$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0AC/6EA39C06942F11EAB164527EC4F9AE02/36F0A6E6370811ECA61C8B38C4F9AE02.roa File: 36F0A6E6370811ECA61C8B38C4F9AE02.roa (raw, json) Hash identifier: F610C7Ym+IbTxaB7/QFjiGQSnmA/MEfTbDdc0n6x2y4= Subject key identifier: 57:8B:6A:26:9B:63:D2:2C:A0:98:A0:A6:96:5C:05:06:90:A4:CD:B3 Certificate issuer: /CN=A917E0AC/serialNumber=18D5CFC8AAF517B076D1FC9C2E65F691435D3A5F Certificate serial: 09C4 Authority key identifier: 18:D5:CF:C8:AA:F5:17:B0:76:D1:FC:9C:2E:65:F6:91:43:5D:3A:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GNXPyKr1F7B20fycLmX2kUNdOl8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0AC/6EA39C06942F11EAB164527EC4F9AE02/36F0A6E6370811ECA61C8B38C4F9AE02.roa Signing time: Fri 24 Oct 2025 21:09:23 +0000 ROA not before: Fri 24 Oct 2025 21:09:23 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 136950 IP address blocks: 103.142.100.0/23 maxlen: 23 103.142.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0AC/6EA39C06942F11EAB164527EC4F9AE02/GNXPyKr1F7B20fycLmX2kUNdOl8.crl rsync://rpki.apnic.net/member_repository/A917E0AC/6EA39C06942F11EAB164527EC4F9AE02/GNXPyKr1F7B20fycLmX2kUNdOl8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GNXPyKr1F7B20fycLmX2kUNdOl8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 20:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2500 (0x9c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0AC, serialNumber=18D5CFC8AAF517B076D1FC9C2E65F691435D3A5F Validity Not Before: Oct 24 21:09:23 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68fbeb03-e49b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:48:d5:d1:6f:57:7a:fb:cc:5b:07:ad:fb:65: 3e:3d:f4:83:d5:af:2a:66:41:df:44:0f:04:8d:d0: ef:61:0c:c2:31:7a:24:b0:dc:76:35:34:a0:c8:a0: b3:cb:4d:06:1c:fb:21:93:b4:5a:06:4e:8d:de:82: 2e:c7:24:a6:84:20:d2:6b:4e:f7:f9:e9:d9:7b:3c: 64:ca:df:c4:5e:df:a4:a3:59:ea:52:25:e6:d3:ba: 78:1a:34:83:b9:1a:9f:c9:2b:ec:2a:ab:77:ed:da: ba:63:49:cb:ed:80:11:41:54:a9:e2:d8:0f:2d:a5: f1:ef:7a:fd:81:b7:bf:a2:3d:e5:3e:9b:90:52:e1: 38:01:ea:0e:d0:97:4a:27:d7:c2:66:ad:0b:c4:8d: 47:6c:81:9a:80:3d:fc:bc:0d:ab:4d:3e:c1:c4:4e: 22:00:69:a4:37:a8:07:6b:c4:9d:a1:59:91:ce:46: 67:72:6c:5f:f4:3f:1e:0d:0d:e7:29:db:06:d3:e9: 94:4a:d7:46:3e:1d:a7:1c:c5:0f:86:e5:56:91:3b: 43:03:f8:9b:8f:92:61:b3:08:99:21:f9:bf:f0:a2: 4d:ec:78:3b:d8:5f:88:c6:85:14:38:e5:28:15:12: 26:3f:87:4a:ab:1a:b9:0a:84:22:56:46:ce:9b:95: c0:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:8B:6A:26:9B:63:D2:2C:A0:98:A0:A6:96:5C:05:06:90:A4:CD:B3 X509v3 Authority Key Identifier: keyid:18:D5:CF:C8:AA:F5:17:B0:76:D1:FC:9C:2E:65:F6:91:43:5D:3A:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0AC/6EA39C06942F11EAB164527EC4F9AE02/GNXPyKr1F7B20fycLmX2kUNdOl8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GNXPyKr1F7B20fycLmX2kUNdOl8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0AC/6EA39C06942F11EAB164527EC4F9AE02/36F0A6E6370811ECA61C8B38C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.100.0/23 Signature Algorithm: sha256WithRSAEncryption 00:32:83:c7:5d:bd:71:b4:9f:31:0e:07:c3:d2:a1:2c:37:77: 32:83:d5:92:86:0b:9c:04:7e:db:cb:45:c7:e4:2a:dc:52:43: bd:bd:16:63:be:ec:26:f3:cc:ea:ee:92:67:40:2c:8c:d9:02: 92:44:ec:51:78:26:f1:fc:06:c5:c6:83:26:fc:80:61:9e:8e: bf:06:76:e1:95:8c:d5:fa:76:21:3b:8e:db:58:98:93:fd:a0: 5e:de:14:d5:68:25:13:8a:2d:ae:e3:b7:c9:65:b0:fe:6d:8f: 86:ef:b7:0f:98:c5:5e:1a:29:32:ec:a8:ad:6c:3f:56:6c:0b: 32:f7:13:d0:84:0a:c7:1d:f6:17:6b:52:f7:ec:f7:29:02:23: 7d:66:08:6c:43:a9:a4:63:21:18:83:40:d7:cd:f9:7f:20:4e: ef:60:e2:b0:33:4c:56:3f:07:92:49:5d:b3:48:82:2c:30:9d: 35:fe:2e:83:ea:ec:1a:c6:86:3d:2f:51:34:eb:23:02:f0:f5: d1:29:a2:a1:81:c6:c8:12:12:84:4a:b6:a7:c0:26:ed:22:64: 23:0f:5d:07:62:35:26:13:2f:c1:50:de:42:bf:ac:b7:53:8b: 27:8f:96:72:67:e4:61:1d:bb:8c:26:1d:c9:b8:56:3d:2f:d3: 41:17:45:56 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCcQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQUMxMTAvBgNVBAUTKDE4RDVDRkM4QUFGNTE3QjA3NkQxRkM5QzJFNjVGNjkx NDM1RDNBNUYwHhcNMjUxMDI0MjEwOTIzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGZiZWIwMy1lNDliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArEjV0W9XevvMWwet+2U+PfSD1a8qZkHfRA8EjdDvYQzCMXoksNx2NTSgyKCz y00GHPshk7RaBk6N3oIuxySmhCDSa073+enZezxkyt/EXt+ko1nqUiXm07p4GjSD uRqfySvsKqt37dq6Y0nL7YARQVSp4tgPLaXx73r9gbe/oj3lPpuQUuE4AeoO0JdK J9fCZq0LxI1HbIGagD38vA2rTT7BxE4iAGmkN6gHa8SdoVmRzkZncmxf9D8eDQ3n KdsG0+mUStdGPh2nHMUPhuVWkTtDA/ibj5JhswiZIfm/8KJN7Hg72F+IxoUUOOUo FRImP4dKqxq5CoQiVkbOm5XAjQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFeLaiab Y9IsoJigppZcBQaQpM2zMB8GA1UdIwQYMBaAFBjVz8iq9RewdtH8nC5l9pFDXTpf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBQy82RUEzOUMwNjk0 MkYxMUVBQjE2NDUyN0VDNEY5QUUwMi9HTlhQeUtyMUY3QjIwZnljTG1YMmtVTmRP bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dOWFB5S3IxRjdCMjBmeWNMbVgya1VOZE9sOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0UwQUMvNkVBMzlDMDY5NDJGMTFFQUIxNjQ1MjdFQzRGOUFFMDIvMzZGMEE2RTYz NzA4MTFFQ0E2MUM4QjM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjmQwDQYJKoZIhvcNAQELBQADggEBAAAyg8ddvXG0nzEO B8PSoSw3dzKD1ZKGC5wEftvLRcfkKtxSQ729FmO+7CbzzOrukmdALIzZApJE7FF4 JvH8BsXGgyb8gGGejr8GduGVjNX6diE7jttYmJP9oF7eFNVoJROKLa7jt8llsP5t j4bvtw+YxV4aKTLsqK1sP1ZsCzL3E9CECscd9hdrUvfs9ykCI31mCGxDqaRjIRiD QNfN+X8gTu9g4rAzTFY/B5JJXbNIgiwwnTX+LoPq7BrGhj0vUTTrIwLw9dEpoqGB xsgSEoRKtqfAJu0iZCMPXQdiNSYTL8FQ3kK/rLdTiyePlnJn5GEdu4wmHcm4Vj0v 00EXRVY= -----END CERTIFICATE-----Generated at Fri Oct 31 00:01:28 2025 by rpki-client