$ rpki-client -vvf rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/CC23ED70990811F08BF0CB55C4F9AE02.roa File: CC23ED70990811F08BF0CB55C4F9AE02.roa (raw, json) Hash identifier: hM8AXKx49dN7/4ZLUJiGhpG6j45HmvqjnSWYe9j6v4g= Subject key identifier: BA:6D:04:00:24:87:00:4C:50:BE:A4:5B:D7:90:56:D6:9D:BF:BB:07 Certificate issuer: /CN=A918F550/serialNumber=A24B6A62044B70065F0506388460E4AF2F17F3FF Certificate serial: 35A9 Authority key identifier: A2:4B:6A:62:04:4B:70:06:5F:05:06:38:84:60:E4:AF:2F:17:F3:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/CC23ED70990811F08BF0CB55C4F9AE02.roa Signing time: Wed 24 Sep 2025 05:39:11 +0000 ROA not before: Wed 24 Sep 2025 05:39:11 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 45845 IP address blocks: 103.250.135.0/24 maxlen: 24 202.51.66.0/24 maxlen: 24 202.51.70.0/24 maxlen: 24 202.51.77.0/24 maxlen: 24 202.51.79.0/24 maxlen: 24 202.51.94.0/24 maxlen: 24 2405:6600::/32 maxlen: 32 2405:6600:201::/48 maxlen: 48 2405:6600:600::/48 maxlen: 48 2405:6600:701::/48 maxlen: 48 2405:6600:702::/48 maxlen: 48 2405:6600:703::/48 maxlen: 48 2405:6600:709::/48 maxlen: 48 2405:6600:c00::/48 maxlen: 48 2405:6600:c43::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.crl rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 14:27:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13737 (0x35a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F550, serialNumber=A24B6A62044B70065F0506388460E4AF2F17F3FF Validity Not Before: Sep 24 05:39:11 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68d383ff-bcf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:26:cb:c5:fc:80:e0:ad:66:b6:fb:9d:5e:80: 1c:33:dd:78:a4:26:35:6f:30:37:c8:fa:f5:4e:68: 83:86:e1:fe:0d:00:2c:5f:d7:42:03:52:4b:c7:a6: 38:e0:8e:c4:25:57:1a:bd:4e:09:85:08:47:b2:71: bd:2b:88:d6:0e:65:6a:d5:ec:ca:9b:cb:b6:61:ec: 3b:93:d8:66:96:49:60:91:e1:fe:39:ab:77:36:e3: a9:25:ef:75:bd:d8:41:23:a5:28:83:76:7d:3d:a8: ef:9d:4c:19:52:27:15:54:fc:4f:87:93:7a:a2:65: ba:c3:f4:5b:1a:88:72:e9:0e:2d:30:f4:5d:96:f7: c7:60:b9:19:d9:a3:fb:56:e2:51:56:d0:10:7e:99: e2:17:59:08:cf:d0:24:57:f7:27:ce:97:4f:ef:03: 14:cc:07:f0:1b:3f:24:49:8b:52:61:57:f6:d0:d9: 0d:a8:f9:00:08:bc:42:d4:36:1f:81:f8:66:16:3d: 95:e6:5c:85:37:e9:f3:4d:bd:54:68:9a:f9:98:56: b0:17:b2:6f:4a:64:aa:ee:69:64:9b:bd:ce:5f:93: 1e:2b:dd:c1:0d:d4:63:ca:9d:32:5e:84:73:5e:5d: 75:ca:64:22:cf:51:ff:70:a2:9d:42:fc:66:01:a0: 9f:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:6D:04:00:24:87:00:4C:50:BE:A4:5B:D7:90:56:D6:9D:BF:BB:07 X509v3 Authority Key Identifier: keyid:A2:4B:6A:62:04:4B:70:06:5F:05:06:38:84:60:E4:AF:2F:17:F3:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/CC23ED70990811F08BF0CB55C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.250.135.0/24 202.51.66.0/24 202.51.70.0/24 202.51.77.0/24 202.51.79.0/24 202.51.94.0/24 IPv6: 2405:6600::/32 Signature Algorithm: sha256WithRSAEncryption 86:a1:1b:58:19:08:47:bf:58:78:e5:2d:ea:22:fe:47:25:15: 84:f3:dd:e6:6e:bc:8b:61:c6:f2:6f:d4:02:01:6d:f3:15:d7: 31:c8:cd:c4:26:4b:d6:9c:43:8b:e3:bb:7e:36:44:50:ca:cf: 1a:b8:99:90:47:f0:1a:67:83:58:8a:88:76:f3:7c:0c:85:7e: f8:93:e7:a3:27:23:b7:86:9a:4b:d1:e1:53:1a:35:ff:fe:85: 3d:01:71:aa:c7:e2:5d:0c:34:66:28:c5:b6:f4:e5:0c:8a:e7: c9:d7:bb:15:fc:b4:cc:dd:f6:2b:4a:31:78:ff:90:8b:82:a7: 18:18:8e:b0:9c:3a:cf:61:c6:df:83:6c:07:0a:ef:25:19:4f: aa:fa:c2:83:0d:c2:87:4f:6a:f2:28:a1:cb:5f:68:d5:fa:a2: cc:99:8b:0c:ba:82:f9:60:12:b8:7f:c1:6e:0e:be:d9:72:1b: a2:1e:0e:d3:98:6e:92:f3:09:74:c4:6b:d6:0f:63:04:66:b5: db:bc:74:6d:6d:f3:30:98:e3:d6:97:45:37:44:e2:b9:dd:3b: 7f:8c:e6:94:44:1c:61:3d:cd:ee:ad:36:2d:dc:d5:51:4f:48: d6:c3:da:39:50:b8:d1:f4:80:78:e4:d5:05:f2:b4:80:21:2b: 19:3d:11:18 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgICNakwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY1NTAxMTAvBgNVBAUTKEEyNEI2QTYyMDQ0QjcwMDY1RjA1MDYzODg0NjBFNEFG MkYxN0YzRkYwHhcNMjUwOTI0MDUzOTExWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQzODNmZi1iY2YwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyybLxfyA4K1mtvudXoAcM914pCY1bzA3yPr1TmiDhuH+DQAsX9dCA1JLx6Y4 4I7EJVcavU4JhQhHsnG9K4jWDmVq1ezKm8u2Yew7k9hmlklgkeH+Oat3NuOpJe91 vdhBI6Uog3Z9PajvnUwZUicVVPxPh5N6omW6w/RbGohy6Q4tMPRdlvfHYLkZ2aP7 VuJRVtAQfpniF1kIz9AkV/cnzpdP7wMUzAfwGz8kSYtSYVf20NkNqPkACLxC1DYf gfhmFj2V5lyFN+nzTb1UaJr5mFawF7JvSmSq7mlkm73OX5MeK93BDdRjyp0yXoRz Xl11ymQiz1H/cKKdQvxmAaCfxQIDAQABo4ICwjCCAr4wHQYDVR0OBBYEFLptBAAk hwBMUL6kW9eQVtadv7sHMB8GA1UdIwQYMBaAFKJLamIES3AGXwUGOIRg5K8vF/P/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjU1MC84QjlCRDIwMjFE ODUxMUUyQjQxMjMwREMwOEIwMkNEMi9va3RxWWdSTGNBWmZCUVk0aEdEa3J5OFg4 XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29rdHFZZ1JMY0FaZkJRWTRoR0Rrcnk4WDhfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEY1NTAvOEI5QkQyMDIxRDg1MTFFMkI0MTIzMERDMDhCMDJDRDIvQ0MyM0VENzA5 OTA4MTFGMDhCRjBDQjU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTAYIKwYBBQUHAQcBAf8E PTA7MCoEAgABMCQDBABn+ocDBADKM0IDBADKM0YDBADKM00DBADKM08DBADKM14w DQQCAAIwBwMFACQFZgAwDQYJKoZIhvcNAQELBQADggEBAIahG1gZCEe/WHjlLeoi /kclFYTz3eZuvIthxvJv1AIBbfMV1zHIzcQmS9acQ4vju342RFDKzxq4mZBH8Bpn g1iKiHbzfAyFfviT56MnI7eGmkvR4VMaNf/+hT0BcarH4l0MNGYoxbb05QyK58nX uxX8tMzd9itKMXj/kIuCpxgYjrCcOs9hxt+DbAcK7yUZT6r6woMNwodPavIooctf aNX6osyZiwy6gvlgErh/wW4OvtlyG6IeDtOYbpLzCXTEa9YPYwRmtdu8dG1t8zCY 49aXRTdE4rndO3+M5pREHGE9ze6tNi3c1VFPSNbD2jlQuNH0gHjk1QXytIAhKxk9 ERg= -----END CERTIFICATE-----Generated at Mon Oct 20 02:47:49 2025 by rpki-client