$ rpki-client -vvf rpki.apnic.net/member_repository/A918B241/B649CA96F07411EC9A51D548C4F9AE02/A33B03A2F07911ECBDB1BC4BC4F9AE02.roa File: A33B03A2F07911ECBDB1BC4BC4F9AE02.roa (raw, json) Hash identifier: V0PWHgjdigOTAk+IhNcZGbzQ+qgLVdszRbUdJLxDupo= Subject key identifier: 4D:B6:71:75:5B:B4:DD:0E:29:E5:A3:DD:80:08:02:25:7D:FB:48:63 Certificate issuer: /CN=A918B241/serialNumber=DA012542EA59355FE88478D21D73E36CEBCDF3CB Certificate serial: 02F9 Authority key identifier: DA:01:25:42:EA:59:35:5F:E8:84:78:D2:1D:73:E3:6C:EB:CD:F3:CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gElQupZNV_ohHjSHXPjbOvN88s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B241/B649CA96F07411EC9A51D548C4F9AE02/A33B03A2F07911ECBDB1BC4BC4F9AE02.roa Signing time: Fri 29 Aug 2025 01:48:48 +0000 ROA not before: Fri 29 Aug 2025 01:48:48 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 135126 IP address blocks: 103.120.8.0/22 maxlen: 22 103.120.8.0/24 maxlen: 24 103.120.9.0/24 maxlen: 24 103.120.10.0/24 maxlen: 24 103.120.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B241/B649CA96F07411EC9A51D548C4F9AE02/2gElQupZNV_ohHjSHXPjbOvN88s.crl rsync://rpki.apnic.net/member_repository/A918B241/B649CA96F07411EC9A51D548C4F9AE02/2gElQupZNV_ohHjSHXPjbOvN88s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gElQupZNV_ohHjSHXPjbOvN88s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 01:39:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 761 (0x2f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B241, serialNumber=DA012542EA59355FE88478D21D73E36CEBCDF3CB Validity Not Before: Aug 29 01:48:48 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b10700-b082 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:fa:20:b7:65:39:c5:1f:d4:e0:e7:3d:a6:56: 1a:bd:2a:d8:c2:56:82:e2:cd:59:db:69:04:09:5e: 0a:42:a7:1e:0e:bd:a0:a0:94:02:96:78:d5:34:f8: b3:97:23:8b:77:59:74:de:ef:61:4a:c0:cd:5f:d7: e5:16:ae:b3:23:25:e5:13:1e:70:6b:da:54:0e:c8: 5c:10:96:c7:d0:c3:cb:f4:f9:9e:e7:13:ca:87:0c: 9a:c5:85:cd:ac:4a:62:26:27:e8:6e:41:79:2b:dd: 23:e5:74:a3:b2:a5:ee:32:d6:81:73:14:94:60:af: 42:71:f8:1d:88:3b:7a:5a:32:2d:5b:02:76:a7:14: 50:cf:70:5f:6e:69:fb:77:8d:5c:8f:83:35:83:50: 65:d3:c5:43:d5:60:db:55:1d:bf:97:c4:50:45:85: 62:f5:ee:f0:99:1c:00:ff:a2:5a:22:71:ea:6e:a1: 94:f7:28:51:4a:f7:66:d6:a1:cb:59:de:9d:bb:6b: 10:af:2c:de:b6:f4:dd:fd:11:c6:71:ab:e3:e7:e8: 17:1e:d7:32:c7:63:52:11:7b:01:2e:a0:f7:5f:0c: 89:ed:c3:7c:24:e1:ec:07:1e:2d:ea:40:5e:50:05: 0c:26:4f:85:c6:78:f9:83:e9:9a:96:47:e6:b2:94: 5e:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:B6:71:75:5B:B4:DD:0E:29:E5:A3:DD:80:08:02:25:7D:FB:48:63 X509v3 Authority Key Identifier: keyid:DA:01:25:42:EA:59:35:5F:E8:84:78:D2:1D:73:E3:6C:EB:CD:F3:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B241/B649CA96F07411EC9A51D548C4F9AE02/2gElQupZNV_ohHjSHXPjbOvN88s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gElQupZNV_ohHjSHXPjbOvN88s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B241/B649CA96F07411EC9A51D548C4F9AE02/A33B03A2F07911ECBDB1BC4BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.8.0/22 Signature Algorithm: sha256WithRSAEncryption 82:eb:41:bc:56:35:24:16:68:6e:8d:9a:a2:51:e0:e8:1d:85: 7e:a2:c7:46:a0:d2:92:57:fe:aa:68:44:f4:30:87:25:f1:4e: cc:4f:11:f3:3c:40:bc:f0:99:6b:55:ea:a7:03:5d:44:09:d7: 3b:ad:1d:7d:1d:fc:33:80:5e:6d:63:f4:4b:28:fa:c7:19:e4: b0:c7:40:a2:de:69:be:a3:af:97:62:e3:35:b4:3d:5f:82:27: 6a:fc:2c:ab:bb:0f:3b:f1:b8:38:68:2c:44:f4:ad:0f:c0:5c: 6a:e2:0a:49:59:78:64:c1:09:ed:79:93:4b:ad:27:a1:22:b3: e6:5c:55:f2:a6:b9:62:70:36:2b:0d:01:e4:b1:ad:83:df:92: 96:86:d6:a7:9c:b1:69:7e:d0:30:e5:fb:d3:74:fe:13:0d:b8: e5:bd:6e:14:02:32:ac:32:f8:45:e6:4e:21:68:bd:c7:71:0d: f2:be:c6:df:9c:0b:9b:10:73:62:11:62:01:c7:77:ba:19:e6: 8a:a0:fb:ab:ab:54:53:46:cd:53:22:6a:e6:1d:c8:d4:a0:58: 46:7b:b8:44:94:c1:25:32:0f:4c:98:81:6f:88:92:bc:11:28: ec:6c:3b:9c:0b:62:13:1f:4e:7b:22:a8:83:0d:37:d8:2f:0e: 9c:2c:dc:85 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAvkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEIyNDExMTAvBgNVBAUTKERBMDEyNTQyRUE1OTM1NUZFODg0NzhEMjFENzNFMzZD RUJDREYzQ0IwHhcNMjUwODI5MDE0ODQ4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIxMDcwMC1iMDgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8/ogt2U5xR/U4Oc9plYavSrYwlaC4s1Z22kECV4KQqceDr2goJQClnjVNPiz lyOLd1l03u9hSsDNX9flFq6zIyXlEx5wa9pUDshcEJbH0MPL9Pme5xPKhwyaxYXN rEpiJifobkF5K90j5XSjsqXuMtaBcxSUYK9CcfgdiDt6WjItWwJ2pxRQz3Bfbmn7 d41cj4M1g1Bl08VD1WDbVR2/l8RQRYVi9e7wmRwA/6JaInHqbqGU9yhRSvdm1qHL Wd6du2sQryzetvTd/RHGcavj5+gXHtcyx2NSEXsBLqD3XwyJ7cN8JOHsBx4t6kBe UAUMJk+Fxnj5g+malkfmspRe/QIDAQABo4IClTCCApEwHQYDVR0OBBYEFE22cXVb tN0OKeWj3YAIAiV9+0hjMB8GA1UdIwQYMBaAFNoBJULqWTVf6IR40h1z42zrzfPL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjI0MS9CNjQ5Q0E5NkYw NzQxMUVDOUE1MUQ1NDhDNEY5QUUwMi8yZ0VsUXVwWk5WX29oSGpTSFhQamJPdk44 OHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJnRWxRdXBaTlZfb2hIalNIWFBqYk92Tjg4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEIyNDEvQjY0OUNBOTZGMDc0MTFFQzlBNTFENTQ4QzRGOUFFMDIvQTMzQjAzQTJG MDc5MTFFQ0JEQjFCQzRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJneAgwDQYJKoZIhvcNAQELBQADggEBAILrQbxWNSQWaG6N mqJR4OgdhX6ix0ag0pJX/qpoRPQwhyXxTsxPEfM8QLzwmWtV6qcDXUQJ1zutHX0d /DOAXm1j9Eso+scZ5LDHQKLeab6jr5di4zW0PV+CJ2r8LKu7DzvxuDhoLET0rQ/A XGriCklZeGTBCe15k0utJ6Eis+ZcVfKmuWJwNisNAeSxrYPfkpaG1qecsWl+0DDl +9N0/hMNuOW9bhQCMqwy+EXmTiFovcdxDfK+xt+cC5sQc2IRYgHHd7oZ5oqg+6ur VFNGzVMiauYdyNSgWEZ7uESUwSUyD0yYgW+IkrwRKOxsO5wLYhMfTnsiqIMNN9gv Dpws3IU= -----END CERTIFICATE-----Generated at Fri Sep 19 10:40:10 2025 by rpki-client