$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/AB93EEC0A7CD11EF97E9412CC4F9AE02.roa File: AB93EEC0A7CD11EF97E9412CC4F9AE02.roa (raw, json) Hash identifier: PoAyToYrorNV7GC2CUsYQbnOgoA1xnCBngCqhWxY/Sk= Subject key identifier: BD:2C:6D:AC:14:81:FE:44:86:2D:A1:F9:C8:BA:A1:C0:68:F5:26:D6 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: C4F7 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/AB93EEC0A7CD11EF97E9412CC4F9AE02.roa Signing time: Mon 15 Sep 2025 09:13:37 +0000 ROA not before: Mon 15 Sep 2025 09:13:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 133257 IP address blocks: 103.121.68.0/22 maxlen: 24 2001:df6:ac0::/48 maxlen: 48 2400:9d60::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:33:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50423 (0xc4f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Sep 15 09:13:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68c7d8c1-47e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f9:c9:f1:4c:db:ed:b0:dd:bf:5c:a3:8f:09: 8c:89:b1:0f:5a:40:fb:60:b0:8a:0b:e3:a1:7f:80: 84:95:38:ae:33:e0:a9:7c:45:df:70:b5:7b:8d:75: 14:89:04:7b:cd:65:30:3f:db:06:cd:f5:22:91:e2: 16:9b:99:91:4a:f0:03:cf:06:31:87:c5:bb:81:19: e4:b2:dd:c5:2e:15:d3:91:7c:c4:8a:57:80:35:4b: c9:cf:06:8a:06:7f:49:9a:2c:fb:d0:a0:bd:3d:69: e3:66:d5:df:f7:3f:cb:9f:a4:a9:18:cf:73:03:dc: 6f:a9:e2:f3:97:03:0d:03:8b:85:ee:b9:e7:e2:2c: 1e:c3:1f:78:ce:2a:8b:0f:3d:65:16:9b:2b:29:41: dd:63:c3:eb:ec:6a:39:9d:93:10:ef:26:b7:0d:4d: 44:f0:85:b7:c2:1e:8c:72:23:86:01:ac:52:bf:6a: c3:9f:dd:9c:29:a2:84:fc:74:bf:af:f3:8a:b0:ca: bf:5c:91:85:84:07:d7:6e:b6:72:78:69:f5:e5:7b: 7e:23:81:5d:3c:98:75:e3:23:61:53:24:f9:ee:c6: 5d:cb:04:a4:49:1b:10:c6:12:b5:11:02:00:09:66: 63:72:33:63:94:2d:ca:f9:ad:3e:36:02:06:81:24: 97:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:2C:6D:AC:14:81:FE:44:86:2D:A1:F9:C8:BA:A1:C0:68:F5:26:D6 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/AB93EEC0A7CD11EF97E9412CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.121.68.0/22 IPv6: 2001:df6:ac0::/48 2400:9d60::/32 Signature Algorithm: sha256WithRSAEncryption 01:3c:ce:be:0d:22:9a:35:88:d3:62:38:90:50:2e:f5:aa:c1: a1:ee:db:cf:4b:b2:e4:c1:eb:d9:4a:f5:6b:1e:fb:00:dc:00: 3f:c6:10:53:6e:bf:c5:29:23:79:76:75:c5:62:97:9e:3d:a4: 6d:4c:aa:27:ca:05:49:ae:55:40:d3:a1:c4:10:dc:14:07:22: 91:c5:e4:dc:88:e4:1e:7e:b0:fe:6d:45:6c:39:94:4f:f2:dd: fd:1b:df:37:0a:76:16:79:62:ba:f0:8c:af:9f:23:af:a9:59: 9a:ad:78:bd:f7:68:bd:e7:c8:e2:f2:55:c2:74:3b:d0:ac:9d: d3:da:7d:fe:1b:2e:3a:6e:ed:9b:7c:25:0b:c0:30:37:65:36: 3a:99:b1:0e:3b:ee:a2:dc:78:28:fa:0b:cc:3b:49:18:02:11: c1:68:e6:26:a2:0e:87:c5:cf:7c:66:91:e3:df:89:fc:5a:c8: de:7b:f1:91:2a:8f:04:fd:d7:1a:dc:6a:7f:04:44:47:4a:22: b4:d5:f3:ce:7a:57:ca:51:c5:e1:2d:08:a5:12:f0:fc:0f:94: ba:78:98:4a:29:5a:a7:eb:d2:1b:9f:83:01:83:11:0f:26:81: d5:69:72:f4:77:e4:b1:98:e6:96:4f:42:09:c9:e9:cc:3b:13: b6:c0:05:42 -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgIDAMT3MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDkxNTA5MTMzN1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjhjN2Q4YzEtNDdlMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALP5yfFM2+2w3b9co48JjImxD1pA+2CwigvjoX+AhJU4rjPgqXxF33C1e411 FIkEe81lMD/bBs31IpHiFpuZkUrwA88GMYfFu4EZ5LLdxS4V05F8xIpXgDVLyc8G igZ/SZos+9CgvT1p42bV3/c/y5+kqRjPcwPcb6ni85cDDQOLhe655+IsHsMfeM4q iw89ZRabKylB3WPD6+xqOZ2TEO8mtw1NRPCFt8IejHIjhgGsUr9qw5/dnCmihPx0 v6/zirDKv1yRhYQH1262cnhp9eV7fiOBXTyYdeMjYVMk+e7GXcsEpEkbEMYStREC AAlmY3IzY5QtyvmtPjYCBoEkl5UCAwEAAaOCAq0wggKpMB0GA1UdDgQWBBS9LG2s FIH+RIYtofnIuqHAaPUm1jAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0FCOTNFRUMw QTdDRDExRUY5N0U5NDEyQ0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDcGCCsGAQUFBwEHAQH/ BCgwJjAMBAIAATAGAwQCZ3lEMBYEAgACMBADBwAgAQ32CsADBQAkAJ1gMA0GCSqG SIb3DQEBCwUAA4IBAQABPM6+DSKaNYjTYjiQUC71qsGh7tvPS7LkwevZSvVrHvsA 3AA/xhBTbr/FKSN5dnXFYpeePaRtTKonygVJrlVA06HEENwUByKRxeTciOQefrD+ bUVsOZRP8t39G983CnYWeWK68IyvnyOvqVmarXi992i958ji8lXCdDvQrJ3T2n3+ Gy46bu2bfCULwDA3ZTY6mbEOO+6i3Hgo+gvMO0kYAhHBaOYmog6Hxc98ZpHj34n8 Wsjee/GRKo8E/dca3Gp/BERHSiK01fPOelfKUcXhLQilEvD8D5S6eJhKKVqn69Ib n4MBgxEPJoHVaXL0d+SxmOaWT0IJyenMOxO2wAVC -----END CERTIFICATE-----Generated at Mon Oct 20 05:46:32 2025 by rpki-client