$ rpki-client -vvf rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/BFA3B5F81FC911EA8CF04E61C4F9AE02.roa File: BFA3B5F81FC911EA8CF04E61C4F9AE02.roa (raw, json) Hash identifier: GOn5I83uJZSyXlxS2nqYANbi3ziYR8hFxpWIpKnwdbc= Subject key identifier: 1F:E4:71:26:E5:F7:82:C8:D2:5D:74:20:81:5B:DA:87:3F:A5:52:A9 Certificate issuer: /CN=A918E20E/serialNumber=AF6A18DB3A071EF18CCA5BE8B35433DF544F0FB2 Certificate serial: 0BDB Authority key identifier: AF:6A:18:DB:3A:07:1E:F1:8C:CA:5B:E8:B3:54:33:DF:54:4F:0F:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/BFA3B5F81FC911EA8CF04E61C4F9AE02.roa Signing time: Sat 26 Jul 2025 19:29:14 +0000 ROA not before: Sat 26 Jul 2025 19:29:14 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 137981 IP address blocks: 103.119.75.0/24 maxlen: 24 103.143.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.crl rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:53:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3035 (0xbdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E20E, serialNumber=AF6A18DB3A071EF18CCA5BE8B35433DF544F0FB2 Validity Not Before: Jul 26 19:29:14 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68852c89-e60a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:df:9e:40:5f:33:42:bf:65:a6:71:d5:44:82: ea:bb:71:53:59:29:59:12:0d:7b:e8:d4:fa:2d:fa: 65:94:03:b7:a3:f0:ad:32:a8:22:d8:86:a6:05:ef: 2f:74:b8:71:0d:cc:aa:ec:b4:20:41:62:50:1a:ba: c7:9a:ad:50:47:a7:7d:2e:06:8a:a9:da:7b:e5:96: 06:61:f2:99:c3:42:3b:f7:de:7a:06:86:e4:7b:83: e8:7e:b9:a8:f1:4b:4f:f7:56:9e:de:4a:df:8f:0e: 42:2f:d4:b5:84:c2:4f:e1:4c:c1:ec:19:73:85:62: 0f:3c:cc:98:52:5e:72:a6:bc:db:82:69:3a:e1:36: 19:03:b5:fd:a2:14:4f:21:2d:68:29:c9:3d:06:26: 21:d8:37:40:85:36:ae:ed:9d:18:80:e3:50:ef:cd: 7f:98:6e:20:bc:aa:af:6d:47:70:97:2c:c2:cf:a2: 42:fd:bb:59:c4:16:0d:a0:1f:e4:ba:15:c2:3e:9c: 65:56:85:8f:d4:c9:26:bc:f9:6b:77:d9:c8:96:78: b1:91:05:d5:38:dc:3c:34:56:37:20:8b:e9:95:f7: 76:c2:87:a7:92:8a:51:6c:00:d4:d1:97:22:b5:35: 40:de:59:81:f3:4c:c0:49:3f:57:a3:64:15:f1:45: 72:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:E4:71:26:E5:F7:82:C8:D2:5D:74:20:81:5B:DA:87:3F:A5:52:A9 X509v3 Authority Key Identifier: keyid:AF:6A:18:DB:3A:07:1E:F1:8C:CA:5B:E8:B3:54:33:DF:54:4F:0F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/r2oY2zoHHvGMylvos1Qz31RPD7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r2oY2zoHHvGMylvos1Qz31RPD7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E20E/23AAD98E1FC811EA84594F5EC4F9AE02/BFA3B5F81FC911EA8CF04E61C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.119.75.0/24 103.143.252.0/24 Signature Algorithm: sha256WithRSAEncryption 26:42:3f:96:b2:0d:b7:aa:08:45:43:5c:be:67:93:c1:db:f4: 83:0d:e9:07:51:4e:47:c8:d8:ee:a9:5b:5b:ee:11:73:a3:8d: 17:29:65:5f:0a:30:5c:0d:7d:2e:62:41:ba:e8:e2:7a:87:0d: 87:40:81:d5:4d:d3:ef:fa:51:84:51:68:fb:1c:9c:af:ac:0d: 84:18:21:fc:ca:32:21:60:ec:45:44:fd:b5:c8:40:a7:10:71: 8e:dd:b9:c7:73:de:8f:f6:27:1a:ab:b1:b0:15:5e:c6:3e:9b: a1:ab:d9:5c:be:bf:13:81:a9:04:db:fc:f4:b4:16:a4:de:5d: 84:18:54:0f:fd:f8:fb:42:b4:3d:67:05:ef:6a:e0:38:7e:21: e5:ae:91:11:48:fa:9a:d3:1a:3e:9e:23:6b:bc:2e:84:cf:64: a2:f0:10:57:b6:76:0a:e8:69:fb:8f:b7:11:b7:d3:c5:8f:06: 2d:2f:83:34:fb:cb:d1:de:c8:c9:5d:48:b9:62:43:9e:1c:d3: 9e:32:f2:39:58:bc:1f:e6:a9:ad:e7:a9:01:3e:58:1b:ef:1d: bc:b3:93:e2:b7:79:af:13:d1:93:c8:64:d8:6f:e5:d7:34:75: 5a:c5:57:ba:cc:99:81:92:6c:d3:e7:41:cb:b3:bd:a1:d0:f6: 71:2b:e4:34 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICC9swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEUyMEUxMTAvBgNVBAUTKEFGNkExOERCM0EwNzFFRjE4Q0NBNUJFOEIzNTQzM0RG NTQ0RjBGQjIwHhcNMjUwNzI2MTkyOTE0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODg1MmM4OS1lNjBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtd+eQF8zQr9lpnHVRILqu3FTWSlZEg176NT6LfpllAO3o/CtMqgi2IamBe8v dLhxDcyq7LQgQWJQGrrHmq1QR6d9LgaKqdp75ZYGYfKZw0I79956Bobke4Pofrmo 8UtP91ae3krfjw5CL9S1hMJP4UzB7BlzhWIPPMyYUl5yprzbgmk64TYZA7X9ohRP IS1oKck9BiYh2DdAhTau7Z0YgONQ781/mG4gvKqvbUdwlyzCz6JC/btZxBYNoB/k uhXCPpxlVoWP1MkmvPlrd9nIlnixkQXVONw8NFY3IIvplfd2woenkopRbADU0Zci tTVA3lmB80zAST9Xo2QV8UVyFwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFB/kcSbl 94LI0l10IIFb2oc/pVKpMB8GA1UdIwQYMBaAFK9qGNs6Bx7xjMpb6LNUM99UTw+y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTIwRS8yM0FBRDk4RTFG QzgxMUVBODQ1OTRGNUVDNEY5QUUwMi9yMm9ZMnpvSEh2R015bHZvczFRejMxUlBE N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Iyb1kyem9ISHZHTXlsdm9zMVF6MzFSUEQ3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEUyMEUvMjNBQUQ5OEUxRkM4MTFFQTg0NTk0RjVFQzRGOUFFMDIvQkZBM0I1Rjgx RkM5MTFFQThDRjA0RTYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnd0sDBABnj/wwDQYJKoZIhvcNAQELBQADggEBACZCP5ay DbeqCEVDXL5nk8Hb9IMN6QdRTkfI2O6pW1vuEXOjjRcpZV8KMFwNfS5iQbro4nqH DYdAgdVN0+/6UYRRaPscnK+sDYQYIfzKMiFg7EVE/bXIQKcQcY7ducdz3o/2Jxqr sbAVXsY+m6Gr2Vy+vxOBqQTb/PS0FqTeXYQYVA/9+PtCtD1nBe9q4Dh+IeWukRFI +prTGj6eI2u8LoTPZKLwEFe2dgroafuPtxG308WPBi0vgzT7y9HeyMldSLliQ54c 054y8jlYvB/mqa3nqQE+WBvvHbyzk+K3ea8T0ZPIZNhv5dc0dVrFV7rMmYGSbNPn QcuzvaHQ9nEr5DQ= -----END CERTIFICATE-----Generated at Wed Nov 5 05:25:00 2025 by rpki-client