9c:b9:db:29:49:85:ba: 3f:b8:f4:df:54:79:c4:ce:e5:35:f9:f7:2e:d6:ee:1a:e7:1b: c2:50:ba:51:ab:9c:72:bd:32:32:8a:0d:1b:c3:88:bd:28:25: 39:c8:67:a9:ee:ac:4d:37:d5:22:e0:f9:1d:aa:c8:09:63:bd: 06:3e:ef:16:4e:53:4d:20:11:ed:8f:ee:16:ad:95:a7:0c:39: 4c:0e:bc:89:69:6f:6a:31:3b:53:4e:4d:fd:af:0a:4f:87:33: 29:2a:c4:ef:55:57:aa:f9:a7:88:13:a9:43:e9:d5:1b:4d:3d: ff:7f:a0:ca:80:c0:81:97:bc:31:ef:5b:93:64:e5:8e:94:c7: f6:9a:14:1d:7d:99:e0:01:6c:26:6d:2e:96:67:5e:37:f7:b1: 62:18:ff:17:8c:33:13:f0:df:24:97:c6:4c:94:15:91:80:66: da:da:fc:a1 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkFGNzkxMTAvBgNVBAUTKDZCRDhDMEExMTUwMEIzQ0EwRkVDNEE5RkQzNDBDMzEy MDU5NUIwQzcwHhcNMjUwNjI3MDMwMTM0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODVlMDk4ZS05MTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAupEuexeYirrpbjIQfa78QVEeHVlPQoSB5Pnk7Xd/eQH/AQV2BjZ+u+9HKTQ4 w6om8r8ZkyAkYFw7EFE3VusBVT5cB6GSyFSel9nUgyzicE6+4GxadDlXU+32tSO2 NBqA61oX9wS4sqCEdAt7FLVnBk9IQFVJ94FUIhSGKMri+8a1fADjGN4NtbXFQMJw 0uFdS43HpVVj5NfkaLETqtBCVmWaMJ77U/5ACa9PcoB9I51FekIZkojCkThRQELB bOfpXaSB5IceC+JnUZiZeyzGTRd0Kcn/ssnhnUwUF2c3NbdHU2DX/vc131gjrZU2 P/AUH6qZQRQ7vAqIfjaRrDDXwwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJH/iPT7 nn2bWm/XYD6+b8mnkfWlMB8GA1UdIwQYMBaAFGvYwKEVALPKD+xKn9NAwxIFlbDH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQUY3OS9EMEY4NkQ3MkZF MDQxMUVEOTA1RTIxNkJDNEY5QUUwMi9hOWpBb1JVQXM4b1A3RXFmMDBEREVnV1Zz TWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2E5akFvUlVBczhvUDdFcWYwMERERWdXVnNNYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkFGNzkvRDBGODZENzJGRTA0MTFFRDkwNUUyMTZCQzRGOUFFMDIvNDc2QzMwNjIw NEE3MTFFRUE2OEEwRDJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnqmIwDwQCAAIwCQMHACABDfJ0QDANBgkqhkiG9w0BAQsF AAOCAQEAZSkv83siBT3EKzUyKEqUvY4hkdeThKAcqB3f+ejgrfEkXHo5f21Rgj+o l+oB2IqZ1e0Ab8yhnI0mc+3dCRCpy562bDs9RNwXbxfclslbJexhZAScudspSYW6 P7j031R5xM7lNfn3LtbuGucbwlC6Uauccr0yMooNG8OIvSglOchnqe6sTTfVIuD5 HarICWO9Bj7vFk5TTSAR7Y/uFq2Vpww5TA68iWlvajE7U05N/a8KT4czKSrE71VX qvmniBOpQ+nVG009/3+gyoDAgZe8Me9bk2TljpTH9poUHX2Z4AFsJm0ulmdeN/ex Yhj/F4wzE/DfJJfGTJQVkYBm2tr8oQ== -----END CERTIFICATE-----Generated at Wed Nov 5 08:10:23 2025 by rpki-client