$ rpki-client -vvf rpki.apnic.net/member_repository/A911F8C9/4B4D712A5CDB11ECBD54F70CC4F9AE02/0DC4BC0C5CDE11ECB486850FC4F9AE02.roa File: 0DC4BC0C5CDE11ECB486850FC4F9AE02.roa (raw, json) Hash identifier: 252kB+fX+BBhzn4gsCNSBIXgmIL37+s/mdPS5IK/AQY= Subject key identifier: F7:A7:37:9B:42:8E:D9:05:81:F3:9E:23:08:F6:02:15:B2:6E:11:2D Certificate issuer: /CN=A911F8C9/serialNumber=6820E536942612F34B0373DD1F77ED234FFDF35C Certificate serial: 0464 Authority key identifier: 68:20:E5:36:94:26:12:F3:4B:03:73:DD:1F:77:ED:23:4F:FD:F3:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aCDlNpQmEvNLA3PdH3ftI0_981w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F8C9/4B4D712A5CDB11ECBD54F70CC4F9AE02/0DC4BC0C5CDE11ECB486850FC4F9AE02.roa Signing time: Thu 31 Jul 2025 01:06:14 +0000 ROA not before: Thu 31 Jul 2025 01:06:14 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 58590 IP address blocks: 103.8.248.0/22 maxlen: 22 103.8.248.0/24 maxlen: 24 103.8.249.0/24 maxlen: 24 103.8.250.0/24 maxlen: 24 103.8.251.0/24 maxlen: 24 2403:bd00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F8C9/4B4D712A5CDB11ECBD54F70CC4F9AE02/aCDlNpQmEvNLA3PdH3ftI0_981w.crl rsync://rpki.apnic.net/member_repository/A911F8C9/4B4D712A5CDB11ECBD54F70CC4F9AE02/aCDlNpQmEvNLA3PdH3ftI0_981w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aCDlNpQmEvNLA3PdH3ftI0_981w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:08:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1124 (0x464) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F8C9, serialNumber=6820E536942612F34B0373DD1F77ED234FFDF35C Validity Not Before: Jul 31 01:06:14 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=688ac186-225a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:74:86:4b:44:d6:36:dd:cf:1d:6d:60:d7:38: f8:0d:fc:e7:ea:c4:21:c3:06:45:a2:22:b5:28:96: d2:b0:cb:05:19:60:bb:44:7b:14:c6:55:1f:81:9a: df:29:fc:43:1f:8f:dd:3a:d9:d3:ab:31:44:6b:d9: e6:31:cc:aa:77:84:a2:48:7e:97:2c:b8:0c:3e:47: 83:00:1d:05:20:95:83:53:44:b0:90:18:d1:1a:1c: 38:93:cf:ec:2e:a7:2e:d4:c4:3c:4b:8f:af:7d:2a: a4:7a:db:6a:87:78:64:1a:56:c0:82:11:c7:c7:d2: 6a:c9:f7:2a:99:aa:1c:55:03:1b:8d:81:01:7f:c8: 52:27:25:91:18:bb:1a:66:54:d2:b8:27:ee:df:21: c7:eb:24:7b:bc:35:d5:87:6a:88:c3:86:b9:2c:82: ad:53:b4:51:4e:98:a9:67:68:4c:1f:14:c2:c2:a5: de:9c:74:fa:8f:7f:bb:53:95:d5:43:69:c6:52:5d: 85:1c:1c:94:8e:28:6d:79:bf:50:75:0e:e5:a7:7b: e3:7f:f7:5f:b5:81:48:51:82:73:25:07:95:2b:cd: 2a:66:03:bd:8d:36:09:bb:f3:c6:90:f7:e4:65:e7: 03:a7:db:a7:58:d0:8e:66:28:d6:3e:af:c8:84:18: 35:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:A7:37:9B:42:8E:D9:05:81:F3:9E:23:08:F6:02:15:B2:6E:11:2D X509v3 Authority Key Identifier: keyid:68:20:E5:36:94:26:12:F3:4B:03:73:DD:1F:77:ED:23:4F:FD:F3:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F8C9/4B4D712A5CDB11ECBD54F70CC4F9AE02/aCDlNpQmEvNLA3PdH3ftI0_981w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aCDlNpQmEvNLA3PdH3ftI0_981w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F8C9/4B4D712A5CDB11ECBD54F70CC4F9AE02/0DC4BC0C5CDE11ECB486850FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.8.248.0/22 IPv6: 2403:bd00::/32 Signature Algorithm: sha256WithRSAEncryption 98:d9:de:11:78:8b:52:40:4e:2c:7c:bd:d6:b8:40:2c:40:26: 69:4c:07:9c:1f:74:72:c6:f7:a5:9b:bc:73:06:a4:26:b8:d4: f6:fd:42:f8:46:90:17:1b:ab:f4:63:51:46:33:d6:f1:fd:ed: 2b:10:e4:4d:14:81:a8:ef:eb:d6:78:12:5c:70:15:d2:70:87: 96:6c:d2:0c:95:a7:a6:b1:96:1b:b7:ea:18:3b:3a:0a:bf:09: 64:2d:7c:03:5b:14:f7:70:58:a3:17:0e:d0:45:2c:cd:7b:2e: 29:a3:2a:9c:21:a4:a4:65:49:a4:18:ee:75:f1:98:df:b7:6f: 9b:c6:c6:8d:fa:b2:8d:78:cf:40:1e:33:b7:b1:ea:ce:75:91: 76:d4:40:7e:60:c9:5e:06:77:6e:6c:72:13:7c:87:6c:6e:1c: eb:22:25:1d:9b:d3:c7:1f:b7:18:62:d4:e8:ca:49:af:40:57: cf:1a:80:e4:c0:ad:c6:22:eb:89:9c:7b:96:ff:da:6e:d8:24: c8:87:93:fb:55:b3:34:d5:9e:cc:f0:c9:bc:37:45:1a:e8:fe: 56:10:6b:4a:50:63:1b:6c:a0:fc:a8:d3:33:22:ea:9b:7e:ab: d4:9d:42:2b:36:2f:cb:52:bd:1f:c9:06:84:a3:14:51:5f:79: a9:ba:78:eb -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBGQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY4QzkxMTAvBgNVBAUTKDY4MjBFNTM2OTQyNjEyRjM0QjAzNzNERDFGNzdFRDIz NEZGREYzNUMwHhcNMjUwNzMxMDEwNjE0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhhYzE4Ni0yMjVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzXSGS0TWNt3PHW1g1zj4Dfzn6sQhwwZFoiK1KJbSsMsFGWC7RHsUxlUfgZrf KfxDH4/dOtnTqzFEa9nmMcyqd4SiSH6XLLgMPkeDAB0FIJWDU0SwkBjRGhw4k8/s Lqcu1MQ8S4+vfSqkettqh3hkGlbAghHHx9JqyfcqmaocVQMbjYEBf8hSJyWRGLsa ZlTSuCfu3yHH6yR7vDXVh2qIw4a5LIKtU7RRTpipZ2hMHxTCwqXenHT6j3+7U5XV Q2nGUl2FHByUjihteb9QdQ7lp3vjf/dftYFIUYJzJQeVK80qZgO9jTYJu/PGkPfk ZecDp9unWNCOZijWPq/IhBg1nQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFPenN5tC jtkFgfOeIwj2AhWybhEtMB8GA1UdIwQYMBaAFGgg5TaUJhLzSwNz3R937SNP/fNc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjhDOS80QjRENzEyQTVD REIxMUVDQkQ1NEY3MENDNEY5QUUwMi9hQ0RsTnBRbUV2TkxBM1BkSDNmdEkwXzk4 MXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FDRGxOcFFtRXZOTEEzUGRIM2Z0STBfOTgxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUY4QzkvNEI0RDcxMkE1Q0RCMTFFQ0JENTRGNzBDQzRGOUFFMDIvMERDNEJDMEM1 Q0RFMTFFQ0I0ODY4NTBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnCPgwDQQCAAIwBwMFACQDvQAwDQYJKoZIhvcNAQELBQAD ggEBAJjZ3hF4i1JATix8vda4QCxAJmlMB5wfdHLG96WbvHMGpCa41Pb9QvhGkBcb q/RjUUYz1vH97SsQ5E0Ugajv69Z4ElxwFdJwh5Zs0gyVp6axlhu36hg7Ogq/CWQt fANbFPdwWKMXDtBFLM17LimjKpwhpKRlSaQY7nXxmN+3b5vGxo36so14z0AeM7ex 6s51kXbUQH5gyV4Gd25schN8h2xuHOsiJR2b08cftxhi1OjKSa9AV88agOTArcYi 64mce5b/2m7YJMiHk/tVszTVnszwybw3RRro/lYQa0pQYxtsoPyo0zMi6pt+q9Sd Qis2L8tSvR/JBoSjFFFfeam6eOs= -----END CERTIFICATE-----Generated at Wed Nov 5 21:14:37 2025 by rpki-client