$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A263AE3A824711F08017A05FC4F9AE02.roa File: A263AE3A824711F08017A05FC4F9AE02.roa (raw, json) Hash identifier: S0gl82A8tDHyZnIPev7l/vNlVwtPsp/yCjesOWQN9t8= Subject key identifier: 02:FF:38:4E:46:87:16:41:02:83:1D:94:81:C8:2C:EE:49:46:79:9B Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: C4FB Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A263AE3A824711F08017A05FC4F9AE02.roa Signing time: Mon 15 Sep 2025 09:24:39 +0000 ROA not before: Mon 15 Sep 2025 09:24:39 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 135700 IP address blocks: 103.65.192.0/22 maxlen: 22 103.65.192.0/24 maxlen: 24 103.65.193.0/24 maxlen: 24 103.65.194.0/24 maxlen: 24 103.65.195.0/24 maxlen: 24 103.155.238.0/24 maxlen: 24 103.155.239.0/24 maxlen: 24 103.173.146.0/23 maxlen: 24 2001:df3:b840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:33:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50427 (0xc4fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Sep 15 09:24:39 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68c7db57-563d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:ee:bd:fd:3b:95:6c:63:e2:02:56:28:30:9b: 5c:63:06:55:4d:72:ba:59:06:34:62:06:3c:38:32: d4:f6:a9:0c:ac:d7:3d:c0:70:31:5e:ce:17:7a:5c: 99:fc:25:39:19:dd:77:b4:8a:7d:ca:16:a1:ef:f2: 6f:fb:86:4c:ad:91:2c:85:d6:88:cc:74:41:a6:65: 16:8f:17:02:0e:b9:1a:bb:b8:c3:dc:35:2b:9d:df: 65:99:d3:33:e9:23:48:4d:b3:23:f4:aa:e5:87:e8: 8e:96:d9:54:5e:f0:eb:54:01:67:82:13:a7:f5:2d: 68:0e:d3:4c:eb:4d:3d:02:ee:6d:a4:3a:a0:b1:a8: 4f:a5:63:d2:3c:10:9c:81:a1:cc:ac:10:6c:5f:4c: 05:df:95:42:96:f7:cc:58:83:62:fa:0c:28:e0:c9: cd:13:47:63:e9:06:af:c5:5b:b4:fe:70:e9:1a:17: 43:53:07:09:89:06:6d:de:c0:f8:f7:54:7e:2c:83: 37:75:ea:c0:03:c3:47:cf:62:1c:9f:27:92:b0:8d: 0d:25:3a:a0:74:74:33:81:51:4d:fb:6d:08:bd:63: 97:01:79:1f:24:36:7c:43:69:6d:25:c2:fe:10:27: 54:24:25:a1:f7:6d:50:a3:e2:50:04:7a:cc:fb:51: 59:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:FF:38:4E:46:87:16:41:02:83:1D:94:81:C8:2C:EE:49:46:79:9B X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A263AE3A824711F08017A05FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.65.192.0/22 103.155.238.0/23 103.173.146.0/23 IPv6: 2001:df3:b840::/48 Signature Algorithm: sha256WithRSAEncryption 82:bf:ae:93:56:e0:db:3f:ee:55:7d:bd:ee:ac:24:74:f2:6a: 7a:fe:f4:d0:55:26:ff:3d:1e:96:de:8f:7d:ee:0a:4a:bb:06: 68:b9:6f:80:42:1f:b5:e0:14:c0:28:31:56:08:69:87:9c:ce: 94:ed:cd:43:58:24:69:9c:4a:0a:f0:7c:df:f7:4b:48:dc:28: f8:a4:2b:84:7e:25:ec:05:e0:c7:77:5c:51:71:9c:b8:7c:0e: 35:56:f3:16:7c:0e:ef:29:7f:8f:5a:9e:af:50:45:b5:a3:64: 88:7b:51:95:8b:cb:33:b2:a1:0c:d4:e0:52:6e:7d:a7:7f:46: c8:32:ab:28:d0:7c:40:3b:db:fe:5c:28:a5:df:a4:30:95:1d: cb:20:97:3e:b6:d1:28:f4:b3:40:1c:de:47:60:c1:43:68:dc: 6e:46:33:b9:c1:40:19:7d:d5:57:ad:42:db:80:0d:52:75:18: bd:c8:a2:ae:62:77:1c:14:5d:fe:c1:c7:18:97:30:0d:c4:79: 1a:72:a3:55:fe:e7:07:5f:42:a8:ae:e7:f8:9a:9d:26:b9:5e: 18:1f:b4:71:e2:3d:dd:bb:bf:a9:b8:11:8c:b6:26:8b:a6:ad: f0:9f:c3:7e:cc:ce:3a:3c:76:c1:28:6b:55:55:d5:5f:c3:9d: 9d:c3:f4:f2 -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgIDAMT7MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDkxNTA5MjQzOVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjhjN2RiNTctNTYzZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANnuvf07lWxj4gJWKDCbXGMGVU1yulkGNGIGPDgy1PapDKzXPcBwMV7OF3pc mfwlORndd7SKfcoWoe/yb/uGTK2RLIXWiMx0QaZlFo8XAg65Gru4w9w1K53fZZnT M+kjSE2zI/Sq5YfojpbZVF7w61QBZ4ITp/UtaA7TTOtNPQLubaQ6oLGoT6Vj0jwQ nIGhzKwQbF9MBd+VQpb3zFiDYvoMKODJzRNHY+kGr8VbtP5w6RoXQ1MHCYkGbd7A +PdUfiyDN3XqwAPDR89iHJ8nkrCNDSU6oHR0M4FRTfttCL1jlwF5HyQ2fENpbSXC /hAnVCQlofdtUKPiUAR6zPtRWecCAwEAAaOCArIwggKuMB0GA1UdDgQWBBQC/zhO RocWQQKDHZSByCzuSUZ5mzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0EyNjNBRTNB ODI0NzExRjA4MDE3QTA1RkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDwGCCsGAQUFBwEHAQH/ BC0wKzAYBAIAATASAwQCZ0HAAwQBZ5vuAwQBZ62SMA8EAgACMAkDBwAgAQ3zuEAw DQYJKoZIhvcNAQELBQADggEBAIK/rpNW4Ns/7lV9ve6sJHTyanr+9NBVJv89Hpbe j33uCkq7Bmi5b4BCH7XgFMAoMVYIaYeczpTtzUNYJGmcSgrwfN/3S0jcKPikK4R+ JewF4Md3XFFxnLh8DjVW8xZ8Du8pf49anq9QRbWjZIh7UZWLyzOyoQzU4FJufad/ RsgyqyjQfEA72/5cKKXfpDCVHcsglz620Sj0s0Ac3kdgwUNo3G5GM7nBQBl91Vet QtuADVJ1GL3Ioq5idxwUXf7BxxiXMA3EeRpyo1X+5wdfQqiu5/ianSa5XhgftHHi Pd27v6m4EYy2JoumrfCfw37Mzjo8dsEoa1VV1V/DnZ3D9PI= -----END CERTIFICATE-----Generated at Mon Oct 20 09:08:30 2025 by rpki-client