$ rpki-client -vvf rpki.apnic.net/member_repository/A918A62F/1CF98726085211EA8DF67349C4F9AE02/9DF59BFADA1611ED87B4D357C4F9AE02.roa File: 9DF59BFADA1611ED87B4D357C4F9AE02.roa (raw, json) Hash identifier: gCE8sQKb8A6qpKcLfMZ4C7XBMwBoNFAnuYIqxIqfFSI= Subject key identifier: 81:AF:26:5B:F1:41:A5:27:10:6B:1E:AA:65:AF:52:39:14:5D:E6:2B Certificate issuer: /CN=A918A62F/serialNumber=DFB6723672151EC2C46CD04E71C59F9169CAE6F8 Certificate serial: 0C6A Authority key identifier: DF:B6:72:36:72:15:1E:C2:C4:6C:D0:4E:71:C5:9F:91:69:CA:E6:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/37ZyNnIVHsLEbNBOccWfkWnK5vg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A62F/1CF98726085211EA8DF67349C4F9AE02/9DF59BFADA1611ED87B4D357C4F9AE02.roa Signing time: Tue 22 Jul 2025 18:58:26 +0000 ROA not before: Tue 22 Jul 2025 18:58:26 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 136563 IP address blocks: 103.92.234.0/24 maxlen: 24 103.96.89.0/24 maxlen: 24 103.96.90.0/23 maxlen: 24 123.253.214.0/24 maxlen: 24 123.253.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A62F/1CF98726085211EA8DF67349C4F9AE02/37ZyNnIVHsLEbNBOccWfkWnK5vg.crl rsync://rpki.apnic.net/member_repository/A918A62F/1CF98726085211EA8DF67349C4F9AE02/37ZyNnIVHsLEbNBOccWfkWnK5vg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/37ZyNnIVHsLEbNBOccWfkWnK5vg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3178 (0xc6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A62F, serialNumber=DFB6723672151EC2C46CD04E71C59F9169CAE6F8 Validity Not Before: Jul 22 18:58:26 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=687fdf52-5db6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:f1:57:9b:03:75:b7:8c:09:38:2d:a4:23:4f: a8:9a:14:f1:68:86:b2:70:b7:cd:c0:cd:be:ce:d5: 2c:07:9c:c1:99:e2:4b:9b:e5:69:f5:c3:a4:b7:da: 87:57:ba:d6:8b:1f:bb:3b:eb:cc:d2:0e:51:64:d1: 72:35:73:42:fd:c5:82:e4:35:61:68:9b:76:ce:86: 42:99:28:da:65:29:20:fc:99:3a:f7:44:e5:5b:92: 05:ea:12:09:f7:ca:fd:57:57:32:d5:86:2a:24:4b: 74:90:59:84:7b:4d:6e:e1:dc:14:c8:fd:bf:30:6f: a1:aa:2f:8f:11:a2:95:26:3b:0b:1a:f3:cc:76:06: 34:0e:94:70:d9:3f:ac:31:46:38:0f:96:ab:d4:1e: f9:5c:bc:55:ce:7b:7c:c7:77:bc:7e:2d:f8:03:56: 48:13:c5:6e:49:2f:f2:68:56:12:b6:c6:e2:59:b1: c8:99:1b:ad:cb:6d:61:ac:32:26:27:92:48:7f:68: 91:0e:fc:49:7d:91:33:c1:8b:f2:49:b2:11:c1:0a: 3d:b4:4f:7c:e0:b4:aa:7c:57:71:eb:21:20:a9:30: 50:12:e0:71:ed:a4:4e:da:3b:1d:45:42:ef:71:a2: 59:72:9d:63:23:a7:24:e8:16:33:cb:96:57:95:c9: 61:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:AF:26:5B:F1:41:A5:27:10:6B:1E:AA:65:AF:52:39:14:5D:E6:2B X509v3 Authority Key Identifier: keyid:DF:B6:72:36:72:15:1E:C2:C4:6C:D0:4E:71:C5:9F:91:69:CA:E6:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A62F/1CF98726085211EA8DF67349C4F9AE02/37ZyNnIVHsLEbNBOccWfkWnK5vg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/37ZyNnIVHsLEbNBOccWfkWnK5vg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A62F/1CF98726085211EA8DF67349C4F9AE02/9DF59BFADA1611ED87B4D357C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.92.234.0/24 103.96.89.0-103.96.91.255 123.253.214.0/23 Signature Algorithm: sha256WithRSAEncryption 19:a1:1a:22:56:51:aa:aa:df:78:22:9e:36:71:50:80:f7:91: 58:40:e0:53:fe:31:4f:e4:a7:a7:eb:c0:e5:a8:47:ce:ea:ca: 5d:8d:56:da:39:cc:64:87:4d:eb:27:fa:c9:8c:89:b8:15:60: 29:67:4d:f5:18:ea:1c:bd:85:4b:33:fe:17:d2:f1:87:b5:69: 91:74:03:e3:e7:73:dd:81:c2:b8:25:fb:11:bb:de:0f:6d:71: 96:16:c9:d8:46:8e:d0:44:f0:8f:62:69:c0:46:e0:cd:9d:bc: a4:10:17:2c:3d:7c:78:4d:72:10:12:1d:01:70:a7:e5:6d:80: de:f3:9b:a2:48:ae:ad:4c:b0:32:86:2a:1f:5f:a3:e8:eb:0c: 7a:59:10:36:f8:99:17:64:db:af:81:97:5f:36:04:15:06:f0: e0:b2:d9:e3:6e:68:a1:32:7d:69:45:59:16:82:71:a6:48:a6: 13:df:8b:ee:5b:ed:9c:bf:a1:be:31:bc:25:5b:b7:6d:ef:5e: 58:57:28:d2:88:90:6d:e4:50:68:07:32:80:f9:ce:71:ca:2b: d9:c5:85:fc:d0:2c:16:ee:ed:66:44:e6:60:0c:71:48:3d:d7: 2e:1a:c6:1a:cf:73:3a:eb:60:de:72:60:67:b9:f2:e5:c0:71: 81:b0:52:84 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICDGowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE2MkYxMTAvBgNVBAUTKERGQjY3MjM2NzIxNTFFQzJDNDZDRDA0RTcxQzU5Rjkx NjlDQUU2RjgwHhcNMjUwNzIyMTg1ODI2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODdmZGY1Mi01ZGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl/FXmwN1t4wJOC2kI0+omhTxaIaycLfNwM2+ztUsB5zBmeJLm+Vp9cOkt9qH V7rWix+7O+vM0g5RZNFyNXNC/cWC5DVhaJt2zoZCmSjaZSkg/Jk690TlW5IF6hIJ 98r9V1cy1YYqJEt0kFmEe01u4dwUyP2/MG+hqi+PEaKVJjsLGvPMdgY0DpRw2T+s MUY4D5ar1B75XLxVznt8x3e8fi34A1ZIE8VuSS/yaFYStsbiWbHImRuty21hrDIm J5JIf2iRDvxJfZEzwYvySbIRwQo9tE984LSqfFdx6yEgqTBQEuBx7aRO2jsdRULv caJZcp1jI6ck6BYzy5ZXlclhNQIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFIGvJlvx QaUnEGseqmWvUjkUXeYrMB8GA1UdIwQYMBaAFN+2cjZyFR7CxGzQTnHFn5Fpyub4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTYyRi8xQ0Y5ODcyNjA4 NTIxMUVBOERGNjczNDlDNEY5QUUwMi8zN1p5Tm5JVkhzTEViTkJPY2NXZmtXbks1 dmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM3WnlObklWSHNMRWJOQk9jY1dma1duSzV2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEE2MkYvMUNGOTg3MjYwODUyMTFFQThERjY3MzQ5QzRGOUFFMDIvOURGNTlCRkFE QTE2MTFFRDg3QjREMzU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBoDBABnXOowDAMEAGdgWQMEAmdgWAMEAXv91jANBgkqhkiG9w0B AQsFAAOCAQEAGaEaIlZRqqrfeCKeNnFQgPeRWEDgU/4xT+Snp+vA5ahHzurKXY1W 2jnMZIdN6yf6yYyJuBVgKWdN9RjqHL2FSzP+F9Lxh7VpkXQD4+dz3YHCuCX7Ebve D21xlhbJ2EaO0ETwj2JpwEbgzZ28pBAXLD18eE1yEBIdAXCn5W2A3vObokiurUyw MoYqH1+j6OsMelkQNviZF2Tbr4GXXzYEFQbw4LLZ425ooTJ9aUVZFoJxpkimE9+L 7lvtnL+hvjG8JVu3be9eWFco0oiQbeRQaAcygPnOccor2cWF/NAsFu7tZkTmYAxx SD3XLhrGGs9zOutg3nJgZ7ny5cBxgbBShA== -----END CERTIFICATE-----Generated at Wed Nov 5 07:53:01 2025 by rpki-client