$ rpki-client -vvf rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/59029A32233A11E78D48837AC4F9AE02.roa File: 59029A32233A11E78D48837AC4F9AE02.roa (raw, json) Hash identifier: XfYeKxfatX6id5bBv2XHc88RkA9A8XtPbM07HmC0bY4= Subject key identifier: 65:8E:48:70:86:46:C6:04:EA:C0:70:25:C2:B7:2D:11:62:5B:91:00 Certificate issuer: /CN=A915D66D/serialNumber=BD8F5381E188E4580FB2472C271A05429E2D5C22 Certificate serial: 1AF8 Authority key identifier: BD:8F:53:81:E1:88:E4:58:0F:B2:47:2C:27:1A:05:42:9E:2D:5C:22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vY9TgeGI5FgPskcsJxoFQp4tXCI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/59029A32233A11E78D48837AC4F9AE02.roa Signing time: Tue 20 May 2025 16:36:33 +0000 ROA not before: Tue 20 May 2025 16:36:33 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 45766 IP address blocks: 43.251.84.0/22 maxlen: 24 103.216.56.0/22 maxlen: 22 103.216.56.0/22 maxlen: 24 103.216.56.0/23 maxlen: 23 103.216.56.0/23 maxlen: 24 103.216.56.0/24 maxlen: 24 103.216.57.0/24 maxlen: 24 103.216.58.0/23 maxlen: 23 103.216.58.0/23 maxlen: 24 103.216.58.0/24 maxlen: 24 103.216.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/vY9TgeGI5FgPskcsJxoFQp4tXCI.crl rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/vY9TgeGI5FgPskcsJxoFQp4tXCI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vY9TgeGI5FgPskcsJxoFQp4tXCI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:22:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6904 (0x1af8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D66D, serialNumber=BD8F5381E188E4580FB2472C271A05429E2D5C22 Validity Not Before: May 20 16:36:33 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=682caf91-ff9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:32:ea:c4:0e:2d:60:2e:3c:a0:3d:dd:90:45: 60:70:a5:64:31:fa:1f:ad:73:5c:f4:37:3f:94:71: b4:3c:ba:f0:5b:57:ab:4e:b6:cc:03:98:e4:e7:d5: 51:38:b7:bf:b2:80:cb:31:09:26:ef:df:6f:e1:19: 22:e9:73:d2:33:5f:73:5a:cf:09:af:ed:3e:d0:8a: a5:ca:1f:8c:a1:44:ca:ca:0a:3e:a7:7c:6b:69:7a: 88:6f:6c:ce:2c:38:19:cd:ce:cc:92:60:7b:6d:e3: fa:4a:45:34:77:ec:90:d9:92:90:3b:78:7f:ee:32: 36:6c:26:c7:59:46:e1:e7:f5:0e:7a:fe:b6:28:34: 07:7b:b6:8f:38:9b:16:04:fc:b7:1d:b7:84:97:3e: 79:2b:32:b0:46:61:7c:97:8d:09:5f:e2:93:fc:12: fc:05:42:c5:c8:d5:9d:b2:03:3e:dc:5b:9d:b9:c1: 27:14:ee:1c:aa:be:d3:a7:ae:74:85:c5:78:85:58: c7:76:ad:7d:0e:71:4c:c3:28:23:66:06:1d:86:e9: 3a:93:68:31:6c:f4:fa:2a:61:40:ad:9f:23:03:53: 43:eb:c7:fb:27:5e:18:c8:4a:65:b0:2f:1c:f8:c7: b8:88:1e:da:46:4e:46:8f:55:60:7e:04:26:1b:89: 26:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:8E:48:70:86:46:C6:04:EA:C0:70:25:C2:B7:2D:11:62:5B:91:00 X509v3 Authority Key Identifier: keyid:BD:8F:53:81:E1:88:E4:58:0F:B2:47:2C:27:1A:05:42:9E:2D:5C:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/vY9TgeGI5FgPskcsJxoFQp4tXCI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vY9TgeGI5FgPskcsJxoFQp4tXCI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D66D/1EB09254233911E7A06B2579C4F9AE02/59029A32233A11E78D48837AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.251.84.0/22 103.216.56.0/22 Signature Algorithm: sha256WithRSAEncryption 81:02:c8:f7:85:16:ce:5b:5d:32:dd:d7:c1:4a:3b:7d:a0:eb: 39:c0:13:6d:e2:1b:6e:ee:be:17:ec:e9:3e:70:02:48:d5:ce: ca:3e:f7:87:9a:47:10:cb:65:37:09:97:9b:7d:0f:13:e1:3e: a4:1e:2b:35:62:1f:97:fa:eb:8e:8c:83:de:3b:27:89:bc:ba: 1e:36:54:8c:ef:95:88:2c:2d:00:93:90:4f:64:1c:23:62:8d: 72:e1:dd:09:16:7e:52:52:ba:11:97:b0:cf:5b:a6:77:c9:d5: b8:e2:a3:62:36:54:8d:85:90:a7:5c:b3:9e:b3:54:0c:a3:03: 48:2a:5c:14:fb:f3:30:ad:f2:19:2b:7e:21:46:fa:75:72:cd: 65:82:53:a3:ae:64:38:3e:a8:7a:2d:91:fa:2d:fa:a7:e1:2f: ef:34:2d:7f:88:26:11:01:5a:e9:14:ab:38:4d:23:d6:8e:73: 1c:34:af:d2:7f:fb:13:cf:21:50:4f:6c:d2:44:3b:92:9e:1b: 75:ca:5a:82:b8:d4:59:ed:db:a5:97:f1:ba:7e:f1:bc:3a:a2: 84:93:c3:ea:00:23:8e:3d:3c:9f:93:2b:0d:f5:4a:60:a3:3b: 4e:14:a9:ef:f5:25:0b:1f:e2:3e:cb:35:72:6b:3f:13:aa:4b: 82:e2:f6:f6 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICGvgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQ2NkQxMTAvBgNVBAUTKEJEOEY1MzgxRTE4OEU0NTgwRkIyNDcyQzI3MUEwNTQy OUUyRDVDMjIwHhcNMjUwNTIwMTYzNjMzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJjYWY5MS1mZjlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArzLqxA4tYC48oD3dkEVgcKVkMfofrXNc9Dc/lHG0PLrwW1erTrbMA5jk59VR OLe/soDLMQkm799v4Rki6XPSM19zWs8Jr+0+0Iqlyh+MoUTKygo+p3xraXqIb2zO LDgZzc7MkmB7beP6SkU0d+yQ2ZKQO3h/7jI2bCbHWUbh5/UOev62KDQHe7aPOJsW BPy3HbeElz55KzKwRmF8l40JX+KT/BL8BULFyNWdsgM+3FuducEnFO4cqr7Tp650 hcV4hVjHdq19DnFMwygjZgYdhuk6k2gxbPT6KmFArZ8jA1ND68f7J14YyEplsC8c +Me4iB7aRk5Gj1VgfgQmG4kmZwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFGWOSHCG RsYE6sBwJcK3LRFiW5EAMB8GA1UdIwQYMBaAFL2PU4HhiORYD7JHLCcaBUKeLVwi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDY2RC8xRUIwOTI1NDIz MzkxMUU3QTA2QjI1NzlDNEY5QUUwMi92WTlUZ2VHSTVGZ1Bza2NzSnhvRlFwNHRY Q0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZZOVRnZUdJNUZnUHNrY3NKeG9GUXA0dFhDSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQ2NkQvMUVCMDkyNTQyMzM5MTFFN0EwNkIyNTc5QzRGOUFFMDIvNTkwMjlBMzIy MzNBMTFFNzhENDg4MzdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr+1QDBAJn2DgwDQYJKoZIhvcNAQELBQADggEBAIECyPeF Fs5bXTLd18FKO32g6znAE23iG27uvhfs6T5wAkjVzso+94eaRxDLZTcJl5t9DxPh PqQeKzViH5f6646Mg947J4m8uh42VIzvlYgsLQCTkE9kHCNijXLh3QkWflJSuhGX sM9bpnfJ1bjio2I2VI2FkKdcs56zVAyjA0gqXBT78zCt8hkrfiFG+nVyzWWCU6Ou ZDg+qHotkfot+qfhL+80LX+IJhEBWukUqzhNI9aOcxw0r9J/+xPPIVBPbNJEO5Ke G3XKWoK41Fnt26WX8bp+8bw6ooSTw+oAI449PJ+TKw31SmCjO04Uqe/1JQsf4j7L NXJrPxOqS4Li9vY= -----END CERTIFICATE-----Generated at Wed Nov 5 15:39:18 2025 by rpki-client