$ rpki-client -vvf rpki.apnic.net/member_repository/A918BCEE/68C3563013FF11EDA3F33941C4F9AE02/36660EAE679E11EFBAD37686C4F9AE02.roa File: 36660EAE679E11EFBAD37686C4F9AE02.roa (raw, json) Hash identifier: xvHNzzMV7f1gxQWEGQg7Uu7grR61uCNrb99drLaVCJw= Subject key identifier: C5:4F:8F:FA:3D:11:01:35:6F:72:EE:30:0C:FD:7E:1B:6C:75:26:8A Certificate issuer: /CN=A918BCEE/serialNumber=F40BE8B5AD16B1847FC0D4F4708F9D414931ABA6 Certificate serial: 02F9 Authority key identifier: F4:0B:E8:B5:AD:16:B1:84:7F:C0:D4:F4:70:8F:9D:41:49:31:AB:A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9Avota0WsYR_wNT0cI-dQUkxq6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BCEE/68C3563013FF11EDA3F33941C4F9AE02/36660EAE679E11EFBAD37686C4F9AE02.roa Signing time: Wed 10 Sep 2025 18:09:53 +0000 ROA not before: Wed 10 Sep 2025 18:09:53 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 140952 IP address blocks: 103.209.253.0/24 maxlen: 24 103.209.254.0/24 maxlen: 24 2404:5d80:6300::/40 maxlen: 40 2404:5d80:6800::/40 maxlen: 40 2404:5d80:6800::/41 maxlen: 41 2404:5d80:6800::/42 maxlen: 42 2404:5d80:6800::/43 maxlen: 43 2404:5d80:6800::/44 maxlen: 44 2404:5d80:7400::/40 maxlen: 40 2404:5d80:9000::/40 maxlen: 40 2404:5d80:9400::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BCEE/68C3563013FF11EDA3F33941C4F9AE02/9Avota0WsYR_wNT0cI-dQUkxq6Y.crl rsync://rpki.apnic.net/member_repository/A918BCEE/68C3563013FF11EDA3F33941C4F9AE02/9Avota0WsYR_wNT0cI-dQUkxq6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9Avota0WsYR_wNT0cI-dQUkxq6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Nov 2025 04:40:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 761 (0x2f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BCEE, serialNumber=F40BE8B5AD16B1847FC0D4F4708F9D414931ABA6 Validity Not Before: Sep 10 18:09:53 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68c1bef1-6257 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:75:f6:e4:0f:0f:b4:31:5c:72:53:0b:dc:f0: 7c:98:73:51:d8:93:fc:55:7f:30:f9:40:b2:99:9a: 62:4e:e9:68:a5:4e:ab:3d:7a:4b:93:e1:e3:44:a1: 09:51:a2:49:91:67:62:bd:24:55:1e:1d:94:c1:9b: 22:aa:e7:62:5d:c4:34:8b:fd:93:07:1a:21:ab:7f: ac:75:69:55:14:db:dc:fa:97:e0:1d:49:81:88:f4: 3e:eb:01:2d:b6:ef:e5:fe:39:7e:47:33:c9:41:c0: ad:7b:a0:76:de:8f:73:8a:d8:9c:fc:45:1a:37:0e: e5:97:9b:66:84:6c:ec:0d:e6:37:20:a3:41:1b:9d: da:e6:af:d9:bb:f1:37:2b:98:2a:6b:ac:30:31:fb: 03:cc:7c:48:8e:88:ae:78:40:8d:ee:53:ee:b8:5e: c0:73:39:8b:73:de:ad:47:e8:cd:d1:a1:9d:52:65: 7e:b9:65:0d:c9:64:1e:b1:45:ad:cb:a4:28:f3:bc: 21:b6:63:ee:47:f6:8c:15:5f:f5:f8:30:d3:a5:cd: 5c:72:bc:7c:32:c0:55:b7:50:78:18:73:b3:ea:9b: 1b:18:e7:d1:d4:a7:db:5b:e5:6e:2a:b1:3d:69:22: f5:32:67:78:fe:79:2e:f4:5b:7d:cb:3f:3c:2c:9f: b4:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:4F:8F:FA:3D:11:01:35:6F:72:EE:30:0C:FD:7E:1B:6C:75:26:8A X509v3 Authority Key Identifier: keyid:F4:0B:E8:B5:AD:16:B1:84:7F:C0:D4:F4:70:8F:9D:41:49:31:AB:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BCEE/68C3563013FF11EDA3F33941C4F9AE02/9Avota0WsYR_wNT0cI-dQUkxq6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9Avota0WsYR_wNT0cI-dQUkxq6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BCEE/68C3563013FF11EDA3F33941C4F9AE02/36660EAE679E11EFBAD37686C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.209.253.0-103.209.254.255 IPv6: 2404:5d80:6300::/40 2404:5d80:6800::/40 2404:5d80:7400::/40 2404:5d80:9000::/40 2404:5d80:9400::/40 Signature Algorithm: sha256WithRSAEncryption 8c:82:32:d5:1f:26:fa:1d:2c:5d:89:b5:a7:09:b3:33:64:0c: 94:4b:29:d6:c7:0b:cb:a5:18:83:ec:5e:01:df:81:89:67:7c: d7:d7:5a:85:17:87:32:09:c5:ab:f8:57:17:d4:44:12:9d:dc: fc:40:32:2e:ac:86:2b:f8:89:dd:9f:ee:62:9c:0b:56:97:3b: dc:bc:83:aa:e5:7e:83:24:e3:0e:fd:6f:db:4a:ca:46:b8:6d: 47:37:d6:48:1a:d2:57:61:6c:c0:00:e0:eb:58:48:c5:28:09: 82:61:7d:b8:a3:ed:5a:a3:23:6b:da:32:b8:8a:78:d5:cf:d4: 44:2c:54:7d:1c:6f:57:6b:42:63:ed:df:a6:26:fb:9e:7e:96: ac:46:db:0a:c9:19:40:6a:73:00:83:62:df:2f:31:a4:cb:48: 83:ac:72:16:9f:d9:3d:49:61:f9:ef:36:12:52:98:f0:4f:a0: cd:54:98:06:33:66:7c:43:58:2a:58:f6:a7:8f:10:5c:5d:b7: 90:d8:e8:b0:62:da:38:91:3e:1c:9d:91:de:28:60:46:23:fd: 3a:9a:ae:88:f4:0b:fa:30:0b:48:de:94:86:53:c0:21:96:cf: cf:69:92:c8:57:9a:2b:a6:32:c7:62:06:c1:2e:8c:86:6b:0c: e3:cf:71:0e -----BEGIN CERTIFICATE----- MIIFqTCCBJGgAwIBAgICAvkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJDRUUxMTAvBgNVBAUTKEY0MEJFOEI1QUQxNkIxODQ3RkMwRDRGNDcwOEY5RDQx NDkzMUFCQTYwHhcNMjUwOTEwMTgwOTUzWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OGMxYmVmMS02MjU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA73X25A8PtDFcclML3PB8mHNR2JP8VX8w+UCymZpiTulopU6rPXpLk+HjRKEJ UaJJkWdivSRVHh2UwZsiqudiXcQ0i/2TBxohq3+sdWlVFNvc+pfgHUmBiPQ+6wEt tu/l/jl+RzPJQcCte6B23o9zitic/EUaNw7ll5tmhGzsDeY3IKNBG53a5q/Zu/E3 K5gqa6wwMfsDzHxIjoiueECN7lPuuF7AczmLc96tR+jN0aGdUmV+uWUNyWQesUWt y6Qo87whtmPuR/aMFV/1+DDTpc1ccrx8MsBVt1B4GHOz6psbGOfR1KfbW+VuKrE9 aSL1Mmd4/nku9Ft9yz88LJ+0jQIDAQABo4ICzTCCAskwHQYDVR0OBBYEFMVPj/o9 EQE1b3LuMAz9fhtsdSaKMB8GA1UdIwQYMBaAFPQL6LWtFrGEf8DU9HCPnUFJMaum MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkNFRS82OEMzNTYzMDEz RkYxMUVEQTNGMzM5NDFDNEY5QUUwMi85QXZvdGEwV3NZUl93TlQwY0ktZFFVa3hx NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlBdm90YTBXc1lSX3dOVDBjSS1kUVVreHE2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEJDRUUvNjhDMzU2MzAxM0ZGMTFFREEzRjMzOTQxQzRGOUFFMDIvMzY2NjBFQUU2 NzlFMTFFRkJBRDM3Njg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwVwYIKwYBBQUHAQcBAf8E SDBGMBQEAgABMA4wDAMEAGfR/QMEAGfR/jAuBAIAAjAoAwYAJARdgGMDBgAkBF2A aAMGACQEXYB0AwYAJARdgJADBgAkBF2AlDANBgkqhkiG9w0BAQsFAAOCAQEAjIIy 1R8m+h0sXYm1pwmzM2QMlEsp1scLy6UYg+xeAd+BiWd819dahReHMgnFq/hXF9RE Ep3c/EAyLqyGK/iJ3Z/uYpwLVpc73LyDquV+gyTjDv1v20rKRrhtRzfWSBrSV2Fs wADg61hIxSgJgmF9uKPtWqMja9oyuIp41c/URCxUfRxvV2tCY+3fpib7nn6WrEbb CskZQGpzAINi3y8xpMtIg6xyFp/ZPUlh+e82ElKY8E+gzVSYBjNmfENYKlj2p48Q XF23kNjosGLaOJE+HJ2R3ihgRiP9OpquiPQL+jALSN6UhlPAIZbPz2mSyFeaK6Yy x2IGwS6MhmsM489xDg== -----END CERTIFICATE-----Generated at Sat Oct 25 10:41:57 2025 by rpki-client