$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/99C5A4CC201211EC8520994EC4F9AE02.roa File: 99C5A4CC201211EC8520994EC4F9AE02.roa (raw, json) Hash identifier: 8ppiDqY+JlySsq6oiLjJrlxeDZVf12rH2KNpbyTeRtE= Subject key identifier: 5D:98:4B:0A:8A:5A:CC:FD:A0:65:41:63:42:14:9E:59:F5:F6:7E:BC Certificate issuer: /CN=A91E7561/serialNumber=25BC7D4DE77BD01B3D191587696E5AFDD8CECD04 Certificate serial: 064A Authority key identifier: 25:BC:7D:4D:E7:7B:D0:1B:3D:19:15:87:69:6E:5A:FD:D8:CE:CD:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/99C5A4CC201211EC8520994EC4F9AE02.roa Signing time: Wed 27 Aug 2025 00:04:50 +0000 ROA not before: Wed 27 Aug 2025 00:04:50 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 37992 IP address blocks: 110.164.61.0/24 maxlen: 24 110.164.62.0/24 maxlen: 24 110.164.83.0/24 maxlen: 24 110.164.84.0/24 maxlen: 24 110.164.178.0/24 maxlen: 24 110.164.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.crl rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 23:30:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1610 (0x64a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7561, serialNumber=25BC7D4DE77BD01B3D191587696E5AFDD8CECD04 Validity Not Before: Aug 27 00:04:50 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68ae4ba2-8af7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:08:6c:9e:ee:12:83:dd:b8:fb:96:47:14:80: f5:9d:ad:bb:d3:b5:78:4a:53:71:64:61:8b:3a:a3: 98:96:95:b7:10:df:f6:f0:91:6e:13:c4:c8:65:33: b3:ec:34:5d:e5:e1:d1:b3:61:75:2c:6f:06:1d:7e: 71:b8:f1:49:ae:32:5d:ff:53:6d:0d:cc:52:4f:03: 5d:22:90:d2:72:08:2a:f7:04:c0:80:7f:dd:c2:58: a7:b3:54:ff:e7:26:f5:c2:07:e8:a7:ed:78:57:c2: 4a:4a:19:ef:3f:c3:93:56:84:d3:68:fd:14:6c:9b: a4:2c:bf:e1:38:fb:5d:b7:38:67:c0:be:f6:12:ab: 8a:2d:57:71:e6:89:d1:f6:a5:e2:81:4d:54:78:b3: ed:bf:02:d1:8f:f0:d4:66:51:e7:03:50:51:d9:d4: c1:77:b6:78:2c:dc:bd:58:b6:d1:25:0e:42:67:d4: 8c:7f:ac:89:e5:6d:ad:68:b5:9a:49:f6:57:39:04: 2f:ed:f9:c7:9b:02:2b:37:22:65:25:11:3a:5b:fe: e3:da:ff:b9:f2:6a:0c:5d:b0:61:6f:c2:de:61:de: f6:3f:2f:0c:0b:34:db:bf:0e:10:8f:c4:14:52:1e: 4e:ac:95:a9:c7:da:1c:dd:49:0a:2b:be:42:6c:5b: 41:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:98:4B:0A:8A:5A:CC:FD:A0:65:41:63:42:14:9E:59:F5:F6:7E:BC X509v3 Authority Key Identifier: keyid:25:BC:7D:4D:E7:7B:D0:1B:3D:19:15:87:69:6E:5A:FD:D8:CE:CD:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/99C5A4CC201211EC8520994EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.164.61.0-110.164.62.255 110.164.83.0-110.164.84.255 110.164.178.0/23 Signature Algorithm: sha256WithRSAEncryption b4:53:59:bb:ca:eb:30:91:a1:a3:8a:16:aa:9e:0e:88:0e:53: ea:ca:52:6b:dd:e7:d2:c7:21:7f:a2:d8:10:04:b5:d3:30:a2: 98:05:c0:9d:86:93:77:4c:40:93:c5:58:d9:5b:76:50:e3:f4: f8:0a:d3:07:a8:f3:f4:76:03:fc:3b:bc:b4:fe:06:fc:97:9f: 09:19:f2:84:6a:ad:be:c5:05:4a:cd:45:bd:ca:80:91:ef:40: ac:d0:cd:54:91:90:c7:3c:cb:23:0e:7d:ec:30:60:9a:7e:1a: cd:c5:4e:4d:2c:bf:86:4f:ae:0e:8c:2c:b4:3f:89:3a:49:e9: 50:5d:ee:82:e4:ec:73:5e:c9:79:80:9e:48:82:57:25:a1:1a: 6b:30:ae:6b:a2:1b:5d:25:cb:d8:2a:3b:b2:49:87:08:2a:b4: 6b:e5:69:a4:c3:85:90:97:90:78:0a:68:a5:cf:fa:e8:df:40: ec:79:f3:e4:77:ba:ed:88:98:07:45:a1:0a:e0:c8:33:08:65: a7:bb:e1:f8:21:7e:e7:70:36:eb:41:87:64:da:a9:f5:da:44: 00:61:10:89:40:18:64:df:c5:05:16:bc:03:fe:27:f6:4e:a0: 81:9b:9f:e3:26:73:95:85:0d:af:5b:e7:eb:ff:0c:47:12:19: ad:72:66:b9 -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICBkowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc1NjExMTAvBgNVBAUTKDI1QkM3RDRERTc3QkQwMUIzRDE5MTU4NzY5NkU1QUZE RDhDRUNEMDQwHhcNMjUwODI3MDAwNDUwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFlNGJhMi04YWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Qhsnu4Sg924+5ZHFID1na2707V4SlNxZGGLOqOYlpW3EN/28JFuE8TIZTOz 7DRd5eHRs2F1LG8GHX5xuPFJrjJd/1NtDcxSTwNdIpDScggq9wTAgH/dwlins1T/ 5yb1wgfop+14V8JKShnvP8OTVoTTaP0UbJukLL/hOPtdtzhnwL72EquKLVdx5onR 9qXigU1UeLPtvwLRj/DUZlHnA1BR2dTBd7Z4LNy9WLbRJQ5CZ9SMf6yJ5W2taLWa SfZXOQQv7fnHmwIrNyJlJRE6W/7j2v+58moMXbBhb8LeYd72Py8MCzTbvw4Qj8QU Uh5OrJWpx9oc3UkKK75CbFtBAQIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFF2YSwqK Wsz9oGVBY0IUnln19n68MB8GA1UdIwQYMBaAFCW8fU3ne9AbPRkVh2luWv3Yzs0E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzU2MS9BMjZFMDZFMDA1 NEMxMUVDQkRCNEZFNDZDNEY5QUUwMi9KYng5VGVkNzBCczlHUldIYVc1YV9kak96 UVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pieDlUZWQ3MEJzOUdSV0hhVzVhX2RqT3pRUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTc1NjEvQTI2RTA2RTAwNTRDMTFFQ0JEQjRGRTQ2QzRGOUFFMDIvOTlDNUE0Q0My MDEyMTFFQzg1MjA5OTRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOwYIKwYBBQUHAQcBAf8E LDAqMCgEAgABMCIwDAMEAG6kPQMEAG6kPjAMAwQAbqRTAwQAbqRUAwQBbqSyMA0G CSqGSIb3DQEBCwUAA4IBAQC0U1m7yuswkaGjihaqng6IDlPqylJr3efSxyF/otgQ BLXTMKKYBcCdhpN3TECTxVjZW3ZQ4/T4CtMHqPP0dgP8O7y0/gb8l58JGfKEaq2+ xQVKzUW9yoCR70Cs0M1UkZDHPMsjDn3sMGCafhrNxU5NLL+GT64OjCy0P4k6SelQ Xe6C5OxzXsl5gJ5IglcloRprMK5rohtdJcvYKjuySYcIKrRr5Wmkw4WQl5B4Cmil z/ro30DsefPkd7rtiJgHRaEK4MgzCGWnu+H4IX7ncDbrQYdk2qn12kQAYRCJQBhk 38UFFrwD/if2TqCBm5/jJnOVhQ2vW+fr/wxHEhmtcma5 -----END CERTIFICATE-----Generated at Tue Sep 9 06:39:25 2025 by rpki-client