$ rpki-client -vvf rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/CC23ED70990811F08BF0CB55C4F9AE02.roa File: CC23ED70990811F08BF0CB55C4F9AE02.roa (raw, json) Hash identifier: Wb0omWMGDcuIWJtZzO5aYUeXeBS3PzZ1jDUa5EAiIV0= Subject key identifier: 3C:6F:A0:A9:BC:F8:EA:66:5E:2B:82:D7:D2:6B:DA:F8:7D:C2:0B:FF Certificate issuer: /CN=A918F550/serialNumber=A24B6A62044B70065F0506388460E4AF2F17F3FF Certificate serial: 35C2 Authority key identifier: A2:4B:6A:62:04:4B:70:06:5F:05:06:38:84:60:E4:AF:2F:17:F3:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/CC23ED70990811F08BF0CB55C4F9AE02.roa Signing time: Tue 04 Nov 2025 04:40:44 +0000 ROA not before: Tue 04 Nov 2025 04:40:44 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 45845 IP address blocks: 103.250.135.0/24 maxlen: 24 202.51.66.0/24 maxlen: 24 202.51.70.0/24 maxlen: 24 202.51.73.0/24 maxlen: 24 202.51.77.0/24 maxlen: 24 202.51.79.0/24 maxlen: 24 202.51.94.0/24 maxlen: 24 2405:6600::/32 maxlen: 32 2405:6600:201::/48 maxlen: 48 2405:6600:600::/48 maxlen: 48 2405:6600:701::/48 maxlen: 48 2405:6600:702::/48 maxlen: 48 2405:6600:703::/48 maxlen: 48 2405:6600:709::/48 maxlen: 48 2405:6600:c00::/48 maxlen: 48 2405:6600:c43::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.crl rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:27:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13762 (0x35c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F550, serialNumber=A24B6A62044B70065F0506388460E4AF2F17F3FF Validity Not Before: Nov 4 04:40:44 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=690983cc-211d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:3a:c2:37:b4:37:eb:e7:cb:46:02:20:2b:ac: dc:45:b7:43:e7:b8:2d:ad:cc:cb:bd:9f:73:d9:00: 61:f1:12:84:d2:2c:40:06:f9:84:56:20:0f:37:7e: 57:42:48:9b:28:1f:f4:59:cc:e1:ba:08:81:44:bf: b7:d1:56:4b:17:13:9f:30:dd:60:95:23:ac:f0:ba: ac:80:7d:75:5d:23:e6:a6:5c:99:4a:56:a9:38:4d: 88:b2:62:1c:19:24:05:82:21:ae:3a:a3:15:6d:81: 94:f3:c6:4d:ac:f9:d9:5b:2a:07:42:46:fa:54:7a: 02:bd:4f:84:6d:5f:e3:09:3a:07:df:52:0b:7d:3b: 64:03:01:7d:58:98:ea:81:12:22:7d:14:8d:0c:fc: c1:73:f2:be:e6:3e:b8:a1:ed:8e:31:c7:a7:3c:c7: 61:3b:f0:6f:1b:ef:f9:ed:92:68:53:43:11:8b:a5: f2:47:4f:56:ce:d0:aa:d1:49:24:be:c3:4c:96:b7: 20:50:be:cf:ea:3d:23:b5:dd:aa:76:bd:c9:7e:d2: e4:cb:4d:5a:db:e2:c3:c2:f1:7f:0b:6b:f5:54:c9: b8:18:89:c2:14:c4:51:0b:aa:08:c0:f1:f3:93:d0: b1:56:27:66:45:06:ac:51:f3:e5:9b:f0:59:a0:da: b8:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:6F:A0:A9:BC:F8:EA:66:5E:2B:82:D7:D2:6B:DA:F8:7D:C2:0B:FF X509v3 Authority Key Identifier: keyid:A2:4B:6A:62:04:4B:70:06:5F:05:06:38:84:60:E4:AF:2F:17:F3:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/CC23ED70990811F08BF0CB55C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.250.135.0/24 202.51.66.0/24 202.51.70.0/24 202.51.73.0/24 202.51.77.0/24 202.51.79.0/24 202.51.94.0/24 IPv6: 2405:6600::/32 Signature Algorithm: sha256WithRSAEncryption 2e:65:60:b5:d2:0c:83:6a:5d:ad:00:09:b3:67:f6:45:01:a4: 93:bd:73:e9:0f:33:04:fd:c9:c3:7d:6e:87:78:ac:e1:4f:f1: 33:61:35:e6:a1:47:0a:cf:75:f2:f6:23:8d:14:b5:85:7b:44: 94:22:81:f4:ab:e9:36:2e:2a:8d:3b:7f:8d:08:ba:9c:9f:ef: ca:8f:51:53:2e:64:1d:ec:53:8b:14:09:5e:f7:45:eb:24:f8: 63:ef:a2:2d:13:ec:f6:f4:e4:6c:1f:7b:d1:dd:e9:fa:66:4e: d1:68:24:a8:3a:2e:ba:1c:bc:85:9b:8a:e8:ef:9f:59:f9:0f: 91:a8:64:96:67:b2:20:57:5b:ed:5a:d0:ec:95:72:0a:9e:07: f5:be:f4:78:7d:ce:a5:74:e2:66:ba:06:9c:1c:66:97:92:15: 4d:e8:bf:cd:6c:00:84:8d:6d:27:a5:31:ee:31:88:b1:61:63: 01:1e:75:7b:05:f0:69:35:bb:47:8d:82:0b:78:08:8c:82:15: a3:7d:e6:b6:79:0f:08:68:54:7b:6a:ad:0f:df:47:ab:57:4f: 8b:58:cb:d3:f7:49:b1:5f:26:3e:30:8a:00:0d:a5:77:f5:f3: dc:c8:65:b3:13:f6:43:2f:9b:ca:a5:77:63:88:fd:6d:81:fa: aa:e2:ac:be -----BEGIN CERTIFICATE----- MIIFpDCCBIygAwIBAgICNcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY1NTAxMTAvBgNVBAUTKEEyNEI2QTYyMDQ0QjcwMDY1RjA1MDYzODg0NjBFNEFG MkYxN0YzRkYwHhcNMjUxMTA0MDQ0MDQ0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA5ODNjYy0yMTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvjrCN7Q36+fLRgIgK6zcRbdD57gtrczLvZ9z2QBh8RKE0ixABvmEViAPN35X QkibKB/0WczhugiBRL+30VZLFxOfMN1glSOs8LqsgH11XSPmplyZSlapOE2IsmIc GSQFgiGuOqMVbYGU88ZNrPnZWyoHQkb6VHoCvU+EbV/jCToH31ILfTtkAwF9WJjq gRIifRSNDPzBc/K+5j64oe2OMcenPMdhO/BvG+/57ZJoU0MRi6XyR09WztCq0Ukk vsNMlrcgUL7P6j0jtd2qdr3JftLky01a2+LDwvF/C2v1VMm4GInCFMRRC6oIwPHz k9CxVidmRQasUfPlm/BZoNq4PQIDAQABo4ICyDCCAsQwHQYDVR0OBBYEFDxvoKm8 +OpmXiuC19Jr2vh9wgv/MB8GA1UdIwQYMBaAFKJLamIES3AGXwUGOIRg5K8vF/P/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjU1MC84QjlCRDIwMjFE ODUxMUUyQjQxMjMwREMwOEIwMkNEMi9va3RxWWdSTGNBWmZCUVk0aEdEa3J5OFg4 XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29rdHFZZ1JMY0FaZkJRWTRoR0Rrcnk4WDhfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEY1NTAvOEI5QkQyMDIxRDg1MTFFMkI0MTIzMERDMDhCMDJDRDIvQ0MyM0VENzA5 OTA4MTFGMDhCRjBDQjU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUgYIKwYBBQUHAQcBAf8E QzBBMDAEAgABMCoDBABn+ocDBADKM0IDBADKM0YDBADKM0kDBADKM00DBADKM08D BADKM14wDQQCAAIwBwMFACQFZgAwDQYJKoZIhvcNAQELBQADggEBAC5lYLXSDINq Xa0ACbNn9kUBpJO9c+kPMwT9ycN9bod4rOFP8TNhNeahRwrPdfL2I40UtYV7RJQi gfSr6TYuKo07f40Iupyf78qPUVMuZB3sU4sUCV73Resk+GPvoi0T7Pb05Gwfe9Hd 6fpmTtFoJKg6LrocvIWbiujvn1n5D5GoZJZnsiBXW+1a0OyVcgqeB/W+9Hh9zqV0 4ma6BpwcZpeSFU3ov81sAISNbSelMe4xiLFhYwEedXsF8Gk1u0eNggt4CIyCFaN9 5rZ5DwhoVHtqrQ/fR6tXT4tYy9P3SbFfJj4wigANpXf189zIZbMT9kMvm8qld2OI /W2B+qrirL4= -----END CERTIFICATE-----Generated at Wed Nov 5 18:14:25 2025 by rpki-client