$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FEB89D4C0D4111EBA83D855CC4F9AE02.roa File: FEB89D4C0D4111EBA83D855CC4F9AE02.roa (raw, json) Hash identifier: Qb5K4Uba/xApN3hJqAITppbed1IcUVIpW8u2DsPLKPw= Subject key identifier: D3:A8:CB:DC:52:56:03:CA:98:FA:9B:13:1C:8C:F3:39:7B:09:DB:B2 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B443 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FEB89D4C0D4111EBA83D855CC4F9AE02.roa Signing time: Thu 08 May 2025 16:08:23 +0000 ROA not before: Thu 08 May 2025 16:08:23 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136714 IP address blocks: 103.104.44.0/22 maxlen: 24 2403:d4c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:24:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46147 (0xb443) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:08:23 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd6f7-052d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:2b:6a:66:5e:55:5c:ab:c5:b7:b0:8d:5e:c4: 93:5f:2a:45:e9:34:ef:f1:64:27:1b:f6:e1:60:16: 1e:9e:c4:2a:44:8d:57:74:80:d3:57:45:bb:a3:f3: cc:da:2c:24:58:aa:39:ae:df:cb:bc:79:46:bf:49: c6:d6:1e:43:69:09:93:71:6c:33:70:6c:2c:35:f2: e1:cd:22:b4:44:21:66:51:00:08:3e:4f:e1:49:56: b6:9d:8c:5b:2c:55:09:33:10:fd:ac:e8:7e:b0:46: 19:a3:4a:6d:63:11:43:fa:0e:f9:6c:b0:cf:ce:9b: c5:7d:c5:f6:f7:a3:f5:91:81:2f:09:4e:0e:a6:9a: b6:74:14:bc:d4:a3:78:ca:85:aa:a0:81:38:d7:1c: e8:c0:e8:30:ef:1e:69:65:b9:c9:b3:80:3d:3c:8c: d7:a7:fc:52:e3:d7:5a:20:e5:ce:67:5a:65:4a:33: 01:4c:35:87:61:ff:20:09:73:44:a6:94:61:5b:f1: d1:27:f4:72:8e:9f:a5:3b:fc:61:2d:7c:15:a0:11: 5f:e6:8e:2b:37:2b:29:2f:d8:39:77:7f:ac:4e:ee: 63:84:39:07:75:d6:db:27:9a:0a:63:30:a3:4d:30: aa:16:cf:1f:5a:f5:d5:25:2d:df:21:3d:65:5d:44: 4e:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:A8:CB:DC:52:56:03:CA:98:FA:9B:13:1C:8C:F3:39:7B:09:DB:B2 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FEB89D4C0D4111EBA83D855CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.104.44.0/22 IPv6: 2403:d4c0::/32 Signature Algorithm: sha256WithRSAEncryption 58:eb:cf:79:1d:1a:54:90:e6:b7:0c:ec:e6:e7:ed:f7:2a:82: 56:f6:67:73:8a:b9:a4:31:9e:36:2f:fd:f5:a7:c4:1c:7a:3b: cd:45:f5:3b:e0:5a:27:3b:e9:e3:86:bf:86:49:5a:bf:ac:a2: 4c:34:5e:20:cb:ea:44:6d:1b:a8:9a:41:d4:ee:5b:8b:ac:d1: 06:db:8d:6a:a2:e5:68:75:9d:93:8e:9f:fb:6c:29:c7:76:28: 83:27:b5:bd:7b:e9:8b:44:32:bd:e2:6d:93:f2:4f:9c:dc:99: d2:83:b3:90:5e:6c:40:cf:84:9e:45:07:65:4e:38:c1:ce:e3: fb:3d:4a:e6:3e:a0:cb:c8:0e:c7:f7:ab:74:20:84:b8:af:b4: cd:94:0d:96:9f:4d:49:ee:07:1b:a3:7b:8b:cc:19:ab:b8:ef: e3:92:db:2d:82:ef:8a:73:88:5c:c7:d8:82:b1:4b:d3:33:4d: b5:52:ae:96:eb:67:bf:92:e4:05:b9:ae:79:e0:22:53:f0:99: 49:f4:25:f1:dd:86:c1:03:c4:b2:f4:9b:fc:c6:be:20:04:52: 90:78:fd:63:d0:10:ab:56:f4:8f:1b:6e:b1:26:a1:8a:e0:44: de:65:11:a4:0e:38:1f:e0:a2:7b:4b:6e:c0:33:12:e8:a3:e0: e4:a9:44:d8 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIDALRDMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MDgyM1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q2ZjctMDUyZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN4ramZeVVyrxbewjV7Ek18qRek07/FkJxv24WAWHp7EKkSNV3SA01dFu6Pz zNosJFiqOa7fy7x5Rr9JxtYeQ2kJk3FsM3BsLDXy4c0itEQhZlEACD5P4UlWtp2M WyxVCTMQ/azofrBGGaNKbWMRQ/oO+Wywz86bxX3F9vej9ZGBLwlODqaatnQUvNSj eMqFqqCBONcc6MDoMO8eaWW5ybOAPTyM16f8UuPXWiDlzmdaZUozAUw1h2H/IAlz RKaUYVvx0Sf0co6fpTv8YS18FaARX+aOKzcrKS/YOXd/rE7uY4Q5B3XW2yeaCmMw o00wqhbPH1r11SUt3yE9ZV1ETo8CAwEAAaOCAqQwggKgMB0GA1UdDgQWBBTTqMvc UlYDypj6mxMcjPM5ewnbsjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0ZFQjg5RDRD MEQ0MTExRUJBODNEODU1Q0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMC4GCCsGAQUFBwEHAQH/ BB8wHTAMBAIAATAGAwQCZ2gsMA0EAgACMAcDBQAkA9TAMA0GCSqGSIb3DQEBCwUA A4IBAQBY6895HRpUkOa3DOzm5+33KoJW9mdzirmkMZ42L/31p8QcejvNRfU74Fon O+njhr+GSVq/rKJMNF4gy+pEbRuomkHU7luLrNEG241qouVodZ2Tjp/7bCnHdiiD J7W9e+mLRDK94m2T8k+c3JnSg7OQXmxAz4SeRQdlTjjBzuP7PUrmPqDLyA7H96t0 IIS4r7TNlA2Wn01J7gcbo3uLzBmruO/jktstgu+Kc4hcx9iCsUvTM021Uq6W62e/ kuQFua554CJT8JlJ9CXx3YbBA8Sy9Jv8xr4gBFKQeP1j0BCrVvSPG26xJqGK4ETe ZRGkDjgf4KJ7S27AMxLoo+DkqUTY -----END CERTIFICATE-----Generated at Wed Nov 5 14:29:51 2025 by rpki-client