$ rpki-client -vvf rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/B4B6C2B0C1AA11EF83A31D6CC4F9AE02.roa File: B4B6C2B0C1AA11EF83A31D6CC4F9AE02.roa (raw, json) Hash identifier: yi/JlbD7n+64UZKPjWeRYXCwO+TbmKfGvCIR+gFBIgU= Subject key identifier: 24:8E:EC:63:9E:75:2F:EF:BF:5C:4A:06:57:91:38:54:18:7D:EF:E7 Certificate issuer: /CN=A917A66F/serialNumber=B22C3D0ABCD3919486A3E61E8D788923922BF6A5 Certificate serial: 0169 Authority key identifier: B2:2C:3D:0A:BC:D3:91:94:86:A3:E6:1E:8D:78:89:23:92:2B:F6:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/B4B6C2B0C1AA11EF83A31D6CC4F9AE02.roa Signing time: Fri 29 Aug 2025 05:25:35 +0000 ROA not before: Fri 29 Aug 2025 05:25:35 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 38047 IP address blocks: 103.118.40.0/22 maxlen: 22 103.118.40.0/23 maxlen: 23 103.118.40.0/24 maxlen: 24 103.118.41.0/24 maxlen: 24 103.118.42.0/23 maxlen: 23 103.118.42.0/24 maxlen: 24 103.118.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.crl rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 05:05:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 361 (0x169) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A66F, serialNumber=B22C3D0ABCD3919486A3E61E8D788923922BF6A5 Validity Not Before: Aug 29 05:25:35 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b139cf-9b0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:02:61:e4:f6:24:76:af:3d:cd:50:dd:94:20: ee:6d:c5:33:2f:e0:f1:47:d5:a7:f7:ab:6b:67:6e: 27:ce:d7:b5:13:62:09:e9:b2:ee:9f:2f:d4:ea:f2: 83:19:3e:b9:11:12:3f:15:34:8e:6e:7e:c7:b6:69: b5:d2:6a:0a:f7:b7:c7:88:2a:f5:64:b2:19:67:b0: 94:b1:1e:1d:74:d9:fc:85:32:13:2a:60:51:0c:db: 49:70:63:f5:ee:f5:85:40:03:0e:4a:07:5d:7e:45: 8f:a1:20:77:b8:ae:24:6c:b8:65:78:07:c1:69:85: de:87:6d:a2:4c:27:07:d4:e8:6b:04:c5:89:50:0d: f6:34:04:42:9d:2b:88:b3:3e:61:dc:d7:8e:c3:08: 63:c7:3c:70:78:17:d8:88:2a:5d:c1:ae:04:4b:d7: 11:43:17:be:f9:00:e6:3f:e0:45:77:25:b4:13:9d: 5a:eb:2b:97:e6:e1:5a:1c:2a:03:29:8d:66:c8:11: ea:cf:97:09:e2:5d:bc:c1:ad:94:58:76:a4:20:c2: 24:4c:99:03:05:5d:a9:60:50:be:80:f0:26:49:9c: 46:07:67:79:78:a6:b4:46:e8:b7:e1:f8:85:ad:1f: 4a:3a:12:8e:04:bb:27:d1:88:ac:71:34:c6:bf:c7: 25:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:8E:EC:63:9E:75:2F:EF:BF:5C:4A:06:57:91:38:54:18:7D:EF:E7 X509v3 Authority Key Identifier: keyid:B2:2C:3D:0A:BC:D3:91:94:86:A3:E6:1E:8D:78:89:23:92:2B:F6:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/B4B6C2B0C1AA11EF83A31D6CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.118.40.0/22 Signature Algorithm: sha256WithRSAEncryption 28:b6:3f:92:21:1d:3c:b3:d3:90:18:d9:8c:1d:6e:ed:e1:f2: 89:5d:40:f5:53:be:f8:ac:3d:b7:74:cd:f2:b3:9d:b0:96:d0: f9:8d:37:9c:b3:5f:cc:7e:9a:8a:e6:b9:5b:ec:b3:b1:68:bb: bc:d0:a1:1f:e0:bc:23:e2:42:e0:9f:4e:85:39:9a:e6:ee:70: c8:5d:c7:88:4f:f4:b4:fd:ae:86:e5:f5:21:2e:39:14:ef:d8: 42:df:c7:24:5a:fa:fa:b4:d4:74:09:84:d2:c7:46:1b:8c:59: 75:95:ca:63:99:05:cd:d5:cc:7d:7b:de:7c:8d:57:a8:81:e6: 19:0b:59:81:1a:ce:25:6e:60:1b:0d:fa:24:01:7d:46:bc:69: bb:58:65:5a:46:d8:ad:53:56:53:5b:2d:c8:ae:67:61:89:ad: 2b:d4:fd:04:38:16:d6:14:d6:8a:42:d8:c6:9d:d8:cb:74:c5: 83:ee:d3:3c:fb:78:d7:fa:f1:d9:c2:58:46:1c:d3:ab:f0:20: 85:de:d2:22:7a:d3:9c:df:bc:6b:a5:c6:f8:cc:d0:00:a0:5b: 6a:3a:49:11:c2:27:3d:52:af:34:f9:94:59:ad:f4:3c:75:b2: f9:df:63:3c:1e:31:27:27:23:4d:d7:36:71:51:74:dc:2a:18: 50:7f:b6:38 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAWkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E2NkYxMTAvBgNVBAUTKEIyMkMzRDBBQkNEMzkxOTQ4NkEzRTYxRThENzg4OTIz OTIyQkY2QTUwHhcNMjUwODI5MDUyNTM1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIxMzljZi05YjBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxgJh5PYkdq89zVDdlCDubcUzL+DxR9Wn96trZ24nzte1E2IJ6bLuny/U6vKD GT65ERI/FTSObn7Htmm10moK97fHiCr1ZLIZZ7CUsR4ddNn8hTITKmBRDNtJcGP1 7vWFQAMOSgddfkWPoSB3uK4kbLhleAfBaYXeh22iTCcH1OhrBMWJUA32NARCnSuI sz5h3NeOwwhjxzxweBfYiCpdwa4ES9cRQxe++QDmP+BFdyW0E51a6yuX5uFaHCoD KY1myBHqz5cJ4l28wa2UWHakIMIkTJkDBV2pYFC+gPAmSZxGB2d5eKa0Rui34fiF rR9KOhKOBLsn0YiscTTGv8clfwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCSO7GOe dS/vv1xKBleROFQYfe/nMB8GA1UdIwQYMBaAFLIsPQq805GUhqPmHo14iSOSK/al MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTY2Ri84RkNDOUQyOEM2 RjkxMUVFOTdFNkZCMURDNEY5QUUwMi9zaXc5Q3J6VGtaU0dvLVllalhpSkk1SXI5 cVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NpdzlDcnpUa1pTR28tWWVqWGlKSTVJcjlxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0E2NkYvOEZDQzlEMjhDNkY5MTFFRTk3RTZGQjFEQzRGOUFFMDIvQjRCNkMyQjBD MUFBMTFFRjgzQTMxRDZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJndigwDQYJKoZIhvcNAQELBQADggEBACi2P5IhHTyz05AY 2Ywdbu3h8oldQPVTvvisPbd0zfKznbCW0PmNN5yzX8x+mormuVvss7Fou7zQoR/g vCPiQuCfToU5mubucMhdx4hP9LT9robl9SEuORTv2ELfxyRa+vq01HQJhNLHRhuM WXWVymOZBc3VzH173nyNV6iB5hkLWYEaziVuYBsN+iQBfUa8abtYZVpG2K1TVlNb LciuZ2GJrSvU/QQ4FtYU1opC2Mad2Mt0xYPu0zz7eNf68dnCWEYc06vwIIXe0iJ6 05zfvGulxvjM0ACgW2o6SRHCJz1SrzT5lFmt9Dx1svnfYzweMScnI03XNnFRdNwq GFB/tjg= -----END CERTIFICATE-----Generated at Tue Sep 9 02:18:28 2025 by rpki-client