$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C93495902A4711F0A7BFC73CC4F9AE02.roa File: C93495902A4711F0A7BFC73CC4F9AE02.roa (raw, json) Hash identifier: ng//kWUjOsdofW7bblLxfU+pJNjkB8yqLXODxUtVTqg= Subject key identifier: 77:B9:C9:2C:6C:82:9A:58:E2:98:59:A1:FA:64:2A:A2:AE:4B:A3:DA Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: BDFB Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C93495902A4711F0A7BFC73CC4F9AE02.roa Signing time: Thu 12 Jun 2025 11:17:22 +0000 ROA not before: Thu 12 Jun 2025 11:17:22 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 147255 IP address blocks: 103.163.130.0/23 maxlen: 24 103.176.172.0/24 maxlen: 24 2001:df0:1240::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48635 (0xbdfb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jun 12 11:17:22 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=684ab741-942b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:01:5c:dc:7a:b4:39:11:57:c9:93:f2:98:5a: c3:67:24:55:ba:fe:fd:f6:6e:6d:63:69:96:1a:c0: 77:7b:ae:54:5a:45:c3:ad:af:6d:10:9b:ee:ba:07: e1:84:51:71:39:29:96:f5:59:07:e4:d8:ab:7b:2a: a1:d5:1c:d9:94:43:84:bc:9f:72:8e:d4:5e:ea:9b: b3:11:11:d8:da:c9:73:16:ff:be:9e:94:6f:05:dc: 22:46:fc:0e:89:39:df:d5:86:c6:1f:ad:55:1d:c1: ff:3d:f6:b0:94:58:6d:94:29:74:8b:2f:cb:ef:34: 51:b7:06:c1:2e:cc:9d:22:7e:81:5e:94:0a:3a:a1: c0:c0:6f:ba:56:1a:ec:b8:b4:2a:dc:73:04:35:64: 61:71:d3:51:22:53:6c:1d:26:d9:13:c3:64:ae:90: 81:10:4a:a3:af:16:67:19:6d:d0:e1:24:26:d9:19: 56:75:d3:c0:c7:ed:d0:9f:d9:13:b3:08:1c:21:7e: bd:b8:7a:f5:25:01:3b:10:6b:8d:32:79:1a:7b:59: 90:42:12:b9:11:f3:a4:38:23:ff:cf:29:68:57:88: de:72:76:d3:58:07:bc:c8:b6:6a:1a:2a:7a:c8:f6: 9f:51:31:75:9b:f7:a9:d4:cf:b9:9f:aa:86:71:68: 59:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:B9:C9:2C:6C:82:9A:58:E2:98:59:A1:FA:64:2A:A2:AE:4B:A3:DA X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C93495902A4711F0A7BFC73CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.163.130.0/23 103.176.172.0/24 IPv6: 2001:df0:1240::/48 Signature Algorithm: sha256WithRSAEncryption 6a:25:26:54:a4:1e:95:85:87:a0:ca:bb:42:4f:db:bb:53:28: 6a:76:df:85:0c:7b:22:67:8b:30:d4:00:6d:ce:7a:90:9d:df: 9b:1c:c0:8e:2c:7e:dc:24:cb:5b:ba:45:d1:f1:14:c4:e9:77: b6:0f:be:e6:b0:ec:65:28:39:8b:e2:9c:06:42:a1:70:0b:27: e6:29:0e:a7:69:c2:c2:3a:47:64:a1:c2:3c:0a:6d:c0:db:22: 72:6a:51:9d:46:ad:a2:b2:33:47:c3:ea:f1:f2:69:01:ee:12: fc:88:d6:53:71:ed:2f:37:98:92:bc:de:eb:45:81:05:41:3c: 2a:09:ac:90:d0:de:ea:79:68:3d:31:2f:d6:63:09:35:32:5d: 51:79:8a:8a:df:37:b6:59:62:8e:66:92:b1:89:d4:49:0a:68: 55:0c:49:70:cc:31:84:0a:bb:a9:66:1a:53:c8:ba:48:65:8b: 92:36:24:19:5a:9f:87:7c:91:3d:db:47:e3:59:a9:5b:d1:fd: 31:7b:c7:3f:60:e8:27:07:e2:59:4d:fa:a3:64:3c:c5:d6:cc: 19:bb:03:1a:9f:04:73:7a:00:44:1a:4e:78:cf:1b:9b:ad:b3: 96:17:f2:d6:4b:21:3f:50:d4:f5:69:b8:1d:5d:fd:a8:6f:94: 3b:68:c2:0e -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgIDAL37MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDYxMjExMTcyMloXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjg0YWI3NDEtOTQyYjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOUBXNx6tDkRV8mT8phaw2ckVbr+/fZubWNplhrAd3uuVFpFw62vbRCb7roH 4YRRcTkplvVZB+TYq3sqodUc2ZRDhLyfco7UXuqbsxER2NrJcxb/vp6UbwXcIkb8 Dok539WGxh+tVR3B/z32sJRYbZQpdIsvy+80UbcGwS7MnSJ+gV6UCjqhwMBvulYa 7Li0KtxzBDVkYXHTUSJTbB0m2RPDZK6QgRBKo68WZxlt0OEkJtkZVnXTwMft0J/Z E7MIHCF+vbh69SUBOxBrjTJ5GntZkEISuRHzpDgj/88paFeI3nJ201gHvMi2ahoq esj2n1ExdZv3qdTPuZ+qhnFoWWUCAwEAAaOCAqwwggKoMB0GA1UdDgQWBBR3ucks bIKaWOKYWaH6ZCqirkuj2jAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0M5MzQ5NTkw MkE0NzExRjBBN0JGQzczQ0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDYGCCsGAQUFBwEHAQH/ BCcwJTASBAIAATAMAwQBZ6OCAwQAZ7CsMA8EAgACMAkDBwAgAQ3wEkAwDQYJKoZI hvcNAQELBQADggEBAGolJlSkHpWFh6DKu0JP27tTKGp234UMeyJnizDUAG3OepCd 35scwI4sftwky1u6RdHxFMTpd7YPvuaw7GUoOYvinAZCoXALJ+YpDqdpwsI6R2Sh wjwKbcDbInJqUZ1GraKyM0fD6vHyaQHuEvyI1lNx7S83mJK83utFgQVBPCoJrJDQ 3up5aD0xL9ZjCTUyXVF5iorfN7ZZYo5mkrGJ1EkKaFUMSXDMMYQKu6lmGlPIukhl i5I2JBlan4d8kT3bR+NZqVvR/TF7xz9g6CcH4llN+qNkPMXWzBm7AxqfBHN6AEQa TnjPG5uts5YX8tZLIT9Q1PVpuB1d/ahvlDtowg4= -----END CERTIFICATE-----Generated at Sun Jun 15 08:32:37 2025 by rpki-client