$ rpki-client -vvf rpki.apnic.net/member_repository/A918EB49/5532B960FF5C11EC8DAEA553C4F9AE02/AA314EC8249811EF971CED52C4F9AE02.roa File: AA314EC8249811EF971CED52C4F9AE02.roa (raw, json) Hash identifier: xP/jJhS+dRDMFII7/oN+e6tmZGRsaM2PF5rzA01lyJ8= Subject key identifier: 33:91:60:B3:0B:C5:6A:94:CC:63:23:C6:8D:EC:3F:D5:41:23:8F:DF Certificate issuer: /CN=A918EB49/serialNumber=F836DD30B604263620D061D10584C8F301160087 Certificate serial: 02F1 Authority key identifier: F8:36:DD:30:B6:04:26:36:20:D0:61:D1:05:84:C8:F3:01:16:00:87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-DbdMLYEJjYg0GHRBYTI8wEWAIc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EB49/5532B960FF5C11EC8DAEA553C4F9AE02/AA314EC8249811EF971CED52C4F9AE02.roa Signing time: Tue 23 Sep 2025 01:50:09 +0000 ROA not before: Tue 23 Sep 2025 01:50:09 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 150114 IP address blocks: 103.190.226.0/24 maxlen: 24 103.190.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EB49/5532B960FF5C11EC8DAEA553C4F9AE02/-DbdMLYEJjYg0GHRBYTI8wEWAIc.crl rsync://rpki.apnic.net/member_repository/A918EB49/5532B960FF5C11EC8DAEA553C4F9AE02/-DbdMLYEJjYg0GHRBYTI8wEWAIc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-DbdMLYEJjYg0GHRBYTI8wEWAIc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:22:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 753 (0x2f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EB49, serialNumber=F836DD30B604263620D061D10584C8F301160087 Validity Not Before: Sep 23 01:50:09 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68d1fcd1-41dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:89:70:63:40:67:f8:b5:b7:da:63:d1:3f:6f: 5f:93:63:38:42:ef:09:a8:ba:c7:2e:fe:3a:e3:9d: 4d:7c:8a:a7:93:24:cc:e3:6f:4e:ba:2d:aa:10:b8: d5:64:e3:c9:96:54:39:70:00:da:03:a8:94:4d:a5: 63:64:fc:a0:74:c7:5a:01:e8:84:e6:13:d0:e8:ad: af:e3:34:04:85:ab:62:20:7e:c0:64:1d:ac:c5:5e: 41:53:7d:74:a7:ba:76:c3:37:73:13:1d:b4:fe:e1: 30:ab:b2:08:2e:e6:83:4e:9d:b4:e4:d1:52:4e:28: 56:65:3a:3a:a6:11:a6:7d:44:d9:a2:e3:a2:7b:54: c4:12:9d:77:68:c8:89:79:3a:5d:b9:01:2e:b2:91: 8f:89:b3:92:36:b7:4b:ea:90:be:f8:f2:29:6a:95: b8:8e:95:cc:01:9f:87:e2:86:cc:f5:96:d3:60:ac: 1c:bb:de:71:ba:77:7c:e1:a2:39:43:4a:5e:1a:09: 88:1c:28:92:73:a0:b7:1a:b0:f3:66:e7:8d:02:11: 92:b8:2f:24:50:ce:45:26:56:52:9b:dc:38:5b:d5: fe:c9:a7:e8:ec:b0:36:7e:c1:d8:9d:3b:f0:33:38: a1:98:22:42:a9:3e:7f:03:89:65:6d:3f:47:2a:66: ca:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:91:60:B3:0B:C5:6A:94:CC:63:23:C6:8D:EC:3F:D5:41:23:8F:DF X509v3 Authority Key Identifier: keyid:F8:36:DD:30:B6:04:26:36:20:D0:61:D1:05:84:C8:F3:01:16:00:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EB49/5532B960FF5C11EC8DAEA553C4F9AE02/-DbdMLYEJjYg0GHRBYTI8wEWAIc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-DbdMLYEJjYg0GHRBYTI8wEWAIc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EB49/5532B960FF5C11EC8DAEA553C4F9AE02/AA314EC8249811EF971CED52C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.190.226.0/23 Signature Algorithm: sha256WithRSAEncryption 32:39:f8:c5:47:a6:19:61:10:21:6e:b9:81:37:c2:7a:05:c3: 1c:c2:37:22:8b:db:3b:e8:9f:fc:9c:bb:bc:68:d3:83:6a:00: 99:5c:ad:55:1b:9a:2b:e5:d7:3d:a7:cf:e0:0d:a2:0b:2c:a0: fc:7a:b4:f1:3f:39:d7:70:75:b9:fa:cf:02:fb:bc:12:6b:79: 17:4b:df:5e:9f:83:95:d0:3b:d3:19:df:8d:16:c7:a5:b3:6b: a1:ef:18:78:4c:1c:ca:e9:ed:d1:e6:67:6d:c6:3b:b3:74:27: 14:dc:2a:ce:02:59:ff:37:24:64:7c:a0:c8:4a:a1:9f:67:70: 4e:c0:95:8b:3b:5b:af:ce:6c:8f:e2:27:76:b3:57:24:f2:a2: 25:45:a2:8e:5d:d5:03:02:31:ed:19:f6:8b:80:e0:ac:64:4f: 3f:9e:57:39:6c:b5:00:90:17:79:94:ac:5b:b8:10:48:e4:69: 18:2e:5a:74:f2:d6:b6:b8:96:93:5e:7d:4f:d1:62:88:2e:b4: 84:f5:9e:cf:b7:b3:ed:f3:84:b4:be:1b:f1:d1:b0:ef:a7:90: 55:39:85:24:d6:36:35:d1:6d:5d:ca:95:d5:fb:68:ed:87:70: 24:21:b5:9a:cb:fc:ee:95:a7:69:89:ec:9e:da:2d:10:0b:6b: 1a:6a:50:c5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAvEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVCNDkxMTAvBgNVBAUTKEY4MzZERDMwQjYwNDI2MzYyMEQwNjFEMTA1ODRDOEYz MDExNjAwODcwHhcNMjUwOTIzMDE1MDA5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQxZmNkMS00MWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxIlwY0Bn+LW32mPRP29fk2M4Qu8JqLrHLv46451NfIqnkyTM429Oui2qELjV ZOPJllQ5cADaA6iUTaVjZPygdMdaAeiE5hPQ6K2v4zQEhatiIH7AZB2sxV5BU310 p7p2wzdzEx20/uEwq7IILuaDTp205NFSTihWZTo6phGmfUTZouOie1TEEp13aMiJ eTpduQEuspGPibOSNrdL6pC++PIpapW4jpXMAZ+H4obM9ZbTYKwcu95xund84aI5 Q0peGgmIHCiSc6C3GrDzZueNAhGSuC8kUM5FJlZSm9w4W9X+yafo7LA2fsHYnTvw MzihmCJCqT5/A4llbT9HKmbKQQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDORYLML xWqUzGMjxo3sP9VBI4/fMB8GA1UdIwQYMBaAFPg23TC2BCY2INBh0QWEyPMBFgCH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RUI0OS81NTMyQjk2MEZG NUMxMUVDOERBRUE1NTNDNEY5QUUwMi8tRGJkTUxZRUpqWWcwR0hSQllUSTh3RVdB SWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1EYmRNTFlFSmpZZzBHSFJCWVRJOHdFV0FJYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVCNDkvNTUzMkI5NjBGRjVDMTFFQzhEQUVBNTUzQzRGOUFFMDIvQUEzMTRFQzgy NDk4MTFFRjk3MUNFRDUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnvuIwDQYJKoZIhvcNAQELBQADggEBADI5+MVHphlhECFu uYE3wnoFwxzCNyKL2zvon/ycu7xo04NqAJlcrVUbmivl1z2nz+ANogssoPx6tPE/ Oddwdbn6zwL7vBJreRdL316fg5XQO9MZ340Wx6Wza6HvGHhMHMrp7dHmZ23GO7N0 JxTcKs4CWf83JGR8oMhKoZ9ncE7AlYs7W6/ObI/iJ3azVyTyoiVFoo5d1QMCMe0Z 9ouA4KxkTz+eVzlstQCQF3mUrFu4EEjkaRguWnTy1ra4lpNefU/RYogutIT1ns+3 s+3zhLS+G/HRsO+nkFU5hSTWNjXRbV3KldX7aO2HcCQhtZrL/O6Vp2mJ7J7aLRAL axpqUMU= -----END CERTIFICATE-----Generated at Mon Oct 20 11:16:49 2025 by rpki-client