$ rpki-client -vvf rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/6E1519E8E1B211EEB4706E18C4F9AE02.roa File: 6E1519E8E1B211EEB4706E18C4F9AE02.roa (raw, json) Hash identifier: 5GSc16lAwm/VgJPQr9dFvZJgXnG3knNsBXTvWJ5YEVU= Subject key identifier: 16:85:33:92:FE:A3:96:E1:CD:46:86:67:7C:5E:8A:00:02:C5:2E:1B Certificate issuer: /CN=A917A66F/serialNumber=B22C3D0ABCD3919486A3E61E8D788923922BF6A5 Certificate serial: 0166 Authority key identifier: B2:2C:3D:0A:BC:D3:91:94:86:A3:E6:1E:8D:78:89:23:92:2B:F6:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/6E1519E8E1B211EEB4706E18C4F9AE02.roa Signing time: Fri 29 Aug 2025 05:25:33 +0000 ROA not before: Fri 29 Aug 2025 05:25:33 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 134176 IP address blocks: 103.118.40.0/22 maxlen: 22 103.118.40.0/23 maxlen: 23 103.118.40.0/24 maxlen: 24 103.118.41.0/24 maxlen: 24 103.118.42.0/23 maxlen: 23 103.118.42.0/24 maxlen: 24 103.118.43.0/24 maxlen: 24 103.236.224.0/24 maxlen: 24 103.236.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.crl rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 05:05:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 358 (0x166) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A66F, serialNumber=B22C3D0ABCD3919486A3E61E8D788923922BF6A5 Validity Not Before: Aug 29 05:25:33 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b139cd-2423 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:ba:86:b0:b6:97:8d:ab:fe:d7:ad:53:07:7d: c7:ca:35:80:20:1f:ad:9e:44:df:21:6c:2b:47:e8: 28:d5:3c:5b:2f:82:f5:af:90:a7:76:70:30:fc:93: 3d:42:53:8b:a0:07:f4:cc:f3:d7:22:19:cc:5f:41: ed:6e:27:ba:9a:b8:36:96:b6:f1:71:d8:89:fb:82: e2:18:60:c2:8f:e4:df:ac:3c:9e:64:4d:1e:49:1f: 2f:e4:bf:16:83:ee:90:c1:8d:17:6e:a6:a1:02:68: 44:a1:da:2a:c2:39:19:e3:9a:70:3c:94:66:18:31: b0:39:ad:5a:22:f5:d6:4e:2a:4d:c8:28:14:3d:25: 86:d7:fe:fa:d7:d9:17:84:fd:e9:4e:ac:42:65:87: a6:92:8a:8c:3b:dd:92:ea:bd:99:9b:f2:4c:5d:2d: a0:90:1c:c7:e2:f7:19:fa:a8:80:2c:62:b4:b6:0e: 8d:54:47:67:f5:cf:37:e5:29:45:c8:64:38:7f:d7: b6:ac:46:ff:8f:1f:83:b9:fc:18:d7:e6:8c:65:94: 51:93:9a:01:7f:44:d2:d9:c1:fd:09:58:f8:a8:bd: 2e:b6:eb:7e:ff:13:04:9f:69:07:46:ad:02:61:61: 72:45:7b:a9:a3:92:56:78:8c:93:aa:dc:a9:5a:d6: d2:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:85:33:92:FE:A3:96:E1:CD:46:86:67:7C:5E:8A:00:02:C5:2E:1B X509v3 Authority Key Identifier: keyid:B2:2C:3D:0A:BC:D3:91:94:86:A3:E6:1E:8D:78:89:23:92:2B:F6:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/6E1519E8E1B211EEB4706E18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.118.40.0/22 103.236.224.0/23 Signature Algorithm: sha256WithRSAEncryption c6:6b:c1:af:b5:27:c4:f6:a2:d0:03:d4:92:ce:64:d1:1f:30: ec:f4:25:39:ae:68:df:82:51:ac:6d:c7:04:1c:40:3c:4b:f1: f3:85:cc:a5:64:c7:0e:3f:68:cc:0c:99:5b:16:27:63:43:a2: 66:14:e8:f0:82:5f:b5:4e:a5:d1:3f:69:72:08:17:37:24:26: 0f:75:fe:73:55:02:fe:84:f1:5f:e4:df:fb:38:64:5a:a9:ad: 95:84:bc:bc:48:72:b0:0d:fc:a8:65:2c:17:16:44:93:62:11: c7:06:a3:94:a2:b5:7a:1c:b1:85:26:14:30:0c:60:cf:db:87: d2:15:68:36:f1:a9:12:33:2b:c6:cc:7b:34:3b:d5:37:6f:d5: 31:81:87:8e:f6:f1:da:98:ee:5c:f7:03:84:4e:49:80:80:79: 00:ac:a3:1d:b4:fd:b6:b4:ed:32:51:6a:d8:f3:43:27:b6:f4: be:82:db:b7:a5:e0:00:db:3a:ab:2d:9b:7f:74:71:b9:21:3a: bd:1e:2b:ab:b9:97:54:f7:20:37:ac:9a:63:fa:0a:2c:73:41: d5:00:9b:a1:50:0e:64:1b:0b:78:d9:27:f2:a8:7b:34:c8:b0: 50:55:f7:50:17:21:6f:52:21:51:88:03:85:a8:7b:1e:c0:02: b1:07:ee:d4 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAWYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E2NkYxMTAvBgNVBAUTKEIyMkMzRDBBQkNEMzkxOTQ4NkEzRTYxRThENzg4OTIz OTIyQkY2QTUwHhcNMjUwODI5MDUyNTMzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIxMzljZC0yNDIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnrqGsLaXjav+161TB33HyjWAIB+tnkTfIWwrR+go1TxbL4L1r5CndnAw/JM9 QlOLoAf0zPPXIhnMX0Htbie6mrg2lrbxcdiJ+4LiGGDCj+TfrDyeZE0eSR8v5L8W g+6QwY0XbqahAmhEodoqwjkZ45pwPJRmGDGwOa1aIvXWTipNyCgUPSWG1/7619kX hP3pTqxCZYemkoqMO92S6r2Zm/JMXS2gkBzH4vcZ+qiALGK0tg6NVEdn9c835SlF yGQ4f9e2rEb/jx+DufwY1+aMZZRRk5oBf0TS2cH9CVj4qL0utut+/xMEn2kHRq0C YWFyRXupo5JWeIyTqtypWtbSPQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBaFM5L+ o5bhzUaGZ3xeigACxS4bMB8GA1UdIwQYMBaAFLIsPQq805GUhqPmHo14iSOSK/al MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTY2Ri84RkNDOUQyOEM2 RjkxMUVFOTdFNkZCMURDNEY5QUUwMi9zaXc5Q3J6VGtaU0dvLVllalhpSkk1SXI5 cVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NpdzlDcnpUa1pTR28tWWVqWGlKSTVJcjlxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0E2NkYvOEZDQzlEMjhDNkY5MTFFRTk3RTZGQjFEQzRGOUFFMDIvNkUxNTE5RThF MUIyMTFFRUI0NzA2RTE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJndigDBAFn7OAwDQYJKoZIhvcNAQELBQADggEBAMZrwa+1 J8T2otAD1JLOZNEfMOz0JTmuaN+CUaxtxwQcQDxL8fOFzKVkxw4/aMwMmVsWJ2ND omYU6PCCX7VOpdE/aXIIFzckJg91/nNVAv6E8V/k3/s4ZFqprZWEvLxIcrAN/Khl LBcWRJNiEccGo5SitXocsYUmFDAMYM/bh9IVaDbxqRIzK8bMezQ71Tdv1TGBh472 8dqY7lz3A4ROSYCAeQCsox20/ba07TJRatjzQye29L6C27el4ADbOqstm390cbkh Or0eK6u5l1T3IDesmmP6CixzQdUAm6FQDmQbC3jZJ/KoezTIsFBV91AXIW9SIVGI A4Woex7AArEH7tQ= -----END CERTIFICATE-----Generated at Tue Sep 9 02:17:32 2025 by rpki-client