$ rpki-client -vvf rpki.apnic.net/member_repository/A916EDC4/0B22A6F81BAB11ED9C362F78C4F9AE02/F3862312575011EDA38B8A6DC4F9AE02.roa File: F3862312575011EDA38B8A6DC4F9AE02.roa (raw, json) Hash identifier: FHhxFiwEHfrB67j1JRUhwFUs5PcyZ5zcISqei7dq5Jg= Subject key identifier: 69:1A:CB:4F:53:BF:5B:70:39:71:38:E2:07:5D:B0:47:F2:74:0A:86 Certificate issuer: /CN=A916EDC4/serialNumber=C0DE9D846B217C78DD64855A9ED79AC3D271108E Certificate serial: 029D Authority key identifier: C0:DE:9D:84:6B:21:7C:78:DD:64:85:5A:9E:D7:9A:C3:D2:71:10:8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wN6dhGshfHjdZIVanteaw9JxEI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EDC4/0B22A6F81BAB11ED9C362F78C4F9AE02/F3862312575011EDA38B8A6DC4F9AE02.roa Signing time: Thu 25 Sep 2025 02:20:23 +0000 ROA not before: Thu 25 Sep 2025 02:20:23 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 142278 IP address blocks: 103.108.178.0/23 maxlen: 23 103.108.178.0/24 maxlen: 24 103.108.179.0/24 maxlen: 24 2400:a020::/32 maxlen: 36 2400:a020:1000::/48 maxlen: 48 2400:a020:2000::/48 maxlen: 48 2400:a020:3000::/48 maxlen: 48 2400:a020:4000::/48 maxlen: 48 2400:a020:5000::/48 maxlen: 48 2400:a020:6000::/48 maxlen: 48 2400:a020:7000::/48 maxlen: 48 2400:a020:8000::/48 maxlen: 48 2400:a020:9000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EDC4/0B22A6F81BAB11ED9C362F78C4F9AE02/wN6dhGshfHjdZIVanteaw9JxEI4.crl rsync://rpki.apnic.net/member_repository/A916EDC4/0B22A6F81BAB11ED9C362F78C4F9AE02/wN6dhGshfHjdZIVanteaw9JxEI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wN6dhGshfHjdZIVanteaw9JxEI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:45:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 669 (0x29d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EDC4, serialNumber=C0DE9D846B217C78DD64855A9ED79AC3D271108E Validity Not Before: Sep 25 02:20:23 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68d4a6e7-d351 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ba:86:1d:c0:a6:31:cf:54:dd:da:75:e0:e1: 26:81:88:4c:8f:dc:50:bb:87:57:f8:16:0c:fe:78: 23:b5:fd:7a:92:68:1e:59:17:6e:08:ca:3d:49:d2: 90:a2:39:00:17:75:1b:a7:10:e2:db:c8:d1:8c:3a: d1:9e:c4:4d:8d:09:ce:af:f4:ca:a1:31:e3:6a:bb: 33:d1:f0:fd:ad:14:4c:c3:f2:05:af:e1:24:a7:b0: 30:4a:c3:3c:7b:33:2b:0c:4c:b4:6b:88:dd:01:5f: 25:49:be:50:d7:fa:63:9d:a3:9e:1a:a9:cc:ce:a0: 7c:91:a9:9a:ab:d7:bc:81:04:79:f7:a9:9c:e0:2a: 4a:55:99:92:92:d7:29:02:00:20:c2:e8:e3:d2:a8: 53:59:ab:1e:2a:c5:26:7d:fd:2e:57:82:43:b9:a7: b8:9a:3d:b8:a0:8b:21:be:ab:96:8b:26:58:a8:41: 75:1a:8a:7e:cb:92:d4:29:6f:48:8f:28:ce:60:d9: 08:eb:07:d4:b2:bc:fa:f3:d0:7a:04:70:9a:94:d2: 84:57:35:6e:a2:23:9e:c6:87:3e:97:b6:77:71:7c: f6:3b:f4:6b:c9:2b:9f:a3:93:ad:d3:10:83:23:2d: dc:d8:71:82:32:36:91:5a:ab:12:01:de:d6:1f:09: 2b:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:1A:CB:4F:53:BF:5B:70:39:71:38:E2:07:5D:B0:47:F2:74:0A:86 X509v3 Authority Key Identifier: keyid:C0:DE:9D:84:6B:21:7C:78:DD:64:85:5A:9E:D7:9A:C3:D2:71:10:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EDC4/0B22A6F81BAB11ED9C362F78C4F9AE02/wN6dhGshfHjdZIVanteaw9JxEI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wN6dhGshfHjdZIVanteaw9JxEI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EDC4/0B22A6F81BAB11ED9C362F78C4F9AE02/F3862312575011EDA38B8A6DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.108.178.0/23 IPv6: 2400:a020::/32 Signature Algorithm: sha256WithRSAEncryption 67:59:be:93:18:71:7d:c5:82:d8:d7:4c:f7:11:7e:5b:f9:2e: 1e:d7:7c:79:e8:aa:db:d1:f6:4c:90:c0:29:44:20:24:a4:fb: b7:93:95:85:34:c9:c0:eb:dd:7b:6e:60:8c:d2:d2:4f:b2:2e: 8e:4d:c4:ea:0c:ec:6b:9b:a8:54:72:10:78:82:30:bb:ef:aa: 54:c4:17:d9:6a:11:ed:1f:67:ba:94:00:cf:e9:22:2d:1c:73: 06:0f:e6:45:18:0c:8d:08:da:af:0b:81:2e:e6:35:05:38:8a: 8e:ed:1d:ee:90:9e:86:86:6b:97:6c:1b:15:3b:28:87:f4:db: c8:c4:a8:23:6a:ea:06:4f:0e:cc:1e:03:b6:ea:5b:3e:bb:af: 2f:ad:32:21:b1:5c:ce:33:4a:94:66:be:72:c3:1f:dc:5f:fe: 8c:59:84:1d:14:99:3d:d5:10:76:6c:f4:3d:1f:c4:1b:48:f3: 46:3a:b9:f5:fc:be:38:30:84:65:fe:14:6f:27:19:ad:f7:ee: 62:c6:f5:61:9f:73:8b:f8:1c:0d:b6:f3:8f:cd:3f:e4:b4:dc: 99:f2:2f:79:1a:97:33:3b:3e:e8:b4:a5:5f:44:2c:18:08:64: 6e:e7:eb:90:d7:e7:5e:c0:ff:00:97:fd:8e:28:57:5c:8a:18: e5:9b:db:91 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAp0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVEQzQxMTAvBgNVBAUTKEMwREU5RDg0NkIyMTdDNzhERDY0ODU1QTlFRDc5QUMz RDI3MTEwOEUwHhcNMjUwOTI1MDIyMDIzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ0YTZlNy1kMzUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAybqGHcCmMc9U3dp14OEmgYhMj9xQu4dX+BYM/ngjtf16kmgeWRduCMo9SdKQ ojkAF3UbpxDi28jRjDrRnsRNjQnOr/TKoTHjarsz0fD9rRRMw/IFr+Ekp7AwSsM8 ezMrDEy0a4jdAV8lSb5Q1/pjnaOeGqnMzqB8kamaq9e8gQR596mc4CpKVZmSktcp AgAgwujj0qhTWaseKsUmff0uV4JDuae4mj24oIshvquWiyZYqEF1Gop+y5LUKW9I jyjOYNkI6wfUsrz689B6BHCalNKEVzVuoiOexoc+l7Z3cXz2O/RrySufo5Ot0xCD Iy3c2HGCMjaRWqsSAd7WHwkr7wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFGkay09T v1twOXE44gddsEfydAqGMB8GA1UdIwQYMBaAFMDenYRrIXx43WSFWp7XmsPScRCO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RURDNC8wQjIyQTZGODFC QUIxMUVEOUMzNjJGNzhDNEY5QUUwMi93TjZkaEdzaGZIamRaSVZhbnRlYXc5SnhF STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dONmRoR3NoZkhqZFpJVmFudGVhdzlKeEVJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkVEQzQvMEIyMkE2RjgxQkFCMTFFRDlDMzYyRjc4QzRGOUFFMDIvRjM4NjIzMTI1 NzUwMTFFREEzOEI4QTZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnbLIwDQQCAAIwBwMFACQAoCAwDQYJKoZIhvcNAQELBQAD ggEBAGdZvpMYcX3FgtjXTPcRflv5Lh7XfHnoqtvR9kyQwClEICSk+7eTlYU0ycDr 3XtuYIzS0k+yLo5NxOoM7GubqFRyEHiCMLvvqlTEF9lqEe0fZ7qUAM/pIi0ccwYP 5kUYDI0I2q8LgS7mNQU4io7tHe6QnoaGa5dsGxU7KIf028jEqCNq6gZPDsweA7bq Wz67ry+tMiGxXM4zSpRmvnLDH9xf/oxZhB0UmT3VEHZs9D0fxBtI80Y6ufX8vjgw hGX+FG8nGa337mLG9WGfc4v4HA2284/NP+S03JnyL3kalzM7Pui0pV9ELBgIZG7n 65DX517A/wCX/Y4oV1yKGOWb25E= -----END CERTIFICATE-----Generated at Tue Oct 21 09:20:23 2025 by rpki-client