$ rpki-client -vvf rpki.apnic.net/member_repository/A918B2F8/DFEE61DEB99711E9B0990E0AC4F9AE02/4BECBAFCB99811E98000600AC4F9AE02.roa File: 4BECBAFCB99811E98000600AC4F9AE02.roa (raw, json) Hash identifier: J3asPRjW2OTxFxfAPN+SaGNCDyYHApcc4gcIkuEE9lM= Subject key identifier: 09:71:D9:AB:33:51:11:0E:53:98:28:03:C9:5A:F4:C7:D0:DF:8C:5B Certificate issuer: /CN=A918B2F8/serialNumber=BEB50E411CC3E2C40603B16A91609EA4D4066495 Certificate serial: 0E0F Authority key identifier: BE:B5:0E:41:1C:C3:E2:C4:06:03:B1:6A:91:60:9E:A4:D4:06:64:95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vrUOQRzD4sQGA7FqkWCepNQGZJU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B2F8/DFEE61DEB99711E9B0990E0AC4F9AE02/4BECBAFCB99811E98000600AC4F9AE02.roa Signing time: Thu 02 Oct 2025 18:17:31 +0000 ROA not before: Thu 02 Oct 2025 18:17:31 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 134722 IP address blocks: 103.198.52.0/23 maxlen: 23 103.198.52.0/24 maxlen: 24 103.198.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B2F8/DFEE61DEB99711E9B0990E0AC4F9AE02/vrUOQRzD4sQGA7FqkWCepNQGZJU.crl rsync://rpki.apnic.net/member_repository/A918B2F8/DFEE61DEB99711E9B0990E0AC4F9AE02/vrUOQRzD4sQGA7FqkWCepNQGZJU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vrUOQRzD4sQGA7FqkWCepNQGZJU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:30:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3599 (0xe0f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B2F8, serialNumber=BEB50E411CC3E2C40603B16A91609EA4D4066495 Validity Not Before: Oct 2 18:17:31 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68dec1bb-ae1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:cf:7c:b0:14:0e:24:57:34:cb:d1:a2:3c:9e: 46:8b:6c:9a:15:a1:f3:64:28:dd:63:ae:68:9b:d9: 8d:da:ec:0e:4a:c4:b9:c9:ac:cf:b9:47:ec:4f:4f: c1:82:03:11:29:a5:33:7b:bf:23:91:ad:7d:86:1c: 54:ef:55:7f:52:73:73:1a:c2:a7:f4:e2:21:e9:79: 9f:a1:3d:4a:04:37:7e:fc:a7:2e:1a:8f:61:32:a4: ce:a8:bb:dd:45:dd:1f:5f:e7:b9:30:c2:b5:3a:91: 6a:2f:ee:0d:cb:96:d3:e2:87:e3:85:ce:52:93:5a: d3:2d:33:60:27:8c:91:38:21:55:29:a7:b8:f2:48: bd:17:0e:f5:9c:2e:d5:d2:04:b0:d1:c3:55:2e:0a: 1f:1b:25:19:20:56:3f:8b:d4:d7:87:ec:32:5e:c7: 02:86:8c:99:04:75:b9:5d:80:33:60:e9:b8:8c:a8: a1:10:8b:12:46:1e:5d:48:d4:43:99:4b:c6:4e:b1: 97:14:89:b5:c9:52:d9:95:4b:0c:b9:e6:e3:8e:68: 13:e3:71:1a:7f:ec:20:13:45:2f:55:31:cb:fa:8f: 5b:95:98:ab:58:90:6b:53:aa:f0:58:76:fe:91:0f: e3:56:5f:ae:77:a9:49:9d:08:13:d7:5d:c7:5e:36: 61:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:71:D9:AB:33:51:11:0E:53:98:28:03:C9:5A:F4:C7:D0:DF:8C:5B X509v3 Authority Key Identifier: keyid:BE:B5:0E:41:1C:C3:E2:C4:06:03:B1:6A:91:60:9E:A4:D4:06:64:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B2F8/DFEE61DEB99711E9B0990E0AC4F9AE02/vrUOQRzD4sQGA7FqkWCepNQGZJU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vrUOQRzD4sQGA7FqkWCepNQGZJU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B2F8/DFEE61DEB99711E9B0990E0AC4F9AE02/4BECBAFCB99811E98000600AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.198.52.0/23 Signature Algorithm: sha256WithRSAEncryption 6e:c1:9c:2c:47:a5:49:cc:e3:d4:b7:11:e6:c2:98:a8:5f:69: 21:bf:d3:8e:da:85:3b:94:25:4c:45:bd:bb:a7:f1:b4:dd:3d: 11:b2:08:e7:de:02:cf:2c:6b:4d:3e:7f:5b:b9:c3:3e:44:87: 0b:cf:2c:a8:dc:fb:86:fb:a1:33:fd:43:7f:d3:9a:0a:00:36: 3f:88:6b:f7:f9:39:95:d9:41:e9:08:f4:fd:23:34:9a:42:36: bb:95:97:73:21:82:1a:8c:2d:b0:3c:46:37:57:75:59:65:a0: 7c:c1:b0:35:07:92:b2:2d:06:07:1d:5d:81:05:5b:7c:01:4e: 35:0e:0a:9a:83:a5:0a:75:13:8c:c2:58:9c:41:da:3c:0d:de: 0c:9b:5c:8f:cf:40:d5:e5:38:d7:4e:4b:59:9b:d7:0b:e9:94: c1:62:a9:19:73:8d:0d:2c:e0:61:89:bf:52:da:8f:c7:f3:1c: a4:df:90:01:e0:26:83:ea:6e:f7:d0:61:e5:8c:94:56:7c:07: 48:1c:d8:dd:51:d6:cb:61:75:cc:3f:a0:5c:15:35:16:cd:1d: d5:18:e4:8c:35:d1:52:9a:58:12:74:b1:e3:c9:26:f0:44:04: b0:f1:b6:a5:7c:7f:e6:2b:89:38:18:55:3e:a8:3b:60:84:21: 3f:16:15:e0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDg8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEIyRjgxMTAvBgNVBAUTKEJFQjUwRTQxMUNDM0UyQzQwNjAzQjE2QTkxNjA5RUE0 RDQwNjY0OTUwHhcNMjUxMDAyMTgxNzMxWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRlYzFiYi1hZTFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAts98sBQOJFc0y9GiPJ5Gi2yaFaHzZCjdY65om9mN2uwOSsS5yazPuUfsT0/B ggMRKaUze78jka19hhxU71V/UnNzGsKn9OIh6XmfoT1KBDd+/KcuGo9hMqTOqLvd Rd0fX+e5MMK1OpFqL+4Ny5bT4ofjhc5Sk1rTLTNgJ4yROCFVKae48ki9Fw71nC7V 0gSw0cNVLgofGyUZIFY/i9TXh+wyXscChoyZBHW5XYAzYOm4jKihEIsSRh5dSNRD mUvGTrGXFIm1yVLZlUsMuebjjmgT43Eaf+wgE0UvVTHL+o9blZirWJBrU6rwWHb+ kQ/jVl+ud6lJnQgT113HXjZhxwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAlx2asz UREOU5goA8la9MfQ34xbMB8GA1UdIwQYMBaAFL61DkEcw+LEBgOxapFgnqTUBmSV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjJGOC9ERkVFNjFERUI5 OTcxMUU5QjA5OTBFMEFDNEY5QUUwMi92clVPUVJ6RDRzUUdBN0Zxa1dDZXBOUUda SlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZyVU9RUnpENHNRR0E3RnFrV0NlcE5RR1pKVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEIyRjgvREZFRTYxREVCOTk3MTFFOUIwOTkwRTBBQzRGOUFFMDIvNEJFQ0JBRkNC OTk4MTFFOTgwMDA2MDBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnxjQwDQYJKoZIhvcNAQELBQADggEBAG7BnCxHpUnM49S3 EebCmKhfaSG/047ahTuUJUxFvbun8bTdPRGyCOfeAs8sa00+f1u5wz5EhwvPLKjc +4b7oTP9Q3/TmgoANj+Ia/f5OZXZQekI9P0jNJpCNruVl3MhghqMLbA8RjdXdVll oHzBsDUHkrItBgcdXYEFW3wBTjUOCpqDpQp1E4zCWJxB2jwN3gybXI/PQNXlONdO S1mb1wvplMFiqRlzjQ0s4GGJv1Laj8fzHKTfkAHgJoPqbvfQYeWMlFZ8B0gc2N1R 1sthdcw/oFwVNRbNHdUY5Iw10VKaWBJ0sePJJvBEBLDxtqV8f+YriTgYVT6oO2CE IT8WFeA= -----END CERTIFICATE-----Generated at Mon Oct 20 13:51:50 2025 by rpki-client