$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/69270F98DC5E11EABC33397AC4F9AE02.roa File: 69270F98DC5E11EABC33397AC4F9AE02.roa (raw, json) Hash identifier: c0pk5U0P9sXynP5F59UR4Fzq11q2NNy8P5YpFsauv7w= Subject key identifier: 6F:FB:D2:6D:D4:1F:9E:6D:48:2D:E0:0F:97:9F:BE:BA:78:16:2E:3F Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: BA45 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/69270F98DC5E11EABC33397AC4F9AE02.roa Signing time: Thu 08 May 2025 16:31:41 +0000 ROA not before: Thu 08 May 2025 16:31:41 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 56272 IP address blocks: 43.254.108.0/22 maxlen: 24 103.3.228.0/22 maxlen: 24 103.249.80.0/22 maxlen: 24 103.249.204.0/22 maxlen: 24 180.235.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:24:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47685 (0xba45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:31:41 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cdc6d-c5ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d1:1a:aa:02:9b:ab:3c:9d:f7:72:da:b3:83: b0:d4:1e:28:3f:bc:76:73:b6:d0:83:5f:73:bf:97: ae:c6:c5:82:03:1f:c7:aa:35:70:1c:5a:3d:30:75: dc:dd:81:dc:38:75:c6:31:35:8d:a0:bd:e2:bc:f0: 65:60:52:3c:18:dd:ba:b8:1d:9b:55:c8:23:ab:9e: f3:8e:85:d7:7a:9a:e0:49:30:25:53:ab:8e:18:1f: 0d:6a:4c:35:d9:0b:15:79:af:37:fd:c6:55:23:16: 71:d2:4a:f4:73:cc:65:c6:ca:4b:13:56:ae:b9:19: 52:4e:00:83:b4:30:4c:34:81:c8:5a:db:b1:61:ac: 05:90:53:0b:89:ca:32:75:8e:a9:d2:ec:d6:47:e8: 31:18:6f:14:7b:ff:f1:5f:eb:dd:d5:98:8a:b2:0b: 46:53:04:97:2b:7b:17:5e:07:47:19:21:33:a7:52: 35:08:6f:1d:e0:e9:2b:cc:16:1e:33:67:46:1b:e3: a5:02:66:4d:67:f2:3f:00:58:71:68:63:6d:46:5f: f9:6a:e3:7c:c7:54:75:79:ae:34:78:55:d3:0e:69: 65:4e:33:47:55:e6:a1:6a:2a:71:c7:9a:65:63:11: 58:01:94:a5:10:3c:86:d3:83:3e:9e:75:d0:11:e0: 5c:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:FB:D2:6D:D4:1F:9E:6D:48:2D:E0:0F:97:9F:BE:BA:78:16:2E:3F X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/69270F98DC5E11EABC33397AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.254.108.0/22 103.3.228.0/22 103.249.80.0/22 103.249.204.0/22 180.235.120.0/22 Signature Algorithm: sha256WithRSAEncryption 23:34:2e:88:f8:79:2b:ba:d6:97:60:1d:d2:04:6b:57:49:66: 10:be:ae:3d:ff:34:ca:f6:fd:db:59:e6:ca:c2:e2:da:3f:07: 29:53:17:04:34:94:94:42:56:ea:31:ab:9e:08:73:47:32:00: 3a:0b:9e:0e:57:dc:40:7c:28:be:91:19:07:1c:89:3b:b4:6b: f0:87:6a:07:fe:a9:bd:04:1e:cd:24:c7:50:04:ff:ff:ef:46: 0a:7f:42:6a:98:26:14:3a:8d:f0:fd:31:4b:63:4c:29:b4:c0: bf:f1:f5:7f:9c:6e:41:82:1d:36:1b:13:31:56:a7:62:d0:b0: 25:ea:b9:43:d3:8a:b0:d1:ee:38:68:24:8b:79:ae:f6:a6:18: e6:fc:0b:60:70:e9:a5:da:65:7f:9b:0c:7d:8c:6c:53:0a:b4: 0e:08:b0:4d:ab:61:b6:fe:84:21:4a:8a:32:5b:32:6d:4a:8f: ab:58:de:14:e1:92:1e:1e:02:6d:dc:41:47:97:0f:2b:11:fe: c5:8e:d1:0a:31:9c:e3:bf:5d:a0:b9:ab:7a:95:51:d2:1e:35: c5:04:3f:05:ea:c8:fd:d2:94:a2:da:6a:16:cd:1d:17:cc:ac: c1:d0:3e:a1:e3:3d:18:fe:27:17:02:e5:81:01:f4:42:00:a4: b4:3f:20:e7 -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgIDALpFMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MzE0MVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2RjNmQtYzVhYjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMzRGqoCm6s8nfdy2rODsNQeKD+8dnO20INfc7+XrsbFggMfx6o1cBxaPTB1 3N2B3Dh1xjE1jaC94rzwZWBSPBjdurgdm1XII6ue846F13qa4EkwJVOrjhgfDWpM NdkLFXmvN/3GVSMWcdJK9HPMZcbKSxNWrrkZUk4Ag7QwTDSByFrbsWGsBZBTC4nK MnWOqdLs1kfoMRhvFHv/8V/r3dWYirILRlMElyt7F14HRxkhM6dSNQhvHeDpK8wW HjNnRhvjpQJmTWfyPwBYcWhjbUZf+WrjfMdUdXmuNHhV0w5pZU4zR1XmoWoqccea ZWMRWAGUpRA8htODPp510BHgXNUCAwEAAaOCAq0wggKpMB0GA1UdDgQWBBRv+9Jt 1B+ebUgt4A+Xn766eBYuPzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzY5MjcwRjk4 REM1RTExRUFCQzMzMzk3QUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDcGCCsGAQUFBwEHAQH/ BCgwJjAkBAIAATAeAwQCK/5sAwQCZwPkAwQCZ/lQAwQCZ/nMAwQCtOt4MA0GCSqG SIb3DQEBCwUAA4IBAQAjNC6I+HkrutaXYB3SBGtXSWYQvq49/zTK9v3bWebKwuLa PwcpUxcENJSUQlbqMaueCHNHMgA6C54OV9xAfCi+kRkHHIk7tGvwh2oH/qm9BB7N JMdQBP//70YKf0JqmCYUOo3w/TFLY0wptMC/8fV/nG5Bgh02GxMxVqdi0LAl6rlD 04qw0e44aCSLea72phjm/AtgcOml2mV/mwx9jGxTCrQOCLBNq2G2/oQhSooyWzJt So+rWN4U4ZIeHgJt3EFHlw8rEf7FjtEKMZzjv12guat6lVHSHjXFBD8F6sj90pSi 2moWzR0XzKzB0D6h4z0Y/icXAuWBAfRCAKS0PyDn -----END CERTIFICATE-----Generated at Wed Nov 5 20:50:17 2025 by rpki-client