$ rpki-client -vvf rpki.apnic.net/member_repository/A917F5F0/709F97A6DC6111EABCA4CA84C4F9AE02/4C89E536DC6311EA8C998087C4F9AE02.roa File: 4C89E536DC6311EA8C998087C4F9AE02.roa (raw, json) Hash identifier: nq8qpRsk9rXbJOHGglWhSt6QeR+0FuC7rTR0xPKJN7E= Subject key identifier: FD:BC:62:B9:35:42:C0:16:A3:41:0B:2F:13:A3:3D:5B:4D:67:91:C6 Certificate issuer: /CN=A917F5F0/serialNumber=93FAD588F39EA58C6588DDFA17BD0D6FCE7A606A Certificate serial: 082D Authority key identifier: 93:FA:D5:88:F3:9E:A5:8C:65:88:DD:FA:17:BD:0D:6F:CE:7A:60:6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k_rViPOepYxliN36F70Nb856YGo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F5F0/709F97A6DC6111EABCA4CA84C4F9AE02/4C89E536DC6311EA8C998087C4F9AE02.roa Signing time: Wed 30 Jul 2025 21:32:03 +0000 ROA not before: Wed 30 Jul 2025 21:32:03 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 132901 IP address blocks: 59.153.26.0/23 maxlen: 24 103.27.204.0/23 maxlen: 23 103.27.204.0/23 maxlen: 24 103.198.16.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F5F0/709F97A6DC6111EABCA4CA84C4F9AE02/k_rViPOepYxliN36F70Nb856YGo.crl rsync://rpki.apnic.net/member_repository/A917F5F0/709F97A6DC6111EABCA4CA84C4F9AE02/k_rViPOepYxliN36F70Nb856YGo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k_rViPOepYxliN36F70Nb856YGo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2093 (0x82d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F5F0, serialNumber=93FAD588F39EA58C6588DDFA17BD0D6FCE7A606A Validity Not Before: Jul 30 21:32:03 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=688a8f52-668b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d6:9f:2d:b4:5f:92:a9:31:c0:e1:18:59:67: 09:66:82:21:2b:8d:f5:08:9b:c8:5e:9b:10:2b:1e: 3b:19:9e:9c:e5:cc:8c:8d:6f:9f:b8:07:2b:67:bb: 42:d8:ca:1a:8c:a4:45:e2:65:76:5f:14:3c:dd:b6: 4f:93:b4:16:54:ea:ee:91:74:05:f3:67:39:af:06: 9d:05:89:13:48:79:fe:f0:8b:f0:07:5b:0d:5a:41: 82:93:68:63:10:2c:57:aa:70:a1:88:65:f6:d0:25: 01:6e:38:d8:da:7d:3c:2c:39:b5:24:8b:96:d7:38: 87:2f:71:2f:03:1b:d1:5f:d4:97:61:bd:15:2f:0b: 9e:06:20:e2:96:55:7a:70:f5:68:f7:ab:30:2d:7b: 70:2a:c6:c3:a4:82:e6:06:4d:c2:11:66:9c:bb:16: e0:e8:d0:48:18:98:b3:3f:42:65:c3:46:58:7e:63: 49:f3:5a:60:26:b1:05:d9:86:44:c7:e3:41:6b:c6: bd:a2:7e:e2:f2:4f:2b:89:44:ab:98:cc:49:66:bb: e6:35:08:83:89:13:fa:06:61:c3:5d:98:2d:60:57: 23:59:62:8c:1b:e2:ca:c6:d1:c4:a3:47:ca:7c:a2: ae:67:b7:5b:eb:e8:a9:1e:24:1c:8b:91:7c:41:2f: ae:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:BC:62:B9:35:42:C0:16:A3:41:0B:2F:13:A3:3D:5B:4D:67:91:C6 X509v3 Authority Key Identifier: keyid:93:FA:D5:88:F3:9E:A5:8C:65:88:DD:FA:17:BD:0D:6F:CE:7A:60:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F5F0/709F97A6DC6111EABCA4CA84C4F9AE02/k_rViPOepYxliN36F70Nb856YGo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k_rViPOepYxliN36F70Nb856YGo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F5F0/709F97A6DC6111EABCA4CA84C4F9AE02/4C89E536DC6311EA8C998087C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.153.26.0/23 103.27.204.0/23 103.198.16.0/23 Signature Algorithm: sha256WithRSAEncryption 2b:3a:b1:57:45:59:8c:0b:8f:73:5e:dd:d8:8d:6d:a4:88:2a: 66:da:0c:b6:13:3c:f5:7e:b8:db:f8:6a:5c:ae:4a:a5:68:7b: f3:92:4a:6a:c1:48:f9:0f:51:fb:f5:e3:0b:e5:c7:f5:42:34: e3:57:47:ee:50:2a:33:0a:ed:9d:fa:d4:71:3c:2f:74:b5:d0: 88:55:72:9d:1f:fa:b2:88:b6:d0:59:53:2b:5f:a0:ea:46:88: 37:28:8e:b1:10:7f:b2:14:98:fd:62:e5:ca:ef:28:02:e3:29: 1e:c4:91:92:48:ff:38:d6:6d:7c:6e:b9:69:f6:71:dc:ca:26: 10:10:76:ea:a9:f0:59:af:a4:0c:c3:4b:c6:1a:57:67:48:fd: 64:c0:18:0c:bc:ad:83:3f:e7:58:8e:f4:e3:83:7f:03:ad:b1: db:ba:da:22:9b:ca:94:a6:38:4d:95:95:25:c8:f9:d5:da:7e: 03:23:cb:b5:12:d6:8b:ac:ac:9f:8a:a8:ab:a3:07:0b:3b:bf: f3:25:13:f8:07:f5:73:58:3f:35:f7:8a:90:f2:61:ff:a6:97: 70:b6:81:5e:0f:3c:c2:08:8a:27:bd:29:2a:90:1b:17:7c:08: 8e:e6:74:23:61:e2:ae:27:77:a7:10:d4:c2:f2:0b:2a:48:a7: d9:1e:5d:41 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICCC0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y1RjAxMTAvBgNVBAUTKDkzRkFENTg4RjM5RUE1OEM2NTg4RERGQTE3QkQwRDZG Q0U3QTYwNkEwHhcNMjUwNzMwMjEzMjAzWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhhOGY1Mi02NjhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqdafLbRfkqkxwOEYWWcJZoIhK431CJvIXpsQKx47GZ6c5cyMjW+fuAcrZ7tC 2MoajKRF4mV2XxQ83bZPk7QWVOrukXQF82c5rwadBYkTSHn+8IvwB1sNWkGCk2hj ECxXqnChiGX20CUBbjjY2n08LDm1JIuW1ziHL3EvAxvRX9SXYb0VLwueBiDillV6 cPVo96swLXtwKsbDpILmBk3CEWacuxbg6NBIGJizP0Jlw0ZYfmNJ81pgJrEF2YZE x+NBa8a9on7i8k8riUSrmMxJZrvmNQiDiRP6BmHDXZgtYFcjWWKMG+LKxtHEo0fK fKKuZ7db6+ipHiQci5F8QS+uOQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFP28Yrk1 QsAWo0ELLxOjPVtNZ5HGMB8GA1UdIwQYMBaAFJP61YjznqWMZYjd+he9DW/OemBq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjVGMC83MDlGOTdBNkRD NjExMUVBQkNBNENBODRDNEY5QUUwMi9rX3JWaVBPZXBZeGxpTjM2RjcwTmI4NTZZ R28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tfclZpUE9lcFl4bGlOMzZGNzBOYjg1NllHby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0Y1RjAvNzA5Rjk3QTZEQzYxMTFFQUJDQTRDQTg0QzRGOUFFMDIvNEM4OUU1MzZE QzYzMTFFQThDOTk4MDg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAE7mRoDBAFnG8wDBAFnxhAwDQYJKoZIhvcNAQELBQADggEB ACs6sVdFWYwLj3Ne3diNbaSIKmbaDLYTPPV+uNv4alyuSqVoe/OSSmrBSPkPUfv1 4wvlx/VCNONXR+5QKjMK7Z361HE8L3S10IhVcp0f+rKIttBZUytfoOpGiDcojrEQ f7IUmP1i5crvKALjKR7EkZJI/zjWbXxuuWn2cdzKJhAQduqp8FmvpAzDS8YaV2dI /WTAGAy8rYM/51iO9OODfwOtsdu62iKbypSmOE2VlSXI+dXafgMjy7US1ousrJ+K qKujBws7v/MlE/gH9XNYPzX3ipDyYf+ml3C2gV4PPMIIiie9KSqQGxd8CI7mdCNh 4q4nd6cQ1MLyCypIp9keXUE= -----END CERTIFICATE-----Generated at Mon Aug 11 04:19:19 2025 by rpki-client