$ rpki-client -vvf rpki.apnic.net/member_repository/A917068E/D6EF671A84A511EBAE9E4472C4F9AE02/8889F4E484A711EBB701E773C4F9AE02.roa File: 8889F4E484A711EBB701E773C4F9AE02.roa (raw, json) Hash identifier: lWZRobhtO0oFUd+vRpiCuxRaZUL791izmBtb3cII0fo= Subject key identifier: DF:D8:F9:47:10:9E:E5:B1:E7:B7:BC:D5:81:72:75:E7:2F:24:D9:31 Certificate issuer: /CN=A917068E/serialNumber=B8F8C3626DD06162E67E25F59A9A81FAE4720A25 Certificate serial: 0693 Authority key identifier: B8:F8:C3:62:6D:D0:61:62:E6:7E:25:F5:9A:9A:81:FA:E4:72:0A:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uPjDYm3QYWLmfiX1mpqB-uRyCiU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917068E/D6EF671A84A511EBAE9E4472C4F9AE02/8889F4E484A711EBB701E773C4F9AE02.roa Signing time: Thu 28 Aug 2025 22:44:52 +0000 ROA not before: Thu 28 Aug 2025 22:44:52 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 134680 IP address blocks: 103.62.36.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917068E/D6EF671A84A511EBAE9E4472C4F9AE02/uPjDYm3QYWLmfiX1mpqB-uRyCiU.crl rsync://rpki.apnic.net/member_repository/A917068E/D6EF671A84A511EBAE9E4472C4F9AE02/uPjDYm3QYWLmfiX1mpqB-uRyCiU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uPjDYm3QYWLmfiX1mpqB-uRyCiU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:44:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1683 (0x693) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917068E, serialNumber=B8F8C3626DD06162E67E25F59A9A81FAE4720A25 Validity Not Before: Aug 28 22:44:52 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b0dbe4-8b8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:6b:58:af:24:3b:ca:d7:0a:ce:de:f3:20:08: 46:f5:50:3d:68:61:6a:93:08:99:38:cd:ff:a3:14: de:35:27:c6:c4:9f:bb:61:e1:df:80:ce:e1:42:2a: 7d:4e:f5:98:32:b0:63:a6:d6:b1:3c:03:b1:58:ae: a8:4c:d0:38:3f:a3:f9:46:b5:66:2d:34:3a:fc:62: 27:1d:85:4e:e7:5f:de:76:45:78:60:30:0c:f7:f8: 9b:f9:42:40:13:5a:87:79:a1:7f:fa:90:24:6e:39: a8:11:ba:9e:30:5b:3a:b4:3e:e0:e2:14:61:aa:86: ec:35:00:d2:70:33:5d:bb:17:49:ad:15:eb:97:a7: a5:d9:82:92:96:9f:e7:5d:9f:f9:18:6d:c7:4c:cd: b8:ba:cb:27:1b:28:90:23:0a:96:bd:5d:bd:4a:75: 21:73:8e:61:97:7c:c9:05:ae:85:b6:cb:cf:90:69: 10:48:2c:7f:e7:be:31:9e:a1:e6:63:b4:13:b0:68: f3:a2:3d:b6:62:4a:e5:49:05:31:23:be:8b:7c:1f: e1:b7:14:0e:55:cc:60:0a:1b:09:be:eb:57:9a:57: 10:f0:d7:38:8f:0d:78:9d:5f:36:ab:1e:be:85:27: c7:28:13:f5:96:e0:40:50:67:a4:d6:e6:03:1b:b4: 77:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:D8:F9:47:10:9E:E5:B1:E7:B7:BC:D5:81:72:75:E7:2F:24:D9:31 X509v3 Authority Key Identifier: keyid:B8:F8:C3:62:6D:D0:61:62:E6:7E:25:F5:9A:9A:81:FA:E4:72:0A:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917068E/D6EF671A84A511EBAE9E4472C4F9AE02/uPjDYm3QYWLmfiX1mpqB-uRyCiU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uPjDYm3QYWLmfiX1mpqB-uRyCiU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917068E/D6EF671A84A511EBAE9E4472C4F9AE02/8889F4E484A711EBB701E773C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.62.36.0/22 Signature Algorithm: sha256WithRSAEncryption 11:b7:b1:87:01:33:d8:a8:6c:2a:cd:41:96:64:7e:92:af:19: 4f:0c:e8:74:8e:18:61:06:91:3e:48:88:d9:c0:00:b4:1e:6e: dc:79:b5:db:cc:b2:31:38:51:98:e4:97:bd:eb:8f:84:94:55: 06:b0:d9:11:6a:67:d6:2f:61:74:21:0b:f8:e1:1a:f5:47:77: 65:d0:3e:65:bd:ac:d0:e9:af:89:c4:5b:a0:2f:6d:a2:50:06: a7:b6:28:4c:82:7d:5d:46:68:5b:9e:46:99:99:36:3b:13:93: 69:dd:39:8f:3a:cc:04:a4:cc:8f:c0:7d:0d:ef:ee:04:3e:3f: 8e:dc:62:71:dd:8a:51:e2:a0:ea:31:62:64:67:1f:4b:13:31: a7:a7:8d:c7:7f:96:9c:9c:79:35:38:e9:e4:f0:89:09:c3:8b: fc:ee:f9:77:28:3c:8f:a1:17:ff:6a:33:ee:a1:7b:49:fb:f9: 6c:66:e7:20:25:17:9e:b1:dd:b8:2b:9a:4c:7f:0d:21:17:11: d9:03:4c:93:27:33:38:f2:3f:50:d5:bf:3b:b4:de:6c:87:17: b2:c6:b0:55:86:7d:aa:74:88:9a:21:f5:e4:f7:ab:b7:6e:81: 4a:3b:26:de:39:0a:69:9d:1c:01:d7:89:c6:29:48:dc:a8:46: 7e:34:7a:c1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBpMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA2OEUxMTAvBgNVBAUTKEI4RjhDMzYyNkREMDYxNjJFNjdFMjVGNTlBOUE4MUZB RTQ3MjBBMjUwHhcNMjUwODI4MjI0NDUyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwZGJlNC04YjhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs2tYryQ7ytcKzt7zIAhG9VA9aGFqkwiZOM3/oxTeNSfGxJ+7YeHfgM7hQip9 TvWYMrBjptaxPAOxWK6oTNA4P6P5RrVmLTQ6/GInHYVO51/edkV4YDAM9/ib+UJA E1qHeaF/+pAkbjmoEbqeMFs6tD7g4hRhqobsNQDScDNduxdJrRXrl6el2YKSlp/n XZ/5GG3HTM24ussnGyiQIwqWvV29SnUhc45hl3zJBa6FtsvPkGkQSCx/574xnqHm Y7QTsGjzoj22YkrlSQUxI76LfB/htxQOVcxgChsJvutXmlcQ8Nc4jw14nV82qx6+ hSfHKBP1luBAUGek1uYDG7R37wIDAQABo4IClTCCApEwHQYDVR0OBBYEFN/Y+UcQ nuWx57e81YFydecvJNkxMB8GA1UdIwQYMBaAFLj4w2Jt0GFi5n4l9Zqagfrkcgol MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDY4RS9ENkVGNjcxQTg0 QTUxMUVCQUU5RTQ0NzJDNEY5QUUwMi91UGpEWW0zUVlXTG1maVgxbXBxQi11UnlD aVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VQakRZbTNRWVdMbWZpWDFtcHFCLXVSeUNpVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzA2OEUvRDZFRjY3MUE4NEE1MTFFQkFFOUU0NDcyQzRGOUFFMDIvODg4OUY0RTQ4 NEE3MTFFQkI3MDFFNzczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnPiQwDQYJKoZIhvcNAQELBQADggEBABG3sYcBM9iobCrN QZZkfpKvGU8M6HSOGGEGkT5IiNnAALQebtx5tdvMsjE4UZjkl73rj4SUVQaw2RFq Z9YvYXQhC/jhGvVHd2XQPmW9rNDpr4nEW6AvbaJQBqe2KEyCfV1GaFueRpmZNjsT k2ndOY86zASkzI/AfQ3v7gQ+P47cYnHdilHioOoxYmRnH0sTMaenjcd/lpyceTU4 6eTwiQnDi/zu+XcoPI+hF/9qM+6he0n7+Wxm5yAlF56x3bgrmkx/DSEXEdkDTJMn MzjyP1DVvzu03myHF7LGsFWGfap0iJoh9eT3q7dugUo7Jt45CmmdHAHXicYpSNyo Rn40esE= -----END CERTIFICATE-----Generated at Mon Oct 20 13:51:58 2025 by rpki-client