$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/03CEA55C531E11F096E3B680C4F9AE02.roa File: 03CEA55C531E11F096E3B680C4F9AE02.roa (raw, json) Hash identifier: HOSvOQwWjZYkDerOQCUIaG59GJJCTC78xFmbnhQ2M5o= Subject key identifier: 7F:13:A4:96:D1:2A:E2:A9:B9:42:45:EB:D7:AB:C5:8B:A6:59:D6:45 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: C644 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/03CEA55C531E11F096E3B680C4F9AE02.roa Signing time: Tue 14 Oct 2025 06:35:01 +0000 ROA not before: Tue 14 Oct 2025 06:35:01 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 150654 IP address blocks: 103.155.147.0/24 maxlen: 24 103.166.214.0/24 maxlen: 24 103.168.32.0/24 maxlen: 24 103.168.33.0/24 maxlen: 24 103.168.173.0/24 maxlen: 24 103.171.109.0/24 maxlen: 24 103.174.93.0/24 maxlen: 24 103.178.202.0/24 maxlen: 24 103.180.175.0/24 maxlen: 24 103.181.150.0/24 maxlen: 24 175.111.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:33:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50756 (0xc644) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Oct 14 06:35:01 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68edef15-c355 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:b5:1e:9e:08:48:ff:a5:40:e2:9f:ec:33:60: 21:8d:e8:eb:21:41:64:81:a9:7b:6a:61:3a:91:5f: b4:fb:44:27:b1:3c:51:10:f3:11:2d:56:8d:3c:f8: 6f:a7:57:03:98:8b:65:a2:5a:5d:1b:78:cb:0e:8d: 84:7a:4e:ec:34:76:b1:ff:44:ae:e6:c4:29:6d:99: 4e:cb:4b:a6:16:93:ec:83:73:d7:e6:e3:49:f9:c9: 6f:db:29:ed:04:b5:c6:db:08:c2:68:b7:90:f2:e9: e6:3b:1b:22:8d:1e:9a:dd:06:d0:2d:12:d1:2a:79: 35:7f:c5:ff:a1:19:6d:b3:57:02:ac:24:86:61:2c: 65:54:58:12:38:c2:f8:a9:b0:dd:58:50:86:26:54: 6a:b3:cd:6a:df:42:fb:e0:24:7d:8e:e1:d3:64:0d: 36:44:67:36:49:06:d6:8d:eb:5c:ea:fe:d0:e0:96: 58:0c:45:05:bf:73:f4:63:98:da:76:d7:00:9c:8b: 8d:d6:3e:8e:d5:bd:f8:8c:0f:9d:78:03:79:a1:04: d4:3e:50:74:2a:c4:22:cc:87:0d:9d:25:0b:12:56: d0:cb:db:b6:b6:8c:e3:30:fb:45:4f:57:86:99:5b: 9e:78:9f:ae:53:da:59:73:59:72:2d:e1:4f:ac:4d: f7:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:13:A4:96:D1:2A:E2:A9:B9:42:45:EB:D7:AB:C5:8B:A6:59:D6:45 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/03CEA55C531E11F096E3B680C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.155.147.0/24 103.166.214.0/24 103.168.32.0/23 103.168.173.0/24 103.171.109.0/24 103.174.93.0/24 103.178.202.0/24 103.180.175.0/24 103.181.150.0/24 175.111.97.0/24 Signature Algorithm: sha256WithRSAEncryption 31:6d:f6:d9:27:51:a9:c9:80:65:bd:35:74:65:c5:da:8e:dd: 3e:c3:7e:6e:f0:9d:88:8e:31:c4:bf:57:2c:40:fe:07:da:5f: 9c:c2:32:85:d5:36:7e:d0:0c:92:e1:86:01:14:c1:26:26:68: 7c:71:bd:6e:5e:a9:ea:8a:3b:ac:72:33:96:2b:7f:d1:89:35: ca:79:ba:e1:46:aa:7c:c2:8f:47:37:df:ca:47:dc:6a:d0:31: 41:9e:88:4a:14:a1:ad:13:cb:62:24:32:1d:cf:4d:30:e5:7e: 77:d9:b4:65:ef:30:b5:67:01:3b:8d:49:3b:d2:b0:a9:ec:80: ab:48:ec:06:fb:b8:aa:1e:e1:f5:f7:f7:b0:05:62:67:46:60: 9c:b6:5b:8f:12:3f:50:b5:90:f4:eb:62:ce:a9:60:af:1c:99: 7e:86:e8:0b:91:87:f3:a5:e8:35:f6:e3:d1:fc:ea:4c:ba:9a: 01:1c:02:58:17:f0:f2:09:4c:88:06:fe:ef:87:cc:9a:e4:b4: cd:07:f4:e9:0b:ad:2a:70:c4:24:f1:fc:a7:a7:d0:42:48:36: dd:ad:46:38:2c:c7:a2:51:e4:3b:97:cc:19:b8:01:fd:f0:dc: 98:12:df:21:43:b6:11:77:0f:aa:a4:49:06:e4:96:04:08:a8: 9f:d1:9c:88 -----BEGIN CERTIFICATE----- MIIFqDCCBJCgAwIBAgIDAMZEMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MTAxNDA2MzUwMVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjhlZGVmMTUtYzM1NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAO61Hp4ISP+lQOKf7DNgIY3o6yFBZIGpe2phOpFftPtEJ7E8URDzES1WjTz4 b6dXA5iLZaJaXRt4yw6NhHpO7DR2sf9ErubEKW2ZTstLphaT7INz1+bjSfnJb9sp 7QS1xtsIwmi3kPLp5jsbIo0emt0G0C0S0Sp5NX/F/6EZbbNXAqwkhmEsZVRYEjjC +Kmw3VhQhiZUarPNat9C++AkfY7h02QNNkRnNkkG1o3rXOr+0OCWWAxFBb9z9GOY 2nbXAJyLjdY+jtW9+IwPnXgDeaEE1D5QdCrEIsyHDZ0lCxJW0MvbtraM4zD7RU9X hplbnnifrlPaWXNZci3hT6xN99sCAwEAAaOCAsswggLHMB0GA1UdDgQWBBR/E6SW 0SriqblCRevXq8WLplnWRTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzAzQ0VBNTVD NTMxRTExRjA5NkUzQjY4MEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMFUGCCsGAQUFBwEHAQH/ BEYwRDBCBAIAATA8AwQAZ5uTAwQAZ6bWAwQBZ6ggAwQAZ6itAwQAZ6ttAwQAZ65d AwQAZ7LKAwQAZ7SvAwQAZ7WWAwQAr29hMA0GCSqGSIb3DQEBCwUAA4IBAQAxbfbZ J1GpyYBlvTV0ZcXajt0+w35u8J2IjjHEv1csQP4H2l+cwjKF1TZ+0AyS4YYBFMEm Jmh8cb1uXqnqijuscjOWK3/RiTXKebrhRqp8wo9HN9/KR9xq0DFBnohKFKGtE8ti JDIdz00w5X532bRl7zC1ZwE7jUk70rCp7ICrSOwG+7iqHuH19/ewBWJnRmCctluP Ej9QtZD062LOqWCvHJl+hugLkYfzpeg19uPR/OpMupoBHAJYF/DyCUyIBv7vh8ya 5LTNB/TpC60qcMQk8fynp9BCSDbdrUY4LMeiUeQ7l8wZuAH98NyYEt8hQ7YRdw+q pEkG5JYECKif0ZyI -----END CERTIFICATE-----Generated at Mon Oct 20 13:59:44 2025 by rpki-client