$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0C735BD69E9011F0B89DA40FC4F9AE02.roa File: 0C735BD69E9011F0B89DA40FC4F9AE02.roa (raw, json) Hash identifier: bkzlwIq18jJ9SsNDF0eiI0h2w/3KP9n2YdIRaz2HB3M= Subject key identifier: C7:88:79:8C:81:EB:83:41:5B:E5:C3:87:98:D0:C8:14:41:35:05:E2 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: C5C7 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0C735BD69E9011F0B89DA40FC4F9AE02.roa Signing time: Wed 01 Oct 2025 06:29:57 +0000 ROA not before: Wed 01 Oct 2025 06:29:57 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 142474 IP address blocks: 103.170.106.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:24:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50631 (0xc5c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Oct 1 06:29:57 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68dcca65-a83a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:a4:be:04:74:07:7d:43:70:17:64:d2:94:c8: de:d5:dd:d8:2a:7e:66:4f:41:7b:a2:50:44:1c:59: 23:fa:1d:3b:b3:95:a6:9d:ae:4a:e9:4a:68:2b:cd: db:17:d7:27:a4:f2:14:25:bc:fa:f6:e6:4c:e5:b1: ec:cd:a8:ee:4a:f5:44:76:7a:2f:e3:66:b1:65:43: 65:19:ee:d4:83:0c:53:6f:ca:a6:07:86:41:82:5f: 78:15:e8:af:62:89:eb:b2:77:c2:9a:a3:82:3e:c0: 1b:47:08:93:1d:f8:ff:2f:ef:4d:2d:0a:14:cb:81: 5d:78:c6:36:d5:43:71:a5:7d:4b:72:fe:9e:fe:f9: c1:bc:5c:b0:83:d4:94:ea:51:3b:8d:f6:78:cd:8e: fe:b2:f5:e9:b8:2b:b9:87:c3:61:7f:39:a6:30:2a: b6:30:f0:e1:e2:20:58:77:8b:30:db:11:9e:e3:25: 3e:76:48:b9:48:26:80:29:14:73:96:be:c3:32:b2: ad:69:16:50:61:55:09:46:84:e3:ed:85:ec:8c:15: 7f:ce:14:3a:32:b7:4f:37:c5:40:db:b1:eb:c9:be: 1c:93:1e:bf:bb:38:c3:14:8a:a0:81:23:03:fe:31: 5c:2f:6b:4f:30:f7:50:f1:b9:19:31:47:8d:3a:89: a8:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:88:79:8C:81:EB:83:41:5B:E5:C3:87:98:D0:C8:14:41:35:05:E2 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0C735BD69E9011F0B89DA40FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.170.106.0/23 Signature Algorithm: sha256WithRSAEncryption 93:79:28:1d:64:49:df:da:54:a0:81:ba:34:ed:c9:b1:b5:6a: 6d:19:a0:55:6a:c8:11:63:50:06:52:9d:b0:ff:50:15:70:e9: dd:03:2a:d2:e4:08:fe:48:c2:ed:f5:92:ce:b5:3f:51:ec:be: e2:50:5f:e9:b9:e2:e0:1d:2a:a0:f6:2d:db:45:ae:29:3b:8a: 13:4b:4a:3f:46:e5:66:f1:db:76:89:52:d3:15:ae:8f:19:62: 0e:17:a1:12:0a:47:e5:6d:50:17:43:52:72:93:4f:e0:df:fc: e0:1b:e3:e0:49:87:10:6b:ad:aa:ed:df:16:43:7e:d0:6c:77: cf:40:77:f1:1b:70:7a:09:9a:b8:df:7f:a9:e5:82:b3:90:d8: 5c:3f:91:8d:4e:09:60:6b:ff:9b:e8:0c:f4:67:7d:8c:d3:0d: 30:40:60:f4:2d:03:40:e8:2d:54:af:ce:35:b6:a2:a8:26:22: 53:80:49:94:aa:08:6f:69:9b:a9:7e:b0:06:13:32:21:77:13: 89:17:b6:24:a0:2a:66:f6:2a:b6:d4:34:8f:6c:27:17:3a:c1: 1f:bb:51:b9:20:f3:29:69:76:53:60:85:79:e6:27:d1:d5:3a: 20:43:25:c9:24:3d:f7:52:b2:27:67:a4:42:95:4d:45:52:38: 15:ab:b2:ac -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDAMXHMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MTAwMTA2Mjk1N1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjhkY2NhNjUtYTgzYTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANCkvgR0B31DcBdk0pTI3tXd2Cp+Zk9Be6JQRBxZI/odO7OVpp2uSulKaCvN 2xfXJ6TyFCW8+vbmTOWx7M2o7kr1RHZ6L+NmsWVDZRnu1IMMU2/KpgeGQYJfeBXo r2KJ67J3wpqjgj7AG0cIkx34/y/vTS0KFMuBXXjGNtVDcaV9S3L+nv75wbxcsIPU lOpRO432eM2O/rL16bgruYfDYX85pjAqtjDw4eIgWHeLMNsRnuMlPnZIuUgmgCkU c5a+wzKyrWkWUGFVCUaE4+2F7IwVf84UOjK3TzfFQNux68m+HJMev7s4wxSKoIEj A/4xXC9rTzD3UPG5GTFHjTqJqBsCAwEAAaOCApUwggKRMB0GA1UdDgQWBBTHiHmM geuDQVvlw4eY0MgUQTUF4jAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzBDNzM1QkQ2 OUU5MDExRjBCODlEQTQwRkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQBZ6pqMA0GCSqGSIb3DQEBCwUAA4IBAQCTeSgdZEnf2lSg gbo07cmxtWptGaBVasgRY1AGUp2w/1AVcOndAyrS5Aj+SMLt9ZLOtT9R7L7iUF/p ueLgHSqg9i3bRa4pO4oTS0o/RuVm8dt2iVLTFa6PGWIOF6ESCkflbVAXQ1Jyk0/g 3/zgG+PgSYcQa62q7d8WQ37QbHfPQHfxG3B6CZq433+p5YKzkNhcP5GNTglga/+b 6Az0Z32M0w0wQGD0LQNA6C1Ur841tqKoJiJTgEmUqghvaZupfrAGEzIhdxOJF7Yk oCpm9iq21DSPbCcXOsEfu1G5IPMpaXZTYIV55ifR1TogQyXJJD33UrInZ6RClU1F UjgVq7Ks -----END CERTIFICATE-----Generated at Wed Nov 5 16:03:20 2025 by rpki-client