$ rpki-client -vvf rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/66E93DA2FB1111EE81D7643BC4F9AE02.roa File: 66E93DA2FB1111EE81D7643BC4F9AE02.roa (raw, json) Hash identifier: gniodZiW26i0pPtPVEmHu0kU75H17+92t6W2UhSp/bs= Subject key identifier: D7:D7:2A:5E:26:91:63:05:B3:0F:FD:63:C3:7E:32:93:1C:05:70:2C Certificate issuer: /CN=A914B0D8/serialNumber=008B2351BE9FD66D38B11050679734F44FA5D97D Certificate serial: 0165 Authority key identifier: 00:8B:23:51:BE:9F:D6:6D:38:B1:10:50:67:97:34:F4:4F:A5:D9:7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AIsjUb6f1m04sRBQZ5c09E-l2X0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/66E93DA2FB1111EE81D7643BC4F9AE02.roa Signing time: Mon 02 Mar 2026 14:26:01 +0000 ROA not before: Thu 01 May 2025 05:11:46 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 152677 IP address blocks: 117.103.118.0/23 maxlen: 23 117.103.118.0/24 maxlen: 24 117.103.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.crl rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AIsjUb6f1m04sRBQZ5c09E-l2X0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:02:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 357 (0x165) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B0D8, serialNumber=008B2351BE9FD66D38B11050679734F44FA5D97D Validity Not Before: May 1 05:11:46 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a59df9-c60a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:71:19:93:2b:05:c9:a7:26:0c:4d:dd:8a:8d: 45:24:c0:70:a5:ac:ef:e9:6f:96:2b:64:cc:39:8b: c8:59:75:50:45:d9:9a:84:99:b8:e5:ff:a4:f5:a0: 17:e9:1f:8e:4d:5a:ed:cf:67:cb:99:c2:58:7f:3b: ef:9b:cd:d4:7e:6b:26:b2:38:c2:17:da:86:70:15: de:11:4b:7e:38:f8:d8:98:f7:00:1f:dc:14:da:1f: 4b:b4:71:1c:97:92:6f:80:67:78:c4:e0:1e:b2:29: 7f:62:53:56:db:27:20:5c:82:38:e1:8d:e1:d6:30: 3b:cc:ad:79:1c:96:0d:64:ba:19:2a:ad:d1:0d:d4: 71:ac:ef:99:3a:f2:c4:48:20:3d:38:c2:d7:56:7e: 77:a2:1d:05:2b:b6:8c:95:be:37:1f:b3:d4:8c:7a: 15:70:ee:7e:3a:ae:08:5a:7b:eb:11:85:95:65:43: 2e:d0:3c:96:84:e7:22:4e:20:01:d0:4d:c3:3e:ce: 63:f2:28:c1:5f:f1:6d:e1:f8:ae:63:94:04:7a:cf: c9:30:ff:bc:44:aa:02:84:b2:dd:99:07:b1:f0:e6: f1:46:71:f5:d1:de:3a:bc:9d:00:99:dc:ea:02:b5: 81:b2:2c:74:ce:1e:a9:43:7f:47:86:d4:9e:00:72: 23:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:D7:2A:5E:26:91:63:05:B3:0F:FD:63:C3:7E:32:93:1C:05:70:2C X509v3 Authority Key Identifier: keyid:00:8B:23:51:BE:9F:D6:6D:38:B1:10:50:67:97:34:F4:4F:A5:D9:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/AIsjUb6f1m04sRBQZ5c09E-l2X0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AIsjUb6f1m04sRBQZ5c09E-l2X0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B0D8/07AABCDAFB1111EE9123391BC4F9AE02/66E93DA2FB1111EE81D7643BC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 117.103.118.0/23 Signature Algorithm: sha256WithRSAEncryption a7:07:7c:22:0b:f2:33:4d:15:b3:34:0b:2f:af:94:64:6e:38: bc:9b:43:2e:02:41:b2:21:56:f2:49:fa:46:2a:7c:63:e5:97: 6f:15:b8:c4:bc:a8:2e:93:38:a7:0e:32:3e:90:97:4b:7c:74: e7:cb:aa:13:36:76:48:4e:24:c2:f5:f1:38:3f:ae:ce:c7:d7: c2:4c:58:0d:40:81:d0:52:69:09:f9:24:2f:f6:ba:4c:92:f9: b4:22:0f:6f:36:2e:59:38:e3:4b:42:03:ca:a6:9b:ca:48:2c: 5d:1a:b5:96:a9:0e:0e:32:cf:17:53:dc:c5:2c:f9:e5:e1:07: 95:5b:a0:ba:a0:d3:47:fe:6e:45:61:60:24:a8:67:49:54:11: 4b:1a:2b:0d:06:53:9b:9c:96:d9:08:0a:fc:cd:32:69:08:d9: e6:fb:0f:69:b5:cd:99:ff:38:dc:bc:3f:4a:1d:88:84:fc:c9: 28:f8:9f:36:cf:cc:c6:35:21:c3:34:7a:c2:aa:a2:53:da:8f: 93:46:e1:6b:9d:5e:2c:be:ce:50:37:fe:c0:2b:98:a5:b1:5b: 52:4a:8c:04:75:30:03:52:7b:ec:82:57:76:90:d5:5e:20:e0: 02:a5:f0:ce:9f:a9:0b:6e:70:e6:3b:6a:8a:32:02:99:cd:a8: 4b:4a:06:40 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEIwRDgxMTAvBgNVBAUTKDAwOEIyMzUxQkU5RkQ2NkQzOEIxMTA1MDY3OTczNEY0 NEZBNUQ5N0QwHhcNMjUwNTAxMDUxMTQ2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OWRmOS1jNjBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxXEZkysFyacmDE3dio1FJMBwpazv6W+WK2TMOYvIWXVQRdmahJm45f+k9aAX 6R+OTVrtz2fLmcJYfzvvm83UfmsmsjjCF9qGcBXeEUt+OPjYmPcAH9wU2h9LtHEc l5JvgGd4xOAesil/YlNW2ycgXII44Y3h1jA7zK15HJYNZLoZKq3RDdRxrO+ZOvLE SCA9OMLXVn53oh0FK7aMlb43H7PUjHoVcO5+Oq4IWnvrEYWVZUMu0DyWhOciTiAB 0E3DPs5j8ijBX/Ft4fiuY5QEes/JMP+8RKoChLLdmQex8ObxRnH10d46vJ0Amdzq ArWBsix0zh6pQ39HhtSeAHIj8wIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFNfXKl4m kWMFsw/9Y8N+MpMcBXAsMB8GA1UdIwQYMBaAFACLI1G+n9ZtOLEQUGeXNPRPpdl9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjBEOC8wN0FBQkNEQUZC MTExMUVFOTEyMzM5MUJDNEY5QUUwMi9BSXNqVWI2ZjFtMDRzUkJRWjVjMDlFLWwy WDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FJc2pVYjZmMW0wNHNSQlFaNWMwOUUtbDJYMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEIwRDgvMDdBQUJDREFGQjExMTFFRTkxMjMzOTFCQzRGOUFFMDIvNjZFOTNEQTJG QjExMTFFRTgxRDc2NDNCQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBdWd2MA0GCSqGSIb3DQEBCwUAA4IBAQCnB3wiC/IzTRWzNAsvr5Rk bji8m0MuAkGyIVbySfpGKnxj5ZdvFbjEvKgukzinDjI+kJdLfHTny6oTNnZITiTC 9fE4P67Ox9fCTFgNQIHQUmkJ+SQv9rpMkvm0Ig9vNi5ZOONLQgPKppvKSCxdGrWW qQ4OMs8XU9zFLPnl4QeVW6C6oNNH/m5FYWAkqGdJVBFLGisNBlObnJbZCAr8zTJp CNnm+w9ptc2Z/zjcvD9KHYiE/Mko+J82z8zGNSHDNHrCqqJT2o+TRuFrnV4svs5Q N/7AK5ilsVtSSowEdTADUnvsgld2kNVeIOACpfDOn6kLbnDmO2qKMgKZzahLSgZA -----END CERTIFICATE-----Generated at Thu Mar 26 09:52:41 2026 by rpki-client