$ rpki-client -vvf rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/1ED4125C50C111EFA64C2437C4F9AE02.roa File: 1ED4125C50C111EFA64C2437C4F9AE02.roa (raw, json) Hash identifier: 9/ZL4wqQ8ewDEJQ51uhQKwNXm0lUHqlJiXvD1GBeNxo= Subject key identifier: F8:70:75:8D:59:CF:98:C2:D6:F7:41:31:BC:42:E3:75:F2:F6:CF:B0 Certificate issuer: /CN=A918E4B7/serialNumber=0AB6DD26515C53ECC5B0462B4C475D5A7E5A5537 Certificate serial: 054D Authority key identifier: 0A:B6:DD:26:51:5C:53:EC:C5:B0:46:2B:4C:47:5D:5A:7E:5A:55:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/1ED4125C50C111EFA64C2437C4F9AE02.roa Signing time: Wed 03 Sep 2025 00:15:35 +0000 ROA not before: Wed 03 Sep 2025 00:15:35 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 36007 IP address blocks: 103.6.168.0/24 maxlen: 24 103.6.169.0/24 maxlen: 24 103.6.170.0/24 maxlen: 24 103.6.171.0/24 maxlen: 24 103.102.46.0/24 maxlen: 24 103.125.216.0/24 maxlen: 24 103.125.217.0/24 maxlen: 24 103.125.218.0/24 maxlen: 24 103.125.219.0/24 maxlen: 24 2401:df40:2::/48 maxlen: 48 2403:fa40:1::/48 maxlen: 48 2403:fa40:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.crl rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 23:54:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1357 (0x54d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E4B7, serialNumber=0AB6DD26515C53ECC5B0462B4C475D5A7E5A5537 Validity Not Before: Sep 3 00:15:35 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b788a7-ee37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:24:7a:ba:5e:b0:fa:df:eb:13:b0:3a:9e:21: 2c:96:55:fe:8b:21:c3:2a:49:75:d4:6a:b0:3a:ad: f9:83:ed:5a:ac:dc:e7:ff:46:d7:60:bd:5d:66:fe: a0:ce:42:1c:ca:32:ea:cc:89:65:f5:7d:37:94:2f: c4:79:ee:3b:46:ca:58:41:43:61:28:d6:76:7e:02: 58:9b:d2:5c:6e:be:46:d0:39:d4:6f:4a:a9:a0:9e: 02:1b:c4:03:1e:a2:09:3b:6f:ad:dc:36:6c:c1:31: 04:16:9d:89:10:86:32:bc:33:db:25:63:3a:f0:bd: aa:3f:2c:11:11:e5:77:89:a0:b6:9b:df:35:84:bf: 80:0c:e1:08:c7:01:37:59:44:26:08:45:1f:75:aa: 13:9c:f9:dc:e8:c9:e6:57:dc:33:8a:2c:22:64:5f: a5:ec:e1:1a:7f:18:80:b7:18:95:f5:01:50:aa:74: f3:74:41:4d:f4:a9:71:38:44:7b:23:c4:d4:6a:d1: 8d:79:29:04:89:28:5f:61:82:82:1b:b7:df:59:6c: 76:fa:fd:f8:f0:bb:1a:a4:48:fa:07:05:2f:68:1a: 35:3a:55:14:38:59:72:f0:34:49:13:76:b6:ae:ce: d4:55:d5:1a:0c:e3:dc:0c:e3:95:a3:e2:7f:39:89: 8e:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:70:75:8D:59:CF:98:C2:D6:F7:41:31:BC:42:E3:75:F2:F6:CF:B0 X509v3 Authority Key Identifier: keyid:0A:B6:DD:26:51:5C:53:EC:C5:B0:46:2B:4C:47:5D:5A:7E:5A:55:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/1ED4125C50C111EFA64C2437C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.6.168.0/22 103.102.46.0/24 103.125.216.0/22 IPv6: 2401:df40:2::/48 2403:fa40:1::-2403:fa40:2:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 59:6a:44:92:a8:6f:7a:92:3d:35:69:53:a0:3e:34:a7:50:c4: e0:e5:40:de:8d:ba:1d:af:84:79:4a:02:c1:13:6a:0c:74:fc: 46:ff:d5:e8:31:58:fa:bc:2f:78:af:a0:3f:7f:3f:97:e8:2a: b5:01:85:25:83:83:6a:7a:30:13:9b:48:fa:f6:71:53:c3:77: 0e:b4:70:45:11:cf:ff:9f:f3:6f:24:e9:67:f8:71:0f:30:d8: 99:0f:19:2c:7e:c7:85:e2:d3:cd:be:33:c6:8a:7e:66:6e:1f: d3:cc:73:18:36:2e:fa:a0:3d:32:e4:5e:fa:86:ce:bf:32:aa: 54:ed:75:44:b4:03:d5:be:11:a0:00:43:15:68:39:12:0f:c5: 80:d3:30:d5:99:d0:51:f5:54:63:63:56:33:14:85:45:6e:1e: 8e:2f:1d:91:6c:89:a3:d7:6f:17:25:5e:cf:78:b1:78:c2:55: 31:75:ba:60:6c:5b:41:e6:25:fb:18:d8:2c:28:64:a1:33:92: 66:e5:c3:0c:7b:94:d6:bf:f1:af:00:81:53:18:c9:9c:8a:1a: 91:16:c3:bc:76:57:cf:74:7d:1a:e3:9d:e2:74:7d:c0:fd:fc: 0a:f7:cc:35:a1:ca:7f:9f:ef:92:7c:ad:a0:24:d9:f1:4e:18: 0f:ba:83:23 -----BEGIN CERTIFICATE----- MIIFojCCBIqgAwIBAgICBU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU0QjcxMTAvBgNVBAUTKDBBQjZERDI2NTE1QzUzRUNDNUIwNDYyQjRDNDc1RDVB N0U1QTU1MzcwHhcNMjUwOTAzMDAxNTM1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3ODhhNy1lZTM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuiR6ul6w+t/rE7A6niEsllX+iyHDKkl11GqwOq35g+1arNzn/0bXYL1dZv6g zkIcyjLqzIll9X03lC/Eee47RspYQUNhKNZ2fgJYm9Jcbr5G0DnUb0qpoJ4CG8QD HqIJO2+t3DZswTEEFp2JEIYyvDPbJWM68L2qPywREeV3iaC2m981hL+ADOEIxwE3 WUQmCEUfdaoTnPnc6MnmV9wziiwiZF+l7OEafxiAtxiV9QFQqnTzdEFN9KlxOER7 I8TUatGNeSkEiShfYYKCG7ffWWx2+v348LsapEj6BwUvaBo1OlUUOFly8DRJE3a2 rs7UVdUaDOPcDOOVo+J/OYmOgQIDAQABo4ICxjCCAsIwHQYDVR0OBBYEFPhwdY1Z z5jC1vdBMbxC43Xy9s+wMB8GA1UdIwQYMBaAFAq23SZRXFPsxbBGK0xHXVp+WlU3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTRCNy9FQjMxMkYwMjFF QUExMUVDQjc1NkJGMzBDNEY5QUUwMi9DcmJkSmxGY1UtekZzRVlyVEVkZFduNWFW VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NyYmRKbEZjVS16RnNFWXJURWRkV241YVZUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEU0QjcvRUIzMTJGMDIxRUFBMTFFQ0I3NTZCRjMwQzRGOUFFMDIvMUVENDEyNUM1 MEMxMTFFRkE2NEMyNDM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUAYIKwYBBQUHAQcBAf8E QTA/MBgEAgABMBIDBAJnBqgDBABnZi4DBAJnfdgwIwQCAAIwHQMHACQB30AAAjAS AwcAJAP6QAABAwcAJAP6QAACMA0GCSqGSIb3DQEBCwUAA4IBAQBZakSSqG96kj01 aVOgPjSnUMTg5UDejbodr4R5SgLBE2oMdPxG/9XoMVj6vC94r6A/fz+X6Cq1AYUl g4NqejATm0j69nFTw3cOtHBFEc//n/NvJOln+HEPMNiZDxksfseF4tPNvjPGin5m bh/TzHMYNi76oD0y5F76hs6/MqpU7XVEtAPVvhGgAEMVaDkSD8WA0zDVmdBR9VRj Y1YzFIVFbh6OLx2RbImj128XJV7PeLF4wlUxdbpgbFtB5iX7GNgsKGShM5Jm5cMM e5TWv/GvAIFTGMmcihqRFsO8dlfPdH0a453idH3A/fwK98w1ocp/n++SfK2gJNnx ThgPuoMj -----END CERTIFICATE-----Generated at Sat Sep 6 14:24:21 2025 by rpki-client