$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3E29AA9EC6C911EFB4CA8564C4F9AE02.roa File: 3E29AA9EC6C911EFB4CA8564C4F9AE02.roa (raw, json) Hash identifier: D+71/+py84bNHXnZEE5Ixf1USm7tUnwM4U9h6B2Lhww= Subject key identifier: AE:71:1D:A1:16:5F:9B:35:6C:FD:AD:20:F1:2E:D6:4C:BD:6E:90:39 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: C5A8 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3E29AA9EC6C911EFB4CA8564C4F9AE02.roa Signing time: Sun 28 Sep 2025 10:45:57 +0000 ROA not before: Sun 28 Sep 2025 10:45:57 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 59191 IP address blocks: 45.120.56.0/22 maxlen: 24 103.115.236.0/23 maxlen: 24 103.118.164.0/22 maxlen: 24 103.139.224.0/23 maxlen: 24 103.157.112.0/23 maxlen: 24 103.172.206.0/23 maxlen: 24 103.173.252.0/23 maxlen: 24 103.183.104.0/23 maxlen: 24 103.218.132.0/22 maxlen: 24 113.30.168.0/22 maxlen: 24 2400:6220::/32 maxlen: 36 2407:f440::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:33:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50600 (0xc5a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Sep 28 10:45:57 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68d911e5-31ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:23:0b:97:33:52:84:83:d3:d8:94:31:13:2f: 72:87:17:50:71:3a:f8:06:63:1c:01:25:69:0b:0e: 22:48:69:50:96:83:e4:39:92:d7:f5:ee:ff:78:c8: 3f:8a:89:7d:d8:af:9c:e6:43:c0:d9:8a:e2:7a:33: 0c:97:f8:0b:96:05:09:81:ba:93:c7:6b:bb:a7:fa: 85:4c:7a:a1:9a:50:57:e4:5e:48:8d:bc:d9:10:ec: e5:87:cf:49:07:b2:27:76:74:d4:9f:27:bc:07:fb: 2b:d5:e0:37:88:ba:e8:88:7f:c6:5d:b8:69:bd:5e: b2:85:d1:31:cb:ea:8a:9d:a4:16:30:a1:e5:c7:3a: 47:6f:40:e0:e1:d3:4b:e1:46:08:ca:f7:2b:51:9f: 42:2c:26:6d:95:8f:29:95:08:3f:db:6a:cc:26:86: 1b:9f:bf:67:0e:f4:e2:a1:2d:cc:b8:ea:bf:5f:04: 64:65:90:73:09:9c:42:48:bb:b7:7c:66:4b:00:48: 56:03:c3:7f:ef:04:e6:2f:61:27:42:f3:98:2d:a2: a4:4e:f1:65:8c:4b:b1:52:f8:f5:24:84:98:26:e6: db:47:bd:8d:ce:66:5d:5e:cb:c3:cf:c2:8c:e7:2f: 41:c0:56:d5:66:42:cf:cf:ff:3c:47:b8:2e:46:7b: a7:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:71:1D:A1:16:5F:9B:35:6C:FD:AD:20:F1:2E:D6:4C:BD:6E:90:39 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3E29AA9EC6C911EFB4CA8564C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.120.56.0/22 103.115.236.0/23 103.118.164.0/22 103.139.224.0/23 103.157.112.0/23 103.172.206.0/23 103.173.252.0/23 103.183.104.0/23 103.218.132.0/22 113.30.168.0/22 IPv6: 2400:6220::/32 2407:f440::/32 Signature Algorithm: sha256WithRSAEncryption ac:b4:f8:aa:ca:e6:5c:f8:d3:72:92:ca:14:db:89:6c:62:6b: 7b:21:08:57:5a:6e:44:29:25:e6:69:f8:c5:a4:6a:a6:c2:63: 12:a4:f8:a7:11:f1:0a:f2:5e:dc:2e:c1:af:8d:eb:0a:89:3f: a5:43:87:2d:ad:63:c5:db:72:96:84:d1:37:14:ef:8e:01:1c: 28:fd:cf:1b:67:84:cc:a8:ad:50:27:4f:ad:75:25:30:ea:f3: 3e:2f:f1:28:a6:82:c6:b2:26:7a:a0:cb:64:e3:2b:71:96:b7: 03:a8:82:44:96:69:c1:0e:76:e8:0e:11:d6:a6:e8:6a:83:2e: e7:c3:9f:48:89:51:5a:30:c0:30:76:f3:87:0c:56:3d:93:d2: bd:22:d2:3b:46:c5:4f:76:7e:92:8c:99:35:64:5c:cf:0b:eb: 7d:8f:b8:b7:60:40:98:59:fb:11:97:ab:f1:12:62:c4:87:21: fc:53:70:31:e1:42:4d:4b:39:ac:6f:0d:c6:4a:7f:c2:91:66: 06:cb:17:3e:0e:f3:30:c8:f6:35:c3:e8:d4:10:1a:b7:ac:aa: 71:f6:72:b5:66:8c:52:96:c9:b6:f9:8f:76:ad:f7:86:d6:b0: b7:9b:af:c2:30:31:2f:68:0c:1d:80:0b:48:d5:ac:70:c7:9b: 05:92:bb:3f -----BEGIN CERTIFICATE----- MIIFvjCCBKagAwIBAgIDAMWoMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDkyODEwNDU1N1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjhkOTExZTUtMzFlZjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM4jC5czUoSD09iUMRMvcocXUHE6+AZjHAElaQsOIkhpUJaD5DmS1/Xu/3jI P4qJfdivnOZDwNmK4nozDJf4C5YFCYG6k8dru6f6hUx6oZpQV+ReSI282RDs5YfP SQeyJ3Z01J8nvAf7K9XgN4i66Ih/xl24ab1esoXRMcvqip2kFjCh5cc6R29A4OHT S+FGCMr3K1GfQiwmbZWPKZUIP9tqzCaGG5+/Zw704qEtzLjqv18EZGWQcwmcQki7 t3xmSwBIVgPDf+8E5i9hJ0LzmC2ipE7xZYxLsVL49SSEmCbm20e9jc5mXV7Lw8/C jOcvQcBW1WZCz8//PEe4LkZ7p/UCAwEAAaOCAuEwggLdMB0GA1UdDgQWBBSucR2h Fl+bNWz9rSDxLtZMvW6QOTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzNFMjlBQTlF QzZDOTExRUZCNENBODU2NEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMGsGCCsGAQUFBwEHAQH/ BFwwWjBCBAIAATA8AwQCLXg4AwQBZ3PsAwQCZ3akAwQBZ4vgAwQBZ51wAwQBZ6zO AwQBZ638AwQBZ7doAwQCZ9qEAwQCcR6oMBQEAgACMA4DBQAkAGIgAwUAJAf0QDAN BgkqhkiG9w0BAQsFAAOCAQEArLT4qsrmXPjTcpLKFNuJbGJreyEIV1puRCkl5mn4 xaRqpsJjEqT4pxHxCvJe3C7Br43rCok/pUOHLa1jxdtyloTRNxTvjgEcKP3PG2eE zKitUCdPrXUlMOrzPi/xKKaCxrImeqDLZOMrcZa3A6iCRJZpwQ526A4R1qboaoMu 58OfSIlRWjDAMHbzhwxWPZPSvSLSO0bFT3Z+koyZNWRczwvrfY+4t2BAmFn7EZer 8RJixIch/FNwMeFCTUs5rG8Nxkp/wpFmBssXPg7zMMj2NcPo1BAat6yqcfZytWaM UpbJtvmPdq33htawt5uvwjAxL2gMHYALSNWscMebBZK7Pw== -----END CERTIFICATE-----Generated at Mon Oct 20 01:26:32 2025 by rpki-client