$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3507A7D600DE11EC8B07A64FC4F9AE02.roa File: 3507A7D600DE11EC8B07A64FC4F9AE02.roa (raw, json) Hash identifier: BHql5LFY2I/4a6I5/eN3KDyGYsjYibvEADMQP7x2j+o= Subject key identifier: A8:BF:7F:F4:AA:4F:63:1D:6A:95:CE:65:41:C1:CB:2D:9C:5F:B8:57 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B375 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3507A7D600DE11EC8B07A64FC4F9AE02.roa Signing time: Thu 08 May 2025 16:05:15 +0000 ROA not before: Thu 08 May 2025 16:05:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 135786 IP address blocks: 103.84.190.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:24:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45941 (0xb375) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:05:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd63b-c734 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:69:5c:34:c2:14:30:98:4f:2d:ed:98:b3:e7: 18:d7:c4:ad:d1:2a:02:7d:15:79:a7:ba:b9:3c:18: 8d:45:ad:b6:f9:f1:e9:41:28:65:40:91:e1:7e:ea: 49:5a:01:c2:48:54:4f:06:d2:5a:f4:bd:b4:c4:e6: ef:4f:40:fa:1a:9c:57:76:f5:3c:75:40:67:d5:c0: 1e:54:53:fe:09:91:88:68:96:fe:45:5a:39:c6:96: d3:53:1f:e3:87:73:e9:26:fe:09:fe:29:dc:cf:17: 48:8e:b7:93:9d:67:5d:b7:1b:d9:1c:d6:58:7a:08: a4:7b:90:d4:fe:74:4e:48:57:03:f7:8c:97:91:25: b6:c6:3c:df:01:29:7b:d2:97:62:62:a4:8a:22:d6: 14:25:c7:cb:c8:ef:26:1a:ab:89:63:98:01:b2:9a: 8e:0b:85:4b:e1:a3:55:fb:a4:bc:d3:f5:3f:f1:02: 5c:bd:a9:d6:e1:f3:3b:ed:e8:00:0d:ad:84:93:72: c8:b2:bb:bc:b0:d8:ef:2b:83:e4:2e:f6:fc:24:fd: c4:01:d6:26:fa:32:e8:ff:1d:56:d5:28:1e:2b:06: 49:34:2a:13:41:ee:7b:20:ba:89:c9:3d:00:de:87: 49:f5:b1:d6:57:ef:ad:94:de:92:8e:6b:52:2d:0c: 17:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:BF:7F:F4:AA:4F:63:1D:6A:95:CE:65:41:C1:CB:2D:9C:5F:B8:57 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/3507A7D600DE11EC8B07A64FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.84.190.0/23 Signature Algorithm: sha256WithRSAEncryption 45:a5:67:ba:d1:a4:ab:67:96:8c:a8:9c:69:69:08:0b:26:fe: 40:5f:75:bd:a0:f6:bf:32:23:44:bd:2c:72:f5:88:d7:5b:e1: c0:a7:6c:04:71:4e:8c:90:cb:c6:2f:62:6b:62:50:f3:f1:24: 29:b3:09:b6:79:49:89:b9:fd:28:d6:e4:f3:bf:26:b7:b6:db: f4:68:5f:3c:8d:0d:19:63:52:05:08:a6:c9:d2:3c:03:85:c5: 3e:8d:50:86:ca:bb:18:f4:86:cd:c9:b3:d4:15:5f:be:19:61: c3:62:08:fe:cf:99:3a:c2:d9:2d:91:e6:9e:e5:2c:96:a5:06: 07:9a:c5:e9:dd:4b:8e:45:2e:12:a2:8f:cc:57:01:d9:19:f7: 13:e6:e6:9a:88:cc:61:ac:b5:b8:84:20:74:0f:7d:4a:1f:80: b6:10:0f:fb:63:73:3c:e9:e8:0b:86:2c:28:32:f3:1b:ef:b3: ad:62:9d:1b:51:42:ed:3c:4c:c8:38:8c:b5:53:5a:de:03:c0: 33:86:4d:b1:4a:54:eb:24:87:95:a3:fc:2f:3e:b3:85:f6:4e: c1:d1:64:14:55:58:75:ae:10:62:5a:1a:a5:48:f3:bf:d0:ae: fe:6a:05:b1:0a:c6:75:c8:af:c8:01:a7:0a:34:15:4b:0e:3a: 42:04:4c:56 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDALN1MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MDUxNVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q2M2ItYzczNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKtpXDTCFDCYTy3tmLPnGNfErdEqAn0Veae6uTwYjUWttvnx6UEoZUCR4X7q SVoBwkhUTwbSWvS9tMTm709A+hqcV3b1PHVAZ9XAHlRT/gmRiGiW/kVaOcaW01Mf 44dz6Sb+Cf4p3M8XSI63k51nXbcb2RzWWHoIpHuQ1P50TkhXA/eMl5EltsY83wEp e9KXYmKkiiLWFCXHy8jvJhqriWOYAbKajguFS+GjVfukvNP1P/ECXL2p1uHzO+3o AA2thJNyyLK7vLDY7yuD5C72/CT9xAHWJvoy6P8dVtUoHisGSTQqE0HueyC6ick9 AN6HSfWx1lfvrZTeko5rUi0MF5sCAwEAAaOCApUwggKRMB0GA1UdDgQWBBSov3/0 qk9jHWqVzmVBwcstnF+4VzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzM1MDdBN0Q2 MDBERTExRUM4QjA3QTY0RkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQBZ1S+MA0GCSqGSIb3DQEBCwUAA4IBAQBFpWe60aSrZ5aM qJxpaQgLJv5AX3W9oPa/MiNEvSxy9YjXW+HAp2wEcU6MkMvGL2JrYlDz8SQpswm2 eUmJuf0o1uTzvya3ttv0aF88jQ0ZY1IFCKbJ0jwDhcU+jVCGyrsY9IbNybPUFV++ GWHDYgj+z5k6wtktkeae5SyWpQYHmsXp3UuORS4Soo/MVwHZGfcT5uaaiMxhrLW4 hCB0D31KH4C2EA/7Y3M86egLhiwoMvMb77OtYp0bUULtPEzIOIy1U1reA8Azhk2x SlTrJIeVo/wvPrOF9k7B0WQUVVh1rhBiWhqlSPO/0K7+agWxCsZ1yK/IAacKNBVL DjpCBExW -----END CERTIFICATE-----Generated at Wed Nov 5 19:26:29 2025 by rpki-client