$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4FD8E0AC8CB211F0A2F71C0CC4F9AE02.roa File: 4FD8E0AC8CB211F0A2F71C0CC4F9AE02.roa (raw, json) Hash identifier: 9YVP8kk5BNe9RV/A8ehFmUaUb4vWVFqWvPIWwAnoH/U= Subject key identifier: 16:B7:A0:04:DF:82:37:C6:47:8A:7E:E8:38:A3:98:15:1F:ED:7B:A2 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: C452 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4FD8E0AC8CB211F0A2F71C0CC4F9AE02.roa Signing time: Mon 08 Sep 2025 12:54:20 +0000 ROA not before: Mon 08 Sep 2025 12:54:20 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 154024 IP address blocks: 103.124.208.0/23 maxlen: 24 2001:df2:36c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 13:09:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50258 (0xc452) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Sep 8 12:54:20 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68bed1fc-ce8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:97:fc:b0:43:4b:29:58:c3:1c:81:01:ff:cd: 82:45:91:2c:08:ec:ab:0e:ca:dd:2f:f4:6d:a7:73: bc:39:8c:cd:41:38:be:07:99:20:65:6c:ea:04:33: 69:39:b7:f2:9b:47:d6:a8:2e:fc:69:39:51:2a:30: c3:42:7c:06:5e:fd:aa:3c:2a:e4:bc:52:73:a1:bb: 45:92:f0:9d:74:b6:4b:60:bb:c6:6f:9a:b3:20:c7: a0:1c:e6:c4:72:b6:9a:2e:5a:3b:a0:ab:81:a5:0f: bb:11:70:46:c4:1f:63:40:4d:ec:5a:56:90:cb:30: 55:d4:15:ba:b7:18:f4:7f:cc:8b:52:c0:2e:74:c3: 1b:66:67:33:a5:04:b0:9a:84:5e:b1:9f:42:c9:0c: 45:5d:2c:e6:43:3e:95:4a:7e:53:22:06:8f:a6:ca: b6:95:01:96:ee:45:d3:9c:3e:11:2c:c2:f2:9f:d7: c5:3f:14:fb:82:79:8b:ad:ee:56:7a:ac:de:ab:d1: c9:25:ec:56:9d:ce:76:bf:68:f2:7c:a3:ba:87:a9: fd:11:3a:71:a4:51:99:05:88:57:04:09:ae:45:9d: f7:09:9b:06:f1:a4:15:da:45:c8:66:40:4c:b1:34: cb:c1:53:08:cb:d3:48:da:2d:18:aa:57:3f:7e:d8: 86:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:B7:A0:04:DF:82:37:C6:47:8A:7E:E8:38:A3:98:15:1F:ED:7B:A2 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4FD8E0AC8CB211F0A2F71C0CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.124.208.0/23 IPv6: 2001:df2:36c0::/48 Signature Algorithm: sha256WithRSAEncryption 8c:3e:7f:4b:cf:40:e6:00:e7:34:56:d2:fc:0f:29:ec:da:9c: d9:e0:e3:92:24:9b:82:9b:b6:f6:05:33:5c:d5:2e:00:57:50: 07:7f:a7:ca:eb:4c:2a:3e:50:12:03:2b:42:54:24:b3:d2:c9: f1:bc:55:15:4f:66:ca:49:cc:75:08:ce:d4:f3:87:61:55:c7: 1d:55:7f:cb:10:7d:56:13:f6:ee:d1:5c:08:44:df:71:f0:73: 18:65:3b:40:9d:56:44:58:e8:ca:4f:80:7c:66:33:6f:0c:82: cb:1f:e2:59:67:4d:b7:b3:fb:28:70:6e:91:f9:41:56:bf:d1: 29:88:8d:7b:46:91:92:76:4c:64:6c:9c:50:64:fc:b0:01:8e: 1b:02:fd:28:4e:18:31:26:64:3f:ec:26:66:e5:ef:80:c1:d6: 74:1a:d2:f9:78:f7:91:06:80:eb:64:01:75:0d:ec:cc:ab:2c: 4a:51:49:01:76:ad:ca:16:23:c0:d1:bb:76:c3:c2:49:07:75: 32:99:3b:f7:c9:3e:b1:54:18:27:4d:0f:1c:9b:5c:6e:d6:4c: 12:f8:e7:05:6c:bb:76:a3:ba:5d:2b:55:9a:e8:ed:dd:33:5b: 99:21:6c:6f:4f:d7:8c:af:4a:ec:69:30:85:64:8e:30:ab:f7: c2:97:70:1f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIDAMRSMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDkwODEyNTQyMFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjhiZWQxZmMtY2U4YTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMSX/LBDSylYwxyBAf/NgkWRLAjsqw7K3S/0badzvDmMzUE4vgeZIGVs6gQz aTm38ptH1qgu/Gk5USoww0J8Bl79qjwq5LxSc6G7RZLwnXS2S2C7xm+asyDHoBzm xHK2mi5aO6CrgaUPuxFwRsQfY0BN7FpWkMswVdQVurcY9H/Mi1LALnTDG2ZnM6UE sJqEXrGfQskMRV0s5kM+lUp+UyIGj6bKtpUBlu5F05w+ESzC8p/XxT8U+4J5i63u Vnqs3qvRySXsVp3Odr9o8nyjuoep/RE6caRRmQWIVwQJrkWd9wmbBvGkFdpFyGZA TLE0y8FTCMvTSNotGKpXP37YhlcCAwEAAaOCAqYwggKiMB0GA1UdDgQWBBQWt6AE 34I3xkeKfug4o5gVH+17ojAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzRGRDhFMEFD OENCMjExRjBBMkY3MUMwQ0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDAGCCsGAQUFBwEHAQH/ BCEwHzAMBAIAATAGAwQBZ3zQMA8EAgACMAkDBwAgAQ3yNsAwDQYJKoZIhvcNAQEL BQADggEBAIw+f0vPQOYA5zRW0vwPKezanNng45Ikm4KbtvYFM1zVLgBXUAd/p8rr TCo+UBIDK0JUJLPSyfG8VRVPZspJzHUIztTzh2FVxx1Vf8sQfVYT9u7RXAhE33Hw cxhlO0CdVkRY6MpPgHxmM28Mgssf4llnTbez+yhwbpH5QVa/0SmIjXtGkZJ2TGRs nFBk/LABjhsC/ShOGDEmZD/sJmbl74DB1nQa0vl495EGgOtkAXUN7MyrLEpRSQF2 rcoWI8DRu3bDwkkHdTKZO/fJPrFUGCdNDxybXG7WTBL45wVsu3ajul0rVZro7d0z W5khbG9P14yvSuxpMIVkjjCr98KXcB8= -----END CERTIFICATE-----Generated at Wed Sep 10 00:18:45 2025 by rpki-client