$ rpki-client -vvf rpki.apnic.net/member_repository/A917B9CB/6F6EDC601D8E11E2885CDFEC08B02CD2/6F58AA34687C11F08C69EA64C4F9AE02.roa File: 6F58AA34687C11F08C69EA64C4F9AE02.roa (raw, json) Hash identifier: lvbDAxOQ41m3fnpVcOJWBX3CzhcnEIm/Ym/qa3pTN/Q= Subject key identifier: DF:DC:54:2D:E9:99:BB:56:EC:2A:04:73:3D:97:3C:1D:C2:7F:D6:AB Certificate issuer: /CN=A917B9CB/serialNumber=33A7AEAFA5526DCDC56CF0876BBD41133E3D2479 Certificate serial: 34C0 Authority key identifier: 33:A7:AE:AF:A5:52:6D:CD:C5:6C:F0:87:6B:BD:41:13:3E:3D:24:79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M6eur6VSbc3FbPCHa71BEz49JHk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B9CB/6F6EDC601D8E11E2885CDFEC08B02CD2/6F58AA34687C11F08C69EA64C4F9AE02.roa Signing time: Thu 24 Jul 2025 10:53:30 +0000 ROA not before: Thu 24 Jul 2025 10:53:30 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 136161 IP address blocks: 103.82.124.0/24 maxlen: 24 103.92.94.0/24 maxlen: 24 103.112.104.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B9CB/6F6EDC601D8E11E2885CDFEC08B02CD2/M6eur6VSbc3FbPCHa71BEz49JHk.crl rsync://rpki.apnic.net/member_repository/A917B9CB/6F6EDC601D8E11E2885CDFEC08B02CD2/M6eur6VSbc3FbPCHa71BEz49JHk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M6eur6VSbc3FbPCHa71BEz49JHk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13504 (0x34c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B9CB, serialNumber=33A7AEAFA5526DCDC56CF0876BBD41133E3D2479 Validity Not Before: Jul 24 10:53:30 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=688210aa-6b57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:7d:f9:17:6b:e7:de:32:d0:4d:a4:8a:09:67: a2:29:95:6e:e2:9d:2b:2a:44:c7:f2:65:a0:3d:e4: fe:aa:bd:aa:18:84:4d:b3:98:47:aa:3f:e6:4b:54: dd:69:7b:7c:70:3f:16:54:5e:31:ba:b4:5a:54:f6: 5e:2e:8b:72:08:67:c9:e7:ee:c2:63:69:1e:5d:62: d7:2c:a6:ba:bc:5f:4f:e7:b3:fe:d5:7a:b1:e4:da: 5b:45:6c:ef:a7:98:9e:83:a5:2e:6b:12:d4:1c:76: 87:a8:69:17:77:32:f3:da:58:77:02:0b:53:ac:61: 80:7b:8d:af:f6:e9:76:8e:4b:b1:6f:38:b9:fc:c2: 05:b0:f6:d0:2a:2f:45:c3:20:26:b3:04:cd:e7:95: 3b:34:a4:93:a4:9f:34:89:b9:8a:9d:b7:7b:fe:44: 1d:a8:1f:fd:8c:c8:c5:80:6b:82:83:d3:7b:8d:23: 40:49:9f:f0:fb:01:7f:d3:e0:c6:be:8c:b6:da:df: 5e:f7:dd:13:b1:01:70:04:b1:4d:3f:1c:79:a4:0b: 10:89:1e:ee:ca:40:83:da:4a:d0:01:9a:f5:9f:3b: 4b:19:37:cd:de:48:29:a2:69:fc:db:b0:aa:fd:30: 3c:db:1c:b9:ed:df:42:0f:17:b4:28:8e:7f:4e:3a: 00:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:DC:54:2D:E9:99:BB:56:EC:2A:04:73:3D:97:3C:1D:C2:7F:D6:AB X509v3 Authority Key Identifier: keyid:33:A7:AE:AF:A5:52:6D:CD:C5:6C:F0:87:6B:BD:41:13:3E:3D:24:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B9CB/6F6EDC601D8E11E2885CDFEC08B02CD2/M6eur6VSbc3FbPCHa71BEz49JHk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M6eur6VSbc3FbPCHa71BEz49JHk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B9CB/6F6EDC601D8E11E2885CDFEC08B02CD2/6F58AA34687C11F08C69EA64C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.82.124.0/24 103.92.94.0/24 103.112.104.0/23 Signature Algorithm: sha256WithRSAEncryption 74:f2:b1:97:e7:a5:26:8c:c5:5b:76:ec:e3:bf:95:02:3f:31: fd:8c:ac:da:4b:10:a9:52:c0:86:f4:9a:2c:dd:26:d0:b0:a5: 3b:ee:0f:bd:31:93:41:8c:2c:03:3b:af:fe:fe:bc:a4:2d:10: 3e:e3:94:4e:2f:2c:7e:c4:5a:a9:00:56:49:95:f5:3c:68:53: 63:0d:af:0d:0e:01:7f:b3:a6:42:94:2d:ca:db:c5:5c:9c:a4: 18:92:c4:12:cf:0a:19:0a:fa:b5:a1:96:e7:c4:ba:83:ec:5b: 80:42:78:0f:4a:81:2c:01:35:6b:16:a3:2b:88:0a:c5:f3:b1: 60:9e:92:d9:63:2f:0c:16:6a:c9:4c:95:4e:8a:06:26:1a:31: 00:dc:57:b1:ff:fa:44:75:5e:ca:5b:87:e2:8f:07:11:86:83: 11:91:bb:78:90:48:7b:59:eb:20:8d:f1:62:0b:0c:90:80:9e: ec:12:62:d1:c6:a3:20:ea:a2:80:71:9b:32:41:a7:57:73:aa: 34:8b:14:13:8b:3c:63:6b:9f:10:9b:d0:bd:89:ae:94:54:4b: 1f:b1:06:98:c7:4c:a2:8d:60:e9:17:c6:f5:07:7d:31:ed:ce: f6:a2:11:48:7d:9c:67:1b:19:ef:2d:6d:a6:b3:fe:64:9c:51: 11:89:a0:66 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICNMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I5Q0IxMTAvBgNVBAUTKDMzQTdBRUFGQTU1MjZEQ0RDNTZDRjA4NzZCQkQ0MTEz M0UzRDI0NzkwHhcNMjUwNzI0MTA1MzMwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODgyMTBhYS02YjU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq335F2vn3jLQTaSKCWeiKZVu4p0rKkTH8mWgPeT+qr2qGIRNs5hHqj/mS1Td aXt8cD8WVF4xurRaVPZeLotyCGfJ5+7CY2keXWLXLKa6vF9P57P+1Xqx5NpbRWzv p5ieg6UuaxLUHHaHqGkXdzLz2lh3AgtTrGGAe42v9ul2jkuxbzi5/MIFsPbQKi9F wyAmswTN55U7NKSTpJ80ibmKnbd7/kQdqB/9jMjFgGuCg9N7jSNASZ/w+wF/0+DG voy22t9e990TsQFwBLFNPxx5pAsQiR7uykCD2krQAZr1nztLGTfN3kgpomn827Cq /TA82xy57d9CDxe0KI5/TjoAyQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFN/cVC3p mbtW7CoEcz2XPB3Cf9arMB8GA1UdIwQYMBaAFDOnrq+lUm3NxWzwh2u9QRM+PSR5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjlDQi82RjZFREM2MDFE OEUxMUUyODg1Q0RGRUMwOEIwMkNEMi9NNmV1cjZWU2JjM0ZiUENIYTcxQkV6NDlK SGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL002ZXVyNlZTYmMzRmJQQ0hhNzFCRXo0OUpIay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I5Q0IvNkY2RURDNjAxRDhFMTFFMjg4NUNERkVDMDhCMDJDRDIvNkY1OEFBMzQ2 ODdDMTFGMDhDNjlFQTY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnUnwDBABnXF4DBAFncGgwDQYJKoZIhvcNAQELBQADggEB AHTysZfnpSaMxVt27OO/lQI/Mf2MrNpLEKlSwIb0mizdJtCwpTvuD70xk0GMLAM7 r/7+vKQtED7jlE4vLH7EWqkAVkmV9TxoU2MNrw0OAX+zpkKULcrbxVycpBiSxBLP ChkK+rWhlufEuoPsW4BCeA9KgSwBNWsWoyuICsXzsWCektljLwwWaslMlU6KBiYa MQDcV7H/+kR1Xspbh+KPBxGGgxGRu3iQSHtZ6yCN8WILDJCAnuwSYtHGoyDqooBx mzJBp1dzqjSLFBOLPGNrnxCb0L2JrpRUSx+xBpjHTKKNYOkXxvUHfTHtzvaiEUh9 nGcbGe8tbaaz/mScURGJoGY= -----END CERTIFICATE-----Generated at Sun Aug 10 18:47:41 2025 by rpki-client