$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/587758E6DD3111EAB2EA1D0AC4F9AE02.roa File: 587758E6DD3111EAB2EA1D0AC4F9AE02.roa (raw, json) Hash identifier: 824KE21T3av5PMtFovQVahyCRJYNY0Ph6riE2RsNz9g= Subject key identifier: B7:B3:4A:C0:A3:90:17:E3:73:AE:33:6A:B1:0B:39:28:77:F7:60:B4 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: BFED Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/587758E6DD3111EAB2EA1D0AC4F9AE02.roa Signing time: Wed 09 Jul 2025 10:42:23 +0000 ROA not before: Wed 09 Jul 2025 10:42:23 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 45815 IP address blocks: 103.154.75.0/24 maxlen: 24 103.249.97.0/24 maxlen: 24 2400:5300::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49133 (0xbfed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jul 9 10:42:23 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=686e478f-4332 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:88:82:74:70:27:09:05:0f:60:63:5a:ad:e4: 3f:68:f5:11:68:12:56:cd:4f:7a:47:13:7a:2b:59: 39:85:03:5a:30:42:44:f8:be:a0:8b:c3:14:9d:81: c5:5d:09:f8:ef:19:bf:63:61:f1:e6:ac:62:e7:ab: ad:f5:51:a4:db:b1:ff:ff:38:71:bf:12:20:0b:ee: 55:1c:35:41:c3:e6:82:fb:59:73:92:d0:fd:61:7a: c5:8e:66:1b:df:83:29:ac:02:62:a3:04:15:f2:94: df:5e:be:32:85:cd:cd:b8:43:f7:2a:9c:10:4d:63: 15:34:6f:97:bf:8e:b3:d9:6d:4e:41:f4:bc:6c:c1: d9:6c:04:16:f0:98:dc:2c:a5:35:5a:4a:99:44:a1: ca:f6:1d:4a:cf:09:81:4d:eb:0d:50:13:58:90:82: 21:b5:b6:4b:a2:90:c6:04:2c:3a:a4:8e:76:eb:01: c0:5a:d7:4d:49:21:6c:ee:51:d4:92:1d:ef:32:f1: e1:72:eb:75:e4:91:b9:51:6a:ea:bc:97:ff:d6:22: 11:74:81:31:6e:d4:af:92:59:f9:c0:7e:77:19:09: 57:40:00:ab:b3:8f:cb:a8:08:be:45:e3:2d:ae:90: 5e:9b:c0:fb:2c:a8:c8:65:8e:4a:e1:a4:8e:16:c4: af:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:B3:4A:C0:A3:90:17:E3:73:AE:33:6A:B1:0B:39:28:77:F7:60:B4 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/587758E6DD3111EAB2EA1D0AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.154.75.0/24 103.249.97.0/24 IPv6: 2400:5300::/32 Signature Algorithm: sha256WithRSAEncryption 72:e1:06:84:f4:f2:28:b4:07:7c:79:bb:02:56:5d:54:d5:de: cc:1d:cf:be:22:df:cf:5e:4a:c2:65:0f:e4:4b:6c:1f:6c:24: 70:7a:7e:a4:ce:99:09:7b:3d:8e:dd:80:88:44:99:70:b7:9b: 48:73:a2:d8:c3:9d:1e:d2:56:f0:61:38:7c:67:7b:36:e8:41: d1:0f:dc:9d:79:63:f4:23:b6:e4:d3:5e:9b:58:e1:07:f1:ed: 45:b1:e2:a2:13:54:d1:d9:ef:43:c7:db:55:f2:e1:25:6f:cf: 61:9b:b2:0d:de:32:4b:6f:bd:b8:71:67:9a:21:ba:67:cf:58: e8:88:9e:bc:9e:71:29:c6:82:1b:95:66:02:f9:a9:a3:9f:0d: a3:a7:dd:24:7f:e8:cc:ce:b4:97:b0:2c:12:d6:4a:63:e2:b0: 3b:89:62:e4:de:61:74:b0:9b:f5:51:bb:bc:40:a3:c8:38:f7: 7a:87:39:72:e6:8e:92:13:70:51:03:54:04:d9:ed:6a:1c:d5: da:02:1d:e6:62:8f:78:a8:6e:31:22:58:71:da:27:a4:97:0f: 06:e6:13:2e:22:e6:3f:0a:59:e7:fe:60:3c:09:ce:f5:77:34: ba:e2:c2:6d:31:e5:6d:d9:fd:ed:0f:2e:30:dd:7c:fa:20:21: 31:9f:a9:d3 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgIDAL/tMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDcwOTEwNDIyM1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjg2ZTQ3OGYtNDMzMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOeIgnRwJwkFD2BjWq3kP2j1EWgSVs1PekcTeitZOYUDWjBCRPi+oIvDFJ2B xV0J+O8Zv2Nh8easYuerrfVRpNux//84cb8SIAvuVRw1QcPmgvtZc5LQ/WF6xY5m G9+DKawCYqMEFfKU316+MoXNzbhD9yqcEE1jFTRvl7+Os9ltTkH0vGzB2WwEFvCY 3CylNVpKmUShyvYdSs8JgU3rDVATWJCCIbW2S6KQxgQsOqSOdusBwFrXTUkhbO5R 1JId7zLx4XLrdeSRuVFq6ryX/9YiEXSBMW7Ur5JZ+cB+dxkJV0AAq7OPy6gIvkXj La6QXpvA+yyoyGWOSuGkjhbEr3sCAwEAAaOCAqowggKmMB0GA1UdDgQWBBS3s0rA o5AX43OuM2qxCzkod/dgtDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzU4Nzc1OEU2 REQzMTExRUFCMkVBMUQwQUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDQGCCsGAQUFBwEHAQH/ BCUwIzASBAIAATAMAwQAZ5pLAwQAZ/lhMA0EAgACMAcDBQAkAFMAMA0GCSqGSIb3 DQEBCwUAA4IBAQBy4QaE9PIotAd8ebsCVl1U1d7MHc++It/PXkrCZQ/kS2wfbCRw en6kzpkJez2O3YCIRJlwt5tIc6LYw50e0lbwYTh8Z3s26EHRD9ydeWP0I7bk016b WOEH8e1FseKiE1TR2e9Dx9tV8uElb89hm7IN3jJLb724cWeaIbpnz1joiJ68nnEp xoIblWYC+amjnw2jp90kf+jMzrSXsCwS1kpj4rA7iWLk3mF0sJv1Ubu8QKPIOPd6 hzly5o6SE3BRA1QE2e1qHNXaAh3mYo94qG4xIlhx2ieklw8G5hMuIuY/Clnn/mA8 Cc71dzS64sJtMeVt2f3tDy4w3Xz6ICExn6nT -----END CERTIFICATE-----Generated at Sun Aug 10 04:48:05 2025 by rpki-client