$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7AEA89B20AF211ECAF38A916C4F9AE02.roa File: 7AEA89B20AF211ECAF38A916C4F9AE02.roa (raw, json) Hash identifier: bqh3dwmDInpcLxXxDaYcNilxvD60mEPpoC70tMfr3JY= Subject key identifier: 3D:04:25:EE:A8:93:01:25:E8:C8:CA:8C:2C:84:D4:24:DE:25:90:54 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B70E Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7AEA89B20AF211ECAF38A916C4F9AE02.roa Signing time: Thu 08 May 2025 16:19:17 +0000 ROA not before: Thu 08 May 2025 16:19:17 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 142526 IP address blocks: 103.170.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:24:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46862 (0xb70e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:19:17 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd985-4e8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:33:14:ef:2c:7c:44:22:83:16:6e:1c:1e:6f: b0:8a:13:b0:00:fb:73:43:5c:a7:22:52:a2:4a:cd: 0d:c5:7e:8f:c5:ed:2a:b4:46:43:d9:26:b0:61:53: 00:06:c7:f2:76:15:3a:6f:c9:2f:4d:29:83:5b:25: d3:4a:82:ae:6d:c9:e1:d0:9a:38:9d:08:a6:8d:89: ce:85:27:7a:fe:f4:42:b3:11:49:30:94:c4:00:a2: c4:57:65:bc:3b:80:aa:d7:95:2d:ef:b9:3b:a5:9c: 04:f8:96:00:02:d2:15:d4:a5:b4:fa:b4:ba:d7:b1: 90:7d:e1:3f:0d:c2:e5:18:96:18:e1:3b:c9:8e:cc: 2c:77:d5:1c:5b:55:7d:d4:df:cb:36:05:49:ee:bf: 5a:6c:59:87:1a:2e:9e:0c:5a:d4:e2:33:a0:bb:94: 14:2a:f5:24:30:ca:50:5d:23:c6:27:fb:be:e3:b5: af:b9:b9:25:cd:9c:cf:64:26:bb:49:4c:83:d5:56: 80:a0:0b:f2:fb:88:d1:ff:45:aa:9e:59:27:4f:2a: 77:f9:21:28:c8:2a:26:5f:e6:85:8f:11:7b:11:22: 19:86:b2:93:f9:c7:a8:8f:fe:1e:64:a6:95:fe:25: e9:a4:5e:cb:de:a4:49:e8:6c:35:37:3b:06:83:d0: 1a:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:04:25:EE:A8:93:01:25:E8:C8:CA:8C:2C:84:D4:24:DE:25:90:54 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7AEA89B20AF211ECAF38A916C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.170.127.0/24 Signature Algorithm: sha256WithRSAEncryption 10:df:50:61:a3:5f:c7:71:fe:97:b3:57:1e:ba:b0:56:e7:96: 4d:b1:7f:4d:b0:f4:99:23:65:f7:cf:61:a7:05:dd:09:7b:ad: f7:cf:e9:85:1f:db:2a:e2:6e:d8:29:54:87:11:2f:dc:85:63: 04:69:30:a3:f3:9c:25:30:8d:7d:b0:c0:96:45:4c:00:8f:f8: a6:4c:bd:c9:d4:61:ae:80:7c:7f:3b:4d:3c:6b:89:86:90:62: 1f:9b:f6:54:ea:64:35:e4:a1:e9:66:03:d4:fb:57:eb:db:61: 6e:bd:9a:67:13:69:b3:e1:45:9c:8f:c1:c9:23:2e:e8:68:98: cd:72:e6:77:67:1c:7c:34:3d:6d:58:e2:15:0c:f8:e1:66:51: d8:1e:7b:5f:32:5c:dd:cf:9e:f5:bd:99:1a:a2:6a:a7:39:bb: fb:25:3e:ca:f3:e9:4d:6d:75:0e:e4:38:2b:2d:ef:c5:21:26: 44:06:74:e8:16:39:da:8f:ce:a0:52:d4:3e:d2:87:14:f4:d4: ec:78:20:0e:2c:bf:59:e0:3e:c0:1a:5c:65:e1:ba:ae:e5:07: 28:71:09:ce:11:ec:b4:fc:4b:91:3e:c8:0b:8b:71:eb:bd:19: f7:88:8c:12:04:b2:3b:e1:ae:f6:79:10:02:55:e5:51:92:b2: ea:2a:6b:9e -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDALcOMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MTkxN1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q5ODUtNGU4YjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALAzFO8sfEQigxZuHB5vsIoTsAD7c0NcpyJSokrNDcV+j8XtKrRGQ9kmsGFT AAbH8nYVOm/JL00pg1sl00qCrm3J4dCaOJ0Ipo2JzoUnev70QrMRSTCUxACixFdl vDuAqteVLe+5O6WcBPiWAALSFdSltPq0utexkH3hPw3C5RiWGOE7yY7MLHfVHFtV fdTfyzYFSe6/WmxZhxoungxa1OIzoLuUFCr1JDDKUF0jxif7vuO1r7m5Jc2cz2Qm u0lMg9VWgKAL8vuI0f9Fqp5ZJ08qd/khKMgqJl/mhY8RexEiGYayk/nHqI/+HmSm lf4l6aRey96kSehsNTc7BoPQGiMCAwEAAaOCApUwggKRMB0GA1UdDgQWBBQ9BCXu qJMBJejIyowshNQk3iWQVDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzdBRUE4OUIy MEFGMjExRUNBRjM4QTkxNkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQAZ6p/MA0GCSqGSIb3DQEBCwUAA4IBAQAQ31Bho1/Hcf6X s1ceurBW55ZNsX9NsPSZI2X3z2GnBd0Je633z+mFH9sq4m7YKVSHES/chWMEaTCj 85wlMI19sMCWRUwAj/imTL3J1GGugHx/O008a4mGkGIfm/ZU6mQ15KHpZgPU+1fr 22FuvZpnE2mz4UWcj8HJIy7oaJjNcuZ3Zxx8ND1tWOIVDPjhZlHYHntfMlzdz571 vZkaomqnObv7JT7K8+lNbXUO5DgrLe/FISZEBnToFjnaj86gUtQ+0ocU9NTseCAO LL9Z4D7AGlxl4bqu5QcocQnOEey0/EuRPsgLi3HrvRn3iIwSBLI74a72eRACVeVR krLqKmue -----END CERTIFICATE-----Generated at Wed Nov 5 16:32:02 2025 by rpki-client