$ rpki-client -vvf rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/583F2920A6E611EF9BD0C728C4F9AE02.roa File: 583F2920A6E611EF9BD0C728C4F9AE02.roa (raw, json) Hash identifier: 2Gji4G+Q8to0sVMvyUq5wjYv71c4JLksDjj2P3IW/B4= Subject key identifier: 81:F8:E9:BF:24:7F:EE:63:BB:15:A6:D2:B5:4B:21:AF:C9:F1:B9:5F Certificate issuer: /CN=A918F978/serialNumber=6850AABF9BDABF26BFA09283021FE913D6956E32 Certificate serial: 1346 Authority key identifier: 68:50:AA:BF:9B:DA:BF:26:BF:A0:92:83:02:1F:E9:13:D6:95:6E:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/583F2920A6E611EF9BD0C728C4F9AE02.roa Signing time: Wed 24 Sep 2025 17:36:18 +0000 ROA not before: Wed 24 Sep 2025 17:36:18 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 138197 IP address blocks: 103.129.208.0/24 maxlen: 24 103.129.210.0/23 maxlen: 23 103.129.210.0/24 maxlen: 24 103.129.211.0/24 maxlen: 24 2403:8840::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.crl rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:31:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4934 (0x1346) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F978, serialNumber=6850AABF9BDABF26BFA09283021FE913D6956E32 Validity Not Before: Sep 24 17:36:18 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68d42c12-d5bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:da:20:61:6d:62:d2:6e:85:da:53:1a:99:1c: b4:f5:a7:e3:84:7e:cf:f6:73:e7:53:0a:53:35:0a: 82:72:e5:d9:87:92:ba:48:5f:97:15:d7:60:4f:4d: 82:84:bf:58:0f:81:b1:a9:03:b0:07:7d:e3:00:a4: b6:1a:0d:59:78:fa:fb:58:68:45:d9:99:24:76:76: b6:36:6e:ee:5a:ec:14:0d:6e:3f:46:f6:e9:1b:4b: d8:ab:8b:b4:b4:36:82:b5:f0:5d:bd:25:14:e3:be: 7c:65:7e:dd:5d:96:86:e0:96:74:58:1c:3c:8b:3d: 67:47:10:93:6b:7f:21:73:1f:a9:b2:37:13:b0:99: aa:cb:c8:52:aa:a6:3f:11:c7:3e:a2:74:80:2f:18: 03:e3:9b:01:f2:20:ae:0a:87:03:8f:94:cb:ea:87: 82:64:b4:fa:42:dd:2c:de:d5:ef:e2:2a:90:f8:cb: 4b:eb:bc:da:25:8e:54:ee:77:cb:fe:6a:5e:28:03: fb:fb:a8:f5:27:e8:91:34:cf:c9:b7:a3:ea:d8:d4: 24:90:cd:a4:ed:72:e8:1d:55:26:da:e0:b2:4d:2c: b5:63:e9:e4:a7:93:5c:35:8c:7e:0f:c9:ca:1b:89: 91:57:52:4b:ee:e1:1e:74:92:5f:9c:7a:51:ff:d3: 67:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:F8:E9:BF:24:7F:EE:63:BB:15:A6:D2:B5:4B:21:AF:C9:F1:B9:5F X509v3 Authority Key Identifier: keyid:68:50:AA:BF:9B:DA:BF:26:BF:A0:92:83:02:1F:E9:13:D6:95:6E:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/583F2920A6E611EF9BD0C728C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.129.208.0/24 103.129.210.0/23 IPv6: 2403:8840::/32 Signature Algorithm: sha256WithRSAEncryption 85:28:30:fc:ac:fb:54:51:03:d0:0e:da:0b:19:e2:0f:c3:b1: 53:5e:60:4e:f9:2c:e2:54:d5:06:67:d7:1d:7b:01:55:cd:55: 01:30:bb:47:e5:97:fe:08:b1:c3:2e:79:e8:e4:e3:c7:66:9b: 4e:6a:6d:57:8a:45:68:91:2d:fa:81:4a:91:e3:2d:90:af:6a: 44:63:08:fa:50:25:35:ff:c2:70:ef:07:0a:f9:35:ac:c0:b8: 1c:c7:8c:a0:28:fa:dd:10:80:59:08:17:0a:23:e5:a8:3a:3f: a4:ab:91:04:f5:98:e3:89:15:d4:44:76:9c:7a:7d:7f:87:36: 49:d0:20:e4:23:3e:dc:8c:cc:7c:30:28:0d:d4:1a:f1:99:5e: 0c:fd:f4:21:90:9a:b4:45:51:73:d1:02:a3:20:4a:0d:77:93: 8d:a4:b8:54:b3:7b:bf:95:1c:3b:58:0c:37:44:0f:ed:75:69: 5e:24:14:fc:ca:cb:91:15:26:b2:d2:02:d1:6d:08:ea:a2:34: 13:34:df:32:bd:40:ba:0d:e8:16:8f:65:78:e7:bc:ff:b0:ec: 01:7c:8e:cf:cb:1e:de:60:51:4a:b9:04:ec:ef:12:bd:7b:84: 55:9b:50:44:43:73:6d:e7:1c:83:98:0f:24:58:c9:59:51:a2: 76:27:5e:07 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICE0YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY5NzgxMTAvBgNVBAUTKDY4NTBBQUJGOUJEQUJGMjZCRkEwOTI4MzAyMUZFOTEz RDY5NTZFMzIwHhcNMjUwOTI0MTczNjE4WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ0MmMxMi1kNWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAstogYW1i0m6F2lMamRy09afjhH7P9nPnUwpTNQqCcuXZh5K6SF+XFddgT02C hL9YD4GxqQOwB33jAKS2Gg1ZePr7WGhF2Zkkdna2Nm7uWuwUDW4/RvbpG0vYq4u0 tDaCtfBdvSUU4758ZX7dXZaG4JZ0WBw8iz1nRxCTa38hcx+psjcTsJmqy8hSqqY/ Ecc+onSALxgD45sB8iCuCocDj5TL6oeCZLT6Qt0s3tXv4iqQ+MtL67zaJY5U7nfL /mpeKAP7+6j1J+iRNM/Jt6Pq2NQkkM2k7XLoHVUm2uCyTSy1Y+nkp5NcNYx+D8nK G4mRV1JL7uEedJJfnHpR/9Nn3wIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFIH46b8k f+5juxWm0rVLIa/J8blfMB8GA1UdIwQYMBaAFGhQqr+b2r8mv6CSgwIf6RPWlW4y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Rjk3OC83RTIyQjM3NEI2 OUIxMUU4QUUwNkM2MTZDNEY5QUUwMi9hRkNxdjV2YXZ5YV9vSktEQWhfcEU5YVZi akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGQ3F2NXZhdnlhX29KS0RBaF9wRTlhVmJqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEY5NzgvN0UyMkIzNzRCNjlCMTFFOEFFMDZDNjE2QzRGOUFFMDIvNTgzRjI5MjBB NkU2MTFFRjlCRDBDNzI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBABngdADBAFngdIwDQQCAAIwBwMFACQDiEAwDQYJKoZIhvcN AQELBQADggEBAIUoMPys+1RRA9AO2gsZ4g/DsVNeYE75LOJU1QZn1x17AVXNVQEw u0fll/4IscMueejk48dmm05qbVeKRWiRLfqBSpHjLZCvakRjCPpQJTX/wnDvBwr5 NazAuBzHjKAo+t0QgFkIFwoj5ag6P6SrkQT1mOOJFdREdpx6fX+HNknQIOQjPtyM zHwwKA3UGvGZXgz99CGQmrRFUXPRAqMgSg13k42kuFSze7+VHDtYDDdED+11aV4k FPzKy5EVJrLSAtFtCOqiNBM03zK9QLoN6BaPZXjnvP+w7AF8js/LHt5gUUq5BOzv Er17hFWbUERDc23nHIOYDyRYyVlRonYnXgc= -----END CERTIFICATE-----Generated at Mon Oct 20 12:44:09 2025 by rpki-client