$ rpki-client -vvf rpki.apnic.net/member_repository/A918DAF5/7CD42A689DF511F09A2B6620C4F9AE02/8121DCA49DF611F0B7D5393FC4F9AE02.roa File: 8121DCA49DF611F0B7D5393FC4F9AE02.roa (raw, json) Hash identifier: 9g7OIf/aUpSy1rCWca9ZMugo81QHot1HlcLobRXWLTE= Subject key identifier: 0C:F6:2C:90:1D:F9:E0:1A:28:F2:94:81:CA:32:7F:6F:59:59:F3:B1 Certificate issuer: /CN=A918DAF5/serialNumber=8FA864FEA9AF1CC05A89CB10EA2E3731706DF3F5 Certificate serial: 04 Authority key identifier: 8F:A8:64:FE:A9:AF:1C:C0:5A:89:CB:10:EA:2E:37:31:70:6D:F3:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j6hk_qmvHMBaicsQ6i43MXBt8_U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918DAF5/7CD42A689DF511F09A2B6620C4F9AE02/8121DCA49DF611F0B7D5393FC4F9AE02.roa Signing time: Tue 30 Sep 2025 12:10:50 +0000 ROA not before: Tue 30 Sep 2025 12:10:50 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 137561 IP address blocks: 103.189.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918DAF5/7CD42A689DF511F09A2B6620C4F9AE02/j6hk_qmvHMBaicsQ6i43MXBt8_U.crl rsync://rpki.apnic.net/member_repository/A918DAF5/7CD42A689DF511F09A2B6620C4F9AE02/j6hk_qmvHMBaicsQ6i43MXBt8_U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j6hk_qmvHMBaicsQ6i43MXBt8_U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:36:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918DAF5, serialNumber=8FA864FEA9AF1CC05A89CB10EA2E3731706DF3F5 Validity Not Before: Sep 30 12:10:50 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68dbc8ca-0108 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:83:50:39:60:3e:02:8c:57:16:f2:14:ff:98: 59:28:05:ea:ef:cb:d2:68:26:b1:2a:bd:1e:1b:e4: 17:4b:e8:8b:53:a2:e4:75:55:5a:8c:3f:72:c4:65: f9:d8:65:3e:83:17:58:dd:ad:46:2b:56:b3:4f:77: 9d:77:2f:9b:d2:5f:33:b7:35:c7:b3:2f:e5:be:61: b8:ea:99:4c:d5:ba:0d:b5:56:9f:49:b0:95:85:55: fa:ea:1d:9b:47:4c:ad:9f:1b:33:4b:48:74:54:9d: c9:9e:af:6d:97:68:34:dd:8b:93:03:cd:a9:ed:eb: b2:64:43:43:93:cd:aa:ab:6a:48:c3:7a:a4:69:39: 4a:de:f4:b0:70:cf:79:68:09:88:80:af:a8:03:89: fb:41:30:39:5d:22:aa:3b:87:6c:9d:91:89:44:5a: 3e:d2:79:72:59:2e:39:db:68:2e:9b:42:88:65:9c: 9d:dd:85:66:0c:20:d3:a8:c6:f4:67:85:ca:ce:7e: e4:82:cd:a2:ea:51:5d:1d:4f:46:d1:57:ba:d2:42: 41:81:84:fb:f1:ac:17:e7:78:20:2b:9a:34:67:6a: 70:f5:96:01:8d:24:73:1d:cf:2d:28:55:08:5e:d2: de:d6:6c:2f:78:17:6e:c4:07:25:30:1e:24:50:9d: 19:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:F6:2C:90:1D:F9:E0:1A:28:F2:94:81:CA:32:7F:6F:59:59:F3:B1 X509v3 Authority Key Identifier: keyid:8F:A8:64:FE:A9:AF:1C:C0:5A:89:CB:10:EA:2E:37:31:70:6D:F3:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918DAF5/7CD42A689DF511F09A2B6620C4F9AE02/j6hk_qmvHMBaicsQ6i43MXBt8_U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j6hk_qmvHMBaicsQ6i43MXBt8_U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918DAF5/7CD42A689DF511F09A2B6620C4F9AE02/8121DCA49DF611F0B7D5393FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.189.126.0/24 Signature Algorithm: sha256WithRSAEncryption 30:96:f3:c0:61:02:48:a6:b6:27:a4:d6:2c:e5:01:f1:ec:97: fb:ba:3f:f6:ad:48:f3:8c:d2:7f:80:ad:b6:48:2e:25:a0:8d: de:7f:27:3d:db:3a:16:6c:aa:b2:34:e8:7e:5c:cf:39:b3:c2: bf:42:99:47:84:74:d3:ea:81:56:46:be:6c:33:a8:b7:1a:16: 23:27:aa:26:8e:c6:e4:55:35:b8:f2:27:95:af:23:35:07:d7: 6f:4c:85:91:33:71:76:c4:d4:67:b4:bb:2d:3b:2e:14:4a:f9: a8:20:1c:2c:e7:d3:c9:f2:6b:90:3e:8b:8d:89:67:50:cf:49: f3:11:a1:eb:b9:be:71:a0:e6:26:6c:17:d3:c2:82:8f:67:91: e6:6a:a5:a2:5e:7e:88:b1:2d:6d:5b:b2:92:b3:cb:8e:c7:40: 58:6b:d4:de:be:e1:d5:53:52:c4:c2:e8:31:a0:ec:91:15:f8: cd:7d:9b:37:9d:5d:59:b0:71:60:79:44:de:a4:97:c1:64:07: 6b:0d:3d:d1:e1:c3:b6:10:10:b0:d9:34:b3:a1:94:8b:c0:a2: 7f:6b:13:7d:2d:61:95:a5:76:be:af:ce:74:09:79:c1:f6:a8: 3c:2f:83:00:5e:c1:fb:70:de:b6:4c:42:1c:22:11:eb:d5:d0: e9:ea:32:a8 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 REFGNTExMC8GA1UEBRMoOEZBODY0RkVBOUFGMUNDMDVBODlDQjEwRUEyRTM3MzE3 MDZERjNGNTAeFw0yNTA5MzAxMjEwNTBaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZGJjOGNhLTAxMDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOg1A5YD4CjFcW8hT/mFkoBervy9JoJrEqvR4b5BdL6ItTouR1VVqMP3LEZfnY ZT6DF1jdrUYrVrNPd513L5vSXzO3NcezL+W+YbjqmUzVug21Vp9JsJWFVfrqHZtH TK2fGzNLSHRUncmer22XaDTdi5MDzant67JkQ0OTzaqrakjDeqRpOUre9LBwz3lo CYiAr6gDiftBMDldIqo7h2ydkYlEWj7SeXJZLjnbaC6bQohlnJ3dhWYMINOoxvRn hcrOfuSCzaLqUV0dT0bRV7rSQkGBhPvxrBfneCArmjRnanD1lgGNJHMdzy0oVQhe 0t7WbC94F27EByUwHiRQnRnNAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUDPYskB35 4Boo8pSByjJ/b1lZ87EwHwYDVR0jBBgwFoAUj6hk/qmvHMBaicsQ6i43MXBt8/Uw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThEQUY1LzdDRDQyQTY4OURG NTExRjA5QTJCNjYyMEM0RjlBRTAyL2o2aGtfcW12SE1CYWljc1E2aTQzTVhCdDhf VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvajZoa19xbXZITUJhaWNzUTZpNDNNWEJ0OF9VLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 REFGNS83Q0Q0MkE2ODlERjUxMUYwOUEyQjY2MjBDNEY5QUUwMi84MTIxRENBNDlE RjYxMUYwQjdENTM5M0ZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGe9fjANBgkqhkiG9w0BAQsFAAOCAQEAMJbzwGECSKa2J6TW LOUB8eyX+7o/9q1I84zSf4CttkguJaCN3n8nPds6FmyqsjToflzPObPCv0KZR4R0 0+qBVka+bDOotxoWIyeqJo7G5FU1uPInla8jNQfXb0yFkTNxdsTUZ7S7LTsuFEr5 qCAcLOfTyfJrkD6LjYlnUM9J8xGh67m+caDmJmwX08KCj2eR5mqlol5+iLEtbVuy krPLjsdAWGvU3r7h1VNSxMLoMaDskRX4zX2bN51dWbBxYHlE3qSXwWQHaw090eHD thAQsNk0s6GUi8Cif2sTfS1hlaV2vq/OdAl5wfaoPC+DAF7B+3DetkxCHCIR69XQ 6eoyqA== -----END CERTIFICATE-----Generated at Mon Oct 20 20:38:07 2025 by rpki-client