$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7764291AEDA211EAA22D521FC4F9AE02.roa File: 7764291AEDA211EAA22D521FC4F9AE02.roa (raw, json) Hash identifier: r6FM1Zk/ujQiMdPSOWXUldUk3otS9+HzTTlYW1yHweM= Subject key identifier: C2:29:73:CE:55:A0:13:4B:FD:E7:71:10:CD:88:D0:A8:96:05:6C:E1 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B13A Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7764291AEDA211EAA22D521FC4F9AE02.roa Signing time: Thu 08 May 2025 15:56:20 +0000 ROA not before: Thu 08 May 2025 15:56:20 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 132515 IP address blocks: 103.120.234.0/23 maxlen: 24 2001:df4:6180::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:24:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45370 (0xb13a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 15:56:20 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd423-45da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:e6:fa:fc:3a:85:51:19:91:89:d4:cb:3b:5c: ac:38:b6:b2:20:2c:5e:87:9f:6b:5c:f6:29:bb:92: 2f:34:12:75:69:28:a7:5b:8a:03:ab:7d:05:b4:c0: 60:ea:95:62:3f:86:45:7d:ab:93:d8:0a:c2:a5:ac: 8b:18:9e:dc:c7:bc:b0:f1:ea:ff:46:69:c3:48:e3: b6:ef:9e:74:1b:91:33:c8:2a:34:ba:1e:ba:58:62: 44:e5:47:8d:7c:1c:ad:05:b3:8f:78:e7:e6:8f:9a: 3d:58:9e:3e:41:2e:49:41:67:45:0f:be:81:50:9b: 67:0e:20:2b:cf:81:e9:f9:23:0b:fe:cc:c6:20:bd: 23:46:59:35:1a:b8:72:cd:b9:35:f2:da:13:a5:31: ee:5a:26:07:d4:b7:ba:70:23:f3:e3:4a:77:f8:2b: e1:35:83:d1:77:be:9d:bf:46:a9:f3:6f:8b:db:65: 5a:3f:79:ff:3b:de:3a:87:e2:e0:60:e1:25:39:2e: bb:79:9f:98:65:68:89:ef:70:e7:01:ab:31:a1:ba: a0:7a:6d:33:3b:1d:28:3b:94:04:e3:0e:dc:58:12: f5:eb:1b:8b:d3:19:5b:55:a4:3f:db:5c:97:f9:ec: 8a:f4:30:57:bc:b0:e6:a5:95:18:a6:27:1b:ec:9f: 68:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:29:73:CE:55:A0:13:4B:FD:E7:71:10:CD:88:D0:A8:96:05:6C:E1 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7764291AEDA211EAA22D521FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.234.0/23 IPv6: 2001:df4:6180::/48 Signature Algorithm: sha256WithRSAEncryption 3b:f3:54:a3:0d:72:3a:c2:dc:ab:3c:d3:df:20:cc:c3:80:4f: a4:3d:01:b3:a5:01:be:3d:ba:b8:f2:af:1a:f7:f2:6d:36:a0: 2e:d0:bf:a9:b7:38:0f:b0:a8:35:4f:5f:5e:28:68:f6:7c:db: c3:c9:db:95:76:d5:e2:a1:90:83:76:60:74:eb:80:a0:96:ea: 11:0d:77:13:0e:8e:38:8f:d7:33:7a:2f:25:57:a4:8d:60:4b: 0b:d6:f1:a2:9f:b4:d2:90:06:27:68:08:ca:ed:6c:40:dc:16: cc:4b:0b:c8:de:84:bd:8f:4c:e7:54:dc:9e:da:c0:74:8a:db: 58:0f:01:55:09:cb:82:2c:c9:ca:33:12:37:44:f3:d0:7b:33: fb:2b:d3:4d:e8:de:94:33:32:0a:62:b4:27:5e:c4:bd:57:13: 2b:1f:9a:93:ab:12:14:eb:0a:20:6f:b1:a6:46:81:fa:b3:b5: cf:67:39:64:dd:7c:32:2f:42:cf:b3:42:a1:15:c6:d9:af:dc: a8:fa:60:75:2b:6f:f3:90:ec:b4:6a:f9:70:63:6c:fd:cf:79: bb:8d:21:de:20:e4:ff:41:37:da:8e:a9:3b:01:38:05:63:70: 75:7c:2c:29:44:c6:6f:93:fe:ce:45:3c:a4:8c:c3:f4:a6:f2: ca:84:0a:82 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIDALE6MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE1NTYyMFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q0MjMtNDVkYTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM7m+vw6hVEZkYnUyztcrDi2siAsXoefa1z2KbuSLzQSdWkop1uKA6t9BbTA YOqVYj+GRX2rk9gKwqWsixie3Me8sPHq/0Zpw0jjtu+edBuRM8gqNLoeulhiROVH jXwcrQWzj3jn5o+aPViePkEuSUFnRQ++gVCbZw4gK8+B6fkjC/7MxiC9I0ZZNRq4 cs25NfLaE6Ux7lomB9S3unAj8+NKd/gr4TWD0Xe+nb9GqfNvi9tlWj95/zveOofi 4GDhJTkuu3mfmGVoie9w5wGrMaG6oHptMzsdKDuUBOMO3FgS9esbi9MZW1WkP9tc l/nsivQwV7yw5qWVGKYnG+yfaD8CAwEAAaOCAqYwggKiMB0GA1UdDgQWBBTCKXPO VaATS/3ncRDNiNColgVs4TAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzc3NjQyOTFB RURBMjExRUFBMjJENTIxRkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDAGCCsGAQUFBwEHAQH/ BCEwHzAMBAIAATAGAwQBZ3jqMA8EAgACMAkDBwAgAQ30YYAwDQYJKoZIhvcNAQEL BQADggEBADvzVKMNcjrC3Ks8098gzMOAT6Q9AbOlAb49urjyrxr38m02oC7Qv6m3 OA+wqDVPX14oaPZ828PJ25V21eKhkIN2YHTrgKCW6hENdxMOjjiP1zN6LyVXpI1g SwvW8aKftNKQBidoCMrtbEDcFsxLC8jehL2PTOdU3J7awHSK21gPAVUJy4Isycoz EjdE89B7M/sr003o3pQzMgpitCdexL1XEysfmpOrEhTrCiBvsaZGgfqztc9nOWTd fDIvQs+zQqEVxtmv3Kj6YHUrb/OQ7LRq+XBjbP3PebuNId4g5P9BN9qOqTsBOAVj cHV8LClExm+T/s5FPKSMw/Sm8sqECoI= -----END CERTIFICATE-----Generated at Wed Nov 5 17:56:20 2025 by rpki-client