$ rpki-client -vvf rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/41A8E738045111EA9C7DF516C4F9AE02.roa File: 41A8E738045111EA9C7DF516C4F9AE02.roa (raw, json) Hash identifier: t9j99ouqyAO1DSlTWOraKVE9DSXzBdaScfcUdlzhboc= Subject key identifier: 5A:0D:C0:9C:4C:15:F4:24:1C:5C:4E:D1:34:42:40:7B:3F:BE:0C:2F Certificate issuer: /CN=A918560D/serialNumber=5DCB53EABE6A908ECA8652DE924807C509C52D30 Certificate serial: 0D22 Authority key identifier: 5D:CB:53:EA:BE:6A:90:8E:CA:86:52:DE:92:48:07:C5:09:C5:2D:30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/41A8E738045111EA9C7DF516C4F9AE02.roa Signing time: Wed 10 Sep 2025 18:28:42 +0000 ROA not before: Wed 10 Sep 2025 18:28:42 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 132436 IP address blocks: 103.73.36.0/24 maxlen: 24 103.73.37.0/24 maxlen: 24 103.73.38.0/24 maxlen: 24 103.73.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.crl rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 18:14:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3362 (0xd22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918560D, serialNumber=5DCB53EABE6A908ECA8652DE924807C509C52D30 Validity Not Before: Sep 10 18:28:42 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68c1c35a-0e07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:ea:6d:a0:d1:13:4d:06:49:05:69:15:56:c3: 2f:bc:eb:4e:ca:b4:b1:06:dd:dc:29:c4:cc:27:4f: 60:7f:53:53:8c:e9:e7:6d:a6:6d:ef:25:fe:ec:2e: a5:01:1b:29:94:d9:05:e0:bb:e8:06:89:5c:f8:24: 46:9a:2f:63:44:24:28:26:c8:0d:15:1a:fd:4e:42: e3:c8:06:14:ea:75:25:20:2f:3d:3a:79:e3:e2:0d: ba:d3:c9:f3:35:5c:e8:7f:69:6a:b7:92:f4:ab:80: 7f:89:71:b1:a1:52:45:49:e5:a5:7c:a1:bb:f1:ac: 88:42:91:51:d6:98:bf:b6:56:2d:a4:77:d2:f3:e0: ec:f4:d4:b7:cd:0c:bc:e8:3f:70:a3:61:79:1a:73: 5b:f5:d8:21:ed:01:7f:af:d1:ea:37:90:4f:59:f9: 24:df:78:fd:f4:4d:cf:33:eb:8f:1c:61:06:f5:13: f4:ff:64:59:46:34:9d:df:c3:2a:a9:01:2c:97:ce: 8f:e8:1f:c8:c5:d7:e5:40:22:ac:f6:b6:e8:59:c9: f2:77:ac:e0:ca:55:9e:b2:b7:a8:1e:da:61:be:bf: 86:b3:8d:ab:e7:11:8f:26:dd:7a:f3:ce:60:fa:2a: fa:be:37:6c:45:69:3a:9e:cd:ce:e2:5f:be:a0:95: a0:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:0D:C0:9C:4C:15:F4:24:1C:5C:4E:D1:34:42:40:7B:3F:BE:0C:2F X509v3 Authority Key Identifier: keyid:5D:CB:53:EA:BE:6A:90:8E:CA:86:52:DE:92:48:07:C5:09:C5:2D:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/XctT6r5qkI7KhlLekkgHxQnFLTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XctT6r5qkI7KhlLekkgHxQnFLTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918560D/F5DCA6D4E5B811E98A76120EC4F9AE02/41A8E738045111EA9C7DF516C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.73.36.0/22 Signature Algorithm: sha256WithRSAEncryption a0:a0:26:0a:f2:5f:9d:f8:99:36:4a:e2:5e:f6:91:55:b5:5b: c2:d2:65:45:11:34:29:4b:77:d4:b5:a6:82:78:7d:c5:5e:8e: 93:76:88:45:60:6f:bb:f3:05:5c:c1:68:13:51:3c:29:36:62: 3f:3a:fe:3d:5a:78:55:07:fb:d2:e9:63:82:73:4e:5b:31:87: b0:b7:02:9c:a1:ee:85:fa:14:e8:61:79:eb:be:13:3a:35:07: 40:99:23:5b:39:2e:06:b2:ce:b8:20:0b:c0:34:c9:45:5c:ce: b0:1a:8d:df:ba:19:6c:2f:f3:3e:84:9c:fe:e3:28:c4:24:40: c8:35:a0:2d:60:27:3e:d4:9d:ce:b2:50:94:8c:62:d1:a3:08: 39:9f:02:56:97:20:39:33:1a:70:ac:d8:cd:dd:f4:e2:66:3b: 02:ab:9d:8a:b8:75:4c:b9:dd:02:d1:eb:ff:7f:ac:04:db:44: d1:ae:df:7a:58:76:f1:96:b5:01:10:d6:0c:2a:8e:b7:0a:60: 2a:c6:41:68:69:32:6a:d8:97:51:5c:07:2d:65:5f:41:96:5a: 84:36:c4:31:d5:c9:e1:cb:68:c8:86:40:e2:ba:c9:48:f0:b2: eb:64:d8:3c:b7:79:dd:ce:4f:ba:59:f3:b7:90:c0:d1:fb:f0: 6a:91:f5:24 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDSIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU2MEQxMTAvBgNVBAUTKDVEQ0I1M0VBQkU2QTkwOEVDQTg2NTJERTkyNDgwN0M1 MDlDNTJEMzAwHhcNMjUwOTEwMTgyODQyWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGMxYzM1YS0wZTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6eptoNETTQZJBWkVVsMvvOtOyrSxBt3cKcTMJ09gf1NTjOnnbaZt7yX+7C6l ARsplNkF4LvoBolc+CRGmi9jRCQoJsgNFRr9TkLjyAYU6nUlIC89Onnj4g2608nz NVzof2lqt5L0q4B/iXGxoVJFSeWlfKG78ayIQpFR1pi/tlYtpHfS8+Ds9NS3zQy8 6D9wo2F5GnNb9dgh7QF/r9HqN5BPWfkk33j99E3PM+uPHGEG9RP0/2RZRjSd38Mq qQEsl86P6B/IxdflQCKs9rboWcnyd6zgylWesreoHtphvr+Gs42r5xGPJt16885g +ir6vjdsRWk6ns3O4l++oJWg9wIDAQABo4IClTCCApEwHQYDVR0OBBYEFFoNwJxM FfQkHFxO0TRCQHs/vgwvMB8GA1UdIwQYMBaAFF3LU+q+apCOyoZS3pJIB8UJxS0w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTYwRC9GNURDQTZENEU1 QjgxMUU5OEE3NjEyMEVDNEY5QUUwMi9YY3RUNnI1cWtJN0tobExla2tnSHhRbkZM VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hjdFQ2cjVxa0k3S2hsTGVra2dIeFFuRkxUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODU2MEQvRjVEQ0E2RDRFNUI4MTFFOThBNzYxMjBFQzRGOUFFMDIvNDFBOEU3Mzgw NDUxMTFFQTlDN0RGNTE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnSSQwDQYJKoZIhvcNAQELBQADggEBAKCgJgryX534mTZK 4l72kVW1W8LSZUURNClLd9S1poJ4fcVejpN2iEVgb7vzBVzBaBNRPCk2Yj86/j1a eFUH+9LpY4JzTlsxh7C3Apyh7oX6FOhheeu+Ezo1B0CZI1s5LgayzrggC8A0yUVc zrAajd+6GWwv8z6EnP7jKMQkQMg1oC1gJz7Unc6yUJSMYtGjCDmfAlaXIDkzGnCs 2M3d9OJmOwKrnYq4dUy53QLR6/9/rATbRNGu33pYdvGWtQEQ1gwqjrcKYCrGQWhp MmrYl1FcBy1lX0GWWoQ2xDHVyeHLaMiGQOK6yUjwsutk2Dy3ed3OT7pZ87eQwNH7 8GqR9SQ= -----END CERTIFICATE-----Generated at Fri Sep 19 06:12:51 2025 by rpki-client