$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/25BF7288A68711EB93F5F561C4F9AE02.roa File: 25BF7288A68711EB93F5F561C4F9AE02.roa (raw, json) Hash identifier: hiBNS2h2ajCS+IDfMkSq9mjKAF/q5MuvIer368CjZls= Subject key identifier: E7:3C:14:29:8F:E0:A6:7F:C6:A4:16:35:37:C2:B7:50:50:CE:22:2D Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: D54A Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/25BF7288A68711EB93F5F561C4F9AE02.roa Signing time: Sun 01 Mar 2026 22:37:09 +0000 ROA not before: Thu 08 May 2025 16:15:25 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141271 IP address blocks: 103.203.144.0/24 maxlen: 24 103.203.145.0/24 maxlen: 24 103.203.146.0/24 maxlen: 24 103.203.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Mar 2026 07:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54602 (0xd54a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:15:25 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=69a4bf95-4731 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:32:f0:0f:fb:b1:66:29:b9:2e:7f:b6:d7:72: 58:c5:e5:0d:8d:ce:4b:55:0a:9b:f3:2b:07:37:ce: f8:f7:d6:35:3f:54:01:eb:36:0b:7e:54:9d:da:48: 29:cd:74:ff:dc:7a:b0:61:88:fb:aa:d1:31:57:b9: 88:25:32:25:09:71:14:c9:3f:1c:bb:3f:b5:44:8b: bf:2c:d6:cf:67:5e:73:32:bb:49:e6:d4:87:99:b9: e7:99:95:86:cd:f1:3a:5b:6f:78:f1:bd:15:5a:02: 82:fb:42:4e:6e:8d:c1:dc:67:b8:45:e7:20:a5:7a: f2:92:e2:8a:cd:a0:e4:ef:99:20:11:62:1b:5d:07: f0:a2:4c:15:68:1c:e8:7f:17:4b:77:ed:1b:15:99: f9:ab:30:a7:14:e2:ca:c2:9b:f9:2d:88:e9:c6:a5: e5:73:6d:85:62:ba:11:7f:b6:90:27:6c:5f:ba:60: 11:75:9b:42:d5:fb:82:80:5c:d2:13:76:4d:5a:32: b3:01:ff:b1:ab:47:33:f5:5e:17:2f:57:f4:42:80: f9:40:ed:31:66:ed:57:cb:ae:25:b8:33:46:b5:06: c2:62:d0:1f:03:9f:ef:d3:d6:3d:99:67:e4:dc:1e: f5:27:e5:bd:ae:a7:14:e0:58:22:0d:46:3b:2a:38: bc:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:3C:14:29:8F:E0:A6:7F:C6:A4:16:35:37:C2:B7:50:50:CE:22:2D X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/25BF7288A68711EB93F5F561C4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 103.203.144.0/22 Signature Algorithm: sha256WithRSAEncryption 87:e1:4f:71:b3:7c:08:04:ee:bd:cc:8c:0f:c3:3a:57:6c:c1: 9b:82:e8:83:f0:af:80:43:8a:6b:54:c3:de:9e:a5:90:46:50: 5c:a0:5e:ae:6f:97:f0:36:67:0e:af:98:05:24:ea:fc:c9:48: 96:48:99:c9:a1:55:6c:45:dd:3b:30:46:fd:2c:be:ef:2e:c2: 12:4f:be:46:75:22:58:9a:a8:66:08:85:ac:90:14:60:d5:88: 7a:64:46:06:20:c5:dc:ab:66:47:bc:23:00:c1:17:46:9d:e1: 48:27:6b:89:ba:ff:a6:18:cf:6f:2f:e5:24:44:fe:a6:10:59: 15:50:0d:db:67:7b:fa:5b:bc:6a:72:1b:3d:c1:80:b7:f4:6e: 96:25:62:34:bb:d8:90:07:84:56:3c:d7:01:b8:a0:d1:cd:eb: 8b:1e:d6:0d:8a:fe:f5:92:ed:84:7f:a6:2d:93:78:5f:1a:d6: 39:7b:f6:45:90:57:3b:7c:12:99:b5:2a:ed:e2:62:51:3e:d0: 12:2b:d7:d3:16:1a:d7:0c:0f:76:92:0a:8d:fe:49:8f:73:2a: 7b:56:c3:de:eb:f6:bb:11:9d:91:f5:e9:33:2c:fd:da:37:d3: ee:3e:6c:09:04:b4:18:16:13:92:4b:ef:e3:13:21:28:e9:1e: c2:74:d5:6c -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIDANVKMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MTUyNVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjlhNGJmOTUtNDczMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMUy8A/7sWYpuS5/ttdyWMXlDY3OS1UKm/MrBzfO+PfWNT9UAes2C35UndpI Kc10/9x6sGGI+6rRMVe5iCUyJQlxFMk/HLs/tUSLvyzWz2deczK7SebUh5m555mV hs3xOltvePG9FVoCgvtCTm6NwdxnuEXnIKV68pLiis2g5O+ZIBFiG10H8KJMFWgc 6H8XS3ftGxWZ+aswpxTiysKb+S2I6cal5XNthWK6EX+2kCdsX7pgEXWbQtX7goBc 0hN2TVoyswH/satHM/VeFy9X9EKA+UDtMWbtV8uuJbgzRrUGwmLQHwOf79PWPZln 5Nwe9Sflva6nFOBYIg1GOyo4vPkCAwEAAaOCAmAwggJcMB0GA1UdDgQWBBTnPBQp j+Cmf8akFjU3wrdQUM4iLTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBlgYIKwYBBQUHAQsEgYkwgYYwgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzI1QkY3Mjg4 QTY4NzExRUI5M0Y1RjU2MUM0RjlBRTAyLnJvYTAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAmfLkDANBgkqhkiG9w0BAQsFAAOCAQEAh+FPcbN8CATuvcyMD8M6 V2zBm4Log/CvgEOKa1TD3p6lkEZQXKBerm+X8DZnDq+YBSTq/MlIlkiZyaFVbEXd OzBG/Sy+7y7CEk++RnUiWJqoZgiFrJAUYNWIemRGBiDF3KtmR7wjAMEXRp3hSCdr ibr/phjPby/lJET+phBZFVAN22d7+lu8anIbPcGAt/RuliViNLvYkAeEVjzXAbig 0c3rix7WDYr+9ZLthH+mLZN4XxrWOXv2RZBXO3wSmbUq7eJiUT7QEivX0xYa1wwP dpIKjf5Jj3Mqe1bD3uv2uxGdkfXpMyz92jfT7j5sCQS0GBYTkkvv4xMhKOkewnTV bA== -----END CERTIFICATE-----Generated at Mon Mar 2 11:09:40 2026 by rpki-client