$ rpki-client -vvf rpki.apnic.net/member_repository/A918E319/868DD6568C2611E7BC06C44EC4F9AE02/7AF2C29C50C811F09EF54B31C4F9AE02.roa File: 7AF2C29C50C811F09EF54B31C4F9AE02.roa (raw, json) Hash identifier: jG3cUbtm554H7AD3dhUJ+NzhtzlcaiTkqkxRj23wG2c= Subject key identifier: B5:35:BC:CF:E6:E3:E0:A6:53:B2:5E:6A:30:B4:86:E0:A0:3A:D3:72 Certificate issuer: /CN=A918E319/serialNumber=6CFD56A77EAD9E159BCB18EB6DE862735091B54A Certificate serial: 19B4 Authority key identifier: 6C:FD:56:A7:7E:AD:9E:15:9B:CB:18:EB:6D:E8:62:73:50:91:B5:4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bP1Wp36tnhWbyxjrbehic1CRtUo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E319/868DD6568C2611E7BC06C44EC4F9AE02/7AF2C29C50C811F09EF54B31C4F9AE02.roa Signing time: Tue 14 Oct 2025 17:15:15 +0000 ROA not before: Tue 14 Oct 2025 17:15:15 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 135567 IP address blocks: 103.70.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E319/868DD6568C2611E7BC06C44EC4F9AE02/bP1Wp36tnhWbyxjrbehic1CRtUo.crl rsync://rpki.apnic.net/member_repository/A918E319/868DD6568C2611E7BC06C44EC4F9AE02/bP1Wp36tnhWbyxjrbehic1CRtUo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bP1Wp36tnhWbyxjrbehic1CRtUo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:49:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6580 (0x19b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E319, serialNumber=6CFD56A77EAD9E159BCB18EB6DE862735091B54A Validity Not Before: Oct 14 17:15:15 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=68ee8522-b4e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e8:de:3b:48:c6:d5:df:8a:e8:49:d2:54:cf: 3b:46:36:0c:86:75:8f:fa:04:72:e4:0f:39:4a:ee: 13:78:32:39:35:26:85:a7:e9:06:4e:da:e1:bc:a5: c9:ef:f2:ec:2f:88:d8:46:19:26:10:8d:0b:08:07: 63:66:71:41:38:67:9a:78:0d:fd:b7:34:36:f8:2f: 55:3e:d3:4f:12:98:60:4b:44:0e:8a:4d:e6:37:76: 20:15:7e:05:26:a2:79:31:40:df:30:b7:d0:f5:31: 79:93:e5:0d:0e:31:cb:55:1e:e4:72:a4:5d:be:11: 49:64:bf:83:04:1a:91:3c:69:c0:52:33:4e:04:e2: 8f:26:c9:fd:54:12:55:5c:92:38:28:81:59:e2:e1: 3f:68:f4:69:49:24:a4:65:ad:bc:5d:ea:9a:4f:58: 60:88:5f:45:5a:ba:1c:34:81:32:f0:ad:cd:92:3e: 12:ce:d7:17:d6:08:77:f0:77:fd:11:c8:c3:95:a8: ee:4d:d0:5a:d6:9b:a2:47:8d:0b:0e:f0:0a:b4:c5: 5d:1f:ea:fe:76:19:49:3d:81:2a:95:b9:ff:62:cb: 49:e1:90:41:41:6a:44:b3:5f:07:84:77:9d:a8:51: ef:42:2d:3b:c3:e4:17:71:12:b2:52:af:48:63:55: 68:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:35:BC:CF:E6:E3:E0:A6:53:B2:5E:6A:30:B4:86:E0:A0:3A:D3:72 X509v3 Authority Key Identifier: keyid:6C:FD:56:A7:7E:AD:9E:15:9B:CB:18:EB:6D:E8:62:73:50:91:B5:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E319/868DD6568C2611E7BC06C44EC4F9AE02/bP1Wp36tnhWbyxjrbehic1CRtUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bP1Wp36tnhWbyxjrbehic1CRtUo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E319/868DD6568C2611E7BC06C44EC4F9AE02/7AF2C29C50C811F09EF54B31C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.70.250.0/24 Signature Algorithm: sha256WithRSAEncryption a3:59:3f:5b:12:19:81:ab:f7:fd:31:d8:29:23:e4:9d:5c:ea: d8:90:2e:92:f5:e5:f0:87:8a:29:d4:36:4e:f3:6b:df:fc:2d: 61:94:57:b5:ea:e8:2d:40:7d:71:d5:5f:ec:e5:4c:99:8c:d6: 9f:62:eb:d7:79:2e:70:33:8e:8a:61:5b:12:83:13:b8:39:00: 1a:39:09:f8:21:fa:84:c0:9e:b0:ee:cb:e1:c4:e4:5b:44:ef: 06:b2:94:c3:4e:87:ab:46:5b:d5:a8:d6:03:b8:f7:d8:fd:ba: d4:eb:c1:de:8d:bc:a9:fc:fe:82:9a:72:d9:7a:6e:2d:3e:65: bc:fe:25:2a:3c:a8:df:b9:15:71:5d:06:bf:f0:90:2a:44:c5: cb:2c:ca:93:da:64:81:99:72:7f:ec:20:f5:65:e0:63:d6:56: 19:56:1a:b7:0f:6b:24:54:06:d6:2d:a8:86:85:34:91:f6:e2: 2d:67:7a:7e:fe:db:97:12:9f:5c:8a:2c:04:a2:72:e1:71:6c: 88:97:52:09:1e:1b:a4:14:4c:d5:6e:c0:13:56:6d:86:bd:9a: 18:44:03:91:f1:91:8b:72:8a:98:14:fb:9d:57:c8:0c:e5:d5: e2:ba:e3:4f:68:ea:b9:3b:d7:e2:8f:52:80:a7:c7:96:a7:b4: e9:83:79:e7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEUzMTkxMTAvBgNVBAUTKDZDRkQ1NkE3N0VBRDlFMTU5QkNCMThFQjZERTg2Mjcz NTA5MUI1NEEwHhcNMjUxMDE0MTcxNTE1WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OGVlODUyMi1iNGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyOjeO0jG1d+K6EnSVM87RjYMhnWP+gRy5A85Su4TeDI5NSaFp+kGTtrhvKXJ 7/LsL4jYRhkmEI0LCAdjZnFBOGeaeA39tzQ2+C9VPtNPEphgS0QOik3mN3YgFX4F JqJ5MUDfMLfQ9TF5k+UNDjHLVR7kcqRdvhFJZL+DBBqRPGnAUjNOBOKPJsn9VBJV XJI4KIFZ4uE/aPRpSSSkZa28XeqaT1hgiF9FWrocNIEy8K3Nkj4SztcX1gh38Hf9 EcjDlajuTdBa1puiR40LDvAKtMVdH+r+dhlJPYEqlbn/YstJ4ZBBQWpEs18HhHed qFHvQi07w+QXcRKyUq9IY1VolQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLU1vM/m 4+CmU7JeajC0huCgOtNyMB8GA1UdIwQYMBaAFGz9Vqd+rZ4Vm8sY623oYnNQkbVK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTMxOS84NjhERDY1NjhD MjYxMUU3QkMwNkM0NEVDNEY5QUUwMi9iUDFXcDM2dG5oV2J5eGpyYmVoaWMxQ1J0 VW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JQMVdwMzZ0bmhXYnl4anJiZWhpYzFDUnRVby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEUzMTkvODY4REQ2NTY4QzI2MTFFN0JDMDZDNDRFQzRGOUFFMDIvN0FGMkMyOUM1 MEM4MTFGMDlFRjU0QjMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnRvowDQYJKoZIhvcNAQELBQADggEBAKNZP1sSGYGr9/0x 2Ckj5J1c6tiQLpL15fCHiinUNk7za9/8LWGUV7Xq6C1AfXHVX+zlTJmM1p9i69d5 LnAzjophWxKDE7g5ABo5Cfgh+oTAnrDuy+HE5FtE7waylMNOh6tGW9Wo1gO499j9 utTrwd6NvKn8/oKactl6bi0+Zbz+JSo8qN+5FXFdBr/wkCpExcssypPaZIGZcn/s IPVl4GPWVhlWGrcPayRUBtYtqIaFNJH24i1nen7+25cSn1yKLASicuFxbIiXUgke G6QUTNVuwBNWbYa9mhhEA5HxkYtyipgU+51XyAzl1eK6409o6rk71+KPUoCnx5an tOmDeec= -----END CERTIFICATE-----Generated at Mon Oct 20 16:16:54 2025 by rpki-client