$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2F2F6DF8303011EDB7EB8078C4F9AE02.roa File: 2F2F6DF8303011EDB7EB8078C4F9AE02.roa (raw, json) Hash identifier: ZZSNLimS7wI9uu6GblsjQmhM41inhd0ehwkI+kok0hY= Subject key identifier: AA:C6:E3:27:7C:36:77:14:77:A6:6F:51:65:4E:4B:FA:A9:BF:3B:E8 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B256 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2F2F6DF8303011EDB7EB8078C4F9AE02.roa Signing time: Thu 08 May 2025 16:00:46 +0000 ROA not before: Thu 08 May 2025 16:00:46 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 134254 IP address blocks: 43.243.172.0/22 maxlen: 24 103.226.168.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:24:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45654 (0xb256) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:00:46 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd52d-cfda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e4:4d:ca:4e:a7:25:bf:a8:76:04:40:de:f2: c0:f3:d6:8d:7c:db:46:d1:10:24:cd:e1:ab:c0:1f: fe:fb:f0:0d:cc:92:de:47:11:29:26:f3:b8:d1:f9: dc:67:63:2a:d9:2e:3b:de:4d:3c:28:d3:d9:08:99: 64:fd:75:8f:28:e8:b8:04:4d:c8:f8:5c:8f:ac:a9: 5c:75:bb:1e:86:68:f7:41:91:ce:7f:6f:1c:10:cf: 1a:37:5b:a3:b4:ae:8e:4b:eb:d6:ff:da:1e:43:92: e7:41:ba:48:dc:ba:8d:d7:0b:67:e7:5f:30:e5:28: ea:3c:38:89:e6:25:45:33:a8:50:76:f8:30:84:b6: fc:c8:27:92:1b:12:da:ed:ee:c2:14:52:4c:5e:46: 10:f8:d0:06:8e:c6:d4:f4:04:82:75:f0:33:02:0a: 1c:50:a7:67:cc:a1:e2:54:2d:e9:3d:33:7d:ce:c0: ec:13:7d:1f:d0:d5:7d:20:8e:7f:88:6f:67:1b:d2: e4:5c:d5:7c:ca:a8:9d:7f:0a:c0:0d:21:80:ec:69: 08:54:c5:1f:7e:20:12:f2:ac:ce:9c:67:61:ef:62: 52:fb:ec:e3:04:51:31:c4:46:22:69:50:dc:69:ac: dc:b4:3a:5b:7d:69:12:c9:5c:46:b6:93:59:f3:57: b5:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:C6:E3:27:7C:36:77:14:77:A6:6F:51:65:4E:4B:FA:A9:BF:3B:E8 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2F2F6DF8303011EDB7EB8078C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.243.172.0/22 103.226.168.0/22 Signature Algorithm: sha256WithRSAEncryption 68:2b:e6:0b:21:37:f3:71:07:e8:39:71:46:29:95:bf:c9:98: 67:d8:86:10:01:8f:60:cb:cf:e6:46:fb:df:d2:80:8b:96:0b: 50:ff:62:01:d3:56:32:79:95:8d:2f:60:e9:b2:42:43:ac:67: 15:70:f3:b9:92:9c:4c:09:62:17:9a:3a:cd:ed:13:2d:ee:4f: 7c:52:e1:e2:7c:39:8a:c3:e2:dc:14:22:21:cd:3c:ee:4f:72: 5d:bf:64:15:7d:7c:7e:46:41:aa:14:8d:32:07:0e:52:9b:49: fa:2a:ad:a7:ac:08:e7:28:b5:1e:35:28:41:3c:10:7a:c3:fe: a0:aa:02:a9:52:cd:75:ed:ae:b0:45:ac:88:3c:88:35:cd:67: e4:5c:27:cb:bd:03:3a:3b:0d:df:2b:cb:44:ea:8c:fa:ad:1f: 0b:7c:73:96:16:b2:f9:fd:02:02:a4:2d:20:a5:51:84:45:a4: 17:1d:44:17:07:e8:2b:af:52:cc:21:e2:4e:8d:05:e0:79:9f: 7e:3b:f7:f8:ff:ca:e9:3c:ee:13:0d:bc:08:c8:63:e8:37:48: be:70:c7:52:fc:3a:40:ae:86:15:51:1c:49:c7:10:bf:43:4f: 80:ed:b2:bb:8a:d9:10:90:eb:ac:25:f2:1b:e3:c8:b3:19:31: 43:9d:3c:21 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIDALJWMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MDA0NloXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q1MmQtY2ZkYTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALnkTcpOpyW/qHYEQN7ywPPWjXzbRtEQJM3hq8Af/vvwDcyS3kcRKSbzuNH5 3GdjKtkuO95NPCjT2QiZZP11jyjouARNyPhcj6ypXHW7HoZo90GRzn9vHBDPGjdb o7Sujkvr1v/aHkOS50G6SNy6jdcLZ+dfMOUo6jw4ieYlRTOoUHb4MIS2/MgnkhsS 2u3uwhRSTF5GEPjQBo7G1PQEgnXwMwIKHFCnZ8yh4lQt6T0zfc7A7BN9H9DVfSCO f4hvZxvS5FzVfMqonX8KwA0hgOxpCFTFH34gEvKszpxnYe9iUvvs4wRRMcRGImlQ 3Gms3LQ6W31pEslcRraTWfNXte0CAwEAAaOCApswggKXMB0GA1UdDgQWBBSqxuMn fDZ3FHemb1FlTkv6qb876DAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzJGMkY2REY4 MzAzMDExRURCN0VCODA3OEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCUGCCsGAQUFBwEHAQH/ BBYwFDASBAIAATAMAwQCK/OsAwQCZ+KoMA0GCSqGSIb3DQEBCwUAA4IBAQBoK+YL ITfzcQfoOXFGKZW/yZhn2IYQAY9gy8/mRvvf0oCLlgtQ/2IB01YyeZWNL2DpskJD rGcVcPO5kpxMCWIXmjrN7RMt7k98UuHifDmKw+LcFCIhzTzuT3Jdv2QVfXx+RkGq FI0yBw5Sm0n6Kq2nrAjnKLUeNShBPBB6w/6gqgKpUs117a6wRayIPIg1zWfkXCfL vQM6Ow3fK8tE6oz6rR8LfHOWFrL5/QICpC0gpVGERaQXHUQXB+grr1LMIeJOjQXg eZ9+O/f4/8rpPO4TDbwIyGPoN0i+cMdS/DpAroYVURxJxxC/Q0+A7bK7itkQkOus JfIb48izGTFDnTwh -----END CERTIFICATE-----Generated at Wed Nov 5 19:27:19 2025 by rpki-client