$ rpki-client -vvf rpki.apnic.net/member_repository/A918B0C4/F3A872DA7A0211EDBB36DB2EC4F9AE02/F59959807A0511EDA112EF32C4F9AE02.roa File: F59959807A0511EDA112EF32C4F9AE02.roa (raw, json) Hash identifier: hlcOiwDISzas5tiOnv5T5pSK2UpZ6cfJveUb3LnTEYo= Subject key identifier: E3:F2:1F:E8:80:75:27:AE:0E:38:07:42:89:7E:C3:16:AD:CE:FC:6F Certificate issuer: /CN=A918B0C4/serialNumber=15F0A40685E69A641DB70E82BF780A9ABFE3F159 Certificate serial: 0210 Authority key identifier: 15:F0:A4:06:85:E6:9A:64:1D:B7:0E:82:BF:78:0A:9A:BF:E3:F1:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FfCkBoXmmmQdtw6Cv3gKmr_j8Vk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B0C4/F3A872DA7A0211EDBB36DB2EC4F9AE02/F59959807A0511EDA112EF32C4F9AE02.roa Signing time: Fri 19 Sep 2025 03:08:36 +0000 ROA not before: Fri 19 Sep 2025 03:08:36 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 134524 IP address blocks: 43.246.168.0/22 maxlen: 22 103.35.144.0/22 maxlen: 22 103.35.144.0/24 maxlen: 24 103.35.145.0/24 maxlen: 24 103.35.146.0/24 maxlen: 24 103.35.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B0C4/F3A872DA7A0211EDBB36DB2EC4F9AE02/FfCkBoXmmmQdtw6Cv3gKmr_j8Vk.crl rsync://rpki.apnic.net/member_repository/A918B0C4/F3A872DA7A0211EDBB36DB2EC4F9AE02/FfCkBoXmmmQdtw6Cv3gKmr_j8Vk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FfCkBoXmmmQdtw6Cv3gKmr_j8Vk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:28:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 528 (0x210) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B0C4, serialNumber=15F0A40685E69A641DB70E82BF780A9ABFE3F159 Validity Not Before: Sep 19 03:08:36 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68ccc934-8492 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:8b:ba:f9:88:18:4b:f0:37:f4:e5:f8:9e:d9: bf:59:70:6e:5a:d0:72:c6:64:84:bf:94:de:1c:a4: 68:94:fa:1b:9c:ab:90:ad:b6:7a:bf:ed:dc:55:f8: cc:f2:af:68:fd:8b:44:4e:95:42:86:bf:97:d9:21: 0f:30:06:22:98:21:c3:43:a0:ef:5f:98:41:7a:da: a0:f1:cf:bf:2f:9e:26:98:76:ea:23:96:ef:93:e7: 63:38:d2:c6:88:e3:97:2d:b5:a9:8e:3d:78:09:c6: 82:23:35:74:ad:74:fe:b9:cd:e9:c9:2b:4f:d6:7a: 83:d0:9f:11:0d:18:74:8b:9a:54:f4:da:1f:14:46: b6:6c:66:bd:ae:96:e8:78:20:ed:b5:29:11:55:d4: 14:62:7d:f9:8a:54:72:dd:3e:52:ab:02:53:0d:56: e4:a8:7c:02:3d:51:6a:a5:5a:90:97:aa:3b:e5:04: df:15:09:81:6e:cf:ec:56:4f:a3:96:84:78:13:5a: 35:87:18:be:56:b5:ec:c9:a4:e4:2f:7d:9f:41:18: 71:20:b3:71:8d:cf:e5:75:aa:0d:b6:cd:b7:20:59: c9:6d:8f:fd:21:6e:38:8e:b5:ff:15:af:4a:5b:d9: 47:95:d1:e2:89:83:3a:f3:4b:ab:ce:07:a7:3f:be: f3:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:F2:1F:E8:80:75:27:AE:0E:38:07:42:89:7E:C3:16:AD:CE:FC:6F X509v3 Authority Key Identifier: keyid:15:F0:A4:06:85:E6:9A:64:1D:B7:0E:82:BF:78:0A:9A:BF:E3:F1:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B0C4/F3A872DA7A0211EDBB36DB2EC4F9AE02/FfCkBoXmmmQdtw6Cv3gKmr_j8Vk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FfCkBoXmmmQdtw6Cv3gKmr_j8Vk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B0C4/F3A872DA7A0211EDBB36DB2EC4F9AE02/F59959807A0511EDA112EF32C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.246.168.0/22 103.35.144.0/22 Signature Algorithm: sha256WithRSAEncryption 0e:ae:4a:bc:a2:d6:b9:48:81:59:38:ec:ca:7f:ed:fa:df:01: 09:a0:27:dc:78:39:fb:34:b3:b4:ea:e8:be:61:59:6f:84:db: 09:4f:1f:cc:48:86:cc:e8:1a:12:0b:fb:8d:ff:b5:e9:d8:3b: ac:2d:35:16:16:12:a0:72:02:a9:12:79:1d:81:8c:c3:91:fe: be:db:61:9a:a3:ea:9c:b2:75:c3:54:b0:4a:f3:ed:7d:12:2d: bf:e4:6f:7f:95:d7:2c:e8:77:ba:56:02:0b:c7:bf:7d:0b:1a: df:7c:2a:2b:aa:ea:df:6e:82:cc:c2:3f:df:bf:06:8d:bc:32: d6:4b:3f:6e:c7:81:a9:e4:26:5e:21:35:68:3a:4d:01:77:82: 85:15:e1:1e:a2:65:c7:32:87:0f:c4:cf:2d:eb:de:bd:db:8f: c7:05:b5:4c:92:6c:c8:c2:45:cd:b0:5b:e0:30:3b:cd:35:a7: 2e:4c:91:47:7d:2f:82:7e:cb:0e:cb:05:ae:b5:79:63:a7:97: f2:b0:8d:56:fc:b0:d9:eb:65:f0:a5:c4:92:ca:b6:64:32:0c: d6:5a:05:9d:8e:63:d1:3e:ca:1b:8f:0e:68:f5:70:b7:17:12: c4:f7:05:d2:13:db:cc:77:13:43:0d:be:e4:b3:66:4d:36:c9: cd:4e:e2:0d -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAhAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEIwQzQxMTAvBgNVBAUTKDE1RjBBNDA2ODVFNjlBNjQxREI3MEU4MkJGNzgwQTlB QkZFM0YxNTkwHhcNMjUwOTE5MDMwODM2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGNjYzkzNC04NDkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr4u6+YgYS/A39OX4ntm/WXBuWtByxmSEv5TeHKRolPobnKuQrbZ6v+3cVfjM 8q9o/YtETpVChr+X2SEPMAYimCHDQ6DvX5hBetqg8c+/L54mmHbqI5bvk+djONLG iOOXLbWpjj14CcaCIzV0rXT+uc3pyStP1nqD0J8RDRh0i5pU9NofFEa2bGa9rpbo eCDttSkRVdQUYn35ilRy3T5SqwJTDVbkqHwCPVFqpVqQl6o75QTfFQmBbs/sVk+j loR4E1o1hxi+VrXsyaTkL32fQRhxILNxjc/ldaoNts23IFnJbY/9IW44jrX/Fa9K W9lHldHiiYM680urzgenP77ziwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOPyH+iA dSeuDjgHQol+wxatzvxvMB8GA1UdIwQYMBaAFBXwpAaF5ppkHbcOgr94Cpq/4/FZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjBDNC9GM0E4NzJEQTdB MDIxMUVEQkIzNkRCMkVDNEY5QUUwMi9GZkNrQm9YbW1tUWR0dzZDdjNnS21yX2o4 VmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZmQ2tCb1htbW1RZHR3NkN2M2dLbXJfajhWay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEIwQzQvRjNBODcyREE3QTAyMTFFREJCMzZEQjJFQzRGOUFFMDIvRjU5OTU5ODA3 QTA1MTFFREExMTJFRjMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr9qgDBAJnI5AwDQYJKoZIhvcNAQELBQADggEBAA6uSryi 1rlIgVk47Mp/7frfAQmgJ9x4Ofs0s7Tq6L5hWW+E2wlPH8xIhszoGhIL+43/tenY O6wtNRYWEqByAqkSeR2BjMOR/r7bYZqj6pyydcNUsErz7X0SLb/kb3+V1yzod7pW AgvHv30LGt98Kiuq6t9ugszCP9+/Bo28MtZLP27HgankJl4hNWg6TQF3goUV4R6i Zccyhw/Ezy3r3r3bj8cFtUySbMjCRc2wW+AwO801py5MkUd9L4J+yw7LBa61eWOn l/KwjVb8sNnrZfClxJLKtmQyDNZaBZ2OY9E+yhuPDmj1cLcXEsT3BdIT28x3E0MN vuSzZk02yc1O4g0= -----END CERTIFICATE-----Generated at Mon Oct 20 18:39:20 2025 by rpki-client