$ rpki-client -vvf rpki.apnic.net/member_repository/A918664E/DF900E36CEE211EDA41C381CC4F9AE02/AF4851DEE36C11EF876EED6BC4F9AE02.roa File: AF4851DEE36C11EF876EED6BC4F9AE02.roa (raw, json) Hash identifier: ucY0XY6Bcm//g56ep6E5DclBK994njK3cXgVUMlbK2Y= Subject key identifier: FE:25:C1:42:D9:AB:A5:47:D6:65:47:01:14:1D:61:82:56:37:A3:44 Certificate issuer: /CN=A918664E/serialNumber=4C05BA8935E8DF3CC23250B567F2056B850715B9 Certificate serial: 021D Authority key identifier: 4C:05:BA:89:35:E8:DF:3C:C2:32:50:B5:67:F2:05:6B:85:07:15:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAW6iTXo3zzCMlC1Z_IFa4UHFbk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918664E/DF900E36CEE211EDA41C381CC4F9AE02/AF4851DEE36C11EF876EED6BC4F9AE02.roa Signing time: Sat 11 Oct 2025 05:30:12 +0000 ROA not before: Sat 11 Oct 2025 05:30:12 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 150108 IP address blocks: 103.122.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918664E/DF900E36CEE211EDA41C381CC4F9AE02/TAW6iTXo3zzCMlC1Z_IFa4UHFbk.crl rsync://rpki.apnic.net/member_repository/A918664E/DF900E36CEE211EDA41C381CC4F9AE02/TAW6iTXo3zzCMlC1Z_IFa4UHFbk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAW6iTXo3zzCMlC1Z_IFa4UHFbk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:07:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 541 (0x21d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918664E, serialNumber=4C05BA8935E8DF3CC23250B567F2056B850715B9 Validity Not Before: Oct 11 05:30:12 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=68e9eb64-80d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:a6:a8:18:7a:a7:34:8e:52:a0:d3:50:e0:b5: 33:26:fd:ee:64:cb:56:11:42:fe:e3:c0:b3:39:d2: 5b:75:ad:ff:f1:bf:5f:31:02:c2:76:24:8a:cc:52: f2:94:f9:5d:0f:0c:f4:b9:d0:ba:aa:73:45:e7:be: ad:13:fe:a9:37:8e:45:0a:7e:3e:90:4e:32:88:b8: 3f:a8:8c:14:19:3d:f7:cf:fd:68:4b:db:4d:ff:fc: 04:a6:ff:01:65:06:79:c7:d3:bd:d8:36:79:1a:b6: a9:49:c3:8f:d1:3d:48:aa:31:f6:0f:c0:a7:eb:bb: cd:b9:e8:6c:57:62:98:a5:b2:2a:6b:96:f6:b7:f4: 66:8b:ca:d4:7b:2c:b6:e2:4c:96:cd:46:47:bd:0f: 9f:b5:d9:47:88:03:de:1e:87:9d:ac:8a:02:57:77: 62:c0:c2:d2:de:cc:7a:79:4f:96:d5:e4:10:23:89: 9b:47:ef:db:c7:7d:0e:b3:03:91:a5:57:a0:53:8b: 2a:ff:e3:37:3c:8d:e9:79:bc:6c:68:a6:86:75:50: 39:83:ce:1a:e7:e8:7f:80:1a:60:ec:24:b4:1a:ee: 60:04:ac:4a:89:ea:26:35:df:33:c5:bc:d2:68:c6: dc:50:5a:c0:ba:9c:69:e9:8c:53:60:5f:e9:28:4d: e0:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:25:C1:42:D9:AB:A5:47:D6:65:47:01:14:1D:61:82:56:37:A3:44 X509v3 Authority Key Identifier: keyid:4C:05:BA:89:35:E8:DF:3C:C2:32:50:B5:67:F2:05:6B:85:07:15:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918664E/DF900E36CEE211EDA41C381CC4F9AE02/TAW6iTXo3zzCMlC1Z_IFa4UHFbk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TAW6iTXo3zzCMlC1Z_IFa4UHFbk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918664E/DF900E36CEE211EDA41C381CC4F9AE02/AF4851DEE36C11EF876EED6BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.122.222.0/24 Signature Algorithm: sha256WithRSAEncryption e8:1e:7e:6a:0a:5f:cf:d4:43:1e:be:56:0f:93:cc:95:b0:67: af:d1:58:4d:5d:12:3a:a7:02:c0:c4:7a:ac:b7:e3:ff:41:21: 68:8b:ed:4c:bc:38:b9:3c:ea:b3:77:2e:dc:a5:e8:57:43:c3: 04:57:fc:aa:83:f9:36:0a:dc:e5:e1:10:5f:30:be:d8:64:99: c1:03:a1:ee:b3:36:f5:34:bc:21:83:3e:f3:3a:c3:e4:b7:72: 33:e3:4b:d8:da:da:e0:6b:30:cd:51:3b:83:6d:4c:a2:39:36: 52:7e:0d:36:27:93:d5:52:2a:a0:9b:32:72:a7:ac:a6:6d:26: 93:4c:42:94:ff:17:2e:11:74:f2:2f:97:58:bb:4c:04:15:8a: 1e:6c:c0:8f:17:4c:92:b1:72:3d:56:09:17:d9:d0:f0:f4:fc: 7d:19:3c:b0:e0:db:cd:d5:c6:74:5f:6f:1c:92:1a:88:61:a6: 5a:9d:c0:a0:f9:e4:89:71:08:4c:76:e5:20:bf:b5:1c:e9:a1: 60:48:bf:ed:48:c9:54:82:2b:f1:5c:bf:53:eb:ba:f8:e2:d4: 16:af:5a:35:62:84:ed:ac:56:4e:d2:4c:86:3a:4a:84:89:ee: d7:50:b0:33:d7:ce:d4:04:de:34:39:d2:e8:b3:ba:dc:a4:ec: a8:d9:c0:62 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAh0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY2NEUxMTAvBgNVBAUTKDRDMDVCQTg5MzVFOERGM0NDMjMyNTBCNTY3RjIwNTZC ODUwNzE1QjkwHhcNMjUxMDExMDUzMDEyWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU5ZWI2NC04MGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzaaoGHqnNI5SoNNQ4LUzJv3uZMtWEUL+48CzOdJbda3/8b9fMQLCdiSKzFLy lPldDwz0udC6qnNF576tE/6pN45FCn4+kE4yiLg/qIwUGT33z/1oS9tN//wEpv8B ZQZ5x9O92DZ5GrapScOP0T1IqjH2D8Cn67vNuehsV2KYpbIqa5b2t/Rmi8rUeyy2 4kyWzUZHvQ+ftdlHiAPeHoedrIoCV3diwMLS3sx6eU+W1eQQI4mbR+/bx30OswOR pVegU4sq/+M3PI3pebxsaKaGdVA5g84a5+h/gBpg7CS0Gu5gBKxKieomNd8zxbzS aMbcUFrAupxp6YxTYF/pKE3gHQIDAQABo4IClTCCApEwHQYDVR0OBBYEFP4lwULZ q6VH1mVHARQdYYJWN6NEMB8GA1UdIwQYMBaAFEwFuok16N88wjJQtWfyBWuFBxW5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjY0RS9ERjkwMEUzNkNF RTIxMUVEQTQxQzM4MUNDNEY5QUUwMi9UQVc2aVRYbzN6ekNNbEMxWl9JRmE0VUhG YmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RBVzZpVFhvM3p6Q01sQzFaX0lGYTRVSEZiay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODY2NEUvREY5MDBFMzZDRUUyMTFFREE0MUMzODFDQzRGOUFFMDIvQUY0ODUxREVF MzZDMTFFRjg3NkVFRDZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnet4wDQYJKoZIhvcNAQELBQADggEBAOgefmoKX8/UQx6+ Vg+TzJWwZ6/RWE1dEjqnAsDEeqy34/9BIWiL7Uy8OLk86rN3Ltyl6FdDwwRX/KqD +TYK3OXhEF8wvthkmcEDoe6zNvU0vCGDPvM6w+S3cjPjS9ja2uBrMM1RO4NtTKI5 NlJ+DTYnk9VSKqCbMnKnrKZtJpNMQpT/Fy4RdPIvl1i7TAQVih5swI8XTJKxcj1W CRfZ0PD0/H0ZPLDg283VxnRfbxySGohhplqdwKD55IlxCEx25SC/tRzpoWBIv+1I yVSCK/Fcv1Pruvji1BavWjVihO2sVk7STIY6SoSJ7tdQsDPXztQE3jQ50uizutyk 7KjZwGI= -----END CERTIFICATE-----Generated at Tue Oct 21 00:13:50 2025 by rpki-client