$ rpki-client -vvf rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/61E12BD0CA0611EEB05EB92CC4F9AE02.roa File: 61E12BD0CA0611EEB05EB92CC4F9AE02.roa (raw, json) Hash identifier: o16pooFHIEBYiC/U+8swfJroVM1JsQPPQfuyHDWfNA4= Subject key identifier: 50:6B:8E:BE:AF:37:44:D2:C5:AD:18:01:F7:79:0F:E0:F3:9A:EE:DA Certificate issuer: /CN=A916D459/serialNumber=B5174D8265649CDD27426C927D168775D783D538 Certificate serial: 0B27 Authority key identifier: B5:17:4D:82:65:64:9C:DD:27:42:6C:92:7D:16:87:75:D7:83:D5:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRdNgmVknN0nQmySfRaHddeD1Tg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/61E12BD0CA0611EEB05EB92CC4F9AE02.roa Signing time: Fri 04 Jul 2025 20:00:20 +0000 ROA not before: Fri 04 Jul 2025 20:00:20 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 24459 IP address blocks: 103.248.179.0/24 maxlen: 24 2001:df3:9140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.crl rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRdNgmVknN0nQmySfRaHddeD1Tg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 19:29:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2855 (0xb27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D459, serialNumber=B5174D8265649CDD27426C927D168775D783D538 Validity Not Before: Jul 4 20:00:20 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=686832d4-48fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:b8:6c:37:fe:4b:a9:b9:65:63:c4:63:16:9c: 55:6f:84:45:02:5a:07:65:2f:9d:1a:48:01:d8:34: 94:b1:d0:48:da:ad:53:65:0e:4f:77:cd:fd:56:e5: 6e:a5:75:9a:2c:d6:d1:72:1a:6b:23:68:ab:78:23: bb:4d:ab:2e:3c:3b:79:a9:0b:37:35:12:f9:7d:e7: 93:9f:e8:ae:18:55:a2:d5:4d:b5:37:ab:9f:d9:63: 5b:52:ad:b3:ec:cc:8f:ef:cd:03:c9:27:c2:e1:78: dd:b2:1e:c5:18:cd:b8:a1:c6:8e:fc:66:8d:97:d8: 1d:eb:3a:c1:d8:04:84:db:dc:a9:af:3d:4a:7f:1d: f8:a3:d8:49:cc:fa:1e:92:ad:42:05:7c:1a:34:e2: 1b:c0:d6:39:e0:11:a5:85:3a:89:e3:00:7b:11:44: fa:8e:b9:47:e7:cc:2c:5a:3b:a0:f9:c9:4e:c0:a2: dd:ba:6b:a7:82:d0:5a:ee:fb:ac:0b:8b:92:f8:4b: 7d:4e:42:13:36:2d:5f:44:ba:27:07:ba:3f:c4:e5: 0e:c6:07:ed:23:f1:30:29:86:bb:2a:0f:54:99:8c: 86:25:fe:0e:7c:80:e1:bc:92:e2:e5:ae:a1:71:bc: 63:ce:41:5b:d0:ca:30:b5:bf:0c:68:ea:fa:8f:00: 66:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:6B:8E:BE:AF:37:44:D2:C5:AD:18:01:F7:79:0F:E0:F3:9A:EE:DA X509v3 Authority Key Identifier: keyid:B5:17:4D:82:65:64:9C:DD:27:42:6C:92:7D:16:87:75:D7:83:D5:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/tRdNgmVknN0nQmySfRaHddeD1Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tRdNgmVknN0nQmySfRaHddeD1Tg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D459/99EC89EC422011EAB5302016C4F9AE02/61E12BD0CA0611EEB05EB92CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.248.179.0/24 IPv6: 2001:df3:9140::/48 Signature Algorithm: sha256WithRSAEncryption 1c:5f:0c:62:40:51:e7:99:59:db:7f:2d:e7:7b:97:1e:c7:0a: 54:f8:fe:be:7a:4a:8c:a0:b2:5d:cc:91:55:ac:b0:c4:d6:13: 9b:e7:70:35:0a:3b:3d:99:5b:0b:94:5c:17:e8:77:12:1c:1d: 90:97:f5:2e:b9:e2:bc:84:ff:a9:6e:7a:1c:82:5b:d8:f0:9d: ac:44:9a:62:40:d9:d1:94:90:2d:db:ca:15:60:22:41:53:7d: 18:4b:ed:51:a7:2e:e2:76:9a:72:8f:53:72:6e:85:e1:a6:67: e7:11:56:3b:12:d9:c2:22:2e:15:0f:48:29:3c:ce:0f:ae:95: 52:f6:0a:be:97:fb:a8:28:2c:6e:5f:6b:e4:27:fa:55:a3:8b: ea:5d:33:cd:47:bb:cd:84:95:aa:a3:2a:ec:a3:7e:d8:67:37: d5:7f:16:16:b1:f6:43:a8:04:29:ac:da:c1:88:94:b2:3e:83: 5a:47:a1:15:19:8a:d2:8a:93:ba:2e:d2:1d:c5:49:76:88:d2: 8a:11:bc:70:42:9a:19:39:29:b4:88:e6:b1:e0:86:91:5c:22: a2:c4:0f:97:2f:7f:0a:9f:5f:5e:69:0c:6d:03:d2:9f:3e:c9: 3f:3c:5e:87:c1:e3:6f:08:25:ff:d1:b8:4a:e7:9c:4a:9d:85: 46:31:5b:eb -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCycwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQ0NTkxMTAvBgNVBAUTKEI1MTc0RDgyNjU2NDlDREQyNzQyNkM5MjdEMTY4Nzc1 RDc4M0Q1MzgwHhcNMjUwNzA0MjAwMDIwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY4MzJkNC00OGZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA27hsN/5LqbllY8RjFpxVb4RFAloHZS+dGkgB2DSUsdBI2q1TZQ5Pd839VuVu pXWaLNbRchprI2ireCO7TasuPDt5qQs3NRL5feeTn+iuGFWi1U21N6uf2WNbUq2z 7MyP780DySfC4Xjdsh7FGM24ocaO/GaNl9gd6zrB2ASE29yprz1Kfx34o9hJzPoe kq1CBXwaNOIbwNY54BGlhTqJ4wB7EUT6jrlH58wsWjug+clOwKLdumungtBa7vus C4uS+Et9TkITNi1fRLonB7o/xOUOxgftI/EwKYa7Kg9UmYyGJf4OfIDhvJLi5a6h cbxjzkFb0Mowtb8MaOr6jwBm9wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFFBrjr6v N0TSxa0YAfd5D+Dzmu7aMB8GA1UdIwQYMBaAFLUXTYJlZJzdJ0Jskn0Wh3XXg9U4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDQ1OS85OUVDODlFQzQy MjAxMUVBQjUzMDIwMTZDNEY5QUUwMi90UmROZ21Wa25OMG5RbXlTZlJhSGRkZUQx VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RSZE5nbVZrbk4wblFteVNmUmFIZGRlRDFUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkQ0NTkvOTlFQzg5RUM0MjIwMTFFQUI1MzAyMDE2QzRGOUFFMDIvNjFFMTJCRDBD QTA2MTFFRUIwNUVCOTJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABn+LMwDwQCAAIwCQMHACABDfORQDANBgkqhkiG9w0BAQsF AAOCAQEAHF8MYkBR55lZ238t53uXHscKVPj+vnpKjKCyXcyRVaywxNYTm+dwNQo7 PZlbC5RcF+h3EhwdkJf1LrnivIT/qW56HIJb2PCdrESaYkDZ0ZSQLdvKFWAiQVN9 GEvtUacu4naaco9Tcm6F4aZn5xFWOxLZwiIuFQ9IKTzOD66VUvYKvpf7qCgsbl9r 5Cf6VaOL6l0zzUe7zYSVqqMq7KN+2Gc31X8WFrH2Q6gEKazawYiUsj6DWkehFRmK 0oqTui7SHcVJdojSihG8cEKaGTkptIjmseCGkVwiosQPly9/Cp9fXmkMbQPSnz7J Pzxeh8Hjbwgl/9G4SuecSp2FRjFb6w== -----END CERTIFICATE-----Generated at Fri Aug 8 20:48:50 2025 by rpki-client