$ rpki-client -vvf rpki.apnic.net/member_repository/A918A3E6/640D618EF2C911EA86F12717C4F9AE02/7ABD27E4889811EEB99AD46DC4F9AE02.roa File: 7ABD27E4889811EEB99AD46DC4F9AE02.roa (raw, json) Hash identifier: Vo3PCsdHmPC7RHzYgOW5sXRasLzQm3wjobK8wMgaD5g= Subject key identifier: 00:1B:53:D9:CF:17:A3:30:1D:B7:CC:F3:D6:DA:16:50:AC:94:86:8E Certificate issuer: /CN=A918A3E6/serialNumber=ED8CBC54CD86F2C1F92DEC6BC909DBC6FA634C81 Certificate serial: 0821 Authority key identifier: ED:8C:BC:54:CD:86:F2:C1:F9:2D:EC:6B:C9:09:DB:C6:FA:63:4C:81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Yy8VM2G8sH5LexryQnbxvpjTIE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A3E6/640D618EF2C911EA86F12717C4F9AE02/7ABD27E4889811EEB99AD46DC4F9AE02.roa Signing time: Wed 24 Sep 2025 21:12:13 +0000 ROA not before: Wed 24 Sep 2025 21:12:13 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 141166 IP address blocks: 103.155.150.0/23 maxlen: 23 103.155.150.0/24 maxlen: 24 2001:df4:ce80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A3E6/640D618EF2C911EA86F12717C4F9AE02/7Yy8VM2G8sH5LexryQnbxvpjTIE.crl rsync://rpki.apnic.net/member_repository/A918A3E6/640D618EF2C911EA86F12717C4F9AE02/7Yy8VM2G8sH5LexryQnbxvpjTIE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Yy8VM2G8sH5LexryQnbxvpjTIE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:05:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2081 (0x821) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A3E6, serialNumber=ED8CBC54CD86F2C1F92DEC6BC909DBC6FA634C81 Validity Not Before: Sep 24 21:12:13 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68d45ead-8595 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a3:48:9e:f2:12:aa:f0:d2:9d:79:cb:a9:82: 5f:31:ae:c2:ef:8c:21:85:91:0f:7e:00:25:85:c4: da:d3:05:64:fd:5f:a4:ca:93:50:e9:64:47:57:29: 06:10:87:47:90:42:56:92:c8:9f:87:02:97:8c:1c: ee:81:fc:39:1a:72:92:b6:55:53:fb:40:db:f2:be: bc:6c:8f:0c:7c:c4:54:96:e5:bf:0a:e7:e2:20:49: 98:b3:63:ad:a3:53:db:2c:09:ec:e3:df:f7:5e:5b: ab:60:2f:9c:b1:79:93:63:dd:ab:07:e8:cb:eb:32: 71:5e:b7:b3:b9:d1:e6:d5:3c:95:0e:e3:48:e0:f9: 03:2c:eb:ff:5b:dd:4b:f5:91:d9:12:46:2b:34:44: a9:05:2e:18:4d:32:02:68:37:30:99:df:ea:2c:77: 3d:04:c7:ad:bb:0b:fe:15:07:15:7a:f1:2f:2c:53: 63:8f:b5:73:f3:b4:e4:ad:ae:58:a7:7e:4f:e2:b8: d7:86:09:c8:c3:0e:b8:19:7d:ab:df:e2:17:c2:db: eb:64:a5:4c:3e:dc:a7:81:9b:c6:7c:48:11:f8:27: 09:42:66:f1:ed:eb:d9:4a:2f:df:4b:42:5d:61:2f: e3:a2:64:99:0b:78:6e:6a:9e:73:d6:d1:31:0c:68: 9c:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:1B:53:D9:CF:17:A3:30:1D:B7:CC:F3:D6:DA:16:50:AC:94:86:8E X509v3 Authority Key Identifier: keyid:ED:8C:BC:54:CD:86:F2:C1:F9:2D:EC:6B:C9:09:DB:C6:FA:63:4C:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A3E6/640D618EF2C911EA86F12717C4F9AE02/7Yy8VM2G8sH5LexryQnbxvpjTIE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Yy8VM2G8sH5LexryQnbxvpjTIE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A3E6/640D618EF2C911EA86F12717C4F9AE02/7ABD27E4889811EEB99AD46DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.155.150.0/23 IPv6: 2001:df4:ce80::/48 Signature Algorithm: sha256WithRSAEncryption dc:5c:21:5a:ef:da:07:5a:21:65:c4:ec:a4:21:1c:61:88:92: 13:8f:2f:13:c0:a6:a3:b1:28:ed:54:82:fe:2a:da:22:22:d6: 29:01:e8:ea:c4:96:bb:6c:52:5d:6c:4b:0b:d6:fd:9e:59:33: ee:2e:18:f5:73:13:ac:c9:41:69:0b:ec:bd:67:7f:45:d5:87: 6a:83:98:38:07:b6:f1:a3:73:cc:29:63:15:ba:06:7d:b9:e6: 3e:2a:ed:fa:f9:03:c6:13:9d:c8:cc:b8:df:9e:73:30:56:7c: 67:28:59:1a:70:9c:6b:a0:4d:02:72:f0:42:5f:70:b7:e4:8b: 90:df:8a:3e:c0:f0:01:2a:45:81:f3:70:f1:11:8c:ea:4a:cc: ef:73:fc:41:0b:e3:60:95:1c:45:ab:b5:21:8e:ae:80:b1:80: b0:50:b5:0b:60:dc:3c:c1:5a:3d:a3:d6:68:70:da:02:e2:29: a7:58:64:4f:b5:31:cc:26:d3:40:c3:d8:f5:c9:da:bc:f7:44: 70:df:91:40:89:12:9b:5b:35:e6:11:db:48:ab:91:a3:84:95: 10:b0:28:04:d4:ec:03:a3:6e:74:49:bd:c9:67:d0:46:27:e5: 0a:73:77:b3:98:60:a5:58:c1:89:53:30:36:63:df:9b:40:66: 07:81:67:b7 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCCEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEEzRTYxMTAvBgNVBAUTKEVEOENCQzU0Q0Q4NkYyQzFGOTJERUM2QkM5MDlEQkM2 RkE2MzRDODEwHhcNMjUwOTI0MjExMjEzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ0NWVhZC04NTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvaNInvISqvDSnXnLqYJfMa7C74whhZEPfgAlhcTa0wVk/V+kypNQ6WRHVykG EIdHkEJWksifhwKXjBzugfw5GnKStlVT+0Db8r68bI8MfMRUluW/CufiIEmYs2Ot o1PbLAns49/3XlurYC+csXmTY92rB+jL6zJxXrezudHm1TyVDuNI4PkDLOv/W91L 9ZHZEkYrNESpBS4YTTICaDcwmd/qLHc9BMetuwv+FQcVevEvLFNjj7Vz87Tkra5Y p35P4rjXhgnIww64GX2r3+IXwtvrZKVMPtyngZvGfEgR+CcJQmbx7evZSi/fS0Jd YS/jomSZC3huap5z1tExDGicBQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFAAbU9nP F6MwHbfM89baFlCslIaOMB8GA1UdIwQYMBaAFO2MvFTNhvLB+S3sa8kJ28b6Y0yB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTNFNi82NDBENjE4RUYy QzkxMUVBODZGMTI3MTdDNEY5QUUwMi83WXk4Vk0yRzhzSDVMZXhyeVFuYnh2cGpU SUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdZeThWTTJHOHNINUxleHJ5UW5ieHZwalRJRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEEzRTYvNjQwRDYxOEVGMkM5MTFFQTg2RjEyNzE3QzRGOUFFMDIvN0FCRDI3RTQ4 ODk4MTFFRUI5OUFENDZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnm5YwDwQCAAIwCQMHACABDfTOgDANBgkqhkiG9w0BAQsF AAOCAQEA3FwhWu/aB1ohZcTspCEcYYiSE48vE8Cmo7Eo7VSC/iraIiLWKQHo6sSW u2xSXWxLC9b9nlkz7i4Y9XMTrMlBaQvsvWd/RdWHaoOYOAe28aNzzCljFboGfbnm Pirt+vkDxhOdyMy4355zMFZ8ZyhZGnCca6BNAnLwQl9wt+SLkN+KPsDwASpFgfNw 8RGM6krM73P8QQvjYJUcRau1IY6ugLGAsFC1C2DcPMFaPaPWaHDaAuIpp1hkT7Ux zCbTQMPY9cnavPdEcN+RQIkSm1s15hHbSKuRo4SVELAoBNTsA6NudEm9yWfQRifl CnN3s5hgpVjBiVMwNmPfm0BmB4Fntw== -----END CERTIFICATE-----Generated at Mon Oct 20 19:26:56 2025 by rpki-client