$ rpki-client -vvf rpki.apnic.net/member_repository/A912A3C4/3EE64C1AB10411EAA384165AC4F9AE02/518ED8E0B10511EAA4771B5BC4F9AE02.roa File: 518ED8E0B10511EAA4771B5BC4F9AE02.roa (raw, json) Hash identifier: 4NqH+CTlAXcxsKUUu0JoB2lmVEYgLTqKdl4anKNbgT8= Subject key identifier: 22:81:9F:C8:D9:9A:23:E9:11:97:6C:8B:37:3A:46:80:CF:11:7C:8C Certificate issuer: /CN=A912A3C4/serialNumber=9523AD25ECAD5CC525EC42E9EC1DAE4FDFD86057 Certificate serial: 091E Authority key identifier: 95:23:AD:25:EC:AD:5C:C5:25:EC:42:E9:EC:1D:AE:4F:DF:D8:60:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSOtJeytXMUl7ELp7B2uT9_YYFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A3C4/3EE64C1AB10411EAA384165AC4F9AE02/518ED8E0B10511EAA4771B5BC4F9AE02.roa Signing time: Thu 25 Sep 2025 01:24:11 +0000 ROA not before: Thu 25 Sep 2025 01:24:11 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 38887 IP address blocks: 103.150.248.0/23 maxlen: 24 103.240.222.0/23 maxlen: 24 2406:fc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A3C4/3EE64C1AB10411EAA384165AC4F9AE02/lSOtJeytXMUl7ELp7B2uT9_YYFc.crl rsync://rpki.apnic.net/member_repository/A912A3C4/3EE64C1AB10411EAA384165AC4F9AE02/lSOtJeytXMUl7ELp7B2uT9_YYFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSOtJeytXMUl7ELp7B2uT9_YYFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:21:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2334 (0x91e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A3C4, serialNumber=9523AD25ECAD5CC525EC42E9EC1DAE4FDFD86057 Validity Not Before: Sep 25 01:24:11 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68d499bb-2c2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:26:c5:17:13:fd:0d:9e:3a:d1:9f:07:f6:8d: 16:28:9e:ae:df:29:8d:59:0b:b5:f1:cf:e7:4b:7d: 6e:85:6f:c7:ea:1a:47:9f:0f:33:1e:c6:08:dc:d4: 70:e2:28:9f:1b:0b:7a:e8:58:86:62:74:06:f4:10: ed:a8:ab:97:b6:9f:59:59:72:63:25:4b:44:8a:52: 3a:6f:6d:81:24:95:7d:dd:af:c7:2d:f8:6d:32:25: 01:24:ac:99:ac:fa:74:59:6c:9b:1e:00:2b:2b:ef: 92:5c:1c:5f:bf:19:67:fe:8e:1a:a0:47:04:bc:64: 86:10:02:e4:56:bf:1c:30:41:ec:ff:3d:87:3c:85: da:26:ae:3c:67:0d:09:14:fd:b7:d1:8a:63:4d:02: 8c:33:a6:3b:6d:da:94:2d:92:88:a0:95:cf:04:25: fb:5d:f4:37:74:f7:f7:cc:af:1f:01:3f:55:eb:3a: 24:ff:97:50:c0:04:30:9e:69:7e:a3:25:b9:3a:21: e9:69:57:10:c1:ca:97:2a:50:ed:98:7a:47:69:85: e1:f9:cd:bd:40:40:29:d3:01:15:e2:47:53:8d:78: bc:32:e2:90:42:14:e1:1c:03:a2:7b:28:65:54:c8: 85:bc:0d:24:dd:65:48:13:21:bb:8f:a2:16:03:7b: cc:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:81:9F:C8:D9:9A:23:E9:11:97:6C:8B:37:3A:46:80:CF:11:7C:8C X509v3 Authority Key Identifier: keyid:95:23:AD:25:EC:AD:5C:C5:25:EC:42:E9:EC:1D:AE:4F:DF:D8:60:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A3C4/3EE64C1AB10411EAA384165AC4F9AE02/lSOtJeytXMUl7ELp7B2uT9_YYFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSOtJeytXMUl7ELp7B2uT9_YYFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A3C4/3EE64C1AB10411EAA384165AC4F9AE02/518ED8E0B10511EAA4771B5BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.248.0/23 103.240.222.0/23 IPv6: 2406:fc0::/32 Signature Algorithm: sha256WithRSAEncryption 42:20:f5:7e:f6:f4:29:57:a4:a5:35:f0:79:a8:83:9f:f2:dc: b9:50:f6:21:43:a2:87:d3:a8:47:86:65:24:ef:55:75:14:73: 89:2c:43:7a:fd:29:1e:cf:21:01:8b:42:98:5a:95:f9:de:42: 97:f2:5f:a7:2d:61:83:fe:4a:ec:2d:91:f4:13:66:f7:49:55: d9:e5:9f:28:ab:1e:94:21:ae:36:d4:8d:4c:38:20:6b:35:a1: 7d:d8:f5:c5:86:66:56:d4:c1:84:d9:62:d9:26:16:bf:93:04: ad:4b:da:51:06:f6:b9:fa:91:0e:d8:12:3f:68:a1:b1:9f:a7: 7c:f0:d9:1d:0f:1a:bc:a7:ec:62:bc:49:d9:55:02:3a:8c:25: 79:44:5b:ce:40:37:ef:0e:c5:64:36:bb:95:78:86:b7:bc:3b: 29:91:f5:fb:97:70:05:c9:43:da:b8:ca:48:ee:e9:5e:3e:73: e4:73:2c:83:dd:72:66:dc:fe:64:d9:a4:80:f0:c9:08:f8:30: f3:54:55:1a:80:0a:78:f3:f1:3c:70:22:ba:f7:b8:cc:84:8a: c1:cc:0b:dd:51:5c:55:c6:0c:c1:94:1f:1f:96:98:e3:23:cd: 73:8d:db:77:fd:f4:f1:2d:e6:ca:da:73:00:a5:e9:5e:81:cd: a1:6f:0e:29 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICCR4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkEzQzQxMTAvBgNVBAUTKDk1MjNBRDI1RUNBRDVDQzUyNUVDNDJFOUVDMURBRTRG REZEODYwNTcwHhcNMjUwOTI1MDEyNDExWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ0OTliYi0yYzJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqybFFxP9DZ460Z8H9o0WKJ6u3ymNWQu18c/nS31uhW/H6hpHnw8zHsYI3NRw 4iifGwt66FiGYnQG9BDtqKuXtp9ZWXJjJUtEilI6b22BJJV93a/HLfhtMiUBJKyZ rPp0WWybHgArK++SXBxfvxln/o4aoEcEvGSGEALkVr8cMEHs/z2HPIXaJq48Zw0J FP230YpjTQKMM6Y7bdqULZKIoJXPBCX7XfQ3dPf3zK8fAT9V6zok/5dQwAQwnml+ oyW5OiHpaVcQwcqXKlDtmHpHaYXh+c29QEAp0wEV4kdTjXi8MuKQQhThHAOieyhl VMiFvA0k3WVIEyG7j6IWA3vMXQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFCKBn8jZ miPpEZdsizc6RoDPEXyMMB8GA1UdIwQYMBaAFJUjrSXsrVzFJexC6ewdrk/f2GBX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTNDNC8zRUU2NEMxQUIx MDQxMUVBQTM4NDE2NUFDNEY5QUUwMi9sU090SmV5dFhNVWw3RUxwN0IydVQ5X1lZ RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xTT3RKZXl0WE1VbDdFTHA3QjJ1VDlfWVlGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkEzQzQvM0VFNjRDMUFCMTA0MTFFQUEzODQxNjVBQzRGOUFFMDIvNTE4RUQ4RTBC MTA1MTFFQUE0NzcxQjVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAFnlvgDBAFn8N4wDQQCAAIwBwMFACQGD8AwDQYJKoZIhvcN AQELBQADggEBAEIg9X729ClXpKU18Hmog5/y3LlQ9iFDoofTqEeGZSTvVXUUc4ks Q3r9KR7PIQGLQphalfneQpfyX6ctYYP+SuwtkfQTZvdJVdnlnyirHpQhrjbUjUw4 IGs1oX3Y9cWGZlbUwYTZYtkmFr+TBK1L2lEG9rn6kQ7YEj9oobGfp3zw2R0PGryn 7GK8SdlVAjqMJXlEW85AN+8OxWQ2u5V4hre8OymR9fuXcAXJQ9q4ykju6V4+c+Rz LIPdcmbc/mTZpIDwyQj4MPNUVRqACnjz8TxwIrr3uMyEisHMC91RXFXGDMGUHx+W mOMjzXON23f99PEt5sracwCl6V6BzaFvDik= -----END CERTIFICATE-----Generated at Wed Nov 5 19:55:37 2025 by rpki-client