$ rpki-client -vvf rpki.apnic.net/member_repository/A9159234/6A8E00EAEF8A11EBA2921764C4F9AE02/B58C9578378011ECA9E26B5AC4F9AE02.roa File: B58C9578378011ECA9E26B5AC4F9AE02.roa (raw, json) Hash identifier: 2bH75nk9O6TD/rf7czJlYhCGMNmtoX73i8QmFGzj+S0= Subject key identifier: 5F:9A:05:7A:D9:A1:8A:FF:89:8B:73:88:08:99:02:E0:18:BF:2C:74 Certificate issuer: /CN=A9159234/serialNumber=C3DEC7FDDD45C9517260864FA9EEBCFE7B8BCF57 Certificate serial: 058D Authority key identifier: C3:DE:C7:FD:DD:45:C9:51:72:60:86:4F:A9:EE:BC:FE:7B:8B:CF:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w97H_d1FyVFyYIZPqe68_nuLz1c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159234/6A8E00EAEF8A11EBA2921764C4F9AE02/B58C9578378011ECA9E26B5AC4F9AE02.roa Signing time: Sun 10 Aug 2025 23:35:51 +0000 ROA not before: Sun 10 Aug 2025 23:35:51 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 142594 IP address blocks: 103.170.154.0/24 maxlen: 24 103.170.155.0/24 maxlen: 24 2001:df7:1d80::/48 maxlen: 48 2001:df7:1d81::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159234/6A8E00EAEF8A11EBA2921764C4F9AE02/w97H_d1FyVFyYIZPqe68_nuLz1c.crl rsync://rpki.apnic.net/member_repository/A9159234/6A8E00EAEF8A11EBA2921764C4F9AE02/w97H_d1FyVFyYIZPqe68_nuLz1c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w97H_d1FyVFyYIZPqe68_nuLz1c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1421 (0x58d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159234, serialNumber=C3DEC7FDDD45C9517260864FA9EEBCFE7B8BCF57 Validity Not Before: Aug 10 23:35:51 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68992cd7-23e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d9:92:76:74:82:4f:60:02:ad:b1:9d:b4:8f: c9:5f:79:b0:e9:0a:98:92:f5:b2:27:90:9d:1c:e7: b1:56:f0:d4:3e:cf:fa:ef:e9:3d:4a:5f:6a:a3:04: c0:93:12:62:d9:82:4f:61:2d:1a:65:f1:cb:3c:20: 59:a7:22:ad:06:e2:8b:e3:cc:ff:e2:14:99:86:e2: 74:04:4a:61:02:0e:bc:37:d9:26:3a:64:23:32:97: 34:20:21:27:03:9b:e0:7b:a7:9b:f7:ec:95:32:06: 90:b7:1b:96:14:61:8b:a5:b8:91:b1:89:eb:d3:73: b2:ea:3a:40:a4:94:af:c8:82:a6:f3:66:e9:1e:40: e3:95:08:1b:c4:55:f6:61:be:38:7e:1c:36:2d:05: 1e:2d:3e:bf:ad:65:6e:4e:f8:95:32:49:7b:c5:fa: cb:49:32:9a:62:d9:b9:03:50:61:ff:9d:84:0c:ec: c2:e3:d8:32:86:a3:bb:66:03:07:f8:ad:c8:51:4a: 83:a6:a6:b2:60:4c:95:e6:79:20:9a:fb:99:9a:c8: 5d:9e:52:7c:4d:86:80:a9:85:e4:0c:cd:21:99:06: 9e:2a:5d:f0:b3:eb:7f:53:c1:5e:6c:f9:0d:8f:e1: e7:d2:8c:d0:ed:14:26:2b:24:97:a8:20:e4:24:99: e5:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:9A:05:7A:D9:A1:8A:FF:89:8B:73:88:08:99:02:E0:18:BF:2C:74 X509v3 Authority Key Identifier: keyid:C3:DE:C7:FD:DD:45:C9:51:72:60:86:4F:A9:EE:BC:FE:7B:8B:CF:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159234/6A8E00EAEF8A11EBA2921764C4F9AE02/w97H_d1FyVFyYIZPqe68_nuLz1c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/w97H_d1FyVFyYIZPqe68_nuLz1c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159234/6A8E00EAEF8A11EBA2921764C4F9AE02/B58C9578378011ECA9E26B5AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.170.154.0/23 IPv6: 2001:df7:1d80::/47 Signature Algorithm: sha256WithRSAEncryption 9f:c7:00:9b:8b:5c:b8:64:c0:95:f4:0b:e3:22:5c:e0:43:36: 92:d4:5a:95:36:fb:6c:02:1c:4b:59:8b:fa:da:29:8b:66:a8: 4c:6d:cb:73:02:00:ae:08:79:ad:99:5a:9c:e2:e9:4c:9d:ae: ac:cb:0a:93:18:99:12:cc:5d:34:88:b8:fd:f5:b1:00:27:28: a9:4f:c2:ae:a6:90:13:61:56:80:e3:34:c3:e5:61:d9:d1:2c: e5:88:0c:d5:72:fe:2b:ec:96:aa:59:2f:d9:a0:d0:f9:a7:07: 6e:2c:be:e7:c8:37:b1:1b:cd:06:20:f0:6f:4d:ee:b4:82:e2: cc:d4:e0:b0:06:a6:4b:6e:0a:18:13:9c:67:f2:32:08:6e:fa: 05:b3:fe:64:d5:30:03:84:63:19:45:5e:6e:10:27:8f:2e:bc: 88:2e:6d:ad:79:2f:f0:52:da:8d:44:56:60:b6:bf:04:57:68: fe:37:58:00:d5:49:bd:6f:71:f2:98:af:85:ab:e0:79:dd:97: 65:7d:45:00:46:55:53:45:eb:cb:3c:a0:38:5d:3b:b0:5c:7d: 8e:34:7b:0f:32:fb:6d:7d:39:e9:99:00:9d:25:09:7e:d7:7a: 2f:f9:57:75:42:0b:23:21:e3:49:29:15:65:3f:b5:7c:fd:ae: 3c:b5:46:84 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTkyMzQxMTAvBgNVBAUTKEMzREVDN0ZEREQ0NUM5NTE3MjYwODY0RkE5RUVCQ0ZF N0I4QkNGNTcwHhcNMjUwODEwMjMzNTUxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk5MmNkNy0yM2U3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxNmSdnSCT2ACrbGdtI/JX3mw6QqYkvWyJ5CdHOexVvDUPs/67+k9Sl9qowTA kxJi2YJPYS0aZfHLPCBZpyKtBuKL48z/4hSZhuJ0BEphAg68N9kmOmQjMpc0ICEn A5vge6eb9+yVMgaQtxuWFGGLpbiRsYnr03Oy6jpApJSvyIKm82bpHkDjlQgbxFX2 Yb44fhw2LQUeLT6/rWVuTviVMkl7xfrLSTKaYtm5A1Bh/52EDOzC49gyhqO7ZgMH +K3IUUqDpqayYEyV5nkgmvuZmshdnlJ8TYaAqYXkDM0hmQaeKl3ws+t/U8FebPkN j+Hn0ozQ7RQmKySXqCDkJJnl7wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFF+aBXrZ oYr/iYtziAiZAuAYvyx0MB8GA1UdIwQYMBaAFMPex/3dRclRcmCGT6nuvP57i89X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTIzNC82QThFMDBFQUVG OEExMUVCQTI5MjE3NjRDNEY5QUUwMi93OTdIX2QxRnlWRnlZSVpQcWU2OF9udUx6 MWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3c5N0hfZDFGeVZGeVlJWlBxZTY4X251THoxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTkyMzQvNkE4RTAwRUFFRjhBMTFFQkEyOTIxNzY0QzRGOUFFMDIvQjU4Qzk1Nzgz NzgwMTFFQ0E5RTI2QjVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnqpowDwQCAAIwCQMHASABDfcdgDANBgkqhkiG9w0BAQsF AAOCAQEAn8cAm4tcuGTAlfQL4yJc4EM2ktRalTb7bAIcS1mL+topi2aoTG3LcwIA rgh5rZlanOLpTJ2urMsKkxiZEsxdNIi4/fWxACcoqU/CrqaQE2FWgOM0w+Vh2dEs 5YgM1XL+K+yWqlkv2aDQ+acHbiy+58g3sRvNBiDwb03utILizNTgsAamS24KGBOc Z/IyCG76BbP+ZNUwA4RjGUVebhAnjy68iC5trXkv8FLajURWYLa/BFdo/jdYANVJ vW9x8pivhavged2XZX1FAEZVU0XryzygOF07sFx9jjR7DzL7bX056ZkAnSUJftd6 L/lXdUILIyHjSSkVZT+1fP2uPLVGhA== -----END CERTIFICATE-----Generated at Mon Aug 11 07:31:39 2025 by rpki-client