$ rpki-client -vvf rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/CC166DAC0A0811EFBE7E465EC4F9AE02.roa File: CC166DAC0A0811EFBE7E465EC4F9AE02.roa (raw, json) Hash identifier: LIBTOUx4sDoJqevaYZ7QQd1IJGw6R0nOR1Do32NIl0I= Subject key identifier: 03:A2:62:09:05:55:8B:A1:16:35:73:5B:EC:89:BC:7F:97:5F:C4:B3 Certificate issuer: /CN=A918D323/serialNumber=C70DE278AB7726D29CA3A8C02407AA5BAE12EC0A Certificate serial: 0107 Authority key identifier: C7:0D:E2:78:AB:77:26:D2:9C:A3:A8:C0:24:07:AA:5B:AE:12:EC:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xw3ieKt3JtKco6jAJAeqW64S7Ao.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/CC166DAC0A0811EFBE7E465EC4F9AE02.roa Signing time: Wed 03 Sep 2025 05:55:06 +0000 ROA not before: Wed 03 Sep 2025 05:55:06 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 131299 IP address blocks: 103.68.112.0/24 maxlen: 24 103.68.113.0/24 maxlen: 24 103.68.114.0/24 maxlen: 24 103.68.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.crl rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xw3ieKt3JtKco6jAJAeqW64S7Ao.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:48:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 263 (0x107) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D323, serialNumber=C70DE278AB7726D29CA3A8C02407AA5BAE12EC0A Validity Not Before: Sep 3 05:55:06 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b7d83a-66dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ed:d0:dc:00:51:be:e1:76:6f:72:08:1e:b3: 6d:7a:9b:4a:d7:36:9d:30:ba:88:8b:5d:fb:40:94: ee:0d:76:02:c2:eb:40:93:fb:54:15:2c:20:b8:ef: 6c:48:f1:24:a1:51:3c:94:4c:ec:15:fd:c9:e2:f6: 9a:c3:be:0d:62:88:cc:ec:dc:15:44:f5:ee:ed:af: 6b:7c:8a:4e:23:6e:af:40:ec:53:9f:63:9d:87:82: 8a:0d:81:1f:f4:7a:3a:e1:16:de:cc:64:16:27:3e: 8b:e1:30:8b:80:44:43:3b:f6:a4:0e:da:b2:1b:cc: f3:99:0d:cc:8e:25:ae:0a:0c:bc:16:da:09:8e:fa: f7:fb:6d:51:dd:9c:ba:90:38:60:e0:22:e1:5d:aa: 9c:06:49:08:d7:5e:0a:0e:bc:eb:ed:2f:72:76:2b: 90:63:75:44:76:21:86:2b:3b:95:7c:49:c5:df:32: 03:2c:97:da:47:4c:43:82:ee:1c:a5:15:86:45:34: eb:8c:c7:53:f7:0b:e8:fb:39:17:40:c8:63:94:f4: dc:e2:8e:ae:0a:ff:b2:31:94:3b:67:92:99:e5:4b: 74:15:ee:92:77:b6:13:b7:05:37:7c:b1:1e:62:74: 4b:72:f6:3b:66:f0:eb:07:3a:90:b0:fe:a6:e6:46: f1:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:A2:62:09:05:55:8B:A1:16:35:73:5B:EC:89:BC:7F:97:5F:C4:B3 X509v3 Authority Key Identifier: keyid:C7:0D:E2:78:AB:77:26:D2:9C:A3:A8:C0:24:07:AA:5B:AE:12:EC:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/xw3ieKt3JtKco6jAJAeqW64S7Ao.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xw3ieKt3JtKco6jAJAeqW64S7Ao.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D323/220A1FD809EB11EFBC4D1534C4F9AE02/CC166DAC0A0811EFBE7E465EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.68.112.0/22 Signature Algorithm: sha256WithRSAEncryption d0:74:1a:92:28:b5:e5:49:cf:35:84:a8:a5:b6:a5:11:18:5f: d4:41:80:53:5b:ef:44:6f:69:e3:1e:f9:1e:14:fe:22:02:39: 46:48:27:01:8e:55:53:b3:00:f9:0f:23:e3:a4:32:96:f7:5b: 1e:68:ad:36:27:ff:53:5c:20:f6:81:75:a9:b9:64:d7:06:11: b8:9e:b1:e7:1b:0c:fd:c6:ab:90:52:c1:88:7d:4f:4f:27:bb: fb:66:c2:12:12:50:5a:e6:01:59:3f:fc:d3:94:f5:ec:74:b1: 39:5a:25:88:f3:c0:69:fc:16:25:10:6f:54:fd:2b:a7:33:71: 4d:e9:b4:94:55:65:12:67:70:79:2e:99:d1:c2:96:ad:8f:34: 70:14:d1:8f:fe:88:a7:39:c0:a6:67:fe:9f:01:31:03:53:df: 5f:b6:ea:ff:92:df:c9:fe:6b:d2:ad:ba:ef:d3:a8:b1:0f:19: ed:66:43:1f:15:ea:b6:36:32:1c:ed:59:11:e4:25:16:c2:c0: 9d:99:b2:02:12:d3:0c:c0:9b:d2:a5:0f:29:88:f3:d9:68:c1: 84:d7:f4:95:f0:a0:d6:99:32:8a:5c:f2:a6:6b:40:89:81:b9: 9a:13:45:50:72:ad:9a:e8:59:3d:16:5c:8f:b5:67:ef:91:7b: 75:cf:d8:47 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQzMjMxMTAvBgNVBAUTKEM3MERFMjc4QUI3NzI2RDI5Q0EzQThDMDI0MDdBQTVC QUUxMkVDMEEwHhcNMjUwOTAzMDU1NTA2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3ZDgzYS02NmRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuO3Q3ABRvuF2b3IIHrNteptK1zadMLqIi137QJTuDXYCwutAk/tUFSwguO9s SPEkoVE8lEzsFf3J4vaaw74NYojM7NwVRPXu7a9rfIpOI26vQOxTn2Odh4KKDYEf 9Ho64RbezGQWJz6L4TCLgERDO/akDtqyG8zzmQ3MjiWuCgy8FtoJjvr3+21R3Zy6 kDhg4CLhXaqcBkkI114KDrzr7S9ydiuQY3VEdiGGKzuVfEnF3zIDLJfaR0xDgu4c pRWGRTTrjMdT9wvo+zkXQMhjlPTc4o6uCv+yMZQ7Z5KZ5Ut0Fe6Sd7YTtwU3fLEe YnRLcvY7ZvDrBzqQsP6m5kbxxQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAOiYgkF VYuhFjVzW+yJvH+XX8SzMB8GA1UdIwQYMBaAFMcN4nirdybSnKOowCQHqluuEuwK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDMyMy8yMjBBMUZEODA5 RUIxMUVGQkM0RDE1MzRDNEY5QUUwMi94dzNpZUt0M0p0S2NvNmpBSkFlcVc2NFM3 QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h3M2llS3QzSnRLY282akFKQWVxVzY0UzdBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEQzMjMvMjIwQTFGRDgwOUVCMTFFRkJDNEQxNTM0QzRGOUFFMDIvQ0MxNjZEQUMw QTA4MTFFRkJFN0U0NjVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnRHAwDQYJKoZIhvcNAQELBQADggEBANB0GpIoteVJzzWE qKW2pREYX9RBgFNb70RvaeMe+R4U/iICOUZIJwGOVVOzAPkPI+OkMpb3Wx5orTYn /1NcIPaBdam5ZNcGEbiesecbDP3Gq5BSwYh9T08nu/tmwhISUFrmAVk//NOU9ex0 sTlaJYjzwGn8FiUQb1T9K6czcU3ptJRVZRJncHkumdHClq2PNHAU0Y/+iKc5wKZn /p8BMQNT31+26v+S38n+a9Ktuu/TqLEPGe1mQx8V6rY2MhztWRHkJRbCwJ2ZsgIS 0wzAm9KlDymI89lowYTX9JXwoNaZMopc8qZrQImBuZoTRVByrZroWT0WXI+1Z++R e3XP2Ec= -----END CERTIFICATE-----Generated at Tue Nov 4 07:21:56 2025 by rpki-client