$ rpki-client -vvf rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/F48207E6DB8711EAA446B360C4F9AE02.roa File: F48207E6DB8711EAA446B360C4F9AE02.roa (raw, json) Hash identifier: +rqRhoF7M98jyOj7ilINYsh86Lj18TGDOqtK2wOwgR8= Subject key identifier: A8:3C:DF:3E:BA:15:37:45:0D:01:17:2E:3A:83:AD:D3:E6:21:06:D3 Certificate issuer: /CN=A919ACF6/serialNumber=A3511718B429A2B043E645BFB1650EE6777E4172 Certificate serial: 0833 Authority key identifier: A3:51:17:18:B4:29:A2:B0:43:E6:45:BF:B1:65:0E:E6:77:7E:41:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1EXGLQporBD5kW_sWUO5nd-QXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/F48207E6DB8711EAA446B360C4F9AE02.roa Signing time: Fri 08 Aug 2025 21:31:55 +0000 ROA not before: Fri 08 Aug 2025 21:31:55 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 134152 IP address blocks: 103.118.20.0/22 maxlen: 22 103.118.20.0/24 maxlen: 24 103.118.21.0/24 maxlen: 24 103.118.22.0/24 maxlen: 24 103.118.23.0/24 maxlen: 24 2403:2540::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.crl rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1EXGLQporBD5kW_sWUO5nd-QXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 21:03:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2099 (0x833) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919ACF6, serialNumber=A3511718B429A2B043E645BFB1650EE6777E4172 Validity Not Before: Aug 8 21:31:55 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68966cca-6b84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:7a:25:dc:07:89:b5:8c:b4:ee:20:c6:75:6c: a5:e2:65:fd:8f:e3:52:82:a4:70:c9:76:86:58:30: 34:b1:64:08:46:6a:2f:b6:61:05:b2:15:c7:17:2e: be:a5:d8:f1:3d:f8:a8:29:68:87:86:31:ee:e8:07: eb:6c:81:0c:92:58:b0:79:b8:94:da:93:5b:68:9b: f5:2c:f0:d0:c5:42:05:34:c5:69:a3:bd:6a:e6:56: 29:37:a4:34:66:1e:5e:89:d2:55:64:79:32:23:f3: f5:8e:dd:e1:dc:0d:99:3c:80:3e:79:2f:9f:49:66: 4a:95:3c:18:6e:48:10:b4:f1:7f:ff:9b:5d:42:37: 40:d9:1e:eb:36:37:18:a0:f9:d4:aa:10:61:28:65: 89:49:d4:9b:31:73:64:d8:8f:68:9f:df:88:df:a3: 7f:d0:21:b2:a0:d6:21:a3:8a:83:77:31:ca:5e:05: 31:73:0a:a7:dc:ea:a6:9e:d8:4f:f6:68:30:0c:b0: 14:b8:7b:bf:71:85:84:cc:fa:23:ab:04:e2:11:26: 3b:03:36:c7:02:02:4d:be:55:87:5d:a3:e5:0a:66: 36:6f:12:bb:96:06:7e:1c:5d:82:1b:99:30:dc:9b: 55:e1:b3:b9:c9:ad:fb:42:3a:95:3d:68:df:11:cb: 4c:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:3C:DF:3E:BA:15:37:45:0D:01:17:2E:3A:83:AD:D3:E6:21:06:D3 X509v3 Authority Key Identifier: keyid:A3:51:17:18:B4:29:A2:B0:43:E6:45:BF:B1:65:0E:E6:77:7E:41:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1EXGLQporBD5kW_sWUO5nd-QXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/F48207E6DB8711EAA446B360C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.118.20.0/22 IPv6: 2403:2540::/32 Signature Algorithm: sha256WithRSAEncryption 3a:88:98:6e:0c:62:26:2d:a2:c8:31:0c:eb:77:3f:c2:c4:8c: 95:0c:76:44:e8:43:ef:c0:ee:de:5b:82:20:ba:d2:f3:a5:49: 5b:85:13:86:14:bf:1a:25:64:71:7b:f6:c9:7c:ce:af:01:5a: 82:c6:f3:19:71:4c:bd:1a:24:a5:73:53:75:a8:f1:5f:2f:05: 67:ca:94:a2:37:77:77:34:a0:06:bf:60:d2:48:eb:68:82:c0: bf:9a:78:2b:7c:db:ed:c1:d7:37:82:a6:77:ac:03:55:26:73: 41:4c:4b:75:11:ca:5d:23:73:76:cb:df:46:9b:4b:48:a4:09: da:e7:4e:6a:73:ae:67:11:5c:c7:9c:e2:98:51:f6:99:1d:fd: 84:7f:d5:83:c9:f5:99:b2:4e:be:39:a7:ed:14:d7:e7:5d:0f: c7:2d:72:ef:21:65:25:5d:d2:75:af:20:dd:d2:49:46:b9:db: 4c:7f:6e:fc:27:70:5a:8b:32:69:5e:77:e6:18:95:6a:a8:18: dd:2d:4f:8a:6e:30:1d:b1:13:cc:41:c4:1e:1e:d5:6c:e9:23: 8c:6b:ab:cd:90:e9:f4:b7:88:a0:8b:18:32:6d:bc:1e:63:61: a8:97:94:ca:df:c5:ce:bc:4b:86:7a:f0:31:fa:90:64:78:24: f2:b7:e1:6a -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCDMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUFDRjYxMTAvBgNVBAUTKEEzNTExNzE4QjQyOUEyQjA0M0U2NDVCRkIxNjUwRUU2 Nzc3RTQxNzIwHhcNMjUwODA4MjEzMTU1WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk2NmNjYS02Yjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8Hol3AeJtYy07iDGdWyl4mX9j+NSgqRwyXaGWDA0sWQIRmovtmEFshXHFy6+ pdjxPfioKWiHhjHu6AfrbIEMkliwebiU2pNbaJv1LPDQxUIFNMVpo71q5lYpN6Q0 Zh5eidJVZHkyI/P1jt3h3A2ZPIA+eS+fSWZKlTwYbkgQtPF//5tdQjdA2R7rNjcY oPnUqhBhKGWJSdSbMXNk2I9on9+I36N/0CGyoNYho4qDdzHKXgUxcwqn3OqmnthP 9mgwDLAUuHu/cYWEzPojqwTiESY7AzbHAgJNvlWHXaPlCmY2bxK7lgZ+HF2CG5kw 3JtV4bO5ya37QjqVPWjfEctM+QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFKg83z66 FTdFDQEXLjqDrdPmIQbTMB8GA1UdIwQYMBaAFKNRFxi0KaKwQ+ZFv7FlDuZ3fkFy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QUNGNi8zNDk3ODNFRURC ODYxMUVBODU1OTQyNUVDNEY5QUUwMi9vMUVYR0xRcG9yQkQ1a1dfc1dVTzVuZC1R WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28xRVhHTFFwb3JCRDVrV19zV1VPNW5kLVFYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUFDRjYvMzQ5NzgzRUVEQjg2MTFFQTg1NTk0MjVFQzRGOUFFMDIvRjQ4MjA3RTZE Qjg3MTFFQUE0NDZCMzYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJndhQwDQQCAAIwBwMFACQDJUAwDQYJKoZIhvcNAQELBQAD ggEBADqImG4MYiYtosgxDOt3P8LEjJUMdkToQ+/A7t5bgiC60vOlSVuFE4YUvxol ZHF79sl8zq8BWoLG8xlxTL0aJKVzU3Wo8V8vBWfKlKI3d3c0oAa/YNJI62iCwL+a eCt82+3B1zeCpnesA1Umc0FMS3URyl0jc3bL30abS0ikCdrnTmpzrmcRXMec4phR 9pkd/YR/1YPJ9ZmyTr45p+0U1+ddD8ctcu8hZSVd0nWvIN3SSUa520x/bvwncFqL Mmled+YYlWqoGN0tT4puMB2xE8xBxB4e1WzpI4xrq82Q6fS3iKCLGDJtvB5jYaiX lMrfxc68S4Z68DH6kGR4JPK34Wo= -----END CERTIFICATE-----Generated at Wed Aug 13 20:22:07 2025 by rpki-client