$ rpki-client -vvf rpki.apnic.net/member_repository/A917BEA7/044F6448116811EEAC63C234C4F9AE02/899BFC6C533C11EF8B23DB12C4F9AE02.roa File: 899BFC6C533C11EF8B23DB12C4F9AE02.roa (raw, json) Hash identifier: ihXElke8srSYYptYUqBX48/+59ysvth9EZ73na0o1PM= Subject key identifier: 8B:BD:09:90:4E:9B:14:A9:CE:0C:7B:C7:BC:D0:5D:5A:85:1F:39:08 Certificate issuer: /CN=A917BEA7/serialNumber=0B8D638FFD38B1F77E48E1BB5DF29929CE7D78B5 Certificate serial: 01D6 Authority key identifier: 0B:8D:63:8F:FD:38:B1:F7:7E:48:E1:BB:5D:F2:99:29:CE:7D:78:B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C41jj_04sfd-SOG7XfKZKc59eLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BEA7/044F6448116811EEAC63C234C4F9AE02/899BFC6C533C11EF8B23DB12C4F9AE02.roa Signing time: Sun 31 Aug 2025 04:21:19 +0000 ROA not before: Sun 31 Aug 2025 04:21:19 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 151419 IP address blocks: 103.158.117.0/24 maxlen: 24 2401:e60:1::/48 maxlen: 48 2401:e60:2::/48 maxlen: 48 2401:e60:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BEA7/044F6448116811EEAC63C234C4F9AE02/C41jj_04sfd-SOG7XfKZKc59eLU.crl rsync://rpki.apnic.net/member_repository/A917BEA7/044F6448116811EEAC63C234C4F9AE02/C41jj_04sfd-SOG7XfKZKc59eLU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C41jj_04sfd-SOG7XfKZKc59eLU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:36:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 470 (0x1d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BEA7, serialNumber=0B8D638FFD38B1F77E48E1BB5DF29929CE7D78B5 Validity Not Before: Aug 31 04:21:19 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68b3cdbf-2327 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:6d:ab:e1:ec:3a:d9:ef:f9:c0:27:b4:a9:e1: 2e:3a:36:4f:55:a8:77:bb:c8:31:3b:7c:d4:32:e9: 75:49:82:21:37:f8:cd:f8:81:b5:53:be:24:40:9e: 32:02:bb:68:85:33:05:9c:23:f3:f0:92:74:37:97: 6d:38:c7:2d:e5:f6:d1:20:6c:ac:42:70:de:01:a3: 03:e4:30:6b:72:3d:18:70:96:4c:5e:83:3a:d2:da: a4:e6:83:bb:da:6a:9b:59:43:18:06:18:cf:45:d7: 9b:78:6d:c7:26:d0:e0:7f:43:54:d7:45:f5:c8:eb: 6f:d2:76:8d:0e:ac:d8:ef:38:67:f0:fa:da:cf:94: 71:3b:84:66:93:9a:cc:d5:b4:7e:0e:9f:de:1f:33: 8c:45:07:ee:7e:08:79:62:bb:d3:20:ec:3d:f3:47: 08:e3:a6:2e:b4:db:32:c7:82:23:13:ba:a8:d2:6f: 92:5b:a2:32:0c:20:e6:c1:44:a0:d5:27:d1:8a:5a: 6a:c4:d7:71:ec:ac:2c:23:cf:0f:d1:d0:f7:60:17: 54:06:38:b7:3b:87:58:e2:71:79:aa:a7:6f:1b:7f: 4b:bb:81:e4:b7:b0:2e:a8:92:95:e1:c5:89:c0:49: 71:6e:15:c6:a9:07:ee:48:96:d2:b5:1d:fa:48:61: e8:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:BD:09:90:4E:9B:14:A9:CE:0C:7B:C7:BC:D0:5D:5A:85:1F:39:08 X509v3 Authority Key Identifier: keyid:0B:8D:63:8F:FD:38:B1:F7:7E:48:E1:BB:5D:F2:99:29:CE:7D:78:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BEA7/044F6448116811EEAC63C234C4F9AE02/C41jj_04sfd-SOG7XfKZKc59eLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C41jj_04sfd-SOG7XfKZKc59eLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BEA7/044F6448116811EEAC63C234C4F9AE02/899BFC6C533C11EF8B23DB12C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.158.117.0/24 IPv6: 2401:e60:1::-2401:e60:3:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption a3:8b:e3:30:c0:67:1a:72:1d:ca:bf:44:04:ce:d7:d9:c2:45: d8:e8:92:54:92:f0:b2:9d:6d:60:3f:67:b6:aa:b8:cc:c7:fe: 8d:80:50:87:90:f9:25:f8:3d:44:a8:9e:f2:1d:72:19:1b:39: 5c:50:a1:2a:52:f3:d8:6e:19:4a:85:0a:03:be:0b:97:76:fc: a4:42:5f:e1:33:40:c9:02:19:00:8f:dd:97:f4:26:08:10:0b: 53:38:dd:b2:2d:97:15:52:d2:f3:59:b1:4a:00:16:1b:64:4a: e4:34:fd:fb:f9:51:56:fb:3b:6f:19:b3:72:6b:07:2b:de:5e: 9d:4b:58:79:29:12:7d:6a:ca:e2:a0:e9:1e:3f:36:29:6d:6f: a2:ab:f1:d5:27:76:a6:52:7a:d9:b1:34:20:01:07:6e:7a:62: 95:1c:b0:37:91:41:02:b3:84:ad:62:2a:fc:a8:00:8e:b9:b1: cf:e0:05:46:12:64:9a:ab:6d:90:97:f3:6d:20:07:87:f3:0c: 0c:c0:86:a3:5b:08:aa:0e:ca:a1:30:0d:8f:f6:8c:be:c9:0b: 40:2a:63:d5:cc:3a:a0:18:31:64:02:41:80:72:da:d0:41:01: 6a:52:20:1d:4c:79:05:7e:f2:56:24:04:91:8a:66:3e:dd:a3: d8:45:46:95 -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICAdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JFQTcxMTAvBgNVBAUTKDBCOEQ2MzhGRkQzOEIxRjc3RTQ4RTFCQjVERjI5OTI5 Q0U3RDc4QjUwHhcNMjUwODMxMDQyMTE5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzY2RiZi0yMzI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApm2r4ew62e/5wCe0qeEuOjZPVah3u8gxO3zUMul1SYIhN/jN+IG1U74kQJ4y ArtohTMFnCPz8JJ0N5dtOMct5fbRIGysQnDeAaMD5DBrcj0YcJZMXoM60tqk5oO7 2mqbWUMYBhjPRdebeG3HJtDgf0NU10X1yOtv0naNDqzY7zhn8Praz5RxO4Rmk5rM 1bR+Dp/eHzOMRQfufgh5YrvTIOw980cI46YutNsyx4IjE7qo0m+SW6IyDCDmwUSg 1SfRilpqxNdx7KwsI88P0dD3YBdUBji3O4dY4nF5qqdvG39Lu4Hkt7AuqJKV4cWJ wElxbhXGqQfuSJbStR36SGHokQIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFIu9CZBO mxSpzgx7x7zQXVqFHzkIMB8GA1UdIwQYMBaAFAuNY4/9OLH3fkjhu13ymSnOfXi1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkVBNy8wNDRGNjQ0ODEx NjgxMUVFQUM2M0MyMzRDNEY5QUUwMi9DNDFqal8wNHNmZC1TT0c3WGZLWktjNTll TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M0MWpqXzA0c2ZkLVNPRzdYZktaS2M1OWVMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0JFQTcvMDQ0RjY0NDgxMTY4MTFFRUFDNjNDMjM0QzRGOUFFMDIvODk5QkZDNkM1 MzNDMTFFRjhCMjNEQjEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOwYIKwYBBQUHAQcBAf8E LDAqMAwEAgABMAYDBABnnnUwGgQCAAIwFDASAwcAJAEOYAABAwcCJAEOYAAAMA0G CSqGSIb3DQEBCwUAA4IBAQCji+MwwGcach3Kv0QEztfZwkXY6JJUkvCynW1gP2e2 qrjMx/6NgFCHkPkl+D1EqJ7yHXIZGzlcUKEqUvPYbhlKhQoDvguXdvykQl/hM0DJ AhkAj92X9CYIEAtTON2yLZcVUtLzWbFKABYbZErkNP37+VFW+ztvGbNyawcr3l6d S1h5KRJ9asrioOkePzYpbW+iq/HVJ3amUnrZsTQgAQduemKVHLA3kUECs4StYir8 qACOubHP4AVGEmSaq22Ql/NtIAeH8wwMwIajWwiqDsqhMA2P9oy+yQtAKmPVzDqg GDFkAkGActrQQQFqUiAdTHkFfvJWJASRimY+3aPYRUaV -----END CERTIFICATE-----Generated at Sun Oct 19 16:07:41 2025 by rpki-client