$ rpki-client -vvf rpki.apnic.net/member_repository/A918E881/CDD60AEACD1511EBB3F78E23C4F9AE02/F908A568CD1711EB84E11B24C4F9AE02.roa File: F908A568CD1711EB84E11B24C4F9AE02.roa (raw, json) Hash identifier: Yz0s0SgslhEB/Ux9X8zgj1HP5jX8LMQjR8aSmtueyxU= Subject key identifier: AF:86:F7:FD:95:AA:F1:F0:07:A8:0E:94:12:90:74:BA:3B:B8:E3:C0 Certificate issuer: /CN=A918E881/serialNumber=F1B03BC5877FE2DA4F446A0633DA6B8E1F77C7DB Certificate serial: 05D6 Authority key identifier: F1:B0:3B:C5:87:7F:E2:DA:4F:44:6A:06:33:DA:6B:8E:1F:77:C7:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bA7xYd_4tpPRGoGM9prjh93x9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E881/CDD60AEACD1511EBB3F78E23C4F9AE02/F908A568CD1711EB84E11B24C4F9AE02.roa Signing time: Tue 12 Aug 2025 23:35:37 +0000 ROA not before: Tue 12 Aug 2025 23:35:37 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 55847 IP address blocks: 203.110.240.0/21 maxlen: 21 203.110.240.0/24 maxlen: 24 203.110.241.0/24 maxlen: 24 203.110.242.0/24 maxlen: 24 203.110.243.0/24 maxlen: 24 203.110.244.0/24 maxlen: 24 203.110.245.0/24 maxlen: 24 203.110.246.0/24 maxlen: 24 203.110.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E881/CDD60AEACD1511EBB3F78E23C4F9AE02/8bA7xYd_4tpPRGoGM9prjh93x9s.crl rsync://rpki.apnic.net/member_repository/A918E881/CDD60AEACD1511EBB3F78E23C4F9AE02/8bA7xYd_4tpPRGoGM9prjh93x9s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bA7xYd_4tpPRGoGM9prjh93x9s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 23:35:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1494 (0x5d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E881, serialNumber=F1B03BC5877FE2DA4F446A0633DA6B8E1F77C7DB Validity Not Before: Aug 12 23:35:37 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=689bcfc9-e767 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e1:5e:93:62:e2:c1:37:c2:7f:2c:e4:8a:61: 82:be:a0:1a:d4:30:1f:a3:14:4e:7b:66:e3:a6:4e: d3:77:a6:f6:f8:48:7c:ce:3f:eb:5c:b1:53:89:95: 47:e3:0d:0c:01:90:ee:b7:23:f2:d9:cd:6a:3a:91: 17:71:df:28:5c:3b:97:58:aa:a0:9c:4d:f3:fc:22: 0d:76:2b:77:df:8d:2c:48:e1:77:70:c4:0f:04:1f: 62:0e:1e:e5:d4:87:b6:fa:e0:b9:b4:60:1b:3c:f2: d7:b2:96:5a:3f:0a:37:3a:0c:4e:0c:65:8b:86:ba: 86:2b:6b:eb:2e:ef:ad:39:a3:79:d7:be:c5:80:1b: f4:6f:bd:63:5b:9c:05:86:97:4d:52:63:43:f8:bd: 31:bd:72:1c:54:7e:07:dd:aa:61:9f:db:3b:fe:6c: cb:01:40:1e:31:1e:24:db:74:62:d7:a6:a5:28:e7: 4c:c0:07:80:3b:e5:34:dc:f5:54:cd:15:f9:93:4c: 14:69:ec:5c:ac:2d:4e:fe:26:44:d3:79:18:35:33: 31:a8:6a:01:6e:88:42:88:cd:2e:45:53:9c:a1:2b: a1:63:3d:12:b2:04:56:47:57:c3:f6:69:51:d1:1d: 01:b3:7a:fb:29:59:6e:8a:0b:3b:01:0f:2d:26:c2: b2:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:86:F7:FD:95:AA:F1:F0:07:A8:0E:94:12:90:74:BA:3B:B8:E3:C0 X509v3 Authority Key Identifier: keyid:F1:B0:3B:C5:87:7F:E2:DA:4F:44:6A:06:33:DA:6B:8E:1F:77:C7:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E881/CDD60AEACD1511EBB3F78E23C4F9AE02/8bA7xYd_4tpPRGoGM9prjh93x9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bA7xYd_4tpPRGoGM9prjh93x9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E881/CDD60AEACD1511EBB3F78E23C4F9AE02/F908A568CD1711EB84E11B24C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.110.240.0/21 Signature Algorithm: sha256WithRSAEncryption 57:92:74:c6:b9:52:6f:74:a3:2d:88:f3:e5:2b:27:0e:85:9f: 20:82:c4:48:85:48:1f:46:34:1e:71:08:4a:b0:74:ce:a1:5e: 34:1a:08:9b:71:d7:40:9e:e4:fb:23:4c:e7:c5:ab:fc:80:5a: 46:49:b0:0e:fe:60:83:2c:22:7c:a1:a1:20:e2:59:44:09:b7: 8f:6d:02:5b:f7:06:09:40:d8:7d:db:ae:9e:f6:1e:73:ac:b0: 50:bf:6f:b7:c2:2e:0d:87:cd:48:9a:34:1c:59:df:ba:01:86: a7:94:f3:ca:d0:56:51:2c:18:17:06:fb:82:ca:71:91:a4:87: 9c:be:d8:d9:44:1c:a0:74:1c:ff:f9:63:98:91:35:d4:08:c4: 13:6e:93:25:d3:a1:33:d9:45:83:79:72:2d:23:3b:57:91:6a: 88:37:6b:9d:5a:06:08:9d:79:10:79:02:ff:6c:81:01:29:aa: fa:94:4b:68:34:5a:38:4e:84:aa:06:3c:fb:22:1e:04:3f:41: 0c:00:7e:79:e5:6d:7e:33:9c:39:d8:5a:43:8c:df:07:e4:e5: 03:4f:bc:9e:ae:e9:13:4e:c9:c0:9d:d9:48:8c:31:c5:e3:97: ad:28:ba:04:fe:40:6f:98:cc:4e:6b:15:d2:d1:97:52:3e:da: 23:e4:36:1a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU4ODExMTAvBgNVBAUTKEYxQjAzQkM1ODc3RkUyREE0RjQ0NkEwNjMzREE2QjhF MUY3N0M3REIwHhcNMjUwODEyMjMzNTM3WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODliY2ZjOS1lNzY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq+Fek2LiwTfCfyzkimGCvqAa1DAfoxROe2bjpk7Td6b2+Eh8zj/rXLFTiZVH 4w0MAZDutyPy2c1qOpEXcd8oXDuXWKqgnE3z/CINdit3340sSOF3cMQPBB9iDh7l 1Ie2+uC5tGAbPPLXspZaPwo3OgxODGWLhrqGK2vrLu+tOaN5177FgBv0b71jW5wF hpdNUmND+L0xvXIcVH4H3aphn9s7/mzLAUAeMR4k23Ri16alKOdMwAeAO+U03PVU zRX5k0wUaexcrC1O/iZE03kYNTMxqGoBbohCiM0uRVOcoSuhYz0SsgRWR1fD9mlR 0R0Bs3r7KVluigs7AQ8tJsKyfQIDAQABo4IClTCCApEwHQYDVR0OBBYEFK+G9/2V qvHwB6gOlBKQdLo7uOPAMB8GA1UdIwQYMBaAFPGwO8WHf+LaT0RqBjPaa44fd8fb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTg4MS9DREQ2MEFFQUNE MTUxMUVCQjNGNzhFMjNDNEY5QUUwMi84YkE3eFlkXzR0cFBSR29HTTlwcmpoOTN4 OXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhiQTd4WWRfNHRwUFJHb0dNOXByamg5M3g5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEU4ODEvQ0RENjBBRUFDRDE1MTFFQkIzRjc4RTIzQzRGOUFFMDIvRjkwOEE1NjhD RDE3MTFFQjg0RTExQjI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAPLbvAwDQYJKoZIhvcNAQELBQADggEBAFeSdMa5Um90oy2I 8+UrJw6FnyCCxEiFSB9GNB5xCEqwdM6hXjQaCJtx10Ce5PsjTOfFq/yAWkZJsA7+ YIMsInyhoSDiWUQJt49tAlv3BglA2H3brp72HnOssFC/b7fCLg2HzUiaNBxZ37oB hqeU88rQVlEsGBcG+4LKcZGkh5y+2NlEHKB0HP/5Y5iRNdQIxBNukyXToTPZRYN5 ci0jO1eRaog3a51aBgideRB5Av9sgQEpqvqUS2g0WjhOhKoGPPsiHgQ/QQwAfnnl bX4znDnYWkOM3wfk5QNPvJ6u6RNOycCd2UiMMcXjl60ougT+QG+YzE5rFdLRl1I+ 2iPkNho= -----END CERTIFICATE-----Generated at Wed Aug 13 02:15:39 2025 by rpki-client