$ rpki-client -vvf rpki.apnic.net/member_repository/A919910B/623D1E066F8511EBAC5AC96CC4F9AE02/BB199EBC6F8711EB9E412A2BC4F9AE02.roa File: BB199EBC6F8711EB9E412A2BC4F9AE02.roa (raw, json) Hash identifier: DGzXCeNwvDBe7tehCzISldKuF3rMgtSzwuNEMYEu//8= Subject key identifier: 13:C4:2B:AA:D2:D8:19:32:CF:B4:8E:D0:47:13:02:C8:21:47:83:61 Certificate issuer: /CN=A919910B/serialNumber=DC9184B04A53C7A172F7CD26255EB5D803E34705 Certificate serial: 06D3 Authority key identifier: DC:91:84:B0:4A:53:C7:A1:72:F7:CD:26:25:5E:B5:D8:03:E3:47:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3JGEsEpTx6Fy980mJV612APjRwU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919910B/623D1E066F8511EBAC5AC96CC4F9AE02/BB199EBC6F8711EB9E412A2BC4F9AE02.roa Signing time: Sun 24 Aug 2025 19:35:00 +0000 ROA not before: Sun 24 Aug 2025 19:35:00 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 141726 IP address blocks: 103.162.208.0/23 maxlen: 23 103.162.208.0/24 maxlen: 24 103.162.209.0/24 maxlen: 24 2001:df5:fc80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919910B/623D1E066F8511EBAC5AC96CC4F9AE02/3JGEsEpTx6Fy980mJV612APjRwU.crl rsync://rpki.apnic.net/member_repository/A919910B/623D1E066F8511EBAC5AC96CC4F9AE02/3JGEsEpTx6Fy980mJV612APjRwU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3JGEsEpTx6Fy980mJV612APjRwU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 22:12:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1747 (0x6d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919910B, serialNumber=DC9184B04A53C7A172F7CD26255EB5D803E34705 Validity Not Before: Aug 24 19:35:00 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68ab6964-20ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:4c:9a:88:dc:93:79:0e:70:bf:7c:e7:75:1e: 10:7f:53:50:92:17:7d:cc:c1:69:bf:a2:cf:26:5c: 1d:2f:99:73:95:d7:37:cf:5e:59:2f:0a:f4:01:84: 67:77:7e:06:1c:e8:04:4c:2d:12:61:b0:22:bf:51: 0c:75:e7:6d:6d:2b:73:17:b8:21:53:01:da:2d:e8: 2d:57:b0:9a:bd:99:70:a0:a2:53:e5:50:97:06:5f: a1:51:6f:38:c8:e7:75:77:d9:c1:51:7f:aa:1c:f4: 79:dc:c2:3b:d1:00:f3:8b:2d:47:4f:d2:3f:76:93: 88:96:70:7e:72:59:fa:b4:77:ef:20:c9:10:8f:df: 1c:be:8d:ec:57:30:eb:8f:23:cc:dc:ee:32:6c:3e: fe:4f:3c:6f:db:19:74:21:2c:d8:e8:4b:76:54:27: b6:86:b4:33:2c:2b:dc:5e:c5:82:8e:02:ea:81:87: 50:9c:21:0d:4a:45:fc:fb:c0:59:14:aa:12:14:06: 13:eb:b1:2b:91:19:b0:b4:ad:48:3f:cd:18:a6:0a: 87:32:66:8f:e8:23:82:8f:a9:01:15:ed:03:10:90: ec:b1:00:58:bb:fc:c7:21:88:4b:86:41:34:09:1a: f0:19:fa:05:2c:af:1b:44:2b:b7:5f:f8:7c:30:6e: 10:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:C4:2B:AA:D2:D8:19:32:CF:B4:8E:D0:47:13:02:C8:21:47:83:61 X509v3 Authority Key Identifier: keyid:DC:91:84:B0:4A:53:C7:A1:72:F7:CD:26:25:5E:B5:D8:03:E3:47:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919910B/623D1E066F8511EBAC5AC96CC4F9AE02/3JGEsEpTx6Fy980mJV612APjRwU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3JGEsEpTx6Fy980mJV612APjRwU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919910B/623D1E066F8511EBAC5AC96CC4F9AE02/BB199EBC6F8711EB9E412A2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.162.208.0/23 IPv6: 2001:df5:fc80::/48 Signature Algorithm: sha256WithRSAEncryption d9:80:f2:fb:82:10:a8:61:76:9a:63:dc:fc:31:d4:a0:52:c0: 7f:00:20:ff:fd:1c:9e:f7:a7:0f:ea:60:9b:65:8b:43:df:fc: 03:bb:fa:20:dc:07:ac:32:53:19:75:80:b8:45:b8:9b:2d:6a: 7d:c3:17:cb:f9:ed:7e:00:4b:35:58:4f:ad:b1:3d:14:66:c6: 62:a3:99:70:2d:db:c4:cf:19:c5:0a:05:07:0c:44:50:ae:a6: 0b:c3:cb:65:9f:d7:47:04:67:c4:4d:00:c7:31:42:a2:ce:2c: 12:ac:c8:aa:31:e9:60:34:ab:78:82:5b:81:b0:2f:45:6d:0a: 9e:46:a7:a5:ea:4f:7f:e9:e7:7f:00:e3:cb:dd:1b:9f:d2:06: 4f:8a:7e:8f:22:c7:8e:92:14:8c:af:3d:66:9f:f9:d3:6e:fe: 63:c8:9b:1f:2c:df:30:01:f6:ce:14:42:d1:4f:71:bb:65:ad: a1:21:be:f4:4b:9b:4f:02:2d:81:17:44:4b:85:59:1e:68:0a: d9:f6:9e:5a:50:8c:ad:d9:45:dd:7a:34:b1:8b:d6:b4:a0:ee: 5c:01:7e:39:33:f1:65:b9:74:cc:a4:ca:61:1b:83:d2:a9:9e: ac:b6:39:6a:8f:a0:64:38:3e:4f:a1:97:c6:52:89:f8:0d:ac: 31:eb:eb:84 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBtMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkxMEIxMTAvBgNVBAUTKERDOTE4NEIwNEE1M0M3QTE3MkY3Q0QyNjI1NUVCNUQ4 MDNFMzQ3MDUwHhcNMjUwODI0MTkzNTAwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OGFiNjk2NC0yMGFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1UyaiNyTeQ5wv3zndR4Qf1NQkhd9zMFpv6LPJlwdL5lzldc3z15ZLwr0AYRn d34GHOgETC0SYbAiv1EMdedtbStzF7ghUwHaLegtV7CavZlwoKJT5VCXBl+hUW84 yOd1d9nBUX+qHPR53MI70QDziy1HT9I/dpOIlnB+cln6tHfvIMkQj98cvo3sVzDr jyPM3O4ybD7+Tzxv2xl0ISzY6Et2VCe2hrQzLCvcXsWCjgLqgYdQnCENSkX8+8BZ FKoSFAYT67ErkRmwtK1IP80YpgqHMmaP6COCj6kBFe0DEJDssQBYu/zHIYhLhkE0 CRrwGfoFLK8bRCu3X/h8MG4QaQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBPEK6rS 2Bkyz7SO0EcTAsghR4NhMB8GA1UdIwQYMBaAFNyRhLBKU8ehcvfNJiVetdgD40cF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTEwQi82MjNEMUUwNjZG ODUxMUVCQUM1QUM5NkNDNEY5QUUwMi8zSkdFc0VwVHg2Rnk5ODBtSlY2MTJBUGpS d1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNKR0VzRXBUeDZGeTk4MG1KVjYxMkFQalJ3VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTkxMEIvNjIzRDFFMDY2Rjg1MTFFQkFDNUFDOTZDQzRGOUFFMDIvQkIxOTlFQkM2 Rjg3MTFFQjlFNDEyQTJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnotAwDwQCAAIwCQMHACABDfX8gDANBgkqhkiG9w0BAQsF AAOCAQEA2YDy+4IQqGF2mmPc/DHUoFLAfwAg//0cnvenD+pgm2WLQ9/8A7v6INwH rDJTGXWAuEW4my1qfcMXy/ntfgBLNVhPrbE9FGbGYqOZcC3bxM8ZxQoFBwxEUK6m C8PLZZ/XRwRnxE0AxzFCos4sEqzIqjHpYDSreIJbgbAvRW0KnkanpepPf+nnfwDj y90bn9IGT4p+jyLHjpIUjK89Zp/5027+Y8ibHyzfMAH2zhRC0U9xu2WtoSG+9Eub TwItgRdES4VZHmgK2faeWlCMrdlF3Xo0sYvWtKDuXAF+OTPxZbl0zKTKYRuD0qme rLY5ao+gZDg+T6GXxlKJ+A2sMevrhA== -----END CERTIFICATE-----Generated at Mon Aug 25 07:17:25 2025 by rpki-client