$ rpki-client -vvf rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/A0BD00DEF5B311EFA334BB67C4F9AE02.roa File: A0BD00DEF5B311EFA334BB67C4F9AE02.roa (raw, json) Hash identifier: VvZ1QMS2eLQmDgXa34u3h0OjHEC9RVEvgUYgcW//Cxk= Subject key identifier: B0:86:BF:CF:FC:00:CA:4E:E2:DC:06:A7:42:EC:D3:74:1D:2B:A6:4C Certificate issuer: /CN=A917A66F/serialNumber=B22C3D0ABCD3919486A3E61E8D788923922BF6A5 Certificate serial: 01E4 Authority key identifier: B2:2C:3D:0A:BC:D3:91:94:86:A3:E6:1E:8D:78:89:23:92:2B:F6:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/A0BD00DEF5B311EFA334BB67C4F9AE02.roa Signing time: Mon 02 Mar 2026 14:22:03 +0000 ROA not before: Fri 29 Aug 2025 05:25:39 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 976 IP address blocks: 103.118.40.0/22 maxlen: 22 103.118.40.0/23 maxlen: 23 103.118.40.0/24 maxlen: 24 103.118.41.0/24 maxlen: 24 103.118.42.0/23 maxlen: 23 103.118.42.0/24 maxlen: 24 103.118.43.0/24 maxlen: 24 2403:27c0::/32 maxlen: 32 2403:27c0:1000::/48 maxlen: 48 2403:27c0:2000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.crl rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 14:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 484 (0x1e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A66F, serialNumber=B22C3D0ABCD3919486A3E61E8D788923922BF6A5 Validity Not Before: Aug 29 05:25:39 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69a59d0b-3dd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:6d:5b:c0:10:17:cc:f6:d4:e1:99:f2:c2:4b: 86:1d:36:21:8b:3b:f5:fc:b3:51:a1:26:b6:08:a7: d5:25:fb:ea:a1:ef:8b:c8:69:b4:59:c2:c7:8d:49: 75:7a:5e:53:9f:6c:93:46:a1:49:3d:48:76:79:92: eb:ef:63:77:72:cc:65:48:4d:73:3e:a6:b4:19:16: 0d:63:be:52:38:de:7c:f7:34:12:db:5e:34:0a:b5: 41:8a:eb:91:ee:b4:e4:a9:d5:98:1a:89:52:c6:fe: 90:42:bd:4b:19:6f:9b:3d:c8:b1:a8:10:7d:05:4b: c6:9f:d5:17:6e:a4:94:36:50:cc:dc:a4:32:4e:27: 26:82:e2:17:d3:e1:58:ac:17:e2:2e:87:4b:16:40: b8:80:00:d8:77:4c:05:da:ef:c7:e3:3a:29:df:98: a8:b0:b3:fd:a6:33:23:a2:1a:ea:51:32:a7:68:d6: a4:f9:5f:c8:ad:c3:8d:78:29:61:01:2f:76:27:d0: 48:15:c3:cd:e3:34:f1:af:0a:30:3b:e8:f5:68:5f: 28:37:e5:28:16:75:e0:e2:a0:71:d9:03:ad:2f:ac: 79:aa:03:2f:03:f0:0d:77:2f:87:ee:bd:fb:97:b3: 81:78:a7:94:87:ea:9d:6d:1f:34:b7:f7:89:99:29: a0:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:86:BF:CF:FC:00:CA:4E:E2:DC:06:A7:42:EC:D3:74:1D:2B:A6:4C X509v3 Authority Key Identifier: keyid:B2:2C:3D:0A:BC:D3:91:94:86:A3:E6:1E:8D:78:89:23:92:2B:F6:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/A0BD00DEF5B311EFA334BB67C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.118.40.0/22 IPv6: 2403:27c0::/32 Signature Algorithm: sha256WithRSAEncryption 2e:a9:fb:78:30:ab:82:d9:87:52:41:14:b5:d4:eb:77:22:ab: d4:ad:e8:c2:cb:9f:7a:d8:6b:d2:58:9c:c5:d0:75:d9:71:38: 51:80:5e:d5:a8:de:bf:eb:b2:13:90:7e:29:4a:b5:9d:78:ac: 5f:28:84:a3:db:08:1b:4a:d5:b8:55:c0:74:8a:df:71:cb:e9: 95:a1:2f:4f:1a:cc:dd:7f:80:6c:24:b4:86:e0:35:7e:c9:f7: 87:63:39:8a:6c:5b:83:72:44:43:9a:94:88:2e:bf:35:5a:03: 98:eb:0c:84:f2:32:3a:2c:47:ac:a0:f3:09:45:ce:07:10:19: b2:d4:fe:71:14:a8:a7:f6:6e:4e:d9:c5:e1:e9:fa:4d:12:16: 93:15:82:4e:2e:d4:bc:52:be:43:66:a3:3f:a9:34:f0:12:28: 84:c0:d0:a4:d6:de:c1:4f:d6:36:6c:d1:69:1d:13:54:bb:69: dd:31:e0:05:b6:be:58:d7:62:97:c6:e7:ab:9c:46:f8:1f:76: ec:b5:6c:de:36:64:26:20:14:e2:97:dc:38:57:29:1d:5f:95: 94:df:87:77:c2:dd:1e:35:e9:ab:97:a6:2b:62:05:45:a5:52: 5b:a3:19:bd:aa:68:a7:40:b1:2e:6c:2a:b3:ff:cd:5f:a2:89: dd:f6:7d:da -----BEGIN CERTIFICATE----- MIIFSzCCBDOgAwIBAgICAeQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E2NkYxMTAvBgNVBAUTKEIyMkMzRDBBQkNEMzkxOTQ4NkEzRTYxRThENzg4OTIz OTIyQkY2QTUwHhcNMjUwODI5MDUyNTM5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE1OWQwYi0zZGQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3W1bwBAXzPbU4ZnywkuGHTYhizv1/LNRoSa2CKfVJfvqoe+LyGm0WcLHjUl1 el5Tn2yTRqFJPUh2eZLr72N3csxlSE1zPqa0GRYNY75SON589zQS2140CrVBiuuR 7rTkqdWYGolSxv6QQr1LGW+bPcixqBB9BUvGn9UXbqSUNlDM3KQyTicmguIX0+FY rBfiLodLFkC4gADYd0wF2u/H4zop35iosLP9pjMjohrqUTKnaNak+V/IrcONeClh AS92J9BIFcPN4zTxrwowO+j1aF8oN+UoFnXg4qBx2QOtL6x5qgMvA/ANdy+H7r37 l7OBeKeUh+qdbR80t/eJmSmgkwIDAQABo4ICbzCCAmswHQYDVR0OBBYEFLCGv8/8 AMpO4twGp0Ls03QdK6ZMMB8GA1UdIwQYMBaAFLIsPQq805GUhqPmHo14iSOSK/al MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTY2Ri84RkNDOUQyOEM2 RjkxMUVFOTdFNkZCMURDNEY5QUUwMi9zaXc5Q3J6VGtaU0dvLVllalhpSkk1SXI5 cVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NpdzlDcnpUa1pTR28tWWVqWGlKSTVJcjlxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0E2NkYvOEZDQzlEMjhDNkY5MTFFRTk3RTZGQjFEQzRGOUFFMDIvQTBCRDAwREVG NUIzMTFFRkEzMzRCQjY3QzRGOUFFMDIucm9hMC4GCCsGAQUFBwEHAQH/BB8wHTAM BAIAATAGAwQCZ3YoMA0EAgACMAcDBQAkAyfAMA0GCSqGSIb3DQEBCwUAA4IBAQAu qft4MKuC2YdSQRS11Ot3IqvUrejCy5962GvSWJzF0HXZcThRgF7VqN6/67ITkH4p SrWdeKxfKISj2wgbStW4VcB0it9xy+mVoS9PGszdf4BsJLSG4DV+yfeHYzmKbFuD ckRDmpSILr81WgOY6wyE8jI6LEesoPMJRc4HEBmy1P5xFKin9m5O2cXh6fpNEhaT FYJOLtS8Ur5DZqM/qTTwEiiEwNCk1t7BT9Y2bNFpHRNUu2ndMeAFtr5Y12KXxuer nEb4H3bstWzeNmQmIBTil9w4VykdX5WU34d3wt0eNemrl6YrYgVFpVJboxm9qmin QLEubCqz/81foond9n3a -----END CERTIFICATE-----Generated at Mon Mar 2 20:36:22 2026 by rpki-client