$ rpki-client -vvf rpki.apnic.net/member_repository/A918ACDD/2A2CFC464DCF11EDBF05FA53C4F9AE02/397504CA4DD211ED8314A659C4F9AE02.roa File: 397504CA4DD211ED8314A659C4F9AE02.roa (raw, json) Hash identifier: 4Pojvoz6pQz0drU/suSB3Qk2A6ZI24l6azJQWIsOLc4= Subject key identifier: B2:56:77:5D:E3:2A:BE:59:AF:39:28:1D:AF:DB:AA:4C:0C:27:E0:EC Certificate issuer: /CN=A918ACDD/serialNumber=3691533300ACC1E0105EE0317063507F87B4012D Certificate serial: 0201 Authority key identifier: 36:91:53:33:00:AC:C1:E0:10:5E:E0:31:70:63:50:7F:87:B4:01:2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NpFTMwCsweAQXuAxcGNQf4e0AS0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918ACDD/2A2CFC464DCF11EDBF05FA53C4F9AE02/397504CA4DD211ED8314A659C4F9AE02.roa Signing time: Wed 25 Jun 2025 02:09:18 +0000 ROA not before: Wed 25 Jun 2025 02:09:18 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 149834 IP address blocks: 103.187.192.0/23 maxlen: 23 103.187.192.0/24 maxlen: 24 103.187.193.0/24 maxlen: 24 2400:7ee0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918ACDD/2A2CFC464DCF11EDBF05FA53C4F9AE02/NpFTMwCsweAQXuAxcGNQf4e0AS0.crl rsync://rpki.apnic.net/member_repository/A918ACDD/2A2CFC464DCF11EDBF05FA53C4F9AE02/NpFTMwCsweAQXuAxcGNQf4e0AS0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NpFTMwCsweAQXuAxcGNQf4e0AS0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 02:29:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 513 (0x201) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918ACDD, serialNumber=3691533300ACC1E0105EE0317063507F87B4012D Validity Not Before: Jun 25 02:09:18 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=685b5a4e-9c9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:fc:78:8b:7a:e5:06:37:1c:ae:0b:ba:81:57: e7:1e:7d:3c:5b:d8:2e:fa:47:dc:c3:af:d4:c9:f7: 0b:1a:27:d0:cc:c8:7c:34:f5:a7:9d:b4:43:29:b3: eb:1f:16:72:8a:6a:df:27:54:be:77:96:b9:3d:8b: 4b:e4:aa:ee:27:07:60:b2:87:29:c0:d5:d4:1a:10: 71:fd:29:f4:17:dc:e5:52:de:bf:c7:f9:99:24:db: 64:38:2d:9f:c8:b8:f6:05:1c:02:c0:c4:65:ec:51: 38:c9:09:4f:62:59:40:04:6f:e2:95:32:51:aa:8b: b2:e1:d0:d3:78:ab:b0:25:83:48:87:bc:ee:dc:50: 1b:22:0f:f5:8c:13:a1:20:73:ca:e7:05:45:b8:de: 3a:0e:ba:06:22:95:e2:05:04:ca:ff:da:0a:e3:79: 94:39:b5:ca:30:e2:5a:5f:da:72:0f:3d:f4:87:e6: 5c:1d:68:ee:2f:fa:0d:2a:2c:b4:46:56:85:55:4c: 52:dc:d5:b3:8e:b6:e9:af:58:95:c4:78:06:40:e3: 70:5e:a7:01:7d:19:fa:6e:c3:0b:a9:9e:c2:7f:5e: ce:06:61:d7:9a:37:7c:8d:c9:98:fd:7a:0b:86:80: 76:39:8e:48:ef:42:51:86:5d:0d:bd:e2:a8:f7:70: e6:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:56:77:5D:E3:2A:BE:59:AF:39:28:1D:AF:DB:AA:4C:0C:27:E0:EC X509v3 Authority Key Identifier: keyid:36:91:53:33:00:AC:C1:E0:10:5E:E0:31:70:63:50:7F:87:B4:01:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918ACDD/2A2CFC464DCF11EDBF05FA53C4F9AE02/NpFTMwCsweAQXuAxcGNQf4e0AS0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NpFTMwCsweAQXuAxcGNQf4e0AS0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918ACDD/2A2CFC464DCF11EDBF05FA53C4F9AE02/397504CA4DD211ED8314A659C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.187.192.0/23 IPv6: 2400:7ee0::/32 Signature Algorithm: sha256WithRSAEncryption 89:25:27:fe:97:3e:1e:c7:77:69:2d:39:d4:ee:99:8f:8a:eb: 10:2a:e8:2e:e8:b8:8d:97:51:5a:1c:0e:af:62:12:3d:88:f0: 9e:ab:eb:e8:46:ab:90:e1:d6:88:b7:56:41:7e:bf:ac:1e:4a: 51:75:8e:33:33:fb:d1:c1:62:92:2d:06:34:5e:da:a2:0a:cc: d6:b0:ea:44:c6:71:0b:af:b0:0e:dc:de:f5:57:97:f9:0b:89: ec:53:8e:9f:c9:c4:62:62:83:e4:4c:ac:80:21:28:8c:7a:f0: f4:6f:8e:dc:e7:6a:34:e8:d1:d7:e4:b3:f7:e7:c3:98:f6:7f: 05:b8:ac:ef:ba:e3:f0:f4:af:9b:63:d3:bc:ac:53:96:a5:d8: 52:58:68:76:ef:e2:46:2e:e4:22:ad:33:ba:e9:d3:fa:14:d0: 6e:70:e1:f2:d0:1f:bd:bb:df:29:a2:39:6d:ad:3a:69:a8:7f: 73:b9:31:68:c2:18:e6:a6:dc:f0:e9:3a:ef:3a:fc:6f:b9:3c: 36:b8:a9:2b:46:01:91:30:af:70:ce:f7:5f:64:ce:28:ff:48: 04:3b:8e:7e:62:7e:ac:29:f6:41:ca:91:c6:84:fe:4e:00:e8: b4:0f:d2:c8:3a:00:62:d1:7f:9b:a6:e9:35:5b:dd:45:d5:c2: 61:9b:31:b7 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAgEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEFDREQxMTAvBgNVBAUTKDM2OTE1MzMzMDBBQ0MxRTAxMDVFRTAzMTcwNjM1MDdG ODdCNDAxMkQwHhcNMjUwNjI1MDIwOTE4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODViNWE0ZS05YzljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl/x4i3rlBjccrgu6gVfnHn08W9gu+kfcw6/UyfcLGifQzMh8NPWnnbRDKbPr HxZyimrfJ1S+d5a5PYtL5KruJwdgsocpwNXUGhBx/Sn0F9zlUt6/x/mZJNtkOC2f yLj2BRwCwMRl7FE4yQlPYllABG/ilTJRqouy4dDTeKuwJYNIh7zu3FAbIg/1jBOh IHPK5wVFuN46DroGIpXiBQTK/9oK43mUObXKMOJaX9pyDz30h+ZcHWjuL/oNKiy0 RlaFVUxS3NWzjrbpr1iVxHgGQONwXqcBfRn6bsMLqZ7Cf17OBmHXmjd8jcmY/XoL hoB2OY5I70JRhl0NveKo93DmyQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFLJWd13j Kr5ZrzkoHa/bqkwMJ+DsMB8GA1UdIwQYMBaAFDaRUzMArMHgEF7gMXBjUH+HtAEt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QUNERC8yQTJDRkM0NjRE Q0YxMUVEQkYwNUZBNTNDNEY5QUUwMi9OcEZUTXdDc3dlQVFYdUF4Y0dOUWY0ZTBB UzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05wRlRNd0Nzd2VBUVh1QXhjR05RZjRlMEFTMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEFDREQvMkEyQ0ZDNDY0RENGMTFFREJGMDVGQTUzQzRGOUFFMDIvMzk3NTA0Q0E0 REQyMTFFRDgzMTRBNjU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnu8AwDQQCAAIwBwMFACQAfuAwDQYJKoZIhvcNAQELBQAD ggEBAIklJ/6XPh7Hd2ktOdTumY+K6xAq6C7ouI2XUVocDq9iEj2I8J6r6+hGq5Dh 1oi3VkF+v6weSlF1jjMz+9HBYpItBjRe2qIKzNaw6kTGcQuvsA7c3vVXl/kLiexT jp/JxGJig+RMrIAhKIx68PRvjtznajTo0dfks/fnw5j2fwW4rO+64/D0r5tj07ys U5al2FJYaHbv4kYu5CKtM7rp0/oU0G5w4fLQH7273ymiOW2tOmmof3O5MWjCGOam 3PDpOu86/G+5PDa4qStGAZEwr3DO919kzij/SAQ7jn5ifqwp9kHKkcaE/k4A6LQP 0sg6AGLRf5um6TVb3UXVwmGbMbc= -----END CERTIFICATE-----Generated at Sun Jul 20 08:00:31 2025 by rpki-client