$ rpki-client -vvf rpki.apnic.net/member_repository/A9123F5D/75F875F2669011EA9683FB2FC4F9AE02/4DF99E0E934311ED882FFE24C4F9AE02.roa File: 4DF99E0E934311ED882FFE24C4F9AE02.roa (raw, json) Hash identifier: UQI8Fd4IsbMRQfXyTMFvSmN0fjZzMOEN8kbfmrroqXA= Subject key identifier: A4:62:3E:01:D4:E7:32:AB:9C:83:33:9B:16:6D:42:6E:D3:FC:1A:A1 Certificate issuer: /CN=A9123F5D/serialNumber=BF522D9925A5846280F60530AD39D766E4ABF093 Certificate serial: 0AA8 Authority key identifier: BF:52:2D:99:25:A5:84:62:80:F6:05:30:AD:39:D7:66:E4:AB:F0:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v1ItmSWlhGKA9gUwrTnXZuSr8JM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123F5D/75F875F2669011EA9683FB2FC4F9AE02/4DF99E0E934311ED882FFE24C4F9AE02.roa Signing time: Thu 14 Aug 2025 19:59:57 +0000 ROA not before: Thu 14 Aug 2025 19:59:57 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 59362 IP address blocks: 103.92.216.0/23 maxlen: 24 103.92.218.0/23 maxlen: 24 123.253.97.0/24 maxlen: 24 123.253.98.0/24 maxlen: 24 123.253.99.0/24 maxlen: 24 2401:21c0::/32 maxlen: 35 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123F5D/75F875F2669011EA9683FB2FC4F9AE02/v1ItmSWlhGKA9gUwrTnXZuSr8JM.crl rsync://rpki.apnic.net/member_repository/A9123F5D/75F875F2669011EA9683FB2FC4F9AE02/v1ItmSWlhGKA9gUwrTnXZuSr8JM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v1ItmSWlhGKA9gUwrTnXZuSr8JM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:44:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2728 (0xaa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123F5D, serialNumber=BF522D9925A5846280F60530AD39D766E4ABF093 Validity Not Before: Aug 14 19:59:57 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=689e403d-abe4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:55:af:b1:20:68:4f:84:9c:59:ea:bb:ae:2f: 6c:96:40:10:5a:22:7d:e9:47:f7:0b:e5:31:c1:98: 7a:a8:d4:b2:83:cc:42:02:85:f9:5b:8f:46:dc:d9: f1:1d:b8:19:74:b5:f3:98:10:bf:a3:8d:4d:23:a6: 08:ae:ff:23:91:62:47:c6:de:dc:2f:e0:21:bc:f0: fe:45:28:7f:7b:0c:14:aa:9c:40:46:de:f1:f3:29: 05:c0:72:31:29:a0:62:bf:b0:5e:b0:dd:c0:44:d6: d9:ac:ec:64:b7:7f:4b:13:43:b2:86:c8:01:21:15: 09:76:df:cc:52:b3:d2:8c:8c:51:5c:c6:12:b0:7f: 5d:6c:0c:a0:be:b0:cb:2b:bf:ee:7f:02:49:0f:69: f1:81:53:5b:84:aa:9e:5f:75:03:b8:6c:db:28:4e: 14:1b:3e:30:57:21:aa:36:fa:10:29:03:c9:64:93: fa:7b:ee:0d:10:dd:d3:04:e0:da:6d:cc:c3:11:3c: d8:f5:58:e6:6a:70:d2:c1:37:dc:c9:37:ed:74:6a: 41:3f:65:41:a6:df:8e:51:5a:43:35:52:c7:10:03: 84:3e:54:9a:17:1e:95:ae:9d:2a:4f:20:f4:dc:7c: 06:cb:08:55:c0:76:de:5a:dd:4a:6b:05:ff:bf:1e: 3c:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:62:3E:01:D4:E7:32:AB:9C:83:33:9B:16:6D:42:6E:D3:FC:1A:A1 X509v3 Authority Key Identifier: keyid:BF:52:2D:99:25:A5:84:62:80:F6:05:30:AD:39:D7:66:E4:AB:F0:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123F5D/75F875F2669011EA9683FB2FC4F9AE02/v1ItmSWlhGKA9gUwrTnXZuSr8JM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v1ItmSWlhGKA9gUwrTnXZuSr8JM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123F5D/75F875F2669011EA9683FB2FC4F9AE02/4DF99E0E934311ED882FFE24C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.92.216.0/22 123.253.97.0-123.253.99.255 IPv6: 2401:21c0::/32 Signature Algorithm: sha256WithRSAEncryption 18:d6:50:f9:49:c2:17:dc:57:09:4c:54:c7:b9:df:f3:dc:9d: 48:4a:aa:aa:3a:90:51:22:a6:66:e1:39:71:50:96:37:c2:65: 30:04:cb:cb:61:1b:4d:c7:b0:bb:c3:25:04:bc:a0:67:b4:6d: f3:b8:53:00:64:2a:d5:5e:73:43:3b:21:8e:63:8a:af:c0:50: 19:69:c8:8f:cc:17:79:6b:e4:18:41:8d:0c:18:35:5f:0b:c5: 7c:86:91:51:35:30:dd:71:5d:3c:7b:79:9f:31:22:1a:85:8b: 7f:2d:d4:f3:ac:10:ce:59:50:0d:26:90:ff:35:51:18:b0:97: aa:26:10:5d:2e:76:39:a4:63:d9:36:ff:f6:db:5d:6d:79:2e: ac:0a:f2:35:c6:72:8d:d3:18:41:f3:5d:64:72:95:b3:6c:e7: a7:92:db:fd:76:07:84:97:43:b6:f0:b7:62:ab:75:08:cc:4b: a4:ef:86:24:e8:ed:4d:08:4b:2e:10:0e:50:ab:fc:3e:74:90: e2:2e:73:1c:21:13:4e:82:98:7a:35:f7:f4:ba:1a:96:42:ac: 84:2e:bb:99:46:0f:95:ac:25:3c:0b:68:a7:77:bb:db:01:a2: 22:37:68:e8:dd:1e:73:19:37:37:cd:f8:b7:29:4f:7a:1f:70: 06:c3:f3:61 -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICCqgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNGNUQxMTAvBgNVBAUTKEJGNTIyRDk5MjVBNTg0NjI4MEY2MDUzMEFEMzlENzY2 RTRBQkYwOTMwHhcNMjUwODE0MTk1OTU3WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODllNDAzZC1hYmU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqVWvsSBoT4ScWeq7ri9slkAQWiJ96Uf3C+UxwZh6qNSyg8xCAoX5W49G3Nnx HbgZdLXzmBC/o41NI6YIrv8jkWJHxt7cL+AhvPD+RSh/ewwUqpxARt7x8ykFwHIx KaBiv7BesN3ARNbZrOxkt39LE0OyhsgBIRUJdt/MUrPSjIxRXMYSsH9dbAygvrDL K7/ufwJJD2nxgVNbhKqeX3UDuGzbKE4UGz4wVyGqNvoQKQPJZJP6e+4NEN3TBODa bczDETzY9VjmanDSwTfcyTftdGpBP2VBpt+OUVpDNVLHEAOEPlSaFx6Vrp0qTyD0 3HwGywhVwHbeWt1KawX/vx48OQIDAQABo4ICsjCCAq4wHQYDVR0OBBYEFKRiPgHU 5zKrnIMzmxZtQm7T/BqhMB8GA1UdIwQYMBaAFL9SLZklpYRigPYFMK0512bkq/CT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0Y1RC83NUY4NzVGMjY2 OTAxMUVBOTY4M0ZCMkZDNEY5QUUwMi92MUl0bVNXbGhHS0E5Z1V3clRuWFp1U3I4 Sk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3YxSXRtU1dsaEdLQTlnVXdyVG5YWnVTcjhKTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjNGNUQvNzVGODc1RjI2NjkwMTFFQTk2ODNGQjJGQzRGOUFFMDIvNERGOTlFMEU5 MzQzMTFFRDg4MkZGRTI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPAYIKwYBBQUHAQcBAf8E LTArMBoEAgABMBQDBAJnXNgwDAMEAHv9YQMEAnv9YDANBAIAAjAHAwUAJAEhwDAN BgkqhkiG9w0BAQsFAAOCAQEAGNZQ+UnCF9xXCUxUx7nf89ydSEqqqjqQUSKmZuE5 cVCWN8JlMATLy2EbTcewu8MlBLygZ7Rt87hTAGQq1V5zQzshjmOKr8BQGWnIj8wX eWvkGEGNDBg1XwvFfIaRUTUw3XFdPHt5nzEiGoWLfy3U86wQzllQDSaQ/zVRGLCX qiYQXS52OaRj2Tb/9ttdbXkurAryNcZyjdMYQfNdZHKVs2znp5Lb/XYHhJdDtvC3 Yqt1CMxLpO+GJOjtTQhLLhAOUKv8PnSQ4i5zHCETToKYejX39LoalkKshC67mUYP lawlPAtop3e72wGiIjdo6N0ecxk3N834tylPeh9wBsPzYQ== -----END CERTIFICATE-----Generated at Sat Aug 23 22:19:51 2025 by rpki-client