$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/8F9CB4448F3511ECB2182782C4F9AE02.roa File: 8F9CB4448F3511ECB2182782C4F9AE02.roa (raw, json) Hash identifier: dOvAjf7RAVetavYFS5Luk51Mj5sbART3WqfDlwnlFcs= Subject key identifier: 0D:AE:D7:C5:9D:4A:A8:54:88:AA:C9:A6:32:9E:32:FA:3E:BE:F3:D9 Certificate issuer: /CN=A917B4BF/serialNumber=8035090A057327E1200593C20C88C519A45C9ECB Certificate serial: 03F7 Authority key identifier: 80:35:09:0A:05:73:27:E1:20:05:93:C2:0C:88:C5:19:A4:5C:9E:CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDUJCgVzJ-EgBZPCDIjFGaRcnss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/8F9CB4448F3511ECB2182782C4F9AE02.roa Signing time: Sat 05 Apr 2025 01:05:48 +0000 ROA not before: Sat 05 Apr 2025 01:05:48 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 18250 IP address blocks: 103.181.44.0/23 maxlen: 24 2400:58a0:d000::/36 maxlen: 48 2400:58a0:e000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/gDUJCgVzJ-EgBZPCDIjFGaRcnss.crl rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/gDUJCgVzJ-EgBZPCDIjFGaRcnss.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDUJCgVzJ-EgBZPCDIjFGaRcnss.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 01:37:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1015 (0x3f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4BF, serialNumber=8035090A057327E1200593C20C88C519A45C9ECB Validity Not Before: Apr 5 01:05:48 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f081eb-5649 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b8:c7:2c:f9:22:b9:50:b2:8d:06:a3:00:24: 01:14:f5:74:d1:d5:04:dd:62:e2:7d:77:7c:8f:93: 6b:c6:dc:48:97:60:5e:66:1b:0c:d9:f4:0d:f1:5c: 47:ee:fe:20:74:5e:20:49:1a:26:2d:73:48:b0:d1: 44:2d:f6:df:b3:4e:be:f8:15:a0:68:be:a8:8d:d7: 0f:64:94:df:1c:95:84:9a:d8:06:a0:e7:84:80:79: 6a:7d:69:00:04:e2:97:35:cc:71:8a:da:17:2c:37: c9:fd:f3:3d:27:0b:8a:01:2d:35:31:f7:74:f1:35: a3:4c:af:f4:ad:9b:62:85:48:b7:59:4f:ab:82:25: 2d:00:0d:7e:7d:66:8c:c5:55:ad:22:ee:30:5d:8a: 1e:32:6a:e0:74:dc:dd:68:93:e0:81:0b:6d:ac:cb: a6:90:80:8b:88:55:f5:11:16:a0:34:9c:15:0a:c1: 6d:4f:4a:b9:6c:1f:3b:89:8e:4f:7f:a7:45:00:1c: 3c:65:9e:bc:bc:bd:1b:7d:6e:7d:86:a1:da:ea:ce: 69:fc:04:4b:0b:94:07:c8:d4:4e:3e:72:92:5a:c3: 4b:bc:0d:39:19:86:0c:3b:30:56:84:96:63:46:2c: 30:4a:6e:68:63:57:cc:77:10:87:e8:ac:39:4a:13: 12:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:AE:D7:C5:9D:4A:A8:54:88:AA:C9:A6:32:9E:32:FA:3E:BE:F3:D9 X509v3 Authority Key Identifier: keyid:80:35:09:0A:05:73:27:E1:20:05:93:C2:0C:88:C5:19:A4:5C:9E:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/gDUJCgVzJ-EgBZPCDIjFGaRcnss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDUJCgVzJ-EgBZPCDIjFGaRcnss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/8F9CB4448F3511ECB2182782C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.181.44.0/23 IPv6: 2400:58a0:d000::-2400:58a0:efff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 18:e6:3a:94:87:d4:c9:95:e5:e1:30:d8:d5:97:ab:1c:33:91: ab:c0:88:88:49:7e:66:16:94:cc:79:cb:e6:ff:72:00:94:8c: b1:b2:3d:da:18:90:3b:79:87:52:6f:bc:ca:7c:86:c1:8c:eb: 8d:ac:40:fa:e5:18:07:29:cb:46:36:8c:91:37:e6:6f:7b:2a: a1:58:97:8c:e2:df:db:1b:84:89:30:45:52:31:2d:78:0d:2b: f8:5d:fd:f9:b0:ad:3e:4d:69:0f:4d:4c:02:3f:cb:8b:f4:4b: c8:d4:a5:bf:db:2b:2e:5e:c9:d1:bd:90:db:20:db:13:be:35: f1:29:f2:57:eb:11:89:43:87:cc:2f:bd:2d:10:dd:f2:b3:d7: eb:48:76:2b:7f:58:6c:c3:41:a2:39:cc:f7:f9:de:d9:99:53: fb:59:dd:f7:a9:33:d4:c1:83:e1:f1:2e:83:e1:18:42:1a:f4: c1:4f:04:e0:45:c9:21:52:67:04:60:5b:71:ab:a3:f6:2f:4b: 65:fa:2d:ab:4f:50:70:69:34:13:35:7c:85:cf:71:51:7e:d2: eb:37:df:f0:a6:89:54:b6:ab:be:d2:af:f6:68:cb:05:d0:01: dd:4f:1c:aa:16:2d:b9:b2:22:07:75:89:ec:b7:bc:f6:90:ed: 5c:cf:4c:29 -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICA/cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0QkYxMTAvBgNVBAUTKDgwMzUwOTBBMDU3MzI3RTEyMDA1OTNDMjBDODhDNTE5 QTQ1QzlFQ0IwHhcNMjUwNDA1MDEwNTQ4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2YwODFlYi01NjQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvbjHLPkiuVCyjQajACQBFPV00dUE3WLifXd8j5NrxtxIl2BeZhsM2fQN8VxH 7v4gdF4gSRomLXNIsNFELfbfs06++BWgaL6ojdcPZJTfHJWEmtgGoOeEgHlqfWkA BOKXNcxxitoXLDfJ/fM9JwuKAS01Mfd08TWjTK/0rZtihUi3WU+rgiUtAA1+fWaM xVWtIu4wXYoeMmrgdNzdaJPggQttrMumkICLiFX1ERagNJwVCsFtT0q5bB87iY5P f6dFABw8ZZ68vL0bfW59hqHa6s5p/ARLC5QHyNROPnKSWsNLvA05GYYMOzBWhJZj RiwwSm5oY1fMdxCH6Kw5ShMSGQIDAQABo4ICrzCCAqswHQYDVR0OBBYEFA2u18Wd SqhUiKrJpjKeMvo+vvPZMB8GA1UdIwQYMBaAFIA1CQoFcyfhIAWTwgyIxRmkXJ7L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRCRi9COENDNjkzQzg1 NUMxMUVDOEUzQ0JCNTFDNEY5QUUwMi9nRFVKQ2dWekotRWdCWlBDRElqRkdhUmNu c3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dEVUpDZ1Z6Si1FZ0JaUENESWpGR2FSY25zcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I0QkYvQjhDQzY5M0M4NTVDMTFFQzhFM0NCQjUxQzRGOUFFMDIvOEY5Q0I0NDQ4 RjM1MTFFQ0IyMTgyNzgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMAwEAgABMAYDBAFntSwwGAQCAAIwEjAQAwYEJABYoNADBgQkAFig4DANBgkq hkiG9w0BAQsFAAOCAQEAGOY6lIfUyZXl4TDY1ZerHDORq8CIiEl+ZhaUzHnL5v9y AJSMsbI92hiQO3mHUm+8ynyGwYzrjaxA+uUYBynLRjaMkTfmb3sqoViXjOLf2xuE iTBFUjEteA0r+F39+bCtPk1pD01MAj/Li/RLyNSlv9srLl7J0b2Q2yDbE7418Sny V+sRiUOHzC+9LRDd8rPX60h2K39YbMNBojnM9/ne2ZlT+1nd96kz1MGD4fEug+EY Qhr0wU8E4EXJIVJnBGBbcauj9i9LZfotq09QcGk0EzV8hc9xUX7S6zff8KaJVLar vtKv9mjLBdAB3U8cqhYtubIiB3WJ7Le89pDtXM9MKQ== -----END CERTIFICATE-----Generated at Fri Oct 24 18:13:40 2025 by rpki-client