$ rpki-client -vvf rpki.apnic.net/member_repository/A919941E/EF1FAD18966E11EDB0ECC069C4F9AE02/8A7D7EA2426B11F0B0160739C4F9AE02.roa File: 8A7D7EA2426B11F0B0160739C4F9AE02.roa (raw, json) Hash identifier: /DDZk7wXmoPoez1s38SJjUYi204sJqoeZ/e78IsM+C0= Subject key identifier: 9E:8D:6B:9B:2B:75:67:04:67:1B:46:D6:99:07:46:B6:02:33:90:5D Certificate issuer: /CN=A919941E/serialNumber=C13764A0A63A7767F3A475D7A81AE8DF18AFE08D Certificate serial: 01CF Authority key identifier: C1:37:64:A0:A6:3A:77:67:F3:A4:75:D7:A8:1A:E8:DF:18:AF:E0:8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wTdkoKY6d2fzpHXXqBro3xiv4I0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919941E/EF1FAD18966E11EDB0ECC069C4F9AE02/8A7D7EA2426B11F0B0160739C4F9AE02.roa Signing time: Fri 06 Jun 2025 00:16:50 +0000 ROA not before: Fri 06 Jun 2025 00:16:50 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 56262 IP address blocks: 103.3.80.0/22 maxlen: 22 103.3.80.0/24 maxlen: 24 103.3.81.0/24 maxlen: 24 103.3.82.0/24 maxlen: 24 103.3.83.0/24 maxlen: 24 182.255.40.0/22 maxlen: 22 182.255.40.0/24 maxlen: 24 182.255.41.0/24 maxlen: 24 182.255.42.0/24 maxlen: 24 182.255.43.0/24 maxlen: 24 2400:9d00::/32 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919941E/EF1FAD18966E11EDB0ECC069C4F9AE02/wTdkoKY6d2fzpHXXqBro3xiv4I0.crl rsync://rpki.apnic.net/member_repository/A919941E/EF1FAD18966E11EDB0ECC069C4F9AE02/wTdkoKY6d2fzpHXXqBro3xiv4I0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wTdkoKY6d2fzpHXXqBro3xiv4I0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:15:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 463 (0x1cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919941E, serialNumber=C13764A0A63A7767F3A475D7A81AE8DF18AFE08D Validity Not Before: Jun 6 00:16:50 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68423372-4aa3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f6:83:13:71:f7:e2:82:fd:76:9f:23:0e:1b: d9:cf:01:f1:29:60:c4:30:cb:fa:43:89:af:4c:a9: d2:42:8b:8f:5b:c6:61:23:46:0e:6a:96:0e:02:d8: 7f:67:52:4b:81:10:2f:85:cf:d8:f1:a0:8f:36:18: 31:6e:a1:95:70:73:80:b5:4f:35:f5:25:cd:7a:cd: 93:40:21:2b:3a:86:fd:82:22:aa:86:9a:99:17:c0: df:5b:35:49:53:67:e8:c7:48:b0:69:ce:27:0d:f0: 69:e3:0c:a2:64:bb:f0:69:bb:ce:1c:90:8f:5e:74: fc:a0:a9:eb:7b:57:6a:82:28:29:97:5a:2a:77:19: 02:5c:d0:f8:88:d1:4a:ab:31:3d:3c:b6:ca:5f:78: b7:26:e7:01:cc:5a:f6:df:01:70:54:f9:85:dd:0a: eb:af:f5:5a:f0:65:9c:ad:62:47:89:e1:f2:2d:15: 79:0e:60:ee:75:8e:30:0c:99:7e:c0:96:a1:3b:8a: f0:7e:71:2f:54:3a:2c:d5:41:6b:df:25:bc:b5:0f: 9c:5a:c7:2e:f2:80:e4:0c:5d:a6:44:59:3f:fd:d9: 20:95:e5:37:6c:9e:75:6a:ac:c5:35:6e:06:fd:6c: df:89:6a:ed:9a:89:ac:cc:ae:ce:cd:f8:ab:15:ad: 7b:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:8D:6B:9B:2B:75:67:04:67:1B:46:D6:99:07:46:B6:02:33:90:5D X509v3 Authority Key Identifier: keyid:C1:37:64:A0:A6:3A:77:67:F3:A4:75:D7:A8:1A:E8:DF:18:AF:E0:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919941E/EF1FAD18966E11EDB0ECC069C4F9AE02/wTdkoKY6d2fzpHXXqBro3xiv4I0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wTdkoKY6d2fzpHXXqBro3xiv4I0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919941E/EF1FAD18966E11EDB0ECC069C4F9AE02/8A7D7EA2426B11F0B0160739C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.3.80.0/22 182.255.40.0/22 IPv6: 2400:9d00::/32 Signature Algorithm: sha256WithRSAEncryption d9:89:18:98:53:e0:fa:f1:98:4d:9a:ac:23:b6:7a:16:fa:24: 4e:08:46:30:dc:b0:86:68:0d:88:78:a1:96:d4:62:0e:b7:3e: 7a:d4:0b:ca:01:89:cd:77:80:5b:e1:65:c1:34:78:83:06:ff: 26:27:36:32:31:9f:67:ed:15:64:0d:7f:91:27:34:aa:d2:e4: c1:f8:b9:df:cb:c6:ad:3e:76:1b:86:1b:d9:69:ea:1b:aa:6d: c7:f9:e1:27:55:a7:91:a6:ef:c1:a2:38:d6:3c:4e:73:9b:63: 67:c5:d5:21:2d:96:26:eb:d1:0a:ce:44:49:70:18:73:ab:82: fd:27:1a:20:75:de:b3:e8:1f:a0:de:44:26:e2:1a:6e:ac:06: 05:c7:bb:4a:70:7c:8b:09:6a:d0:32:b7:98:a7:a2:ae:27:7d: 76:85:ab:0e:e3:24:68:d3:57:b6:84:b0:1e:ec:bd:34:54:99: 8b:d0:05:65:f1:96:1c:40:75:76:9a:8b:5c:0e:30:bf:64:5f: 3c:c3:98:ed:c2:5f:10:b1:22:bc:27:f8:ed:50:6b:ab:18:53: 36:bc:69:49:ce:c1:a9:65:23:7a:db:94:98:bd:0b:3d:21:15: 2b:78:42:9e:0a:c5:30:1e:61:29:7d:2a:fa:c1:81:dc:4e:09: c5:0f:8c:01 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICAc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk0MUUxMTAvBgNVBAUTKEMxMzc2NEEwQTYzQTc3NjdGM0E0NzVEN0E4MUFFOERG MThBRkUwOEQwHhcNMjUwNjA2MDAxNjUwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQyMzM3Mi00YWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtPaDE3H34oL9dp8jDhvZzwHxKWDEMMv6Q4mvTKnSQouPW8ZhI0YOapYOAth/ Z1JLgRAvhc/Y8aCPNhgxbqGVcHOAtU819SXNes2TQCErOob9giKqhpqZF8DfWzVJ U2fox0iwac4nDfBp4wyiZLvwabvOHJCPXnT8oKnre1dqgigpl1oqdxkCXND4iNFK qzE9PLbKX3i3JucBzFr23wFwVPmF3Qrrr/Va8GWcrWJHieHyLRV5DmDudY4wDJl+ wJahO4rwfnEvVDos1UFr3yW8tQ+cWscu8oDkDF2mRFk//dkgleU3bJ51aqzFNW4G /WzfiWrtmomszK7OzfirFa17bwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFJ6Na5sr dWcEZxtG1pkHRrYCM5BdMB8GA1UdIwQYMBaAFME3ZKCmOndn86R116ga6N8Yr+CN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTQxRS9FRjFGQUQxODk2 NkUxMUVEQjBFQ0MwNjlDNEY5QUUwMi93VGRrb0tZNmQyZnpwSFhYcUJybzN4aXY0 STAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dUZGtvS1k2ZDJmenBIWFhxQnJvM3hpdjRJMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTk0MUUvRUYxRkFEMTg5NjZFMTFFREIwRUNDMDY5QzRGOUFFMDIvOEE3RDdFQTI0 MjZCMTFGMEIwMTYwNzM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnA1ADBAK2/ygwDQQCAAIwBwMFACQAnQAwDQYJKoZIhvcN AQELBQADggEBANmJGJhT4PrxmE2arCO2ehb6JE4IRjDcsIZoDYh4oZbUYg63PnrU C8oBic13gFvhZcE0eIMG/yYnNjIxn2ftFWQNf5EnNKrS5MH4ud/Lxq0+dhuGG9lp 6huqbcf54SdVp5Gm78GiONY8TnObY2fF1SEtlibr0QrORElwGHOrgv0nGiB13rPo H6DeRCbiGm6sBgXHu0pwfIsJatAyt5inoq4nfXaFqw7jJGjTV7aEsB7svTRUmYvQ BWXxlhxAdXaai1wOML9kXzzDmO3CXxCxIrwn+O1Qa6sYUza8aUnOwallI3rblJi9 Cz0hFSt4Qp4KxTAeYSl9KvrBgdxOCcUPjAE= -----END CERTIFICATE-----Generated at Sun Jun 15 10:25:54 2025 by rpki-client