$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/95175C3072B211F08675775AC4F9AE02.roa File: 95175C3072B211F08675775AC4F9AE02.roa (raw, json) Hash identifier: U3lp0ucsiCU7ICKepnlSRU7P2yfFO/qWna1dWvhuMMk= Subject key identifier: DB:11:C8:F6:3A:FC:57:DC:77:3B:6F:63:37:AD:AC:A5:66:1B:2D:BB Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: C1E3 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/95175C3072B211F08675775AC4F9AE02.roa Signing time: Wed 06 Aug 2025 11:06:25 +0000 ROA not before: Wed 06 Aug 2025 11:06:25 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 135836 IP address blocks: 103.54.24.0/23 maxlen: 24 103.54.26.0/24 maxlen: 24 103.83.248.0/22 maxlen: 24 103.189.147.0/24 maxlen: 24 103.195.26.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49635 (0xc1e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Aug 6 11:06:25 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68933731-314f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:5e:e1:8f:ae:45:ba:13:97:10:b3:38:9e:76: 06:59:56:3e:b7:50:b8:fd:85:2a:7c:b2:fe:97:62: 2f:85:61:65:4f:a0:51:57:b8:77:15:72:ca:fc:e0: e0:10:ec:d7:40:63:fb:2e:1a:db:99:d4:a8:14:50: fa:45:70:6b:d0:c8:aa:3a:c5:72:95:fe:d0:1f:03: b5:d8:d4:9f:71:cb:ef:c7:fc:3c:4c:7b:0b:59:b2: e7:d1:93:c8:d0:f1:09:2d:9e:00:3c:be:63:fc:2f: 68:33:1c:9c:12:03:d2:fe:c8:ad:93:60:1a:d3:1c: 98:b1:4b:5b:a7:dd:5e:7d:68:44:a8:ff:01:e4:bb: 52:d4:21:41:b9:ac:ad:ab:a7:99:00:29:51:95:7b: 1b:f4:64:09:64:67:cb:1a:af:a2:e4:54:09:db:45: bf:37:43:d2:36:c5:74:52:a9:34:2b:42:8a:1d:f4: f0:4f:f7:1e:82:9f:9d:06:04:14:13:ec:2b:81:aa: 9d:1d:f4:13:3b:17:8f:88:5f:bf:cc:d2:1e:f6:17: f7:cd:02:64:8c:0d:a7:e0:57:d0:7c:0b:7b:61:28: 25:c2:e6:fc:1c:1c:a4:60:55:bc:3f:87:a1:5f:04: 4b:9a:4b:a0:f9:78:2d:4a:59:d2:6f:78:15:95:49: b4:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:11:C8:F6:3A:FC:57:DC:77:3B:6F:63:37:AD:AC:A5:66:1B:2D:BB X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/95175C3072B211F08675775AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.54.24.0-103.54.26.255 103.83.248.0/22 103.189.147.0/24 103.195.26.0/23 Signature Algorithm: sha256WithRSAEncryption 3a:b6:eb:a8:24:0f:66:61:e4:84:4e:e5:03:3c:57:5e:2f:42: 4a:2e:9e:de:9f:5b:f0:67:df:09:56:26:b0:89:f1:07:c2:47: ee:5a:81:66:55:42:aa:c5:f3:55:5e:0c:6e:b8:62:dc:8c:a2: 60:e9:06:fe:b0:8d:12:9f:db:da:ac:98:90:26:21:bb:a3:c3: 53:c0:1e:1d:46:b4:a9:36:44:78:f1:78:23:d9:b6:8c:71:2a: 12:a1:37:29:8e:df:8b:d1:b3:4f:07:ee:0f:07:4d:e6:69:3e: 28:a0:12:84:d5:87:59:9b:56:c8:9a:12:54:8d:a0:55:a4:6e: d5:96:09:cc:96:89:ee:5f:8f:4d:d9:a4:54:fd:0a:68:72:ad: 32:a4:ca:88:5d:69:fa:47:09:30:c5:7d:54:b2:41:42:d5:4d: 39:c9:5f:2d:84:8b:de:f9:f2:e4:d6:c5:d7:83:47:5f:78:11: d0:6f:83:48:e9:86:10:d6:be:e0:fc:40:1d:e6:79:a1:a3:75: 4c:22:2d:00:e4:f7:91:9e:ea:ff:95:fa:24:f1:fa:57:61:92: 4e:e9:77:f7:b5:81:f3:af:ee:18:f1:d0:6f:3d:84:16:31:92: 68:7f:7a:d4:64:69:63:a6:bd:d2:a4:26:11:bf:6d:dc:05:2d: e1:71:29:52 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgIDAMHjMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDgwNjExMDYyNVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjg5MzM3MzEtMzE0ZjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMZe4Y+uRboTlxCzOJ52BllWPrdQuP2FKnyy/pdiL4VhZU+gUVe4dxVyyvzg 4BDs10Bj+y4a25nUqBRQ+kVwa9DIqjrFcpX+0B8DtdjUn3HL78f8PEx7C1my59GT yNDxCS2eADy+Y/wvaDMcnBID0v7IrZNgGtMcmLFLW6fdXn1oRKj/AeS7UtQhQbms raunmQApUZV7G/RkCWRnyxqvouRUCdtFvzdD0jbFdFKpNCtCih308E/3HoKfnQYE FBPsK4GqnR30EzsXj4hfv8zSHvYX980CZIwNp+BX0HwLe2EoJcLm/BwcpGBVvD+H oV8ES5pLoPl4LUpZ0m94FZVJtLcCAwEAAaOCAq8wggKrMB0GA1UdDgQWBBTbEcj2 OvxX3Hc7b2M3raylZhstuzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzk1MTc1QzMw NzJCMjExRjA4Njc1Nzc1QUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDkGCCsGAQUFBwEHAQH/ BCowKDAmBAIAATAgMAwDBANnNhgDBABnNhoDBAJnU/gDBABnvZMDBAFnwxowDQYJ KoZIhvcNAQELBQADggEBADq266gkD2Zh5IRO5QM8V14vQkount6fW/Bn3wlWJrCJ 8QfCR+5agWZVQqrF81VeDG64YtyMomDpBv6wjRKf29qsmJAmIbujw1PAHh1GtKk2 RHjxeCPZtoxxKhKhNymO34vRs08H7g8HTeZpPiigEoTVh1mbVsiaElSNoFWkbtWW CcyWie5fj03ZpFT9CmhyrTKkyohdafpHCTDFfVSyQULVTTnJXy2Ei9758uTWxdeD R194EdBvg0jphhDWvuD8QB3meaGjdUwiLQDk95Ge6v+V+iTx+ldhkk7pd/e1gfOv 7hjx0G89hBYxkmh/etRkaWOmvdKkJhG/bdwFLeFxKVI= -----END CERTIFICATE-----Generated at Sun Aug 10 13:52:50 2025 by rpki-client