$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/269D55EA662B11F0857BB574C4F9AE02.roa File: 269D55EA662B11F0857BB574C4F9AE02.roa (raw, json) Hash identifier: wzBu6Dtkr5vn9qhn2BapE8a+YjYgCuuPQK8/uy1a9PQ= Subject key identifier: 04:D8:A5:0E:6B:9D:65:DA:BB:AD:3A:3A:49:C7:30:BF:C1:87:BC:5B Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: C0A6 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/269D55EA662B11F0857BB574C4F9AE02.roa Signing time: Mon 21 Jul 2025 12:11:12 +0000 ROA not before: Mon 21 Jul 2025 12:11:12 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 132923 IP address blocks: 43.228.228.0/22 maxlen: 24 103.85.90.0/24 maxlen: 24 103.156.142.0/23 maxlen: 24 103.159.38.0/23 maxlen: 24 103.215.158.0/23 maxlen: 24 103.240.32.0/22 maxlen: 24 2405:8340::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49318 (0xc0a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jul 21 12:11:12 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=687e2e60-1eb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ca:73:a7:a2:ab:ac:9c:2e:5d:79:b4:0c:9a: 29:20:a4:41:b4:b3:73:6f:b6:7e:89:e2:27:4a:db: f3:44:38:bc:37:61:a1:be:14:f5:67:a1:a6:12:cd: 8d:a9:89:82:ea:2f:c8:09:b2:ba:ab:83:30:95:5e: f6:91:14:30:f4:ad:0b:25:6c:79:49:b0:b4:ba:20: 42:6f:64:35:c5:92:84:26:9a:8d:98:11:2f:bc:4f: d4:a5:47:e7:e8:55:ee:f9:ff:6d:8f:32:5d:e9:1b: a8:81:50:16:94:a3:71:a0:04:d7:88:23:9b:17:97: 42:ab:45:0a:51:7b:1c:6b:fc:44:cc:69:d5:7a:2c: 38:5c:66:0d:cc:b2:68:4a:c3:4f:85:93:3e:c7:a5: bf:01:4d:c0:74:af:a2:2c:64:a6:02:1c:80:89:00: 18:b2:c7:35:4c:33:08:13:15:eb:74:65:b2:4f:47: 0b:bc:bb:ed:10:bf:e0:e8:5e:80:2b:1d:48:84:d1: 5a:3b:8d:02:bb:1c:d8:0f:5e:78:5e:6f:13:4c:1d: 2f:69:86:e9:a6:02:f3:7f:dc:08:77:5a:1d:98:a4: 43:54:10:9f:b2:75:cb:7e:83:9a:63:37:fa:a3:80: 8b:1e:03:df:e7:de:fc:d5:46:23:30:11:6b:9e:8d: 37:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:D8:A5:0E:6B:9D:65:DA:BB:AD:3A:3A:49:C7:30:BF:C1:87:BC:5B X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/269D55EA662B11F0857BB574C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.228.228.0/22 103.85.90.0/24 103.156.142.0/23 103.159.38.0/23 103.215.158.0/23 103.240.32.0/22 IPv6: 2405:8340::/32 Signature Algorithm: sha256WithRSAEncryption 78:dc:8d:ac:88:af:49:f8:49:d9:09:b4:4d:df:16:77:df:ed: ce:a6:95:04:89:ff:07:18:d7:89:d8:b3:44:d5:d3:3e:0e:58: a6:24:b2:6f:d1:85:0e:41:93:f8:3f:38:22:19:d7:8e:67:94: bb:c9:18:72:64:fd:03:2d:a4:fc:ad:21:84:75:04:fc:5f:e4: f7:b6:b4:f0:83:f6:9e:23:1c:58:18:7a:b3:d6:85:8a:c1:8d: a1:b0:f8:10:b6:47:ba:7d:87:be:d1:91:e0:10:f6:43:32:6f: 07:53:bb:a4:ab:ae:d0:1c:ef:12:7b:51:a4:84:dc:0d:4a:f6: 4b:04:3e:d2:9d:d6:69:8f:88:32:3b:1e:fd:3d:a3:6a:17:3e: ba:4a:3d:d0:88:c0:23:aa:22:1a:75:1c:f2:2f:da:f0:6e:4f: 43:b2:9b:6a:5c:e5:f1:43:3f:f3:86:09:bd:4a:eb:87:7a:e0: ae:6e:88:bd:1f:2e:0c:4c:9c:9c:6c:e7:5b:cf:01:c2:cb:0b: 8d:17:22:57:fc:12:05:82:cc:4e:32:31:11:7e:e4:d9:52:7d: 0e:ff:7e:92:ed:ef:ef:69:87:d7:40:5c:1a:5d:4f:fe:5e:9d: a1:4b:15:fb:4a:31:03:df:41:68:e5:60:f7:f5:b1:8e:b5:22: d8:78:b7:c6 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIDAMCmMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDcyMTEyMTExMloXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjg3ZTJlNjAtMWViMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL/Kc6eiq6ycLl15tAyaKSCkQbSzc2+2foniJ0rb80Q4vDdhob4U9WehphLN jamJguovyAmyuquDMJVe9pEUMPStCyVseUmwtLogQm9kNcWShCaajZgRL7xP1KVH 5+hV7vn/bY8yXekbqIFQFpSjcaAE14gjmxeXQqtFClF7HGv8RMxp1XosOFxmDcyy aErDT4WTPselvwFNwHSvoixkpgIcgIkAGLLHNUwzCBMV63Rlsk9HC7y77RC/4Ohe gCsdSITRWjuNArsc2A9eeF5vE0wdL2mG6aYC83/cCHdaHZikQ1QQn7J1y36DmmM3 +qOAix4D3+fe/NVGIzARa56NN+UCAwEAAaOCAsIwggK+MB0GA1UdDgQWBBQE2KUO a51l2rutOjpJxzC/wYe8WzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzI2OUQ1NUVB NjYyQjExRjA4NTdCQjU3NEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMEwGCCsGAQUFBwEHAQH/ BD0wOzAqBAIAATAkAwQCK+TkAwQAZ1VaAwQBZ5yOAwQBZ58mAwQBZ9eeAwQCZ/Ag MA0EAgACMAcDBQAkBYNAMA0GCSqGSIb3DQEBCwUAA4IBAQB43I2siK9J+EnZCbRN 3xZ33+3OppUEif8HGNeJ2LNE1dM+DlimJLJv0YUOQZP4PzgiGdeOZ5S7yRhyZP0D LaT8rSGEdQT8X+T3trTwg/aeIxxYGHqz1oWKwY2hsPgQtke6fYe+0ZHgEPZDMm8H U7ukq67QHO8Se1GkhNwNSvZLBD7SndZpj4gyOx79PaNqFz66Sj3QiMAjqiIadRzy L9rwbk9DsptqXOXxQz/zhgm9SuuHeuCuboi9Hy4MTJycbOdbzwHCywuNFyJX/BIF gsxOMjERfuTZUn0O/36S7e/vaYfXQFwaXU/+Xp2hSxX7SjED30Fo5WD39bGOtSLY eLfG -----END CERTIFICATE-----Generated at Sun Aug 10 21:06:50 2025 by rpki-client