$ rpki-client -vvf rpki.apnic.net/member_repository/A917624C/BB50D9D0D06C11ECB2AAAA37C4F9AE02/58699F5EB4E411F0AEF0381FC4F9AE02.roa File: 58699F5EB4E411F0AEF0381FC4F9AE02.roa (raw, json) Hash identifier: h2ID8hdDjbhE6AZgWr8n/8IjjT8UJR98H8a09uyii/M= Subject key identifier: AB:76:10:FE:9C:B9:25:26:8A:63:EE:D8:56:FD:E1:F2:A9:7E:9D:7D Certificate issuer: /CN=A917624C/serialNumber=6D80FEB51780F7F106E6190DC3E2EE7CE74EEFBB Certificate serial: 0364 Authority key identifier: 6D:80:FE:B5:17:80:F7:F1:06:E6:19:0D:C3:E2:EE:7C:E7:4E:EF:BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bYD-tReA9_EG5hkNw-LufOdO77s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917624C/BB50D9D0D06C11ECB2AAAA37C4F9AE02/58699F5EB4E411F0AEF0381FC4F9AE02.roa Signing time: Wed 29 Oct 2025 16:28:48 +0000 ROA not before: Wed 29 Oct 2025 16:28:48 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 132073 IP address blocks: 103.186.52.0/24 maxlen: 24 2001:df0:a140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917624C/BB50D9D0D06C11ECB2AAAA37C4F9AE02/bYD-tReA9_EG5hkNw-LufOdO77s.crl rsync://rpki.apnic.net/member_repository/A917624C/BB50D9D0D06C11ECB2AAAA37C4F9AE02/bYD-tReA9_EG5hkNw-LufOdO77s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bYD-tReA9_EG5hkNw-LufOdO77s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:53:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 868 (0x364) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917624C, serialNumber=6D80FEB51780F7F106E6190DC3E2EE7CE74EEFBB Validity Not Before: Oct 29 16:28:48 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=690240bf-2071 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:c5:6c:5f:d6:39:ed:a0:db:3f:dc:50:ae:48: a3:d0:40:c7:2f:20:c8:90:b2:1b:c4:5c:7b:3f:82: 04:e0:42:fd:a6:f2:de:b6:c4:61:4b:bf:1e:90:20: fd:8a:0f:87:83:12:0d:fb:e6:20:5a:13:e7:d2:9e: 89:dc:cf:70:d2:dd:c7:a8:56:3f:d2:c9:4a:d0:e5: dd:af:c9:ae:c2:5f:29:e4:6c:d6:d0:7b:f5:ce:4c: 46:2e:b2:4e:3a:91:69:f4:0a:84:10:72:06:93:cd: d1:9b:6e:25:8e:73:36:3c:f6:1d:b8:a7:21:21:d2: 47:26:8c:52:fe:38:48:aa:dc:3f:bc:25:24:75:04: 80:09:74:a4:64:43:69:96:b3:9e:be:4f:ed:e1:d7: 1d:1d:46:13:52:f9:1e:50:d0:4c:91:5b:b8:b6:a4: 9c:05:21:19:60:08:aa:b3:1b:eb:58:f7:09:12:2a: 9a:4e:1e:2a:cd:46:57:e3:5a:4e:7e:21:22:2a:67: 5e:e0:6e:79:d9:43:c9:23:29:7c:c0:59:f0:eb:e5: 68:81:b4:ad:0b:ac:a8:0b:7b:fe:af:d3:26:4b:64: 6b:56:01:e6:45:33:fa:de:7e:45:3d:bf:fe:d2:59: c4:c4:65:1c:6a:e1:7c:12:f9:31:65:a0:2d:0a:b7: 2d:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:76:10:FE:9C:B9:25:26:8A:63:EE:D8:56:FD:E1:F2:A9:7E:9D:7D X509v3 Authority Key Identifier: keyid:6D:80:FE:B5:17:80:F7:F1:06:E6:19:0D:C3:E2:EE:7C:E7:4E:EF:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917624C/BB50D9D0D06C11ECB2AAAA37C4F9AE02/bYD-tReA9_EG5hkNw-LufOdO77s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bYD-tReA9_EG5hkNw-LufOdO77s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917624C/BB50D9D0D06C11ECB2AAAA37C4F9AE02/58699F5EB4E411F0AEF0381FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.186.52.0/24 IPv6: 2001:df0:a140::/48 Signature Algorithm: sha256WithRSAEncryption 7f:7b:6b:6e:43:00:f1:9a:ce:97:c4:b1:fc:a4:44:4a:7d:52: 7a:a8:9f:ed:5b:6d:1b:76:51:24:41:24:c9:1e:8c:eb:0b:e7: 40:4f:07:d7:a0:ef:48:28:d0:9b:77:f8:18:ad:6a:7a:48:0e: 9f:08:e9:45:5b:b3:d0:d2:70:f8:3a:99:31:ca:86:53:20:38: ae:74:c1:01:42:96:b6:28:d9:b8:88:b6:a8:32:96:f7:c9:b0: 05:21:6a:86:d8:8d:f0:b6:d0:2b:7e:be:64:82:b4:1b:c2:82: b5:4a:c1:30:60:30:11:ca:9c:b5:66:b2:f3:40:1e:4b:e3:53: 46:e7:22:85:ec:25:c3:5d:87:69:2e:73:a2:99:10:9a:88:2d: 5d:66:7a:31:62:bc:53:7d:a9:d4:b7:d5:c1:25:d5:c0:c5:a2: 91:56:42:16:61:90:73:59:21:3c:d7:14:1d:60:48:2d:fe:b5: 54:70:49:21:b3:bd:68:73:63:21:c6:a6:75:86:62:ba:36:28: 29:ba:31:48:97:d3:5c:fb:a5:c4:fe:2b:4d:cd:bc:c9:84:bd: b1:4d:dd:e0:8c:3f:2a:e3:7b:a0:a2:c5:96:ee:c3:ba:c7:e2: ba:22:43:1d:c3:a2:9d:1b:be:5f:16:0f:85:57:e3:cd:e2:29: bb:77:70:62 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICA2QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzYyNEMxMTAvBgNVBAUTKDZEODBGRUI1MTc4MEY3RjEwNkU2MTkwREMzRTJFRTdD RTc0RUVGQkIwHhcNMjUxMDI5MTYyODQ4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTAyNDBiZi0yMDcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2sVsX9Y57aDbP9xQrkij0EDHLyDIkLIbxFx7P4IE4EL9pvLetsRhS78ekCD9 ig+HgxIN++YgWhPn0p6J3M9w0t3HqFY/0slK0OXdr8muwl8p5GzW0Hv1zkxGLrJO OpFp9AqEEHIGk83Rm24ljnM2PPYduKchIdJHJoxS/jhIqtw/vCUkdQSACXSkZENp lrOevk/t4dcdHUYTUvkeUNBMkVu4tqScBSEZYAiqsxvrWPcJEiqaTh4qzUZX41pO fiEiKmde4G552UPJIyl8wFnw6+VogbStC6yoC3v+r9MmS2RrVgHmRTP63n5FPb/+ 0lnExGUcauF8EvkxZaAtCrctlwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFKt2EP6c uSUmimPu2Fb94fKpfp19MB8GA1UdIwQYMBaAFG2A/rUXgPfxBuYZDcPi7nznTu+7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjI0Qy9CQjUwRDlEMEQw NkMxMUVDQjJBQUFBMzdDNEY5QUUwMi9iWUQtdFJlQTlfRUc1aGtOdy1MdWZPZE83 N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JZRC10UmVBOV9FRzVoa053LUx1Zk9kTzc3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzYyNEMvQkI1MEQ5RDBEMDZDMTFFQ0IyQUFBQTM3QzRGOUFFMDIvNTg2OTlGNUVC NEU0MTFGMEFFRjAzODFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnujQwDwQCAAIwCQMHACABDfChQDANBgkqhkiG9w0BAQsF AAOCAQEAf3trbkMA8ZrOl8Sx/KRESn1Seqif7VttG3ZRJEEkyR6M6wvnQE8H16Dv SCjQm3f4GK1qekgOnwjpRVuz0NJw+DqZMcqGUyA4rnTBAUKWtijZuIi2qDKW98mw BSFqhtiN8LbQK36+ZIK0G8KCtUrBMGAwEcqctWay80AeS+NTRucihewlw12HaS5z opkQmogtXWZ6MWK8U32p1LfVwSXVwMWikVZCFmGQc1khPNcUHWBILf61VHBJIbO9 aHNjIcamdYZiujYoKboxSJfTXPulxP4rTc28yYS9sU3d4Iw/KuN7oKLFlu7Dusfi uiJDHcOinRu+XxYPhVfjzeIpu3dwYg== -----END CERTIFICATE-----Generated at Tue Nov 4 08:01:08 2025 by rpki-client