$ rpki-client -vvf rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/59962840D01911EE96596B16C4F9AE02.roa File: 59962840D01911EE96596B16C4F9AE02.roa (raw, json) Hash identifier: 47CtM1yN1CdjUlF4SY8eSFCkgrsejSEAp2dNpEZ2S0o= Subject key identifier: 4C:47:7F:25:A0:8F:45:22:1F:D3:FB:BA:E3:79:5B:A8:AD:AB:C7:AC Certificate issuer: /CN=A911D9B2/serialNumber=91295BBB75BFAAEB9531B39B36EC7521DDE30D63 Certificate serial: 018E Authority key identifier: 91:29:5B:BB:75:BF:AA:EB:95:31:B3:9B:36:EC:75:21:DD:E3:0D:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSlbu3W_quuVMbObNux1Id3jDWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/59962840D01911EE96596B16C4F9AE02.roa Signing time: Thu 09 Oct 2025 05:03:38 +0000 ROA not before: Thu 09 Oct 2025 05:03:38 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 213122 IP address blocks: 103.96.80.0/22 maxlen: 24 103.131.130.0/23 maxlen: 24 103.199.98.0/24 maxlen: 24 103.199.99.0/24 maxlen: 24 2401:3a60:1100::/40 maxlen: 40 2401:3a60:1200::/40 maxlen: 40 2401:3a60:1300::/40 maxlen: 40 2401:3a60:1400::/40 maxlen: 40 2401:3a60:1500::/40 maxlen: 40 2401:3a60:1600::/40 maxlen: 40 2401:3a60:3100::/40 maxlen: 40 2401:3a60:3200::/40 maxlen: 40 2401:3a60:3300::/40 maxlen: 40 2401:3a60:5000::/40 maxlen: 40 2401:3a60:5100::/40 maxlen: 40 2401:3a60:5200::/40 maxlen: 40 2401:3a60:5300::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.crl rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSlbu3W_quuVMbObNux1Id3jDWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:43:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 398 (0x18e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D9B2, serialNumber=91295BBB75BFAAEB9531B39B36EC7521DDE30D63 Validity Not Before: Oct 9 05:03:38 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68e74229-b72c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:32:de:69:2d:4f:60:63:6d:73:1d:29:dc:c5: d5:14:82:e5:b1:02:89:72:1d:7f:8a:af:24:a8:94: 19:36:81:4c:3c:fe:66:21:f0:6f:9e:78:8f:a2:76: a2:6d:ab:dd:c8:28:d7:a2:df:03:22:2b:83:ea:5d: 57:6b:9b:ab:a2:e9:5a:a2:cf:8c:99:d3:2b:17:a5: 2e:79:c6:03:05:8d:f8:18:fc:b4:ac:0e:d3:f8:ba: d7:87:9d:69:d7:c9:72:fb:4a:dd:84:c0:5d:b4:73: fe:05:26:5b:7a:b4:7a:13:52:3c:4d:81:11:61:7e: cc:0e:65:28:20:56:be:0c:09:b5:e6:9f:46:4d:17: ca:b0:13:c9:f8:d0:20:ca:63:c5:38:5b:aa:c8:72: 89:d0:26:fb:78:0d:ea:b0:ae:2c:e8:da:28:60:09: be:48:07:4f:0c:13:52:2d:a1:9c:58:11:9d:25:cc: 97:70:62:f5:8a:3f:a5:a7:13:ed:5f:e3:92:58:e1: ed:81:40:51:d9:5a:98:77:d4:52:04:15:b5:f5:b9: 8a:e3:b3:d2:f2:6d:a9:2c:e1:c8:0d:bb:c9:5b:4d: be:0a:76:97:32:30:30:d0:f9:3e:93:c9:ad:78:25: 41:a6:9b:4a:97:5e:a1:ae:49:ad:57:a6:1d:77:0b: 5b:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:47:7F:25:A0:8F:45:22:1F:D3:FB:BA:E3:79:5B:A8:AD:AB:C7:AC X509v3 Authority Key Identifier: keyid:91:29:5B:BB:75:BF:AA:EB:95:31:B3:9B:36:EC:75:21:DD:E3:0D:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSlbu3W_quuVMbObNux1Id3jDWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/59962840D01911EE96596B16C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.96.80.0/22 103.131.130.0/23 103.199.98.0/23 IPv6: 2401:3a60:1100::-2401:3a60:16ff:ffff:ffff:ffff:ffff:ffff 2401:3a60:3100::-2401:3a60:33ff:ffff:ffff:ffff:ffff:ffff 2401:3a60:5000::/38 Signature Algorithm: sha256WithRSAEncryption bf:86:41:fe:0a:e6:5b:92:33:b4:e6:3b:68:43:0e:a7:df:e1: e5:30:d7:cc:aa:7c:dd:04:6e:8d:a9:6c:e2:e3:99:ad:72:64: 8c:fc:88:66:70:f2:de:5b:b0:e0:6e:d8:f9:99:97:6d:ef:53: 00:98:4f:6d:76:22:3e:96:a9:9d:32:bb:9b:08:80:f2:16:93: a0:c5:00:3f:77:d4:99:28:8a:3d:63:20:31:f6:c1:1c:0f:c3: d7:8f:a3:f6:e6:da:ec:0b:c2:96:59:5d:df:73:37:85:2b:6d: 18:21:e9:0c:8a:75:d4:ab:29:10:b5:ae:f6:33:fb:58:8e:4f: ad:2f:c2:2d:5a:c1:1c:ee:92:42:fe:b3:f0:56:2f:64:e9:50: 1b:92:15:cb:96:16:7e:4f:ee:35:e5:db:64:6f:96:12:8c:fc: 61:e0:06:4b:4f:6f:fe:8d:99:ba:29:79:c7:b7:e5:64:3d:3b: 22:e4:ae:dd:a5:cc:a0:1c:f0:93:93:d6:0d:6d:3d:77:3d:af: 3d:3a:ba:64:e2:f6:58:90:1c:4a:21:f0:1f:11:75:01:d0:22: 52:5d:72:d8:b2:e8:ba:67:10:b0:97:3f:6b:0d:51:f7:b2:93: 94:15:25:64:1c:8b:1f:f6:9b:6b:19:ff:51:1c:b4:f4:ce:0b: c7:5e:ee:e8 -----BEGIN CERTIFICATE----- MIIFsTCCBJmgAwIBAgICAY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ5QjIxMTAvBgNVBAUTKDkxMjk1QkJCNzVCRkFBRUI5NTMxQjM5QjM2RUM3NTIx RERFMzBENjMwHhcNMjUxMDA5MDUwMzM4WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU3NDIyOS1iNzJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtzLeaS1PYGNtcx0p3MXVFILlsQKJch1/iq8kqJQZNoFMPP5mIfBvnniPonai bavdyCjXot8DIiuD6l1Xa5uroulaos+MmdMrF6UuecYDBY34GPy0rA7T+LrXh51p 18ly+0rdhMBdtHP+BSZberR6E1I8TYERYX7MDmUoIFa+DAm15p9GTRfKsBPJ+NAg ymPFOFuqyHKJ0Cb7eA3qsK4s6NooYAm+SAdPDBNSLaGcWBGdJcyXcGL1ij+lpxPt X+OSWOHtgUBR2VqYd9RSBBW19bmK47PS8m2pLOHIDbvJW02+CnaXMjAw0Pk+k8mt eCVBpptKl16hrkmtV6YddwtbFwIDAQABo4IC1TCCAtEwHQYDVR0OBBYEFExHfyWg j0UiH9P7uuN5W6itq8esMB8GA1UdIwQYMBaAFJEpW7t1v6rrlTGzmzbsdSHd4w1j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDlCMi8wQTZGM0I0Mjkx NTUxMUVFQTRDMEY2NjhDNEY5QUUwMi9rU2xidTNXX3F1dVZNYk9iTnV4MUlkM2pE V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tTbGJ1M1dfcXV1Vk1iT2JOdXgxSWQzakRXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUQ5QjIvMEE2RjNCNDI5MTU1MTFFRUE0QzBGNjY4QzRGOUFFMDIvNTk5NjI4NDBE MDE5MTFFRTk2NTk2QjE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwXwYIKwYBBQUHAQcBAf8E UDBOMBgEAgABMBIDBAJnYFADBAFng4IDBAFnx2IwMgQCAAIwLDAQAwYAJAE6YBED BgAkATpgFjAQAwYAJAE6YDEDBgIkATpgMAMGAiQBOmBQMA0GCSqGSIb3DQEBCwUA A4IBAQC/hkH+CuZbkjO05jtoQw6n3+HlMNfMqnzdBG6NqWzi45mtcmSM/IhmcPLe W7Dgbtj5mZdt71MAmE9tdiI+lqmdMrubCIDyFpOgxQA/d9SZKIo9YyAx9sEcD8PX j6P25trsC8KWWV3fczeFK20YIekMinXUqykQta72M/tYjk+tL8ItWsEc7pJC/rPw Vi9k6VAbkhXLlhZ+T+415dtkb5YSjPxh4AZLT2/+jZm6KXnHt+VkPTsi5K7dpcyg HPCTk9YNbT13Pa89Orpk4vZYkBxKIfAfEXUB0CJSXXLYsui6ZxCwlz9rDVH3spOU FSVkHIsf9ptrGf9RHLT0zgvHXu7o -----END CERTIFICATE-----Generated at Mon Oct 20 05:40:26 2025 by rpki-client