$ rpki-client -vvf rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/B4B6C2B0C1AA11EF83A31D6CC4F9AE02.roa File: B4B6C2B0C1AA11EF83A31D6CC4F9AE02.roa (raw, json) Hash identifier: 5lDSpzmwVyIgUi4h17dQR5e2pFC4svpJ9hXm3aYNHDw= Subject key identifier: 51:6C:E5:09:10:19:87:9E:CA:18:D9:DB:7F:02:DA:FA:14:29:1A:61 Certificate issuer: /CN=A917A66F/serialNumber=B22C3D0ABCD3919486A3E61E8D788923922BF6A5 Certificate serial: 01E0 Authority key identifier: B2:2C:3D:0A:BC:D3:91:94:86:A3:E6:1E:8D:78:89:23:92:2B:F6:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/B4B6C2B0C1AA11EF83A31D6CC4F9AE02.roa Signing time: Mon 02 Mar 2026 14:21:59 +0000 ROA not before: Fri 29 Aug 2025 05:25:35 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 38047 IP address blocks: 103.118.40.0/22 maxlen: 22 103.118.40.0/23 maxlen: 23 103.118.40.0/24 maxlen: 24 103.118.41.0/24 maxlen: 24 103.118.42.0/23 maxlen: 23 103.118.42.0/24 maxlen: 24 103.118.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.crl rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 03:41:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 480 (0x1e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A66F, serialNumber=B22C3D0ABCD3919486A3E61E8D788923922BF6A5 Validity Not Before: Aug 29 05:25:35 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a59d06-97df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:c4:af:33:a6:ef:44:3f:36:07:82:c8:98:43: 65:8f:4d:6d:ba:66:7f:b5:7b:ca:bf:2b:96:f5:e2: 24:e2:2f:c8:f8:94:a0:3e:df:19:22:1f:fd:8a:67: 0d:af:87:dc:f2:6a:34:b0:f5:bb:ba:72:4e:db:a3: a1:01:91:e4:f4:b7:d6:bc:1d:a7:12:a3:2a:ef:1c: 57:96:46:14:e7:3f:97:2d:a5:f6:b6:86:d9:8d:24: b7:69:5c:db:33:cc:65:64:25:ba:fd:95:45:ef:70: 5a:0d:ad:02:7a:83:9e:81:2b:32:e9:c5:98:88:05: 80:c3:59:59:89:a4:6f:fe:04:c9:26:02:b4:73:f8: 88:41:eb:c7:37:d0:28:c9:97:67:34:ae:30:de:b9: 17:8d:75:fd:7b:7f:23:4f:c0:55:5c:be:f5:c7:94: 0c:dd:a4:c5:13:1c:a8:29:a4:05:49:e7:9f:88:f1: f7:8c:d3:7a:46:58:36:ba:03:ad:ca:88:ce:ee:cb: 39:1c:cf:9e:fc:7d:00:90:de:06:5c:0f:28:25:ac: dd:bd:fa:1d:6e:87:7a:9f:de:ba:ba:cc:c3:77:38: 0f:ee:fb:e1:4b:e1:78:b0:95:21:c1:a4:fc:8f:b0: 6e:31:03:da:24:89:b3:94:1d:d5:50:fa:23:3d:e2: 22:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:6C:E5:09:10:19:87:9E:CA:18:D9:DB:7F:02:DA:FA:14:29:1A:61 X509v3 Authority Key Identifier: keyid:B2:2C:3D:0A:BC:D3:91:94:86:A3:E6:1E:8D:78:89:23:92:2B:F6:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/B4B6C2B0C1AA11EF83A31D6CC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.118.40.0/22 Signature Algorithm: sha256WithRSAEncryption 87:3f:1c:52:63:3e:f3:73:c1:8c:f1:e9:22:10:6e:80:42:c8: 2f:c7:ba:d3:55:58:c6:cd:46:08:02:5a:5e:fe:c7:18:77:6a: 8a:c8:d8:c1:4f:34:dc:62:2c:c7:25:02:43:a3:94:3f:b7:9c: a9:cd:8c:21:ea:5f:13:72:e8:d5:48:85:b7:e4:c2:d6:eb:5d: 22:84:59:7b:da:0f:df:a0:96:3f:15:2d:b5:e6:f7:f6:55:df: 66:58:9c:84:38:c4:9f:15:51:e2:30:c0:e4:a7:89:14:2c:f9: 01:92:74:3d:dd:57:2b:3e:45:16:99:0b:eb:7c:5f:42:81:96: ca:ea:84:63:8e:23:a4:a6:9b:6e:05:b0:bf:e3:d8:4b:b2:83: 4d:ee:23:42:23:25:12:0b:23:dc:71:39:62:8d:70:b7:c3:65: be:1e:b3:ac:85:2c:01:c0:b1:a8:4d:64:4a:18:74:7f:b3:4f: 46:c8:f8:cb:ba:70:1e:93:08:6b:3b:26:d3:0a:1a:1e:87:27: 75:4d:1e:5b:ce:1b:df:e9:98:2a:f5:6f:4c:00:f7:19:53:f2: f7:6b:5c:da:c4:26:84:82:0f:6b:f3:d0:57:c0:dd:ee:68:7a: 78:8e:8c:be:7d:25:03:6c:76:85:8c:6e:66:81:6f:7c:f0:c2: a4:f4:68:22 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICAeAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E2NkYxMTAvBgNVBAUTKEIyMkMzRDBBQkNEMzkxOTQ4NkEzRTYxRThENzg4OTIz OTIyQkY2QTUwHhcNMjUwODI5MDUyNTM1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OWQwNi05N2RmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArMSvM6bvRD82B4LImENlj01tumZ/tXvKvyuW9eIk4i/I+JSgPt8ZIh/9imcN r4fc8mo0sPW7unJO26OhAZHk9LfWvB2nEqMq7xxXlkYU5z+XLaX2tobZjSS3aVzb M8xlZCW6/ZVF73BaDa0CeoOegSsy6cWYiAWAw1lZiaRv/gTJJgK0c/iIQevHN9Ao yZdnNK4w3rkXjXX9e38jT8BVXL71x5QM3aTFExyoKaQFSeefiPH3jNN6Rlg2ugOt yojO7ss5HM+e/H0AkN4GXA8oJazdvfodbod6n966uszDdzgP7vvhS+F4sJUhwaT8 j7BuMQPaJImzlB3VUPojPeIizwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFFFs5QkQ GYeeyhjZ238C2voUKRphMB8GA1UdIwQYMBaAFLIsPQq805GUhqPmHo14iSOSK/al MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTY2Ri84RkNDOUQyOEM2 RjkxMUVFOTdFNkZCMURDNEY5QUUwMi9zaXc5Q3J6VGtaU0dvLVllalhpSkk1SXI5 cVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NpdzlDcnpUa1pTR28tWWVqWGlKSTVJcjlxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0E2NkYvOEZDQzlEMjhDNkY5MTFFRTk3RTZGQjFEQzRGOUFFMDIvQjRCNkMyQjBD MUFBMTFFRjgzQTMxRDZDQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQCZ3YoMA0GCSqGSIb3DQEBCwUAA4IBAQCHPxxSYz7zc8GM8ekiEG6A Qsgvx7rTVVjGzUYIAlpe/scYd2qKyNjBTzTcYizHJQJDo5Q/t5ypzYwh6l8TcujV SIW35MLW610ihFl72g/foJY/FS215vf2Vd9mWJyEOMSfFVHiMMDkp4kULPkBknQ9 3VcrPkUWmQvrfF9CgZbK6oRjjiOkpptuBbC/49hLsoNN7iNCIyUSCyPccTlijXC3 w2W+HrOshSwBwLGoTWRKGHR/s09GyPjLunAekwhrOybTChoehyd1TR5bzhvf6Zgq 9W9MAPcZU/L3a1zaxCaEgg9r89BXwN3uaHp4joy+fSUDbHaFjG5mgW988MKk9Ggi -----END CERTIFICATE-----Generated at Thu Mar 26 11:29:01 2026 by rpki-client