$ rpki-client -vvf rpki.apnic.net/member_repository/A917BEA7/044F6448116811EEAC63C234C4F9AE02/99DA0A4C533C11EF92170913C4F9AE02.roa File: 99DA0A4C533C11EF92170913C4F9AE02.roa (raw, json) Hash identifier: uvhIRu3Zl3QRrUhy2ZG8t4bZnlI9E1gwDxFwYKld2lg= Subject key identifier: CC:0E:4B:92:5A:26:90:7A:4A:92:97:24:E5:51:2B:DE:CA:9F:D1:B7 Certificate issuer: /CN=A917BEA7/serialNumber=0B8D638FFD38B1F77E48E1BB5DF29929CE7D78B5 Certificate serial: 01D7 Authority key identifier: 0B:8D:63:8F:FD:38:B1:F7:7E:48:E1:BB:5D:F2:99:29:CE:7D:78:B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C41jj_04sfd-SOG7XfKZKc59eLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BEA7/044F6448116811EEAC63C234C4F9AE02/99DA0A4C533C11EF92170913C4F9AE02.roa Signing time: Sun 31 Aug 2025 04:21:20 +0000 ROA not before: Sun 31 Aug 2025 04:21:20 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 61112 IP address blocks: 103.158.116.0/24 maxlen: 24 103.158.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BEA7/044F6448116811EEAC63C234C4F9AE02/C41jj_04sfd-SOG7XfKZKc59eLU.crl rsync://rpki.apnic.net/member_repository/A917BEA7/044F6448116811EEAC63C234C4F9AE02/C41jj_04sfd-SOG7XfKZKc59eLU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C41jj_04sfd-SOG7XfKZKc59eLU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 03:39:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 471 (0x1d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BEA7, serialNumber=0B8D638FFD38B1F77E48E1BB5DF29929CE7D78B5 Validity Not Before: Aug 31 04:21:20 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68b3cdc0-5596 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:61:f4:a0:48:0a:ad:d1:bf:66:e6:b3:11:4d: a5:c2:2a:dc:1d:7d:6e:9d:16:8e:56:ce:ea:c1:e8: b2:b1:38:f3:5d:73:00:a3:e4:ec:fa:79:d6:04:d6: a4:6b:a1:ab:f6:9e:9e:05:cb:d9:40:9f:a9:19:9c: 4b:ea:bb:dc:43:4a:89:c8:da:0d:8c:79:d5:b2:1d: ee:5a:5b:bd:b6:37:36:a0:fb:a6:87:ae:a9:3b:8e: f4:8f:57:2c:d7:66:bc:25:21:f2:9c:ea:de:74:c0: b7:39:ce:de:1c:6e:25:7e:61:ec:9d:f7:99:52:6d: 7d:58:ab:2c:ea:3a:ce:9f:d6:d3:c4:e2:f4:91:56: 66:99:1d:4d:fb:dc:ca:22:d2:34:2f:43:32:23:98: 6e:52:db:e3:6d:97:39:3d:c2:8e:28:22:fb:fb:17: 7d:d4:bd:76:dd:53:e6:3f:4e:6d:c8:de:bc:4a:5e: 2e:94:7c:f7:06:09:e0:f6:a2:31:5a:f9:d3:16:4a: 7f:ac:2b:a3:f5:78:78:0e:3f:08:cd:76:2f:c6:86: 1f:65:09:02:b9:32:77:4a:7b:b3:77:8e:b4:b3:32: dd:55:16:19:b9:bd:71:e7:2e:a6:95:be:6d:a6:61: ef:13:38:6d:05:9c:79:2a:86:62:3b:fe:5e:b4:fd: 0a:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:0E:4B:92:5A:26:90:7A:4A:92:97:24:E5:51:2B:DE:CA:9F:D1:B7 X509v3 Authority Key Identifier: keyid:0B:8D:63:8F:FD:38:B1:F7:7E:48:E1:BB:5D:F2:99:29:CE:7D:78:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BEA7/044F6448116811EEAC63C234C4F9AE02/C41jj_04sfd-SOG7XfKZKc59eLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C41jj_04sfd-SOG7XfKZKc59eLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BEA7/044F6448116811EEAC63C234C4F9AE02/99DA0A4C533C11EF92170913C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.158.116.0/23 Signature Algorithm: sha256WithRSAEncryption 4c:07:3b:ea:57:4d:1f:68:20:3d:52:79:04:68:1d:be:47:f0: 9c:97:2e:71:33:a5:27:b0:84:93:12:1c:d7:41:34:c0:2b:f7: 6f:91:ae:a5:94:d9:a4:5a:13:60:a9:d7:02:9e:1f:f9:5c:7b: c8:0c:4c:fb:c1:7f:66:f5:c7:bb:8f:ba:11:83:d2:b3:e8:df: 0e:51:84:71:1a:3a:36:5a:47:63:ff:0d:8f:52:bb:4f:54:29: c2:18:0d:e5:56:9a:3b:02:0e:2a:58:39:f2:d7:44:dc:fc:e2: 1d:cb:b3:36:71:79:71:1f:8a:a2:08:72:31:c8:5d:7f:af:5b: 5e:40:35:ad:4a:5e:12:4b:b7:9a:f8:31:5f:1e:d7:81:06:74: 09:c9:5e:ae:86:cd:e2:6b:3f:7e:38:96:e0:0d:37:13:54:1e: fc:c2:8b:98:a7:bd:63:54:ea:4a:f1:2f:97:56:c6:55:cd:43: b8:17:d4:4f:ca:fe:0a:74:ce:e4:61:b4:82:f6:90:9c:5f:b3: 4c:cd:a1:61:bb:95:fc:75:f5:49:21:94:ca:37:bf:bf:4d:35: 89:91:c3:de:3b:f0:6b:91:8b:98:36:97:48:57:bc:87:42:82: 99:f8:fb:77:64:9e:16:0a:0e:53:3e:30:97:13:d2:14:fb:5b: b5:f7:e8:17 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JFQTcxMTAvBgNVBAUTKDBCOEQ2MzhGRkQzOEIxRjc3RTQ4RTFCQjVERjI5OTI5 Q0U3RDc4QjUwHhcNMjUwODMxMDQyMTIwWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzY2RjMC01NTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA82H0oEgKrdG/ZuazEU2lwircHX1unRaOVs7qweiysTjzXXMAo+Ts+nnWBNak a6Gr9p6eBcvZQJ+pGZxL6rvcQ0qJyNoNjHnVsh3uWlu9tjc2oPumh66pO470j1cs 12a8JSHynOredMC3Oc7eHG4lfmHsnfeZUm19WKss6jrOn9bTxOL0kVZmmR1N+9zK ItI0L0MyI5huUtvjbZc5PcKOKCL7+xd91L123VPmP05tyN68Sl4ulHz3Bgng9qIx WvnTFkp/rCuj9Xh4Dj8IzXYvxoYfZQkCuTJ3Snuzd460szLdVRYZub1x5y6mlb5t pmHvEzhtBZx5KoZiO/5etP0K5wIDAQABo4IClTCCApEwHQYDVR0OBBYEFMwOS5Ja JpB6SpKXJOVRK97Kn9G3MB8GA1UdIwQYMBaAFAuNY4/9OLH3fkjhu13ymSnOfXi1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkVBNy8wNDRGNjQ0ODEx NjgxMUVFQUM2M0MyMzRDNEY5QUUwMi9DNDFqal8wNHNmZC1TT0c3WGZLWktjNTll TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M0MWpqXzA0c2ZkLVNPRzdYZktaS2M1OWVMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0JFQTcvMDQ0RjY0NDgxMTY4MTFFRUFDNjNDMjM0QzRGOUFFMDIvOTlEQTBBNEM1 MzNDMTFFRjkyMTcwOTEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnnnQwDQYJKoZIhvcNAQELBQADggEBAEwHO+pXTR9oID1S eQRoHb5H8JyXLnEzpSewhJMSHNdBNMAr92+RrqWU2aRaE2Cp1wKeH/lce8gMTPvB f2b1x7uPuhGD0rPo3w5RhHEaOjZaR2P/DY9Su09UKcIYDeVWmjsCDipYOfLXRNz8 4h3LszZxeXEfiqIIcjHIXX+vW15ANa1KXhJLt5r4MV8e14EGdAnJXq6GzeJrP344 luANNxNUHvzCi5invWNU6krxL5dWxlXNQ7gX1E/K/gp0zuRhtIL2kJxfs0zNoWG7 lfx19UkhlMo3v79NNYmRw9478GuRi5g2l0hXvIdCgpn4+3dknhYKDlM+MJcT0hT7 W7X36Bc= -----END CERTIFICATE-----Generated at Sat Sep 6 20:54:01 2025 by rpki-client