$ rpki-client -vvf rpki.apnic.net/member_repository/A918F862/1E6F6C120FF911E9A0D92B0FC4F9AE02/D1D7F9AE0FF911E9B45E3B10C4F9AE02.roa File: D1D7F9AE0FF911E9B45E3B10C4F9AE02.roa (raw, json) Hash identifier: VAzSuvDMIX7CvCig+o9VQChq5efkdgttCnjgseDhgh8= Subject key identifier: BC:1D:6F:88:17:81:AF:C9:31:65:5E:DE:A1:C6:1D:F3:1F:78:53:70 Certificate issuer: /CN=A918F862/serialNumber=E852A58DE8719F8BC6BD64949854B47447B89CDE Certificate serial: 116D Authority key identifier: E8:52:A5:8D:E8:71:9F:8B:C6:BD:64:94:98:54:B4:74:47:B8:9C:DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6FKljehxn4vGvWSUmFS0dEe4nN4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F862/1E6F6C120FF911E9A0D92B0FC4F9AE02/D1D7F9AE0FF911E9B45E3B10C4F9AE02.roa Signing time: Wed 10 Sep 2025 17:27:01 +0000 ROA not before: Wed 10 Sep 2025 17:27:01 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 132372 IP address blocks: 103.28.90.0/24 maxlen: 24 103.28.91.0/24 maxlen: 24 103.72.162.0/23 maxlen: 24 103.117.20.0/24 maxlen: 24 103.122.164.0/24 maxlen: 24 2403:fd40:1001::/48 maxlen: 48 2403:fd40:1002::/48 maxlen: 48 2403:fd40:1003::/48 maxlen: 48 2403:fd40:a000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F862/1E6F6C120FF911E9A0D92B0FC4F9AE02/6FKljehxn4vGvWSUmFS0dEe4nN4.crl rsync://rpki.apnic.net/member_repository/A918F862/1E6F6C120FF911E9A0D92B0FC4F9AE02/6FKljehxn4vGvWSUmFS0dEe4nN4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6FKljehxn4vGvWSUmFS0dEe4nN4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:46:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4461 (0x116d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F862, serialNumber=E852A58DE8719F8BC6BD64949854B47447B89CDE Validity Not Before: Sep 10 17:27:01 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68c1b4e5-10b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:8f:47:88:93:51:4c:5c:30:5f:d7:10:0c:30: 0a:f3:11:27:a2:4d:e6:92:6f:da:35:d9:36:62:ee: 36:51:bb:ad:e8:6e:9e:90:fe:dd:77:6f:0f:8d:9e: d9:67:56:1b:6a:ee:df:27:50:0b:82:6f:ee:fb:97: c4:86:2b:d5:e2:94:8f:07:34:35:f6:29:fb:17:4e: 8f:a4:fc:0d:38:c1:26:99:6e:ba:50:70:52:f6:7e: 42:77:43:4a:6b:ad:0a:49:c2:49:b0:cc:81:7a:50: 96:8b:cf:b8:6d:21:0f:3c:fe:d8:34:93:50:18:0d: 82:46:60:11:45:59:d2:36:83:26:d1:3d:1d:32:2d: 48:30:38:87:9a:6a:83:31:8f:d2:e6:ee:14:76:9b: 48:29:6e:3f:f0:c3:49:62:a2:8e:b8:ea:32:75:a7: 7c:a9:a9:49:07:76:66:56:55:16:7e:14:da:a8:82: bb:6a:a2:6d:7f:f0:3c:c4:e8:68:a6:1d:c4:4c:a6: 36:c0:27:1b:b2:8c:8a:06:0a:e8:e3:3d:7c:22:f9: dc:9e:08:1b:84:d0:85:5d:55:68:cb:70:f2:59:23: 5d:60:16:81:0e:12:65:c0:5a:76:bf:44:f0:06:9a: 00:b0:3c:ec:95:23:01:12:ce:7c:30:9e:13:61:a5: 28:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:1D:6F:88:17:81:AF:C9:31:65:5E:DE:A1:C6:1D:F3:1F:78:53:70 X509v3 Authority Key Identifier: keyid:E8:52:A5:8D:E8:71:9F:8B:C6:BD:64:94:98:54:B4:74:47:B8:9C:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F862/1E6F6C120FF911E9A0D92B0FC4F9AE02/6FKljehxn4vGvWSUmFS0dEe4nN4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6FKljehxn4vGvWSUmFS0dEe4nN4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F862/1E6F6C120FF911E9A0D92B0FC4F9AE02/D1D7F9AE0FF911E9B45E3B10C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.28.90.0/23 103.72.162.0/23 103.117.20.0/24 103.122.164.0/24 IPv6: 2403:fd40:1001::-2403:fd40:1003:ffff:ffff:ffff:ffff:ffff 2403:fd40:a000::/48 Signature Algorithm: sha256WithRSAEncryption 23:58:2c:1a:25:5c:15:75:62:83:76:62:9a:0a:8d:9e:a0:ae: 5d:0c:87:a3:6c:81:fb:f0:9f:55:ab:65:d7:9a:65:66:a3:97: 24:67:88:27:86:c8:11:d6:4b:54:69:3d:02:9f:6d:b6:58:f8: b2:48:23:53:09:b1:9a:a0:79:e2:e1:80:77:0b:40:2c:05:29: da:e1:df:c8:e0:07:96:43:e6:85:5f:9e:c9:df:69:e8:5f:c5: fc:98:26:30:e7:4a:2c:e8:96:b3:c9:d6:cb:a4:73:43:78:0a: d0:f5:69:9d:36:fa:09:d8:3c:77:0c:7b:e1:76:a9:39:8d:9e: c2:6d:32:4d:b1:50:04:61:f6:ce:24:4b:ca:1e:e5:2f:11:d3: 0a:e6:68:ee:2a:83:fa:bb:ae:4e:55:75:40:ed:49:d6:1c:b2: 44:d5:9c:ae:b0:d6:17:26:4e:3b:cc:fe:79:51:92:34:ba:b3: c1:76:88:8c:07:f5:c8:ab:82:85:fa:9c:82:52:21:a1:12:74: 63:9e:a9:5d:5e:ee:ba:62:35:80:84:31:eb:85:c0:ae:48:5b: 3c:87:c7:28:3f:b6:cb:12:fa:5b:cb:14:87:61:46:99:02:6c: ac:cf:d1:8e:54:ed:77:b3:62:45:02:40:ac:42:6e:51:34:af: 8c:36:17:89 -----BEGIN CERTIFICATE----- MIIFqDCCBJCgAwIBAgICEW0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY4NjIxMTAvBgNVBAUTKEU4NTJBNThERTg3MTlGOEJDNkJENjQ5NDk4NTRCNDc0 NDdCODlDREUwHhcNMjUwOTEwMTcyNzAxWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGMxYjRlNS0xMGIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmo9HiJNRTFwwX9cQDDAK8xEnok3mkm/aNdk2Yu42Ubut6G6ekP7dd28PjZ7Z Z1Ybau7fJ1ALgm/u+5fEhivV4pSPBzQ19in7F06PpPwNOMEmmW66UHBS9n5Cd0NK a60KScJJsMyBelCWi8+4bSEPPP7YNJNQGA2CRmARRVnSNoMm0T0dMi1IMDiHmmqD MY/S5u4UdptIKW4/8MNJYqKOuOoydad8qalJB3ZmVlUWfhTaqIK7aqJtf/A8xOho ph3ETKY2wCcbsoyKBgro4z18IvncnggbhNCFXVVoy3DyWSNdYBaBDhJlwFp2v0Tw BpoAsDzslSMBEs58MJ4TYaUoGwIDAQABo4ICzDCCAsgwHQYDVR0OBBYEFLwdb4gX ga/JMWVe3qHGHfMfeFNwMB8GA1UdIwQYMBaAFOhSpY3ocZ+Lxr1klJhUtHRHuJze MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Rjg2Mi8xRTZGNkMxMjBG RjkxMUU5QTBEOTJCMEZDNEY5QUUwMi82RktsamVoeG40dkd2V1NVbUZTMGRFZTRu TjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZGS2xqZWh4bjR2R3ZXU1VtRlMwZEVlNG5ONC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEY4NjIvMUU2RjZDMTIwRkY5MTFFOUEwRDkyQjBGQzRGOUFFMDIvRDFEN0Y5QUUw RkY5MTFFOUI0NUUzQjEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwVgYIKwYBBQUHAQcBAf8E RzBFMB4EAgABMBgDBAFnHFoDBAFnSKIDBABndRQDBABneqQwIwQCAAIwHTASAwcA JAP9QBABAwcCJAP9QBAAAwcAJAP9QKAAMA0GCSqGSIb3DQEBCwUAA4IBAQAjWCwa JVwVdWKDdmKaCo2eoK5dDIejbIH78J9Vq2XXmmVmo5ckZ4gnhsgR1ktUaT0Cn222 WPiySCNTCbGaoHni4YB3C0AsBSna4d/I4AeWQ+aFX57J32noX8X8mCYw50os6Jaz ydbLpHNDeArQ9WmdNvoJ2Dx3DHvhdqk5jZ7CbTJNsVAEYfbOJEvKHuUvEdMK5mju KoP6u65OVXVA7UnWHLJE1ZyusNYXJk47zP55UZI0urPBdoiMB/XIq4KF+pyCUiGh EnRjnqldXu66YjWAhDHrhcCuSFs8h8coP7bLEvpbyxSHYUaZAmysz9GOVO13s2JF AkCsQm5RNK+MNheJ -----END CERTIFICATE-----Generated at Mon Oct 20 16:26:32 2025 by rpki-client