$ rpki-client -vvf rpki.apnic.net/member_repository/A9173C08/AFFC0DE4117C11F0B234CD78C4F9AE02/ED917A58117D11F08E2E217CC4F9AE02.roa File: ED917A58117D11F08E2E217CC4F9AE02.roa (raw, json) Hash identifier: Aw3wWZIQQg1zakwGDu44MXnJ4chAk+JjnYLGpnEp8ao= Subject key identifier: 86:8F:D9:00:79:41:F3:1B:07:A4:3C:56:FC:27:F0:29:F7:29:47:55 Certificate issuer: /CN=A9173C08/serialNumber=321EEFB80851FF82FEB7CB6C08A94F5DD2D9270D Certificate serial: 6F Authority key identifier: 32:1E:EF:B8:08:51:FF:82:FE:B7:CB:6C:08:A9:4F:5D:D2:D9:27:0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mh7vuAhR_4L-t8tsCKlPXdLZJw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173C08/AFFC0DE4117C11F0B234CD78C4F9AE02/ED917A58117D11F08E2E217CC4F9AE02.roa Signing time: Thu 23 Oct 2025 17:59:58 +0000 ROA not before: Thu 23 Oct 2025 17:59:58 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 1821 IP address blocks: 103.212.112.0/24 maxlen: 24 103.212.114.0/24 maxlen: 24 103.212.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173C08/AFFC0DE4117C11F0B234CD78C4F9AE02/Mh7vuAhR_4L-t8tsCKlPXdLZJw0.crl rsync://rpki.apnic.net/member_repository/A9173C08/AFFC0DE4117C11F0B234CD78C4F9AE02/Mh7vuAhR_4L-t8tsCKlPXdLZJw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mh7vuAhR_4L-t8tsCKlPXdLZJw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:07:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 111 (0x6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173C08, serialNumber=321EEFB80851FF82FEB7CB6C08A94F5DD2D9270D Validity Not Before: Oct 23 17:59:58 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68fa6d1d-15d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:d2:29:be:de:01:56:b9:90:65:3e:be:73:08: a6:8d:f2:fd:0f:e3:86:de:19:91:99:c7:a9:c2:8a: 6a:93:9a:93:55:07:a6:56:d8:bc:ff:aa:ca:98:4f: f8:5e:cd:69:72:5f:c8:64:f5:e0:68:5c:e7:20:29: 70:08:bb:08:9f:56:4b:5f:d1:e3:a3:ad:6b:d6:79: 9a:0d:7d:98:4a:43:d6:09:cf:c5:4e:4e:e9:26:65: b2:86:13:a7:44:65:b7:84:05:40:9d:f5:55:91:26: b6:38:de:e4:08:3a:a1:2f:e1:7f:3b:05:01:3f:4c: 63:64:44:a7:69:ba:67:89:b5:95:36:ba:b6:3a:40: 99:04:d9:63:37:6d:0e:a4:ca:ad:f9:27:53:4a:be: a0:db:f8:39:8b:1a:e1:b3:78:31:e2:fe:cd:26:6b: f0:18:a2:9a:b5:fb:48:89:3e:e1:1a:0e:d5:b9:62: da:c7:4f:c7:45:cf:81:51:17:60:28:2b:39:83:7f: 0d:18:f1:0c:c8:b2:30:71:5d:3e:1e:1d:eb:11:df: 92:3e:da:3f:40:ac:c0:17:55:99:d2:92:18:26:2f: 61:00:3c:ce:d4:92:b2:bd:8e:12:19:b1:1a:bf:6b: 8c:92:cf:0f:df:53:3b:07:5f:5e:86:5a:4d:01:44: 14:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:8F:D9:00:79:41:F3:1B:07:A4:3C:56:FC:27:F0:29:F7:29:47:55 X509v3 Authority Key Identifier: keyid:32:1E:EF:B8:08:51:FF:82:FE:B7:CB:6C:08:A9:4F:5D:D2:D9:27:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173C08/AFFC0DE4117C11F0B234CD78C4F9AE02/Mh7vuAhR_4L-t8tsCKlPXdLZJw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mh7vuAhR_4L-t8tsCKlPXdLZJw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173C08/AFFC0DE4117C11F0B234CD78C4F9AE02/ED917A58117D11F08E2E217CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.212.112.0/24 103.212.114.0/23 Signature Algorithm: sha256WithRSAEncryption c8:88:98:44:67:6b:0a:db:87:18:82:18:f3:9e:6b:53:8b:22: f1:5f:8f:07:82:75:e8:3b:02:3c:47:f8:02:f1:a4:58:62:ae: 2c:ee:9f:89:6d:ba:27:4e:08:f8:10:91:9d:5c:5a:63:fa:49: 84:13:c0:2f:3e:12:d6:e8:a7:b4:4a:15:79:67:fb:5a:c5:e7: 82:99:7c:db:5b:59:80:c1:9e:d9:82:3a:8f:fa:97:91:0a:18: f1:bc:b7:48:f2:6c:18:01:64:82:8a:8b:d2:a8:95:c6:59:93: 0e:14:32:72:3b:a1:86:6e:0b:71:63:d0:2c:27:e6:34:96:2d: 95:50:94:75:26:e7:ab:44:0d:72:92:51:78:5b:de:5b:be:c6: 83:04:29:51:fe:83:77:69:62:8b:bf:84:7e:57:88:5d:cc:53: 53:43:aa:41:5e:43:59:88:dc:68:95:fc:b5:cf:7f:fc:e0:3c: 92:22:12:5d:4f:8c:71:eb:89:8b:01:aa:6d:37:9c:e9:c6:06: 14:ef:ac:4c:df:bf:37:5c:4f:06:5f:c7:a4:95:b4:40:ac:d0: a0:80:1e:e8:50:93:5e:f0:2e:fe:8b:31:34:55:f2:73:29:b2: 3d:84:d4:69:f8:ae:df:b9:a7:25:61:a8:c6:7e:43:7d:e9:bc: 76:8b:92:bf -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBbzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 M0MwODExMC8GA1UEBRMoMzIxRUVGQjgwODUxRkY4MkZFQjdDQjZDMDhBOTRGNURE MkQ5MjcwRDAeFw0yNTEwMjMxNzU5NThaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZmE2ZDFkLTE1ZDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCn0im+3gFWuZBlPr5zCKaN8v0P44beGZGZx6nCimqTmpNVB6ZW2Lz/qsqYT/he zWlyX8hk9eBoXOcgKXAIuwifVktf0eOjrWvWeZoNfZhKQ9YJz8VOTukmZbKGE6dE ZbeEBUCd9VWRJrY43uQIOqEv4X87BQE/TGNkRKdpumeJtZU2urY6QJkE2WM3bQ6k yq35J1NKvqDb+DmLGuGzeDHi/s0ma/AYopq1+0iJPuEaDtW5YtrHT8dFz4FRF2Ao KzmDfw0Y8QzIsjBxXT4eHesR35I+2j9ArMAXVZnSkhgmL2EAPM7UkrK9jhIZsRq/ a4ySzw/fUzsHX16GWk0BRBSpAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUho/ZAHlB 8xsHpDxW/CfwKfcpR1UwHwYDVR0jBBgwFoAUMh7vuAhR/4L+t8tsCKlPXdLZJw0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTczQzA4L0FGRkMwREU0MTE3 QzExRjBCMjM0Q0Q3OEM0RjlBRTAyL01oN3Z1QWhSXzRMLXQ4dHNDS2xQWGRMWkp3 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTWg3dnVBaFJfNEwtdDh0c0NLbFBYZExaSncwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0MwOC9BRkZDMERFNDExN0MxMUYwQjIzNENENzhDNEY5QUUwMi9FRDkxN0E1ODEx N0QxMUYwOEUyRTIxN0NDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAGfUcAMEAWfUcjANBgkqhkiG9w0BAQsFAAOCAQEAyIiYRGdr CtuHGIIY855rU4si8V+PB4J16DsCPEf4AvGkWGKuLO6fiW26J04I+BCRnVxaY/pJ hBPALz4S1uintEoVeWf7WsXngpl821tZgMGe2YI6j/qXkQoY8by3SPJsGAFkgoqL 0qiVxlmTDhQycjuhhm4LcWPQLCfmNJYtlVCUdSbnq0QNcpJReFveW77GgwQpUf6D d2lii7+EfleIXcxTU0OqQV5DWYjcaJX8tc9//OA8kiISXU+MceuJiwGqbTec6cYG FO+sTN+/N1xPBl/HpJW0QKzQoIAe6FCTXvAu/osxNFXycymyPYTUafiu37mnJWGo xn5Dfem8douSvw== -----END CERTIFICATE-----Generated at Wed Nov 5 19:48:05 2025 by rpki-client