$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/85D25098E00111E596BC7D1BC4F9AE02.roa File: 85D25098E00111E596BC7D1BC4F9AE02.roa (raw, json) Hash identifier: gA1KT8HsqI/GnzzqWgFcFoqfNIoKvvP6VXwU1a0U7f0= Subject key identifier: 60:6D:91:0D:B0:A9:D9:88:7E:F4:AC:D2:02:10:EF:14:0E:91:C5:31 Certificate issuer: /CN=A91F8E25/serialNumber=6F094C00EF88FD8B70813D6DADCB546876328CD9 Certificate serial: 218D Authority key identifier: 6F:09:4C:00:EF:88:FD:8B:70:81:3D:6D:AD:CB:54:68:76:32:8C:D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/85D25098E00111E596BC7D1BC4F9AE02.roa Signing time: Tue 22 Jul 2025 15:52:21 +0000 ROA not before: Tue 22 Jul 2025 15:52:21 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 7718 IP address blocks: 103.12.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.crl rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8589 (0x218d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8E25, serialNumber=6F094C00EF88FD8B70813D6DADCB546876328CD9 Validity Not Before: Jul 22 15:52:21 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=687fb3b5-b9ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:7a:ec:e5:b4:85:b9:40:5c:b4:f9:52:f5:af: 63:94:1d:ee:b5:c5:7d:8f:10:89:b1:7f:89:53:e3: 4f:a4:33:11:a3:c8:6f:f3:3f:0d:2d:ee:03:81:c7: 8d:40:7f:46:be:c5:5e:39:54:8b:7a:eb:c7:89:4e: 59:a8:5c:ac:b9:18:68:d4:32:9e:e7:6f:56:5a:d1: 56:35:c2:1c:fb:13:54:9e:da:91:b6:37:77:bc:58: f6:e7:8a:54:91:24:20:55:e2:e6:da:45:a6:e2:36: d2:6c:9b:46:8f:8c:29:9f:d9:6b:a3:c3:41:38:61: 5f:db:63:2e:77:58:47:c3:18:e9:97:26:a4:9e:1a: d3:fc:10:0c:ce:bf:58:0c:7c:3a:ad:2f:ab:a3:94: b9:1d:68:40:23:b0:b7:ac:8b:bb:6c:97:02:6d:90: d3:6b:16:d0:9a:c8:05:06:e8:b4:f0:5d:2a:87:f1: 2b:40:43:d5:63:5b:28:be:92:a9:46:43:97:20:34: 4d:85:47:53:ef:63:33:ce:d8:e6:76:84:2e:e9:ae: ce:9c:d7:9d:34:95:06:f7:15:74:6d:71:c7:66:92: 88:98:9d:fa:37:36:80:d0:d1:69:ae:16:ba:24:73: 49:2b:48:0e:bb:4b:70:ec:c0:24:13:63:87:93:e4: 35:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:6D:91:0D:B0:A9:D9:88:7E:F4:AC:D2:02:10:EF:14:0E:91:C5:31 X509v3 Authority Key Identifier: keyid:6F:09:4C:00:EF:88:FD:8B:70:81:3D:6D:AD:CB:54:68:76:32:8C:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/bwlMAO-I_YtwgT1trctUaHYyjNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bwlMAO-I_YtwgT1trctUaHYyjNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8E25/F43441168A2E11E3B5B6E95E5911EA32/85D25098E00111E596BC7D1BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.12.241.0/24 Signature Algorithm: sha256WithRSAEncryption 31:94:63:0b:81:7c:6a:85:57:36:9c:f4:b4:85:d9:b5:18:ec: ec:68:5b:a9:27:fe:11:53:fc:b2:a1:50:8e:c7:df:14:e9:c2: 7a:ef:c2:9c:ce:43:11:83:c3:f1:69:70:3f:d9:9e:0c:c5:40: e2:63:81:b7:de:82:9b:fa:ed:92:13:71:9d:f3:db:30:b8:0e: 53:53:9d:70:5f:82:45:fb:e5:d3:0c:9c:27:c5:90:86:84:0a: f9:19:03:8a:82:f7:92:cf:34:59:a4:19:e2:6e:4e:96:8c:c5: 3f:ff:42:df:87:94:7b:a0:88:8c:3a:b1:e8:2f:a6:38:67:96: 3a:c6:0e:ed:3b:91:9d:9d:be:cc:fb:a1:bf:9a:6c:b1:27:c2: 01:2c:bd:0c:c6:06:f0:a7:5a:b3:77:10:e7:b0:7c:81:7c:80: 9d:7e:44:54:7e:41:de:16:67:73:40:63:8c:35:d3:eb:35:62: 08:41:e6:fe:b2:53:20:81:69:75:4c:70:aa:71:98:ff:5d:f1: 9f:fe:25:12:c3:80:6d:16:f7:b4:7a:2b:a0:5a:0a:41:95:03: eb:44:44:2f:d3:e0:f2:ce:0a:0d:7c:90:c4:b2:e5:8c:45:d5: 23:c7:35:a7:96:3d:fd:fe:50:28:d1:96:92:e0:3a:29:55:62: 7f:f5:c8:2e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICIY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhFMjUxMTAvBgNVBAUTKDZGMDk0QzAwRUY4OEZEOEI3MDgxM0Q2REFEQ0I1NDY4 NzYzMjhDRDkwHhcNMjUwNzIyMTU1MjIxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODdmYjNiNS1iOWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA33rs5bSFuUBctPlS9a9jlB3utcV9jxCJsX+JU+NPpDMRo8hv8z8NLe4DgceN QH9GvsVeOVSLeuvHiU5ZqFysuRho1DKe529WWtFWNcIc+xNUntqRtjd3vFj254pU kSQgVeLm2kWm4jbSbJtGj4wpn9lro8NBOGFf22Mud1hHwxjplyaknhrT/BAMzr9Y DHw6rS+ro5S5HWhAI7C3rIu7bJcCbZDTaxbQmsgFBui08F0qh/ErQEPVY1sovpKp RkOXIDRNhUdT72MzztjmdoQu6a7OnNedNJUG9xV0bXHHZpKImJ36NzaA0NFprha6 JHNJK0gOu0tw7MAkE2OHk+Q1cwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGBtkQ2w qdmIfvSs0gIQ7xQOkcUxMB8GA1UdIwQYMBaAFG8JTADviP2LcIE9ba3LVGh2MozZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEUyNS9GNDM0NDExNjhB MkUxMUUzQjVCNkU5NUU1OTExRUEzMi9id2xNQU8tSV9ZdHdnVDF0cmN0VWFIWXlq TmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J3bE1BTy1JX1l0d2dUMXRyY3RVYUhZeWpOay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjhFMjUvRjQzNDQxMTY4QTJFMTFFM0I1QjZFOTVFNTkxMUVBMzIvODVEMjUwOThF MDAxMTFFNTk2QkM3RDFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnDPEwDQYJKoZIhvcNAQELBQADggEBADGUYwuBfGqFVzac 9LSF2bUY7OxoW6kn/hFT/LKhUI7H3xTpwnrvwpzOQxGDw/FpcD/ZngzFQOJjgbfe gpv67ZITcZ3z2zC4DlNTnXBfgkX75dMMnCfFkIaECvkZA4qC95LPNFmkGeJuTpaM xT//Qt+HlHugiIw6segvpjhnljrGDu07kZ2dvsz7ob+abLEnwgEsvQzGBvCnWrN3 EOewfIF8gJ1+RFR+Qd4WZ3NAY4w10+s1YghB5v6yUyCBaXVMcKpxmP9d8Z/+JRLD gG0W97R6K6BaCkGVA+tERC/T4PLOCg18kMSy5YxF1SPHNaeWPf3+UCjRlpLgOilV Yn/1yC4= -----END CERTIFICATE-----Generated at Mon Aug 11 06:22:12 2025 by rpki-client