$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B06FFDDE616411EB9E823579C4F9AE02.roa File: B06FFDDE616411EB9E823579C4F9AE02.roa (raw, json) Hash identifier: 8gjS4/JkOSqHjBSn8KzaTnLVDm/rvrriEgpCRJyhGuQ= Subject key identifier: B7:2C:27:E6:88:D3:F6:75:8F:AA:63:13:31:7A:8E:9A:E6:D2:10:EE Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: C0CA Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B06FFDDE616411EB9E823579C4F9AE02.roa Signing time: Wed 23 Jul 2025 12:38:19 +0000 ROA not before: Wed 23 Jul 2025 12:38:19 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141322 IP address blocks: 103.133.228.0/22 maxlen: 24 103.152.173.0/24 maxlen: 24 103.174.31.0/24 maxlen: 24 2406:d840::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49354 (0xc0ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jul 23 12:38:19 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6880d7bb-c54d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:6e:37:a2:ec:f2:fe:83:9e:92:6c:27:82:25: b1:f5:af:bc:9c:81:98:b4:cc:7b:48:cd:c2:6a:64: a1:62:78:0b:24:ad:1e:18:34:fb:a2:86:8f:45:e2: f2:d1:67:99:a4:fb:e4:5b:c0:0b:f5:95:71:ba:f8: 37:b5:bb:77:98:b2:02:55:40:3b:74:e8:1e:fb:97: 8b:51:c1:31:62:5a:33:2c:c7:06:9e:e3:87:bd:7d: b7:85:18:20:5f:90:1a:06:2c:2f:47:15:6e:45:d7: d3:4c:92:63:52:5f:e7:7c:6c:6e:3f:93:5b:24:a3: 4f:53:5d:7a:42:f8:d2:f0:91:c7:84:98:40:5d:cc: e4:ab:dd:9b:35:36:39:8a:40:79:dc:81:f4:43:c3: ef:0e:4e:0f:52:5f:1f:33:f1:86:1b:fb:c4:df:8a: da:23:c8:4d:3b:47:44:03:f5:f6:ae:9d:8a:cf:6f: fd:3b:15:cf:b1:dd:10:30:29:d8:98:97:77:10:b3: 4f:fb:17:a0:d0:d7:87:6f:89:6a:74:10:21:7f:f6: 53:55:97:3a:36:1b:53:98:ee:3a:8d:2f:db:ea:af: df:f9:8b:bf:44:62:bd:15:d9:9e:57:9d:4b:d9:db: 80:e6:ce:d0:b8:73:57:38:f0:0b:b3:85:76:aa:a7: 1c:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:2C:27:E6:88:D3:F6:75:8F:AA:63:13:31:7A:8E:9A:E6:D2:10:EE X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B06FFDDE616411EB9E823579C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.133.228.0/22 103.152.173.0/24 103.174.31.0/24 IPv6: 2406:d840::/32 Signature Algorithm: sha256WithRSAEncryption 22:f0:ef:7b:94:c1:32:c3:11:f3:ff:c2:94:4f:c7:5d:b6:88: ed:ee:dd:92:39:a6:b4:f6:15:d7:f6:b9:a4:cd:ec:7f:d9:e3: 40:61:33:08:38:64:f7:fa:18:34:64:3d:9d:b6:f1:e3:9a:b9: 93:d6:3a:7d:b0:7c:9b:df:c7:14:96:f9:6e:27:bd:0c:46:f0: 00:b0:52:16:e0:53:c6:5b:5b:7c:21:b7:49:82:5b:e9:00:34: ae:55:34:bb:c8:e4:1f:62:fd:c4:aa:50:2b:5c:f4:e3:d3:89: 9f:3e:65:fd:73:89:a8:d4:34:04:c2:e6:a4:a9:cb:29:e2:85: de:e1:97:c2:4b:c9:40:88:6b:ec:de:b8:d1:8d:0a:89:af:33: 14:b1:30:39:55:78:da:ab:06:be:d2:ab:b5:f5:42:30:c7:1c: 03:7b:6e:fb:66:45:3d:d1:fb:91:4f:91:72:13:41:cf:ae:1c: ef:03:63:84:b4:c2:5e:2f:87:38:ff:2a:47:15:dc:1b:42:f3: c3:81:65:95:6a:c9:1d:bc:3b:e3:b6:eb:dc:65:07:a5:1f:ef: 72:dc:96:60:52:f9:28:bc:bb:2f:9c:bb:84:78:4a:01:1e:99: ea:eb:f2:94:b3:f9:2d:65:46:db:47:90:00:64:33:b1:ef:35: e6:e1:2a:89 -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgIDAMDKMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDcyMzEyMzgxOVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjg4MGQ3YmItYzU0ZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKZuN6Ls8v6DnpJsJ4IlsfWvvJyBmLTMe0jNwmpkoWJ4CyStHhg0+6KGj0Xi 8tFnmaT75FvAC/WVcbr4N7W7d5iyAlVAO3ToHvuXi1HBMWJaMyzHBp7jh719t4UY IF+QGgYsL0cVbkXX00ySY1Jf53xsbj+TWySjT1NdekL40vCRx4SYQF3M5KvdmzU2 OYpAedyB9EPD7w5OD1JfHzPxhhv7xN+K2iPITTtHRAP19q6dis9v/TsVz7HdEDAp 2JiXdxCzT/sXoNDXh2+JanQQIX/2U1WXOjYbU5juOo0v2+qv3/mLv0RivRXZnled S9nbgObO0LhzVzjwC7OFdqqnHKUCAwEAAaOCArAwggKsMB0GA1UdDgQWBBS3LCfm iNP2dY+qYxMxeo6a5tIQ7jAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0IwNkZGRERF NjE2NDExRUI5RTgyMzU3OUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDoGCCsGAQUFBwEHAQH/ BCswKTAYBAIAATASAwQCZ4XkAwQAZ5itAwQAZ64fMA0EAgACMAcDBQAkBthAMA0G CSqGSIb3DQEBCwUAA4IBAQAi8O97lMEywxHz/8KUT8ddtojt7t2SOaa09hXX9rmk zex/2eNAYTMIOGT3+hg0ZD2dtvHjmrmT1jp9sHyb38cUlvluJ70MRvAAsFIW4FPG W1t8IbdJglvpADSuVTS7yOQfYv3EqlArXPTj04mfPmX9c4mo1DQEwuakqcsp4oXe 4ZfCS8lAiGvs3rjRjQqJrzMUsTA5VXjaqwa+0qu19UIwxxwDe277ZkU90fuRT5Fy E0HPrhzvA2OEtMJeL4c4/ypHFdwbQvPDgWWVaskdvDvjtuvcZQelH+9y3JZgUvko vLsvnLuEeEoBHpnq6/KUs/ktZUbbR5AAZDOx7zXm4SqJ -----END CERTIFICATE-----Generated at Sun Aug 10 16:02:02 2025 by rpki-client