$ rpki-client -vvf rpki.apnic.net/member_repository/A9118799/3287BFA27EC711E7883E2E58C4F9AE02/99AB821E859C11E7A1FEC80AC4F9AE02.roa File: 99AB821E859C11E7A1FEC80AC4F9AE02.roa (raw, json) Hash identifier: BZMo2s4ILhSYw+N337H+VSwNBVHfcjC9wdr+2hur79I= Subject key identifier: 99:3D:7F:93:E4:C7:F1:FA:61:7E:33:7C:3A:94:EB:8A:F9:F3:7A:07 Certificate issuer: /CN=A9118799/serialNumber=E0CAAD17C068D8602BCCEB467B455510BC52390E Certificate serial: 196F Authority key identifier: E0:CA:AD:17:C0:68:D8:60:2B:CC:EB:46:7B:45:55:10:BC:52:39:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4MqtF8Bo2GArzOtGe0VVELxSOQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118799/3287BFA27EC711E7883E2E58C4F9AE02/99AB821E859C11E7A1FEC80AC4F9AE02.roa Signing time: Thu 18 Sep 2025 16:55:00 +0000 ROA not before: Thu 18 Sep 2025 16:55:00 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 136909 IP address blocks: 103.98.200.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118799/3287BFA27EC711E7883E2E58C4F9AE02/4MqtF8Bo2GArzOtGe0VVELxSOQ4.crl rsync://rpki.apnic.net/member_repository/A9118799/3287BFA27EC711E7883E2E58C4F9AE02/4MqtF8Bo2GArzOtGe0VVELxSOQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4MqtF8Bo2GArzOtGe0VVELxSOQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 16:43:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6511 (0x196f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118799, serialNumber=E0CAAD17C068D8602BCCEB467B455510BC52390E Validity Not Before: Sep 18 16:55:00 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68cc3963-fe15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:42:01:9b:ec:7b:57:7a:50:fe:bd:6f:68:c8: c5:7a:07:3e:1a:08:fc:0e:9a:1e:8b:38:50:ee:8a: 26:66:45:39:a1:aa:ad:40:b4:70:c0:c1:8c:f3:97: f2:a0:31:9a:aa:5c:ef:fc:52:a8:a0:62:bd:92:d3: cd:a5:bf:53:24:0f:a6:e2:98:2d:2d:0a:ad:c9:83: 1a:52:6d:c9:9b:08:ec:ca:b0:85:59:18:0d:0e:98: 74:b8:ce:a3:8c:ea:38:45:ea:69:50:0b:fc:50:17: d4:e0:dc:83:9b:b8:bf:ae:06:64:b0:0d:99:85:a6: dd:10:cd:10:43:95:9c:69:42:64:28:dc:db:7c:74: 34:52:92:27:4d:0f:90:2b:7e:4f:01:a9:d6:11:d1: ae:51:f1:8c:b2:b7:ce:86:9c:36:5d:9b:23:09:db: 83:8c:4f:c0:43:52:6c:bb:15:4e:0f:fc:d4:48:0a: 82:72:15:37:24:c4:b9:c1:2b:19:0d:72:30:64:8c: 0c:13:f2:8b:45:1f:a9:37:fa:07:72:49:a7:76:48: 9f:8d:b2:cd:7a:f7:01:87:59:15:c4:7b:47:50:1d: 0a:58:f9:93:2c:38:9a:70:38:5a:8d:15:34:41:bf: c5:f4:7a:ac:83:32:3c:3b:b4:71:d6:b1:32:87:9a: ac:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:3D:7F:93:E4:C7:F1:FA:61:7E:33:7C:3A:94:EB:8A:F9:F3:7A:07 X509v3 Authority Key Identifier: keyid:E0:CA:AD:17:C0:68:D8:60:2B:CC:EB:46:7B:45:55:10:BC:52:39:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118799/3287BFA27EC711E7883E2E58C4F9AE02/4MqtF8Bo2GArzOtGe0VVELxSOQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4MqtF8Bo2GArzOtGe0VVELxSOQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118799/3287BFA27EC711E7883E2E58C4F9AE02/99AB821E859C11E7A1FEC80AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.98.200.0/22 Signature Algorithm: sha256WithRSAEncryption 5e:bd:e7:e1:95:25:6d:a7:9f:09:0e:cc:7b:be:25:e0:fa:4b: 7a:ae:ed:d0:0c:e2:91:ae:5e:36:08:50:c7:f2:87:24:f8:dc: 74:9c:9c:ed:5c:55:9e:0c:3d:2a:47:80:24:8f:9b:24:db:26: 69:2e:98:23:80:cc:ff:c5:dc:c4:69:29:ad:31:f7:83:8a:63: 70:b0:81:df:e0:a8:b1:cc:bf:3b:40:0f:8f:4f:bc:36:b3:c6: f7:3d:13:8d:0b:14:b8:c4:64:94:65:e8:76:52:b9:58:59:2f: 58:7b:c5:71:1a:02:92:f1:df:ec:1f:50:23:d1:35:da:fe:81: 5e:14:68:4e:ce:9f:78:ac:c6:f9:86:17:b8:42:1f:a5:9d:57: 0f:60:0a:68:b2:b4:a8:dc:0b:c9:53:08:b0:fb:2f:bd:50:7c: 3f:81:57:ef:dd:16:bf:b3:af:ca:1f:d6:08:ab:50:d8:c0:2a: 43:f4:ed:05:7b:31:a0:b2:4e:b7:04:43:7b:7c:01:6a:69:d7: 44:78:56:01:89:94:cb:84:92:d5:59:78:ec:f5:e2:53:c1:ed: 24:18:16:11:4b:c2:4b:6d:07:71:be:86:6b:50:a5:a7:09:2c: d5:98:13:59:d9:fe:41:bb:44:2e:48:83:2f:b0:71:56:d8:42: 67:98:72:db -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGW8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg3OTkxMTAvBgNVBAUTKEUwQ0FBRDE3QzA2OEQ4NjAyQkNDRUI0NjdCNDU1NTEw QkM1MjM5MEUwHhcNMjUwOTE4MTY1NTAwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGNjMzk2My1mZTE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwUIBm+x7V3pQ/r1vaMjFegc+Ggj8DpoeizhQ7oomZkU5oaqtQLRwwMGM85fy oDGaqlzv/FKooGK9ktPNpb9TJA+m4pgtLQqtyYMaUm3JmwjsyrCFWRgNDph0uM6j jOo4ReppUAv8UBfU4NyDm7i/rgZksA2ZhabdEM0QQ5WcaUJkKNzbfHQ0UpInTQ+Q K35PAanWEdGuUfGMsrfOhpw2XZsjCduDjE/AQ1JsuxVOD/zUSAqCchU3JMS5wSsZ DXIwZIwME/KLRR+pN/oHckmndkifjbLNevcBh1kVxHtHUB0KWPmTLDiacDhajRU0 Qb/F9HqsgzI8O7Rx1rEyh5qsIQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJk9f5Pk x/H6YX4zfDqU64r583oHMB8GA1UdIwQYMBaAFODKrRfAaNhgK8zrRntFVRC8UjkO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODc5OS8zMjg3QkZBMjdF QzcxMUU3ODgzRTJFNThDNEY5QUUwMi80TXF0RjhCbzJHQXJ6T3RHZTBWVkVMeFNP UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRNcXRGOEJvMkdBcnpPdEdlMFZWRUx4U09RNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTg3OTkvMzI4N0JGQTI3RUM3MTFFNzg4M0UyRTU4QzRGOUFFMDIvOTlBQjgyMUU4 NTlDMTFFN0ExRkVDODBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnYsgwDQYJKoZIhvcNAQELBQADggEBAF695+GVJW2nnwkO zHu+JeD6S3qu7dAM4pGuXjYIUMfyhyT43HScnO1cVZ4MPSpHgCSPmyTbJmkumCOA zP/F3MRpKa0x94OKY3Cwgd/gqLHMvztAD49PvDazxvc9E40LFLjEZJRl6HZSuVhZ L1h7xXEaApLx3+wfUCPRNdr+gV4UaE7On3isxvmGF7hCH6WdVw9gCmiytKjcC8lT CLD7L71QfD+BV+/dFr+zr8of1girUNjAKkP07QV7MaCyTrcEQ3t8AWpp10R4VgGJ lMuEktVZeOz14lPB7SQYFhFLwkttB3G+hmtQpacJLNWYE1nZ/kG7RC5Igy+wcVbY QmeYcts= -----END CERTIFICATE-----Generated at Tue Oct 21 01:38:28 2025 by rpki-client