$ rpki-client -vvf rpki.apnic.net/member_repository/A918DA0C/B6DE1312F04911EB941FFB32C4F9AE02/0C3D8674345511EFA05D0C10C4F9AE02.roa File: 0C3D8674345511EFA05D0C10C4F9AE02.roa (raw, json) Hash identifier: yBjQ7vTWm7ckP6p1TXPTQpNI7WA0PEdmWLutLObiHrA= Subject key identifier: EF:B8:21:23:45:C1:27:B1:B0:E9:47:06:76:CC:19:8B:0D:AE:F2:C8 Certificate issuer: /CN=A918DA0C/serialNumber=6A95481CE8F40DD8895D1FB7AEE90E5959BA83C1 Certificate serial: 058A Authority key identifier: 6A:95:48:1C:E8:F4:0D:D8:89:5D:1F:B7:AE:E9:0E:59:59:BA:83:C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/apVIHOj0DdiJXR-3rukOWVm6g8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918DA0C/B6DE1312F04911EB941FFB32C4F9AE02/0C3D8674345511EFA05D0C10C4F9AE02.roa Signing time: Tue 02 Sep 2025 23:44:00 +0000 ROA not before: Tue 02 Sep 2025 23:43:59 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 142595 IP address blocks: 103.170.172.0/23 maxlen: 23 103.170.172.0/24 maxlen: 24 103.170.173.0/24 maxlen: 24 2001:df7:2180::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918DA0C/B6DE1312F04911EB941FFB32C4F9AE02/apVIHOj0DdiJXR-3rukOWVm6g8E.crl rsync://rpki.apnic.net/member_repository/A918DA0C/B6DE1312F04911EB941FFB32C4F9AE02/apVIHOj0DdiJXR-3rukOWVm6g8E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/apVIHOj0DdiJXR-3rukOWVm6g8E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 23:34:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1418 (0x58a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918DA0C, serialNumber=6A95481CE8F40DD8895D1FB7AEE90E5959BA83C1 Validity Not Before: Sep 2 23:43:59 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68b7813f-5c79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:33:d2:34:57:22:6a:11:b4:b8:bb:ac:5c:f6: d2:09:ca:74:ec:d3:8f:43:8f:06:78:73:5c:58:10: 2f:e1:f2:d3:14:bc:a9:9d:c2:5e:e2:05:2c:05:95: 10:84:a7:d9:e1:50:cd:59:e8:f2:88:fa:be:24:99: 8e:38:4c:75:5f:df:30:7e:04:ef:e9:4f:ae:29:f2: 18:4f:68:8f:c5:3d:c3:b2:fc:cd:e0:7d:94:5d:04: 38:37:c7:e2:c3:86:76:6c:35:46:02:41:5d:c7:27: 9b:91:72:2a:22:80:94:dc:e3:7f:7b:98:c7:69:98: a1:6d:33:bd:e7:08:ad:74:f7:03:4e:29:e5:7c:cd: fb:2c:19:2e:e3:6c:65:ee:e4:f3:d4:43:00:7b:77: 44:e1:bb:81:88:4a:6b:85:dd:a1:1c:b8:c4:04:06: 35:25:1b:dd:94:8e:72:a9:14:3b:07:c0:3d:87:20: 90:c6:58:a1:f0:fc:97:37:a1:ba:97:b0:b8:28:0d: 0c:5c:9d:8b:0c:f9:72:00:1f:a5:ea:69:d0:e1:45: 62:08:48:47:f8:4d:a7:c5:65:13:07:91:f4:87:ce: df:97:dc:dc:0f:8d:17:29:7f:47:1a:f8:95:fc:f5: 21:d3:67:11:e2:1e:ac:47:a8:39:8b:f6:a6:db:cd: d8:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:B8:21:23:45:C1:27:B1:B0:E9:47:06:76:CC:19:8B:0D:AE:F2:C8 X509v3 Authority Key Identifier: keyid:6A:95:48:1C:E8:F4:0D:D8:89:5D:1F:B7:AE:E9:0E:59:59:BA:83:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918DA0C/B6DE1312F04911EB941FFB32C4F9AE02/apVIHOj0DdiJXR-3rukOWVm6g8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/apVIHOj0DdiJXR-3rukOWVm6g8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918DA0C/B6DE1312F04911EB941FFB32C4F9AE02/0C3D8674345511EFA05D0C10C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.170.172.0/23 IPv6: 2001:df7:2180::/48 Signature Algorithm: sha256WithRSAEncryption 23:4d:79:78:12:e5:67:6a:83:ed:f4:b7:2e:e2:4c:ab:f4:6c: a4:a1:6c:c6:11:0b:0b:f1:96:6f:bc:c8:9c:a0:10:68:24:0b: 37:24:f1:00:c4:5f:df:03:d7:65:9b:f9:a4:fa:62:6c:5a:d7: e5:33:ee:5a:40:23:44:3a:e0:97:d7:6f:d9:c1:aa:59:22:fe: 50:22:da:0d:d1:e5:ce:38:9f:d8:28:3e:d6:5a:e4:06:28:11: d7:5b:b0:f2:6c:f3:0b:26:ba:9c:ae:ef:b4:1a:6c:ab:0c:16: 8a:89:a3:3c:04:0c:c3:cb:ec:14:1b:34:6c:04:3e:dc:b1:4c: 0c:e5:94:fb:45:f4:1e:91:a5:ea:d0:84:d8:f6:9a:6c:94:ef: f8:b6:41:6f:c9:f2:75:30:d0:b4:a5:6f:27:85:f5:bd:9a:43: d9:27:3a:af:f2:77:16:ce:f0:9d:88:1a:2d:d4:a0:3d:45:2e: f3:e5:6c:c8:ea:33:23:6d:97:29:cb:a7:44:8c:5a:7b:45:49: 0d:90:f1:6b:0b:b4:8d:70:ea:45:8a:32:9f:e6:ec:75:c5:08: ef:74:ab:d9:b7:73:a2:90:88:8e:a9:bd:fe:05:0b:ed:1f:da: bc:28:48:f3:42:64:f3:59:37:73:a2:0b:69:4a:47:0e:7c:61: a8:fd:87:9a -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBYowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OERBMEMxMTAvBgNVBAUTKDZBOTU0ODFDRThGNDBERDg4OTVEMUZCN0FFRTkwRTU5 NTlCQTgzQzEwHhcNMjUwOTAyMjM0MzU5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3ODEzZi01Yzc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArjPSNFciahG0uLusXPbSCcp07NOPQ48GeHNcWBAv4fLTFLypncJe4gUsBZUQ hKfZ4VDNWejyiPq+JJmOOEx1X98wfgTv6U+uKfIYT2iPxT3DsvzN4H2UXQQ4N8fi w4Z2bDVGAkFdxyebkXIqIoCU3ON/e5jHaZihbTO95witdPcDTinlfM37LBku42xl 7uTz1EMAe3dE4buBiEprhd2hHLjEBAY1JRvdlI5yqRQ7B8A9hyCQxlih8PyXN6G6 l7C4KA0MXJ2LDPlyAB+l6mnQ4UViCEhH+E2nxWUTB5H0h87fl9zcD40XKX9HGviV /PUh02cR4h6sR6g5i/am283YGQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFO+4ISNF wSexsOlHBnbMGYsNrvLIMB8GA1UdIwQYMBaAFGqVSBzo9A3YiV0ft67pDllZuoPB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4REEwQy9CNkRFMTMxMkYw NDkxMUVCOTQxRkZCMzJDNEY5QUUwMi9hcFZJSE9qMERkaUpYUi0zcnVrT1dWbTZn OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FwVklIT2owRGRpSlhSLTNydWtPV1ZtNmc4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OERBMEMvQjZERTEzMTJGMDQ5MTFFQjk0MUZGQjMyQzRGOUFFMDIvMEMzRDg2NzQz NDU1MTFFRkEwNUQwQzEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnqqwwDwQCAAIwCQMHACABDfchgDANBgkqhkiG9w0BAQsF AAOCAQEAI015eBLlZ2qD7fS3LuJMq/RspKFsxhELC/GWb7zInKAQaCQLNyTxAMRf 3wPXZZv5pPpibFrX5TPuWkAjRDrgl9dv2cGqWSL+UCLaDdHlzjif2Cg+1lrkBigR 11uw8mzzCya6nK7vtBpsqwwWiomjPAQMw8vsFBs0bAQ+3LFMDOWU+0X0HpGl6tCE 2PaabJTv+LZBb8nydTDQtKVvJ4X1vZpD2Sc6r/J3Fs7wnYgaLdSgPUUu8+VsyOoz I22XKcunRIxae0VJDZDxawu0jXDqRYoyn+bsdcUI73Sr2bdzopCIjqm9/gUL7R/a vChI80Jk81k3c6ILaUpHDnxhqP2Hmg== -----END CERTIFICATE-----Generated at Fri Sep 19 23:34:25 2025 by rpki-client