$ rpki-client -vvf rpki.apnic.net/member_repository/A918FDBF/99A30AF8F8C511E69EBC556AC4F9AE02/1D88BC36F8C711E6B6C42C6CC4F9AE02.roa File: 1D88BC36F8C711E6B6C42C6CC4F9AE02.roa (raw, json) Hash identifier: kBZXfU8hYHbxkpL5pMVsBeQd1k5TVtind4j2n+kliDs= Subject key identifier: 9B:49:7F:62:ED:0C:27:08:63:23:40:64:19:B7:0F:14:A2:FA:5B:15 Certificate issuer: /CN=A918FDBF/serialNumber=8D9A228CC52F800EE5A432307B3432C63D8A9D87 Certificate serial: 1C05 Authority key identifier: 8D:9A:22:8C:C5:2F:80:0E:E5:A4:32:30:7B:34:32:C6:3D:8A:9D:87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jZoijMUvgA7lpDIwezQyxj2KnYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FDBF/99A30AF8F8C511E69EBC556AC4F9AE02/1D88BC36F8C711E6B6C42C6CC4F9AE02.roa Signing time: Tue 02 Sep 2025 16:34:32 +0000 ROA not before: Tue 02 Sep 2025 16:34:32 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 131999 IP address blocks: 103.29.168.0/23 maxlen: 23 103.229.187.0/24 maxlen: 24 2401:b300::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FDBF/99A30AF8F8C511E69EBC556AC4F9AE02/jZoijMUvgA7lpDIwezQyxj2KnYc.crl rsync://rpki.apnic.net/member_repository/A918FDBF/99A30AF8F8C511E69EBC556AC4F9AE02/jZoijMUvgA7lpDIwezQyxj2KnYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jZoijMUvgA7lpDIwezQyxj2KnYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 16:30:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7173 (0x1c05) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FDBF, serialNumber=8D9A228CC52F800EE5A432307B3432C63D8A9D87 Validity Not Before: Sep 2 16:34:32 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b71c98-9b50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:6f:03:4d:bf:ed:22:ce:70:02:c0:37:ba:39: d0:46:90:dc:91:47:78:6c:54:49:b9:37:1a:46:cc: 4a:da:f5:30:97:cf:ca:5e:48:c4:5c:a5:2d:fb:85: 0c:c5:2d:6c:a2:47:e8:3e:c3:d8:07:64:d0:7b:3c: d0:b4:18:78:06:65:9b:6c:2b:66:64:39:51:ac:b5: c2:64:bb:98:5e:ff:af:b3:84:6b:30:43:e9:23:38: 01:db:72:12:11:3e:f3:62:8a:67:fb:78:5f:3a:c1: 34:bd:02:9a:8d:10:20:2f:54:ae:0b:e3:4f:ec:8d: 53:b3:30:34:ef:93:9f:d9:fa:42:b7:a6:e2:f5:06: 65:01:74:f0:a3:35:cc:c8:48:86:54:09:68:3c:e9: fe:cf:ca:ad:29:95:c5:b1:85:6e:43:18:58:cf:51: 45:a5:72:cc:8e:12:34:84:ef:9d:99:b2:14:35:b2: 46:22:4e:d1:73:f0:db:b9:63:d2:fd:ce:be:ba:4a: 6f:ae:bd:f1:8c:4f:7b:15:70:28:99:75:96:14:69: 83:2f:5f:6e:7c:bf:f0:32:ce:96:ba:a1:9c:8e:e0: 75:ac:d9:74:d2:09:2a:2e:9a:f0:b1:d9:03:bf:17: ec:ee:e4:ff:00:34:e0:7c:31:26:a5:00:e2:e3:e5: 12:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:49:7F:62:ED:0C:27:08:63:23:40:64:19:B7:0F:14:A2:FA:5B:15 X509v3 Authority Key Identifier: keyid:8D:9A:22:8C:C5:2F:80:0E:E5:A4:32:30:7B:34:32:C6:3D:8A:9D:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FDBF/99A30AF8F8C511E69EBC556AC4F9AE02/jZoijMUvgA7lpDIwezQyxj2KnYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jZoijMUvgA7lpDIwezQyxj2KnYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FDBF/99A30AF8F8C511E69EBC556AC4F9AE02/1D88BC36F8C711E6B6C42C6CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.29.168.0/23 103.229.187.0/24 IPv6: 2401:b300::/32 Signature Algorithm: sha256WithRSAEncryption 7c:c0:4c:20:1c:00:2c:1d:2d:83:a9:b3:20:0e:5d:11:fa:f3: 14:5d:2e:ef:55:89:48:32:c7:7d:88:0f:96:46:26:59:6d:c8: a5:9b:f3:a2:8d:c7:8a:df:2b:1b:8c:14:ba:fc:90:88:cf:51: ee:38:56:ba:80:af:42:1f:98:1c:25:b5:cc:80:46:70:67:36: 4c:cf:0b:cb:68:df:8e:be:3f:49:07:b9:9c:35:ee:cd:85:1d: ad:99:19:05:e8:e4:b4:e0:af:33:3e:25:fd:80:2a:fa:66:93: 76:91:23:02:79:e7:28:87:64:81:bc:9e:b7:c8:d3:b9:ef:ed: ee:57:5a:8e:00:7a:1d:8a:dc:aa:e8:05:00:27:4c:e3:60:b5: e2:27:28:b6:d6:ae:4c:8a:bd:2e:b8:d2:8c:71:1f:42:ef:b9: a2:df:f7:5c:a9:9e:88:d8:2f:31:5b:2e:4d:01:3c:0b:c9:04: d9:48:ce:7c:69:87:85:0c:da:6a:b1:2f:07:e6:78:31:d9:23: d1:79:60:1b:df:cf:44:cc:92:11:c4:60:1f:b5:c8:23:49:0d: 93:fa:1e:f7:ed:47:08:bf:c3:b5:e7:37:9c:73:4b:1d:91:7c: 38:74:8a:b8:64:f7:29:50:28:a5:69:79:68:5f:ce:c4:f4:6f: f4:bd:97:96 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICHAUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZEQkYxMTAvBgNVBAUTKDhEOUEyMjhDQzUyRjgwMEVFNUE0MzIzMDdCMzQzMkM2 M0Q4QTlEODcwHhcNMjUwOTAyMTYzNDMyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3MWM5OC05YjUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy28DTb/tIs5wAsA3ujnQRpDckUd4bFRJuTcaRsxK2vUwl8/KXkjEXKUt+4UM xS1sokfoPsPYB2TQezzQtBh4BmWbbCtmZDlRrLXCZLuYXv+vs4RrMEPpIzgB23IS ET7zYopn+3hfOsE0vQKajRAgL1SuC+NP7I1TszA075Of2fpCt6bi9QZlAXTwozXM yEiGVAloPOn+z8qtKZXFsYVuQxhYz1FFpXLMjhI0hO+dmbIUNbJGIk7Rc/DbuWPS /c6+ukpvrr3xjE97FXAomXWWFGmDL19ufL/wMs6WuqGcjuB1rNl00gkqLprwsdkD vxfs7uT/ADTgfDEmpQDi4+US5QIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFJtJf2Lt DCcIYyNAZBm3DxSi+lsVMB8GA1UdIwQYMBaAFI2aIozFL4AO5aQyMHs0MsY9ip2H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkRCRi85OUEzMEFGOEY4 QzUxMUU2OUVCQzU1NkFDNEY5QUUwMi9qWm9pak1VdmdBN2xwREl3ZXpReXhqMktu WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pab2lqTVV2Z0E3bHBESXdlelF5eGoyS25ZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEZEQkYvOTlBMzBBRjhGOEM1MTFFNjlFQkM1NTZBQzRGOUFFMDIvMUQ4OEJDMzZG OEM3MTFFNkI2QzQyQzZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAFnHagDBABn5bswDQQCAAIwBwMFACQBswAwDQYJKoZIhvcN AQELBQADggEBAHzATCAcACwdLYOpsyAOXRH68xRdLu9ViUgyx32ID5ZGJlltyKWb 86KNx4rfKxuMFLr8kIjPUe44VrqAr0IfmBwltcyARnBnNkzPC8to346+P0kHuZw1 7s2FHa2ZGQXo5LTgrzM+Jf2AKvpmk3aRIwJ55yiHZIG8nrfI07nv7e5XWo4Aeh2K 3KroBQAnTONgteInKLbWrkyKvS640oxxH0LvuaLf91ypnojYLzFbLk0BPAvJBNlI znxph4UM2mqxLwfmeDHZI9F5YBvfz0TMkhHEYB+1yCNJDZP6HvftRwi/w7XnN5xz Sx2RfDh0irhk9ylQKKVpeWhfzsT0b/S9l5Y= -----END CERTIFICATE-----Generated at Mon Oct 20 20:16:38 2025 by rpki-client