$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/251361A4E2F111EB8C6B4E40C4F9AE02.roa File: 251361A4E2F111EB8C6B4E40C4F9AE02.roa (raw, json) Hash identifier: MvLaS6cdDamjAqPY/nzJM5HE8bcQUa50Vu3ic2YNmMw= Subject key identifier: 5E:71:8E:28:4A:94:81:A0:BC:FD:25:AA:D1:FF:F0:70:7C:D2:D4:B3 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B175 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/251361A4E2F111EB8C6B4E40C4F9AE02.roa Signing time: Thu 08 May 2025 15:57:16 +0000 ROA not before: Thu 08 May 2025 15:57:16 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 132956 IP address blocks: 103.212.16.0/24 maxlen: 24 103.212.17.0/24 maxlen: 24 103.212.18.0/24 maxlen: 24 103.212.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:24:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45429 (0xb175) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 15:57:16 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd45c-3dbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:1f:22:f8:a8:0b:12:92:f7:5c:c8:5c:bd:8f: 64:83:6e:0d:bb:64:ce:9e:ad:7e:d0:42:7a:cb:d3: a3:09:8b:60:a5:ab:ba:9f:10:3d:5c:e8:d9:ec:94: ab:dd:76:22:49:b3:f7:5b:04:6c:7a:ad:04:35:4b: cc:86:ab:da:f7:a6:ec:ef:2f:6b:22:85:b7:cc:df: 46:1f:fb:a2:77:97:0a:68:db:4f:a2:34:04:40:84: 5b:a5:ef:2d:e2:9d:46:7f:17:27:9b:7f:2d:d6:bb: 90:74:9d:ed:fe:22:c1:15:e2:dd:f9:aa:5a:aa:14: 77:0c:06:fe:50:a3:fe:c7:56:ef:1d:76:8d:59:37: f4:7b:cd:23:dd:12:26:17:8b:62:72:0e:8c:7f:d3: 66:04:fa:ae:9f:01:26:a5:b7:1c:9c:8d:19:3c:82: 3b:fa:ab:a6:0e:79:31:a9:ae:4f:6e:39:35:32:1d: c4:75:71:f1:01:f0:b8:5a:db:69:87:fe:60:15:f0: f5:d1:22:7e:45:55:1e:89:e8:f7:55:5d:7f:39:31: 31:08:52:b4:2d:0d:a3:c3:c0:32:ac:71:7e:16:af: 67:f8:86:e3:26:cc:00:b7:88:f7:a2:fc:4a:33:01: 9f:c5:ea:b1:39:28:12:e1:c7:61:25:2b:f8:db:2a: e2:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:71:8E:28:4A:94:81:A0:BC:FD:25:AA:D1:FF:F0:70:7C:D2:D4:B3 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/251361A4E2F111EB8C6B4E40C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.212.16.0/22 Signature Algorithm: sha256WithRSAEncryption 65:75:c9:e5:c7:83:2d:01:67:f9:26:3e:1e:f1:1d:fe:70:9e: 01:d3:b4:03:a4:cd:c1:c2:4d:76:fe:d8:07:2c:e1:cc:d9:2a: b2:de:8d:fd:5b:70:9e:c1:64:bd:39:49:bf:71:1b:b7:48:29: ac:50:c2:d3:e7:37:a5:25:b5:3e:f6:eb:e9:95:b3:49:fd:db: 85:bb:2d:16:31:a4:bb:6a:da:1d:88:90:72:88:e9:75:63:ad: 05:89:be:98:38:6f:ef:6a:48:41:b0:81:ed:f4:ce:5d:44:d1: 31:a1:c7:2e:06:ad:14:fb:b2:db:3a:a5:3b:de:c9:e6:29:05: a5:6a:6d:fa:6d:02:30:96:1d:86:4c:3e:a1:48:7f:9e:e2:d0: 2a:a7:03:56:7a:fb:ba:ff:f0:4c:65:3d:b1:53:ef:9d:53:a5: 71:65:ce:a0:71:21:e9:de:d9:87:73:ed:13:9c:1d:da:c8:11: 53:f5:26:33:4b:3d:50:fb:33:ac:81:58:b6:73:07:c8:2d:dc: 7f:f5:52:0b:08:da:aa:42:b0:6e:ba:5d:af:ed:10:06:80:33: 5b:1c:5f:f3:9d:e3:1e:52:1b:0b:d9:26:71:ab:ce:00:83:39: d3:28:fe:fd:2f:41:84:48:73:e1:e5:7d:b0:c7:14:81:6c:4c: 0e:17:50:34 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDALF1MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE1NTcxNloXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q0NWMtM2RiZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKwfIvioCxKS91zIXL2PZINuDbtkzp6tftBCesvTowmLYKWrup8QPVzo2eyU q912Ikmz91sEbHqtBDVLzIar2vem7O8vayKFt8zfRh/7oneXCmjbT6I0BECEW6Xv LeKdRn8XJ5t/Lda7kHSd7f4iwRXi3fmqWqoUdwwG/lCj/sdW7x12jVk39HvNI90S JheLYnIOjH/TZgT6rp8BJqW3HJyNGTyCO/qrpg55MamuT245NTIdxHVx8QHwuFrb aYf+YBXw9dEifkVVHono91VdfzkxMQhStC0No8PAMqxxfhavZ/iG4ybMALeI96L8 SjMBn8XqsTkoEuHHYSUr+Nsq4gkCAwEAAaOCApUwggKRMB0GA1UdDgQWBBRecY4o SpSBoLz9JarR//BwfNLUszAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzI1MTM2MUE0 RTJGMTExRUI4QzZCNEU0MEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQCZ9QQMA0GCSqGSIb3DQEBCwUAA4IBAQBldcnlx4MtAWf5 Jj4e8R3+cJ4B07QDpM3Bwk12/tgHLOHM2Sqy3o39W3CewWS9OUm/cRu3SCmsUMLT 5zelJbU+9uvplbNJ/duFuy0WMaS7atodiJByiOl1Y60Fib6YOG/vakhBsIHt9M5d RNExoccuBq0U+7LbOqU73snmKQWlam36bQIwlh2GTD6hSH+e4tAqpwNWevu6//BM ZT2xU++dU6VxZc6gcSHp3tmHc+0TnB3ayBFT9SYzSz1Q+zOsgVi2cwfILdx/9VIL CNqqQrBuul2v7RAGgDNbHF/zneMeUhsL2SZxq84AgznTKP79L0GESHPh5X2wxxSB bEwOF1A0 -----END CERTIFICATE-----Generated at Wed Nov 5 17:55:53 2025 by rpki-client