$ rpki-client -vvf rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/4C7C5ECCE1B211EE84F03918C4F9AE02.roa File: 4C7C5ECCE1B211EE84F03918C4F9AE02.roa (raw, json) Hash identifier: 4bqguqQkO2NdVWuTGwGDP28FXTuH4VtBBVIWhIpTMAk= Subject key identifier: 39:36:09:E7:F1:D7:F9:4B:90:26:DF:84:25:1B:0D:DF:2A:96:C8:0C Certificate issuer: /CN=A917A66F/serialNumber=B22C3D0ABCD3919486A3E61E8D788923922BF6A5 Certificate serial: 016B Authority key identifier: B2:2C:3D:0A:BC:D3:91:94:86:A3:E6:1E:8D:78:89:23:92:2B:F6:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/4C7C5ECCE1B211EE84F03918C4F9AE02.roa Signing time: Fri 29 Aug 2025 05:25:37 +0000 ROA not before: Fri 29 Aug 2025 05:25:37 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 7586 IP address blocks: 103.118.40.0/22 maxlen: 22 103.118.40.0/24 maxlen: 24 103.118.41.0/24 maxlen: 24 103.118.42.0/24 maxlen: 24 103.118.43.0/24 maxlen: 24 2403:27c0:1000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.crl rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 05:05:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 363 (0x16b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A66F, serialNumber=B22C3D0ABCD3919486A3E61E8D788923922BF6A5 Validity Not Before: Aug 29 05:25:37 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b139d1-3dbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:ab:5a:15:a7:6d:16:7b:88:f3:8e:1f:74:72: f5:20:23:0b:c2:bd:0e:e5:17:e9:f2:ba:8b:66:9a: f8:73:90:18:12:7c:44:0e:bf:31:1f:e4:52:a3:68: 83:39:db:6f:a1:f7:11:c2:42:f0:c5:77:7e:cf:c2: a2:70:31:8a:6d:f7:81:40:23:15:e9:92:bc:67:da: 24:37:c6:03:31:57:8d:2d:23:78:27:54:13:f8:f9: cb:94:58:03:a6:6a:02:85:6c:65:34:e5:7c:25:45: 86:48:2d:11:e0:ba:d8:e1:a1:b4:5c:7e:93:cb:b7: ed:7e:e8:80:76:34:b0:71:73:6e:d5:8b:76:ab:cf: ac:c0:93:4d:76:e9:19:ef:26:2f:a8:86:10:ec:c1: 8c:a6:91:b1:cb:f4:8b:b4:ea:9c:76:10:4a:2a:a5: 01:86:2e:b9:72:a7:e2:47:e8:a4:b7:2d:7f:78:7a: cc:01:d4:df:8c:05:70:71:e7:ef:2a:2b:5f:b9:5c: 39:fe:77:2b:d5:9f:d1:1a:bb:cb:ac:86:12:b2:e3: f5:d2:aa:b5:51:df:9b:b4:b2:d5:bb:81:a9:0b:f7: 85:2e:ee:33:79:99:1a:d5:c5:92:20:35:99:42:83: 79:78:be:74:fc:eb:cb:a7:8b:ff:1a:c2:c9:ad:93: 37:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:36:09:E7:F1:D7:F9:4B:90:26:DF:84:25:1B:0D:DF:2A:96:C8:0C X509v3 Authority Key Identifier: keyid:B2:2C:3D:0A:BC:D3:91:94:86:A3:E6:1E:8D:78:89:23:92:2B:F6:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/4C7C5ECCE1B211EE84F03918C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.118.40.0/22 IPv6: 2403:27c0:1000::/48 Signature Algorithm: sha256WithRSAEncryption 14:c4:ed:d1:35:e5:22:c0:19:cb:6a:0f:a8:8a:e0:b1:dc:1e: c9:7d:87:76:40:ce:1b:fd:65:45:c0:9d:6a:47:07:3d:10:cf: f8:b4:26:68:be:ac:05:6b:b0:0a:81:c8:04:a4:62:8b:28:09: 51:7c:f1:ad:17:b0:3b:59:d1:28:75:1a:8b:fd:16:23:93:30: 5a:be:76:77:1b:98:fe:79:77:bc:77:7b:06:e8:b4:8f:5f:db: 4e:98:cf:60:76:03:c9:17:61:22:ac:12:cd:e3:a8:64:fc:e7: 22:08:cb:a9:11:dc:19:a4:c8:55:28:87:98:d2:42:cd:c7:71: 18:40:39:c5:cf:f3:5a:6c:73:1c:a8:0a:59:4c:f5:a1:20:b0: 49:ae:00:c9:be:af:61:41:f4:53:d7:f8:ea:04:1b:03:c4:3e: c2:7e:fa:cb:b2:b2:41:77:f2:db:ce:e4:ca:73:f4:61:d0:a2: 2f:8c:59:1d:6b:0a:d7:36:36:8a:da:d1:bb:ae:ff:d6:28:82: 1c:02:d1:da:dd:f8:a2:d4:96:47:04:cb:3d:54:bb:cd:a5:ca: f1:b9:d7:83:b0:e5:25:f3:5a:cd:1b:5e:48:15:78:03:f6:6d: b0:89:ce:08:18:64:6a:12:77:38:bd:d8:20:36:9e:c5:b5:c6: 00:25:c6:30 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAWswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E2NkYxMTAvBgNVBAUTKEIyMkMzRDBBQkNEMzkxOTQ4NkEzRTYxRThENzg4OTIz OTIyQkY2QTUwHhcNMjUwODI5MDUyNTM3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIxMzlkMS0zZGJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzKtaFadtFnuI844fdHL1ICMLwr0O5Rfp8rqLZpr4c5AYEnxEDr8xH+RSo2iD OdtvofcRwkLwxXd+z8KicDGKbfeBQCMV6ZK8Z9okN8YDMVeNLSN4J1QT+PnLlFgD pmoChWxlNOV8JUWGSC0R4LrY4aG0XH6Ty7ftfuiAdjSwcXNu1Yt2q8+swJNNdukZ 7yYvqIYQ7MGMppGxy/SLtOqcdhBKKqUBhi65cqfiR+ikty1/eHrMAdTfjAVwcefv KitfuVw5/ncr1Z/RGrvLrIYSsuP10qq1Ud+btLLVu4GpC/eFLu4zeZka1cWSIDWZ QoN5eL50/OvLp4v/GsLJrZM3MQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDk2Cefx 1/lLkCbfhCUbDd8qlsgMMB8GA1UdIwQYMBaAFLIsPQq805GUhqPmHo14iSOSK/al MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTY2Ri84RkNDOUQyOEM2 RjkxMUVFOTdFNkZCMURDNEY5QUUwMi9zaXc5Q3J6VGtaU0dvLVllalhpSkk1SXI5 cVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NpdzlDcnpUa1pTR28tWWVqWGlKSTVJcjlxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0E2NkYvOEZDQzlEMjhDNkY5MTFFRTk3RTZGQjFEQzRGOUFFMDIvNEM3QzVFQ0NF MUIyMTFFRTg0RjAzOTE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAJndigwDwQCAAIwCQMHACQDJ8AQADANBgkqhkiG9w0BAQsF AAOCAQEAFMTt0TXlIsAZy2oPqIrgsdweyX2HdkDOG/1lRcCdakcHPRDP+LQmaL6s BWuwCoHIBKRiiygJUXzxrRewO1nRKHUai/0WI5MwWr52dxuY/nl3vHd7Bui0j1/b TpjPYHYDyRdhIqwSzeOoZPznIgjLqRHcGaTIVSiHmNJCzcdxGEA5xc/zWmxzHKgK WUz1oSCwSa4Ayb6vYUH0U9f46gQbA8Q+wn76y7KyQXfy287kynP0YdCiL4xZHWsK 1zY2itrRu67/1iiCHALR2t34otSWRwTLPVS7zaXK8bnXg7DlJfNazRteSBV4A/Zt sInOCBhkahJ3OL3YIDaexbXGACXGMA== -----END CERTIFICATE-----Generated at Tue Sep 9 02:15:09 2025 by rpki-client