$ rpki-client -vvf rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/E2846570135E11EB9D58482CC4F9AE02.roa File: E2846570135E11EB9D58482CC4F9AE02.roa (raw, json) Hash identifier: 8wnbM36mlkXO3KAhn+wvxpP3UwwkDuqXsFM8f7eC1Yc= Subject key identifier: 41:9D:7B:AF:A7:71:FD:91:F8:29:B0:7D:11:41:16:0C:6F:83:C2:A3 Certificate issuer: /CN=A918036A/serialNumber=57840FB441D2B34C8EE699D264712B4A5E0FED8D Certificate serial: 107F Authority key identifier: 57:84:0F:B4:41:D2:B3:4C:8E:E6:99:D2:64:71:2B:4A:5E:0F:ED:8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V4QPtEHSs0yO5pnSZHErSl4P7Y0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/E2846570135E11EB9D58482CC4F9AE02.roa Signing time: Wed 08 Oct 2025 17:47:36 +0000 ROA not before: Wed 08 Oct 2025 17:47:36 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 132400 IP address blocks: 103.72.188.0/22 maxlen: 22 103.72.188.0/24 maxlen: 24 103.72.189.0/24 maxlen: 24 103.72.190.0/24 maxlen: 24 103.72.191.0/24 maxlen: 24 160.20.40.0/22 maxlen: 22 160.20.40.0/24 maxlen: 24 160.20.41.0/24 maxlen: 24 160.20.42.0/24 maxlen: 24 160.20.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/V4QPtEHSs0yO5pnSZHErSl4P7Y0.crl rsync://rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/V4QPtEHSs0yO5pnSZHErSl4P7Y0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V4QPtEHSs0yO5pnSZHErSl4P7Y0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4223 (0x107f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918036A, serialNumber=57840FB441D2B34C8EE699D264712B4A5E0FED8D Validity Not Before: Oct 8 17:47:36 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68e6a3b8-bf5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:47:9d:d9:e1:82:d5:a7:40:63:24:e9:4e:75: 4a:49:66:ae:af:86:18:1c:43:26:90:e1:f2:44:48: bf:f2:ce:8d:6f:09:be:f1:a6:69:ea:97:b6:43:c9: 63:15:eb:d0:e3:0a:5c:0a:dc:91:f0:74:fe:90:f9: 6d:6b:e2:5a:1d:48:a7:07:e6:45:a9:cb:d6:4d:37: b3:2e:0c:e2:7d:99:15:23:e6:6d:51:b1:33:93:a9: e6:5f:39:20:88:f9:e2:ca:82:c6:79:f4:b5:32:8f: 53:46:49:42:f1:92:cc:10:e5:20:7b:12:cc:e2:2d: 76:3b:ec:82:fa:6c:84:ab:a2:02:cc:2c:65:aa:fa: 93:0e:40:0f:fe:97:bb:6e:38:58:c2:28:26:a7:17: 15:87:d2:24:d6:c9:02:26:6c:0f:d9:85:58:ec:07: 98:73:58:e5:0a:fe:d7:c0:9d:28:87:cc:94:96:e3: fc:ad:c9:47:01:0e:8c:16:c1:dc:ce:96:fe:a7:db: f2:bb:08:0a:1a:cb:85:21:ea:d5:f4:a7:c9:76:11: 11:ac:6a:e3:89:ca:3a:2e:78:68:6a:d6:43:8d:69: f4:fe:a3:ef:a8:a7:0e:34:6a:38:cd:06:3f:05:d0: 0b:82:b8:f1:2a:2d:0b:d5:33:75:57:5a:e2:f5:c4: 6c:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:9D:7B:AF:A7:71:FD:91:F8:29:B0:7D:11:41:16:0C:6F:83:C2:A3 X509v3 Authority Key Identifier: keyid:57:84:0F:B4:41:D2:B3:4C:8E:E6:99:D2:64:71:2B:4A:5E:0F:ED:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/V4QPtEHSs0yO5pnSZHErSl4P7Y0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V4QPtEHSs0yO5pnSZHErSl4P7Y0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/E2846570135E11EB9D58482CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.72.188.0/22 160.20.40.0/22 Signature Algorithm: sha256WithRSAEncryption 4c:31:d7:91:50:07:4d:96:60:dd:d6:46:1b:6b:55:36:ae:89: 6e:00:9a:2c:c7:f6:3e:40:74:f0:b2:99:f6:6f:a6:b7:bf:16: cc:73:23:ea:aa:9d:be:09:af:6b:7f:a8:9b:12:a5:07:77:89: 9a:11:5b:28:43:4b:c4:05:69:71:2f:4e:fd:b6:14:44:9c:99: 8e:09:69:c5:2d:83:6d:46:0f:cd:48:f2:08:e7:fb:62:dc:45: ab:a3:08:59:ae:86:f4:bb:cc:1d:ad:81:87:5c:ee:06:e8:9b: 29:4d:4f:23:aa:df:c4:54:f4:be:12:e3:73:ba:55:60:24:72: 69:c5:a9:a9:c7:9f:79:7b:30:ec:ec:f9:3d:74:9a:af:06:46: 3c:07:be:d8:e9:10:f7:be:14:9c:77:3e:b2:84:22:ff:54:7c: 76:b7:2a:fe:68:6d:fa:7d:58:88:78:34:f9:c3:2a:1d:84:53: 12:70:ed:48:5c:9c:93:30:0a:98:63:e8:76:6c:2f:74:45:38: 08:a1:2d:1d:78:79:04:ca:b8:9e:d3:86:01:81:20:33:cc:4d: c4:ea:dd:3a:23:92:fa:76:4c:f8:f4:55:61:c0:98:7d:97:de: 92:44:c2:64:46:56:82:9f:72:66:29:51:fc:b7:00:44:54:59: e7:68:a6:e0 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICEH8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzNkExMTAvBgNVBAUTKDU3ODQwRkI0NDFEMkIzNEM4RUU2OTlEMjY0NzEyQjRB NUUwRkVEOEQwHhcNMjUxMDA4MTc0NzM2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU2YTNiOC1iZjVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0ed2eGC1adAYyTpTnVKSWaur4YYHEMmkOHyREi/8s6Nbwm+8aZp6pe2Q8lj FevQ4wpcCtyR8HT+kPlta+JaHUinB+ZFqcvWTTezLgzifZkVI+ZtUbEzk6nmXzkg iPniyoLGefS1Mo9TRklC8ZLMEOUgexLM4i12O+yC+myEq6ICzCxlqvqTDkAP/pe7 bjhYwigmpxcVh9Ik1skCJmwP2YVY7AeYc1jlCv7XwJ0oh8yUluP8rclHAQ6MFsHc zpb+p9vyuwgKGsuFIerV9KfJdhERrGrjico6LnhoatZDjWn0/qPvqKcONGo4zQY/ BdALgrjxKi0L1TN1V1ri9cRslwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFEGde6+n cf2R+CmwfRFBFgxvg8KjMB8GA1UdIwQYMBaAFFeED7RB0rNMjuaZ0mRxK0peD+2N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDM2QS80MzNBRjc4QzQ2 QzcxMUU5QURFOUQ0MjRDNEY5QUUwMi9WNFFQdEVIU3MweU81cG5TWkhFclNsNFA3 WTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Y0UVB0RUhTczB5TzVwblNaSEVyU2w0UDdZMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODAzNkEvNDMzQUY3OEM0NkM3MTFFOUFERTlENDI0QzRGOUFFMDIvRTI4NDY1NzAx MzVFMTFFQjlENTg0ODJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnSLwDBAKgFCgwDQYJKoZIhvcNAQELBQADggEBAEwx15FQ B02WYN3WRhtrVTauiW4AmizH9j5AdPCymfZvpre/FsxzI+qqnb4Jr2t/qJsSpQd3 iZoRWyhDS8QFaXEvTv22FEScmY4JacUtg21GD81I8gjn+2LcRaujCFmuhvS7zB2t gYdc7gbomylNTyOq38RU9L4S43O6VWAkcmnFqanHn3l7MOzs+T10mq8GRjwHvtjp EPe+FJx3PrKEIv9UfHa3Kv5obfp9WIh4NPnDKh2EUxJw7UhcnJMwCphj6HZsL3RF OAihLR14eQTKuJ7ThgGBIDPMTcTq3Tojkvp2TPj0VWHAmH2X3pJEwmRGVoKfcmYp Ufy3AERUWedopuA= -----END CERTIFICATE-----Generated at Mon Oct 20 10:14:01 2025 by rpki-client