$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1ADCC3BA200511F081E1821DC4F9AE02.roa File: 1ADCC3BA200511F081E1821DC4F9AE02.roa (raw, json) Hash identifier: j+aqpAvDZq0KVB/Mc+rg8c4kC+xpOZnAz0hMHYWmUBE= Subject key identifier: 84:4D:1B:D4:CA:B4:66:82:D8:9F:84:4A:2E:90:53:9D:28:45:79:59 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B720 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1ADCC3BA200511F081E1821DC4F9AE02.roa Signing time: Thu 08 May 2025 16:19:34 +0000 ROA not before: Thu 08 May 2025 16:19:34 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 146858 IP address blocks: 103.172.148.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:24:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46880 (0xb720) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:19:34 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd995-bb7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:51:95:99:15:c6:f7:63:d7:7c:43:bc:8a:02: fb:81:32:78:f2:dd:26:5e:62:26:2b:34:f4:b7:82: f9:ec:14:50:30:0b:be:c0:ae:33:01:fe:a4:4f:02: c1:c0:ed:f4:c9:4b:ec:2f:d4:02:9e:42:59:55:36: 48:6e:ee:c1:62:0a:8c:f1:62:7a:52:bd:4a:53:ab: 84:2c:0c:4d:3e:b8:88:bf:90:14:a8:49:f0:fe:a7: 76:6f:67:79:59:9f:06:13:00:1e:7b:b9:0d:d4:90: 91:f1:84:fe:46:ac:98:58:9c:ed:28:db:0c:c6:f8: 42:0a:fc:42:85:1e:89:e8:b7:98:8a:48:b7:a2:81: 0b:b1:28:b7:83:86:83:6b:3d:07:56:8f:7f:65:be: fa:aa:77:f9:90:2c:32:8c:70:22:d5:6b:5d:c2:c6: 58:a5:e3:a9:6b:2c:47:0d:00:df:52:12:bd:e4:42: 2f:82:6c:bd:32:df:5c:d6:62:8b:3e:43:5d:78:72: f8:45:da:33:96:14:5b:34:ef:fb:28:9b:96:5c:9f: 18:06:be:ae:3d:2f:5a:6e:ce:8b:e3:22:07:6b:9a: c5:a7:82:5a:84:da:bb:aa:25:25:02:b5:3b:41:b2: 7b:60:f9:ce:78:bb:c5:5f:ef:66:09:36:03:a3:f6: d9:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:4D:1B:D4:CA:B4:66:82:D8:9F:84:4A:2E:90:53:9D:28:45:79:59 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1ADCC3BA200511F081E1821DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.148.0/23 Signature Algorithm: sha256WithRSAEncryption 3f:2a:fe:a1:d4:67:0b:3b:f7:8e:11:04:8f:19:0a:ca:7f:c3: 7d:98:66:49:56:b1:cf:b6:01:a2:ba:c3:a2:29:67:26:8e:ed: f3:16:9f:35:e6:80:0f:2b:14:42:12:e0:49:5f:53:65:29:e1: 73:69:3e:6c:31:dc:50:c1:dc:d6:0d:61:cc:12:e8:db:45:ee: e5:46:c2:48:52:a1:d0:46:62:1a:89:f7:b5:b7:ee:b0:24:b7: 33:91:ec:fb:dc:9a:40:da:87:95:29:59:4f:59:54:d9:13:3d: 69:81:97:67:70:02:e1:c5:77:5f:6a:e3:f4:54:10:85:ca:42: d3:ed:8d:89:b4:45:b0:7d:cf:6d:7d:69:95:15:5f:a6:9e:54: 23:58:69:7c:d4:8b:7b:fa:8e:25:66:c4:7b:e6:2e:0c:c4:1d: 3d:4c:1a:2a:04:24:4a:59:18:1b:43:94:bc:c5:07:d9:1d:f3: 7f:0b:3a:e7:80:0a:55:d1:75:c3:de:b4:c7:9b:28:29:49:ea: 01:8d:33:eb:f3:c7:8a:09:91:ef:f9:9f:e1:f4:5b:be:9e:67: 5b:1c:6c:42:a5:bc:30:9e:f6:7d:fc:c8:b6:35:f1:03:9c:b8: 0b:2e:89:9d:b2:21:4e:71:d8:0f:e4:ca:0e:72:2d:c7:07:d5: 33:d0:8f:97 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDALcgMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MTkzNFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q5OTUtYmI3YTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK1RlZkVxvdj13xDvIoC+4EyePLdJl5iJis09LeC+ewUUDALvsCuMwH+pE8C wcDt9MlL7C/UAp5CWVU2SG7uwWIKjPFielK9SlOrhCwMTT64iL+QFKhJ8P6ndm9n eVmfBhMAHnu5DdSQkfGE/kasmFic7SjbDMb4Qgr8QoUeiei3mIpIt6KBC7Eot4OG g2s9B1aPf2W++qp3+ZAsMoxwItVrXcLGWKXjqWssRw0A31ISveRCL4JsvTLfXNZi iz5DXXhy+EXaM5YUWzTv+yibllyfGAa+rj0vWm7Oi+MiB2uaxaeCWoTau6olJQK1 O0Gye2D5zni7xV/vZgk2A6P22UcCAwEAAaOCApUwggKRMB0GA1UdDgQWBBSETRvU yrRmgtifhEoukFOdKEV5WTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzFBRENDM0JB MjAwNTExRjA4MUUxODIxREM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQBZ6yUMA0GCSqGSIb3DQEBCwUAA4IBAQA/Kv6h1GcLO/eO EQSPGQrKf8N9mGZJVrHPtgGiusOiKWcmju3zFp815oAPKxRCEuBJX1NlKeFzaT5s MdxQwdzWDWHMEujbRe7lRsJIUqHQRmIaife1t+6wJLczkez73JpA2oeVKVlPWVTZ Ez1pgZdncALhxXdfauP0VBCFykLT7Y2JtEWwfc9tfWmVFV+mnlQjWGl81It7+o4l ZsR75i4MxB09TBoqBCRKWRgbQ5S8xQfZHfN/CzrngApV0XXD3rTHmygpSeoBjTPr 88eKCZHv+Z/h9Fu+nmdbHGxCpbwwnvZ9/Mi2NfEDnLgLLomdsiFOcdgP5MoOci3H B9Uz0I+X -----END CERTIFICATE-----Generated at Wed Nov 5 17:55:28 2025 by rpki-client