$ rpki-client -vvf rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/90203ACEDEE811EBA82BEF41C4F9AE02.roa File: 90203ACEDEE811EBA82BEF41C4F9AE02.roa (raw, json) Hash identifier: 90Ps/BWPXZ61HxNbkmbrT/5Kexde1qpWyvX+qPISegQ= Subject key identifier: D1:98:39:CE:24:16:F1:F0:8B:89:3C:42:77:AD:5D:E2:75:C3:C5:F0 Certificate issuer: /CN=A911F177/serialNumber=A222B6D6D0528214221D4ACEA47E1AC611EF427A Certificate serial: 0760 Authority key identifier: A2:22:B6:D6:D0:52:82:14:22:1D:4A:CE:A4:7E:1A:C6:11:EF:42:7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiK21tBSghQiHUrOpH4axhHvQno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/90203ACEDEE811EBA82BEF41C4F9AE02.roa Signing time: Fri 28 Feb 2025 22:49:58 +0000 ROA not before: Fri 28 Feb 2025 22:49:58 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 133762 IP address blocks: 103.108.180.0/24 maxlen: 24 103.108.181.0/24 maxlen: 24 103.108.182.0/24 maxlen: 24 103.108.183.0/24 maxlen: 24 2402:6e40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.crl rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiK21tBSghQiHUrOpH4axhHvQno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:16:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1888 (0x760) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F177, serialNumber=A222B6D6D0528214221D4ACEA47E1AC611EF427A Validity Not Before: Feb 28 22:49:58 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c23d96-242f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:0a:58:ce:1a:32:0b:f9:65:13:c9:e9:92:51: 69:22:9f:89:f4:33:61:16:a0:ba:42:f5:e6:16:bc: d4:d0:e3:2e:e4:e4:fa:67:93:89:2e:6d:3e:4a:64: 60:dc:de:31:d7:88:8e:27:83:73:4e:d9:4c:3f:ba: 9b:30:5e:10:4c:70:10:35:5f:a6:5b:06:2c:9d:00: 60:1c:3b:5b:5c:49:be:4b:16:93:e5:4b:d9:0c:e4: b4:18:fd:e6:4b:4c:d0:8c:f7:63:e5:b0:40:37:9e: a3:3a:01:66:62:4c:f5:c6:37:d1:12:b5:40:b7:c3: 11:3c:5a:d6:07:f8:8b:d9:fa:92:f4:c3:b2:36:91: a3:13:78:61:29:da:50:a8:98:b2:7f:37:ef:76:bd: cb:66:96:b2:f8:2c:e2:aa:4a:62:41:07:0f:3e:d2: ca:db:d2:95:79:1c:cb:40:8b:85:e5:b3:6a:f8:7a: 83:95:c7:32:f4:33:26:2d:cb:da:82:64:a7:bd:4b: ca:b3:b1:e5:ad:f5:be:e5:ff:65:80:45:f6:22:20: f0:47:c1:b7:27:5f:43:ad:29:dc:e8:0c:17:0a:5e: 0c:a4:67:21:76:95:c0:7d:64:37:cf:a2:0e:13:0d: 96:16:45:14:38:ca:4b:86:0b:70:1e:01:95:bc:3d: ac:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:98:39:CE:24:16:F1:F0:8B:89:3C:42:77:AD:5D:E2:75:C3:C5:F0 X509v3 Authority Key Identifier: keyid:A2:22:B6:D6:D0:52:82:14:22:1D:4A:CE:A4:7E:1A:C6:11:EF:42:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiK21tBSghQiHUrOpH4axhHvQno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/90203ACEDEE811EBA82BEF41C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.108.180.0/22 IPv6: 2402:6e40::/32 Signature Algorithm: sha256WithRSAEncryption be:30:c1:da:f5:40:fb:83:f4:67:b8:97:b0:1b:9f:30:6b:c8: 53:e9:eb:56:16:f9:11:ff:9b:f6:a0:2e:00:17:5f:33:84:d9: 80:8a:25:1a:c6:5e:f8:52:44:07:5f:5c:11:c7:99:5e:9c:a1: cf:f3:06:f0:75:73:21:8a:dd:9a:77:c6:97:cb:20:9b:99:01: 06:69:98:0a:9d:66:ca:6b:8a:5d:31:c3:67:17:1d:fa:af:72: d6:cb:18:89:90:52:69:eb:88:14:18:d4:49:5d:d6:56:14:1c: e8:aa:18:e1:e9:3f:71:6b:d0:32:80:88:6a:87:b4:66:c9:7c: bd:8c:ae:18:ff:18:cc:2c:f5:7c:94:af:fb:05:d8:be:b8:0e: f8:ac:14:b2:c5:f2:d5:8d:d1:44:da:ff:94:19:0e:0c:ee:8b: f5:cd:d7:4d:64:31:6a:48:92:53:d9:3e:ba:66:87:c8:a4:5d: 04:46:5c:43:30:88:ea:4a:b0:7f:a3:34:66:66:e5:27:83:65: 1b:f1:9b:3a:60:48:f8:f9:cb:ec:2b:de:7f:e4:cb:41:76:88: 47:63:dc:74:03:ae:c7:c8:37:30:49:5b:de:50:09:1e:6b:bd: ff:3c:73:e8:6e:cb:d8:fa:2d:04:35:51:3b:2b:44:2b:d9:c8: 77:1e:0b:33 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICB2AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUYxNzcxMTAvBgNVBAUTKEEyMjJCNkQ2RDA1MjgyMTQyMjFENEFDRUE0N0UxQUM2 MTFFRjQyN0EwHhcNMjUwMjI4MjI0OTU4WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2MyM2Q5Ni0yNDJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoQpYzhoyC/llE8npklFpIp+J9DNhFqC6QvXmFrzU0OMu5OT6Z5OJLm0+SmRg 3N4x14iOJ4NzTtlMP7qbMF4QTHAQNV+mWwYsnQBgHDtbXEm+SxaT5UvZDOS0GP3m S0zQjPdj5bBAN56jOgFmYkz1xjfRErVAt8MRPFrWB/iL2fqS9MOyNpGjE3hhKdpQ qJiyfzfvdr3LZpay+CziqkpiQQcPPtLK29KVeRzLQIuF5bNq+HqDlccy9DMmLcva gmSnvUvKs7HlrfW+5f9lgEX2IiDwR8G3J19DrSnc6AwXCl4MpGchdpXAfWQ3z6IO Ew2WFkUUOMpLhgtwHgGVvD2swQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFNGYOc4k FvHwi4k8QnetXeJ1w8XwMB8GA1UdIwQYMBaAFKIittbQUoIUIh1KzqR+GsYR70J6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjE3Ny84MkVFNTgyNjBF MDYxMUVCODY4NzZFNTNDNEY5QUUwMi9vaUsyMXRCU2doUWlIVXJPcEg0YXhoSHZR bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29pSzIxdEJTZ2hRaUhVck9wSDRheGhIdlFuby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUYxNzcvODJFRTU4MjYwRTA2MTFFQjg2ODc2RTUzQzRGOUFFMDIvOTAyMDNBQ0VE RUU4MTFFQkE4MkJFRjQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnbLQwDQQCAAIwBwMFACQCbkAwDQYJKoZIhvcNAQELBQAD ggEBAL4wwdr1QPuD9Ge4l7AbnzBryFPp61YW+RH/m/agLgAXXzOE2YCKJRrGXvhS RAdfXBHHmV6coc/zBvB1cyGK3Zp3xpfLIJuZAQZpmAqdZspril0xw2cXHfqvctbL GImQUmnriBQY1Eld1lYUHOiqGOHpP3Fr0DKAiGqHtGbJfL2Mrhj/GMws9XyUr/sF 2L64DvisFLLF8tWN0UTa/5QZDgzui/XN101kMWpIklPZPrpmh8ikXQRGXEMwiOpK sH+jNGZm5SeDZRvxmzpgSPj5y+wr3n/ky0F2iEdj3HQDrsfINzBJW95QCR5rvf88 c+huy9j6LQQ1UTsrRCvZyHceCzM= -----END CERTIFICATE-----Generated at Wed Nov 5 04:47:34 2025 by rpki-client