$ rpki-client -vvf rpki.apnic.net/member_repository/A912C6FA/A17B33C2D5AF11E88FF05228C4F9AE02/80CBE32C687B11F0947A4F60C4F9AE02.roa File: 80CBE32C687B11F0947A4F60C4F9AE02.roa (raw, json) Hash identifier: NLNRuuRp4O6TPXgTBkgEkY0wrWp43aNn3r+hhxQ7qR0= Subject key identifier: B4:BD:4E:B0:C7:79:88:15:51:7E:EF:0D:01:90:A8:A6:F9:10:B2:9A Certificate issuer: /CN=A912C6FA/serialNumber=10C6A96ABFE5689BC7BDE5ABE8A66D952453FB18 Certificate serial: 1290 Authority key identifier: 10:C6:A9:6A:BF:E5:68:9B:C7:BD:E5:AB:E8:A6:6D:95:24:53:FB:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EMapar_laJvHveWr6KZtlSRT-xg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C6FA/A17B33C2D5AF11E88FF05228C4F9AE02/80CBE32C687B11F0947A4F60C4F9AE02.roa Signing time: Thu 24 Jul 2025 10:46:50 +0000 ROA not before: Thu 24 Jul 2025 10:46:50 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 10075 IP address blocks: 103.18.80.0/22 maxlen: 22 103.18.80.0/23 maxlen: 23 103.18.80.0/24 maxlen: 24 103.18.81.0/24 maxlen: 24 103.18.82.0/24 maxlen: 24 103.131.156.0/22 maxlen: 22 103.131.156.0/24 maxlen: 24 103.131.157.0/24 maxlen: 24 103.131.159.0/24 maxlen: 24 2403:cd40::/32 maxlen: 32 2403:cd40::/48 maxlen: 48 2403:cd40:4::/48 maxlen: 48 2403:cd40:5::/48 maxlen: 48 2403:cd40:6::/48 maxlen: 48 2403:cd40:7::/48 maxlen: 48 2403:cd40:8::/48 maxlen: 48 2403:cd40:a::/48 maxlen: 48 2403:cd40:8000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C6FA/A17B33C2D5AF11E88FF05228C4F9AE02/EMapar_laJvHveWr6KZtlSRT-xg.crl rsync://rpki.apnic.net/member_repository/A912C6FA/A17B33C2D5AF11E88FF05228C4F9AE02/EMapar_laJvHveWr6KZtlSRT-xg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EMapar_laJvHveWr6KZtlSRT-xg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4752 (0x1290) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C6FA, serialNumber=10C6A96ABFE5689BC7BDE5ABE8A66D952453FB18 Validity Not Before: Jul 24 10:46:50 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=68820f1a-3cc6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:79:a5:c2:1b:f4:49:ec:35:19:2f:6f:fb:d3: 4a:19:86:61:c0:bb:18:60:aa:99:89:50:f6:5b:e1: 65:eb:ff:ca:a1:e3:9c:58:68:c7:18:bb:30:f5:1c: 05:b3:c0:dc:34:27:18:1b:de:16:27:85:c6:43:e1: 48:55:e3:d1:2c:cf:72:ce:c9:41:e0:67:83:c8:65: 8f:43:91:98:11:2f:27:4b:9d:ee:ce:10:47:cc:1c: ec:46:b4:4a:31:ab:e7:b6:83:c9:33:5e:23:78:e7: 1c:92:54:e3:de:20:f1:6b:40:74:0f:78:48:89:c6: b5:87:ae:4c:58:25:fd:dc:62:ca:a2:ee:c2:19:f4: 78:97:99:d8:c2:1c:bd:8a:e4:95:06:9b:b0:2b:7a: a8:02:d6:0a:29:a0:e9:21:4b:d7:13:b7:34:6b:0e: 88:c8:a4:c3:cc:c6:ce:73:75:a3:7e:8f:4d:82:bc: 7f:c9:18:83:13:1f:43:13:97:40:99:a8:1b:62:3b: b3:6c:84:67:4d:b5:20:9b:76:4e:ba:8a:c2:3e:6b: af:aa:d6:db:91:58:d5:47:11:4c:d3:49:1b:71:2c: 0c:83:e7:b9:8c:4c:33:97:57:08:bb:32:d2:e9:c0: ea:1f:a9:91:9a:62:19:fa:bf:ae:f7:e9:ab:66:e2: f5:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:BD:4E:B0:C7:79:88:15:51:7E:EF:0D:01:90:A8:A6:F9:10:B2:9A X509v3 Authority Key Identifier: keyid:10:C6:A9:6A:BF:E5:68:9B:C7:BD:E5:AB:E8:A6:6D:95:24:53:FB:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C6FA/A17B33C2D5AF11E88FF05228C4F9AE02/EMapar_laJvHveWr6KZtlSRT-xg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EMapar_laJvHveWr6KZtlSRT-xg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C6FA/A17B33C2D5AF11E88FF05228C4F9AE02/80CBE32C687B11F0947A4F60C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.18.80.0/22 103.131.156.0/22 IPv6: 2403:cd40::/32 Signature Algorithm: sha256WithRSAEncryption 71:52:c6:52:d5:7c:71:c7:87:93:34:ff:31:4f:ea:10:c2:7b: 3a:4e:07:46:4b:6c:e7:81:61:92:b2:ab:91:d0:3c:b4:0e:67: 57:c6:70:03:7d:34:fb:c0:28:b4:9d:bc:22:e9:fc:06:d1:27: 8d:e3:78:59:61:2c:89:98:06:c0:38:21:65:7c:cf:59:d2:fc: c8:8f:38:be:70:ff:96:e7:59:54:22:ab:f1:49:9a:0c:2e:59: 9d:a5:82:8b:5e:ba:3c:ae:38:88:81:7e:8d:91:9e:e7:7a:e4: aa:18:d2:58:a9:53:ff:17:19:b3:43:07:76:8b:d6:a6:74:f4: d3:fe:08:d6:98:bd:d3:0e:0b:a8:38:ab:9e:7a:b0:23:79:7e: 93:fd:a8:d8:d9:e0:74:52:6a:03:0d:a9:f9:ff:d4:26:c3:76: 49:31:58:db:40:9c:98:01:a4:17:54:a1:4b:83:f2:56:72:4a: 4a:0c:cb:cd:bc:c9:7d:ad:79:c5:7f:20:b3:27:fe:ff:10:f2: 5f:5e:f5:21:3f:d1:18:08:48:09:b2:01:5a:5e:8a:bf:72:b1: 4e:13:00:22:c3:79:95:d0:e9:f1:b0:7b:ae:28:aa:52:ec:50: cc:0f:2e:83:e9:04:b0:c9:27:c1:dd:f6:ca:fc:aa:ca:19:11: 12:32:46:62 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICEpAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM2RkExMTAvBgNVBAUTKDEwQzZBOTZBQkZFNTY4OUJDN0JERTVBQkU4QTY2RDk1 MjQ1M0ZCMTgwHhcNMjUwNzI0MTA0NjUwWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODgyMGYxYS0zY2M2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx3mlwhv0Sew1GS9v+9NKGYZhwLsYYKqZiVD2W+Fl6//KoeOcWGjHGLsw9RwF s8DcNCcYG94WJ4XGQ+FIVePRLM9yzslB4GeDyGWPQ5GYES8nS53uzhBHzBzsRrRK MavntoPJM14jeOccklTj3iDxa0B0D3hIica1h65MWCX93GLKou7CGfR4l5nYwhy9 iuSVBpuwK3qoAtYKKaDpIUvXE7c0aw6IyKTDzMbOc3Wjfo9Ngrx/yRiDEx9DE5dA magbYjuzbIRnTbUgm3ZOuorCPmuvqtbbkVjVRxFM00kbcSwMg+e5jEwzl1cIuzLS 6cDqH6mRmmIZ+r+u9+mrZuL1wwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFLS9TrDH eYgVUX7vDQGQqKb5ELKaMB8GA1UdIwQYMBaAFBDGqWq/5Wibx73lq+imbZUkU/sY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzZGQS9BMTdCMzNDMkQ1 QUYxMUU4OEZGMDUyMjhDNEY5QUUwMi9FTWFwYXJfbGFKdkh2ZVdyNktadGxTUlQt eGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VNYXBhcl9sYUp2SHZlV3I2S1p0bFNSVC14Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkM2RkEvQTE3QjMzQzJENUFGMTFFODhGRjA1MjI4QzRGOUFFMDIvODBDQkUzMkM2 ODdCMTFGMDk0N0E0RjYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnElADBAJng5wwDQQCAAIwBwMFACQDzUAwDQYJKoZIhvcN AQELBQADggEBAHFSxlLVfHHHh5M0/zFP6hDCezpOB0ZLbOeBYZKyq5HQPLQOZ1fG cAN9NPvAKLSdvCLp/AbRJ43jeFlhLImYBsA4IWV8z1nS/MiPOL5w/5bnWVQiq/FJ mgwuWZ2lgoteujyuOIiBfo2Rnud65KoY0lipU/8XGbNDB3aL1qZ09NP+CNaYvdMO C6g4q556sCN5fpP9qNjZ4HRSagMNqfn/1CbDdkkxWNtAnJgBpBdUoUuD8lZySkoM y828yX2tecV/ILMn/v8Q8l9e9SE/0RgISAmyAVpeir9ysU4TACLDeZXQ6fGwe64o qlLsUMwPLoPpBLDJJ8Hd9sr8qsoZERIyRmI= -----END CERTIFICATE-----Generated at Mon Aug 11 04:13:46 2025 by rpki-client