$ rpki-client -vvf rpki.apnic.net/member_repository/A9162744/8E8B9C9E674411EE8A92F83FC4F9AE02/1ECF63EE674511EEBD995841C4F9AE02.roa File: 1ECF63EE674511EEBD995841C4F9AE02.roa (raw, json) Hash identifier: 5gAJJRBRn1JiRkSO3BYVHdZp264ZDCsxiRqebhsoeCQ= Subject key identifier: E9:3B:8A:40:E6:DD:6A:19:B8:7A:BF:73:B4:F5:64:FF:7E:F9:A3:89 Certificate issuer: /CN=A9162744/serialNumber=BD21BE98307542916D81E0FED9F8F53240494480 Certificate serial: 0173 Authority key identifier: BD:21:BE:98:30:75:42:91:6D:81:E0:FE:D9:F8:F5:32:40:49:44:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vSG-mDB1QpFtgeD-2fj1MkBJRIA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9162744/8E8B9C9E674411EE8A92F83FC4F9AE02/1ECF63EE674511EEBD995841C4F9AE02.roa Signing time: Fri 19 Sep 2025 04:41:58 +0000 ROA not before: Fri 19 Sep 2025 04:41:58 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 151834 IP address blocks: 103.217.70.0/23 maxlen: 23 103.217.70.0/24 maxlen: 24 103.217.71.0/24 maxlen: 24 2401:40e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9162744/8E8B9C9E674411EE8A92F83FC4F9AE02/vSG-mDB1QpFtgeD-2fj1MkBJRIA.crl rsync://rpki.apnic.net/member_repository/A9162744/8E8B9C9E674411EE8A92F83FC4F9AE02/vSG-mDB1QpFtgeD-2fj1MkBJRIA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vSG-mDB1QpFtgeD-2fj1MkBJRIA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:20:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 371 (0x173) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162744, serialNumber=BD21BE98307542916D81E0FED9F8F53240494480 Validity Not Before: Sep 19 04:41:58 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68ccdf16-2461 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:ae:87:d2:e9:4c:fd:63:79:0e:90:ef:c3:84: 8f:8e:64:24:fe:ce:0e:9f:80:71:45:0a:d8:b2:10: eb:52:dc:91:e3:ce:21:1f:a6:5a:b4:e4:5c:45:0c: 9e:21:e9:c4:5c:b8:e5:0a:57:4b:5c:4d:87:07:86: 42:dd:37:0d:98:5c:7b:6e:76:b3:92:f2:33:55:30: 9a:7d:53:8a:53:cd:7f:d9:d3:bb:f2:96:8b:31:d2: 6c:79:bf:1e:58:2c:f1:c7:dd:eb:3a:4b:de:cd:f7: 73:56:6f:6f:1f:ce:0e:d9:00:54:a5:60:5e:52:44: 9e:9c:4d:8a:3f:5f:1d:01:08:f1:6d:7b:3d:68:dc: 06:0f:02:4b:5f:27:2d:3f:bf:ca:98:69:82:c1:ce: ad:c8:99:16:d7:d9:bb:4d:29:d1:76:ee:f1:22:3f: cd:2c:b9:8f:48:32:54:7b:ba:fb:35:2c:52:cd:95: 89:ce:0b:03:19:e8:43:d3:8f:38:fc:be:ba:54:15: 8c:4b:a4:c2:fa:ad:1b:87:a9:99:6e:16:07:c1:a4: d3:dc:cc:51:f1:54:43:2d:1a:cd:cb:df:dc:53:08: 34:f7:72:34:0d:5e:3a:b0:29:a9:a2:91:90:15:84: 61:ec:1d:9a:1f:f8:f2:cc:0e:c9:c9:bf:25:b8:96: f2:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:3B:8A:40:E6:DD:6A:19:B8:7A:BF:73:B4:F5:64:FF:7E:F9:A3:89 X509v3 Authority Key Identifier: keyid:BD:21:BE:98:30:75:42:91:6D:81:E0:FE:D9:F8:F5:32:40:49:44:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9162744/8E8B9C9E674411EE8A92F83FC4F9AE02/vSG-mDB1QpFtgeD-2fj1MkBJRIA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vSG-mDB1QpFtgeD-2fj1MkBJRIA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9162744/8E8B9C9E674411EE8A92F83FC4F9AE02/1ECF63EE674511EEBD995841C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.217.70.0/23 IPv6: 2401:40e0::/32 Signature Algorithm: sha256WithRSAEncryption 90:c2:45:42:e4:cb:dd:35:5f:3d:26:a3:00:5e:15:16:cf:65: fb:a3:e4:b5:51:bc:7a:f4:f9:1a:99:38:38:4b:df:df:58:aa: 7b:17:2b:d9:4c:c6:7f:7f:78:11:28:b3:e9:eb:be:36:37:c5: 0d:4f:97:9e:8f:64:f5:8b:55:81:ee:d6:19:31:6c:70:1a:3f: 94:0e:95:1a:61:8b:5a:dc:11:4a:e6:01:75:b0:9d:df:4c:db: 21:e6:0b:8e:99:b6:67:5b:67:91:9d:df:76:75:cf:7e:fd:a0: 8b:e6:f3:b5:46:b1:25:fa:cc:cf:5c:6b:9c:54:70:86:83:f1: 8c:f8:ad:a7:a1:99:96:ab:9b:9b:73:1e:e0:67:a0:93:0c:1e: 32:63:a6:94:0b:77:bd:38:76:df:de:86:36:2d:64:5c:da:fb: 36:a3:92:77:c9:87:b3:da:c0:85:41:fe:47:c6:45:87:7d:6d: c8:6c:e8:c7:0c:b3:e9:db:72:6b:ef:38:c9:db:5f:b1:54:ef: 41:4c:0a:4b:c4:f5:a4:02:00:b5:cd:7d:73:1a:76:43:73:90: cc:c7:8f:79:c1:cb:f3:ef:57:e2:f7:58:ce:f7:b0:a0:93:45: 53:02:ad:60:e2:18:24:02:b5:78:25:05:5c:8f:af:39:af:d9: 99:05:45:39 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI3NDQxMTAvBgNVBAUTKEJEMjFCRTk4MzA3NTQyOTE2RDgxRTBGRUQ5RjhGNTMy NDA0OTQ0ODAwHhcNMjUwOTE5MDQ0MTU4WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGNjZGYxNi0yNDYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5K6H0ulM/WN5DpDvw4SPjmQk/s4On4BxRQrYshDrUtyR484hH6ZatORcRQye IenEXLjlCldLXE2HB4ZC3TcNmFx7bnazkvIzVTCafVOKU81/2dO78paLMdJseb8e WCzxx93rOkvezfdzVm9vH84O2QBUpWBeUkSenE2KP18dAQjxbXs9aNwGDwJLXyct P7/KmGmCwc6tyJkW19m7TSnRdu7xIj/NLLmPSDJUe7r7NSxSzZWJzgsDGehD0484 /L66VBWMS6TC+q0bh6mZbhYHwaTT3MxR8VRDLRrNy9/cUwg093I0DV46sCmpopGQ FYRh7B2aH/jyzA7Jyb8luJbyzwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFOk7ikDm 3WoZuHq/c7T1ZP9++aOJMB8GA1UdIwQYMBaAFL0hvpgwdUKRbYHg/tn49TJASUSA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Mjc0NC84RThCOUM5RTY3 NDQxMUVFOEE5MkY4M0ZDNEY5QUUwMi92U0ctbURCMVFwRnRnZUQtMmZqMU1rQkpS SUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZTRy1tREIxUXBGdGdlRC0yZmoxTWtCSlJJQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjI3NDQvOEU4QjlDOUU2NzQ0MTFFRThBOTJGODNGQzRGOUFFMDIvMUVDRjYzRUU2 NzQ1MTFFRUJEOTk1ODQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFn2UYwDQQCAAIwBwMFACQBQOAwDQYJKoZIhvcNAQELBQAD ggEBAJDCRULky901Xz0mowBeFRbPZfuj5LVRvHr0+RqZODhL399YqnsXK9lMxn9/ eBEos+nrvjY3xQ1Pl56PZPWLVYHu1hkxbHAaP5QOlRphi1rcEUrmAXWwnd9M2yHm C46ZtmdbZ5Gd33Z1z379oIvm87VGsSX6zM9ca5xUcIaD8Yz4raehmZarm5tzHuBn oJMMHjJjppQLd704dt/ehjYtZFza+zajknfJh7PawIVB/kfGRYd9bchs6McMs+nb cmvvOMnbX7FU70FMCkvE9aQCALXNfXMadkNzkMzHj3nBy/PvV+L3WM73sKCTRVMC rWDiGCQCtXglBVyPrzmv2ZkFRTk= -----END CERTIFICATE-----Generated at Tue Oct 21 05:02:16 2025 by rpki-client