$ rpki-client -vvf rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/C0681BF2CF4911EF8531B085C4F9AE02.roa File: C0681BF2CF4911EF8531B085C4F9AE02.roa (raw, json) Hash identifier: TnWWrKTfNekbVi6pIzTrH/qhvsHIadymtQxdXn+0jBk= Subject key identifier: FC:67:B9:A4:E9:B6:BC:0E:DE:94:83:20:5F:E9:EE:9E:18:CC:25:08 Certificate issuer: /CN=A918BB4D/serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Certificate serial: 06ED Authority key identifier: EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/C0681BF2CF4911EF8531B085C4F9AE02.roa Signing time: Wed 02 Jul 2025 22:32:01 +0000 ROA not before: Wed 02 Jul 2025 22:32:01 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 932 IP address blocks: 43.254.216.0/22 maxlen: 24 103.238.224.0/22 maxlen: 24 103.244.88.0/22 maxlen: 24 116.206.176.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 22:13:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1773 (0x6ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BB4D, serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Validity Not Before: Jul 2 22:32:01 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6865b361-d736 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:0e:a6:61:77:13:0a:40:99:66:f1:a9:e1:ec: a6:eb:c9:89:b6:fe:d8:5f:5a:c9:5c:b7:83:ca:ec: 40:14:7f:ef:2e:df:c3:bd:ab:e6:03:92:ed:14:0a: 43:7e:ca:f4:5f:86:2e:75:1f:0e:c4:10:9f:d4:c0: e3:33:4a:79:d8:1f:fa:e5:23:f5:51:0d:91:48:d6: 98:57:ce:49:4a:3b:8b:fe:c6:a9:8e:1c:0b:66:58: 4d:39:be:53:55:85:20:89:0f:dc:06:11:f9:a1:36: d2:22:8b:fa:93:d0:fd:76:28:fa:ab:a2:0c:71:90: e8:e6:86:52:d0:ab:e6:58:e4:d0:58:d0:81:d3:7b: be:39:8b:53:71:06:19:b7:2b:09:d2:f8:d0:e0:a2: 76:45:49:19:c1:5e:e1:08:93:02:7b:e9:df:93:73: 91:c6:5b:8d:2d:99:6a:8c:a4:a7:27:39:02:f1:8d: 6a:a6:f6:36:4e:eb:c0:26:c7:75:0d:5a:61:2f:d0: 5f:06:b5:97:41:66:10:eb:c8:c5:ec:e5:5f:9f:23: b8:e6:0b:66:f5:db:5a:8c:8c:9f:0e:4b:d0:0e:99: 91:63:81:a6:48:75:93:fc:a3:88:0b:0e:30:3b:85: ad:56:e7:0a:63:2a:d5:3a:b8:cb:81:8f:6e:60:af: 8b:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:67:B9:A4:E9:B6:BC:0E:DE:94:83:20:5F:E9:EE:9E:18:CC:25:08 X509v3 Authority Key Identifier: keyid:EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/C0681BF2CF4911EF8531B085C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.254.216.0/22 103.238.224.0/22 103.244.88.0/22 116.206.176.0/22 Signature Algorithm: sha256WithRSAEncryption 0c:a7:be:13:b7:a0:22:7d:ed:24:56:64:39:ac:3d:b0:7e:cf: 8d:d5:4b:a1:7d:32:5a:7a:d0:d9:23:52:d7:43:5d:34:30:e8: ca:46:30:90:3d:4e:ca:5a:71:cc:46:4b:57:0d:40:b9:a4:41: a4:b9:a8:b0:1b:84:c9:00:22:72:9b:47:a9:88:20:41:0e:94: 16:23:fc:e2:9f:9e:b7:60:51:00:bb:da:22:fc:e8:99:f6:79: a9:65:a2:6e:1b:17:77:10:2a:60:32:70:8e:e7:d9:01:7a:39: f6:4f:84:01:cc:95:52:01:bf:98:53:0a:02:a9:e3:b5:4a:6e: 7d:c8:bd:de:0e:d9:58:ff:47:5e:e9:82:9d:eb:16:45:2d:13: 42:b9:37:ed:f2:b4:69:73:d3:7e:11:d1:b8:99:14:f2:c4:60: c7:1f:ba:e4:09:08:05:02:bb:7f:eb:5a:5e:e2:01:6c:26:0b: c7:3d:2f:89:43:da:25:7e:3d:37:e0:69:22:b7:75:4c:c5:ec: 0f:77:5a:d7:bb:1b:e1:e1:3d:46:74:e9:3b:0d:ed:85:23:7a: 40:58:1d:97:d2:55:ef:99:83:78:a0:1a:d9:29:db:07:06:97: cd:52:3f:83:c2:34:df:c6:85:39:9a:c3:61:79:77:47:20:65: 07:10:87:79 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICBu0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJCNEQxMTAvBgNVBAUTKEVGNDAzNjQzRUE5ODIwQUU2RDlENjIyRjlBRUZEN0E0 QzkxNTRGMjQwHhcNMjUwNzAyMjIzMjAxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY1YjM2MS1kNzM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArA6mYXcTCkCZZvGp4eym68mJtv7YX1rJXLeDyuxAFH/vLt/DvavmA5LtFApD fsr0X4YudR8OxBCf1MDjM0p52B/65SP1UQ2RSNaYV85JSjuL/sapjhwLZlhNOb5T VYUgiQ/cBhH5oTbSIov6k9D9dij6q6IMcZDo5oZS0KvmWOTQWNCB03u+OYtTcQYZ tysJ0vjQ4KJ2RUkZwV7hCJMCe+nfk3ORxluNLZlqjKSnJzkC8Y1qpvY2TuvAJsd1 DVphL9BfBrWXQWYQ68jF7OVfnyO45gtm9dtajIyfDkvQDpmRY4GmSHWT/KOICw4w O4WtVucKYyrVOrjLgY9uYK+LyQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFPxnuaTp trwO3pSDIF/p7p4YzCUIMB8GA1UdIwQYMBaAFO9ANkPqmCCubZ1iL5rv16TJFU8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkI0RC9DQTU2M0JFODY1 MjIxMUVCODBGNkU5NEJDNEY5QUUwMi83MEEyUS1xWUlLNXRuV0l2bXVfWHBNa1ZU eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcwQTJRLXFZSUs1dG5XSXZtdV9YcE1rVlR5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEJCNEQvQ0E1NjNCRTg2NTIyMTFFQjgwRjZFOTRCQzRGOUFFMDIvQzA2ODFCRjJD RjQ5MTFFRjg1MzFCMDg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAIr/tgDBAJn7uADBAJn9FgDBAJ0zrAwDQYJKoZIhvcNAQEL BQADggEBAAynvhO3oCJ97SRWZDmsPbB+z43VS6F9Mlp60NkjUtdDXTQw6MpGMJA9 TspaccxGS1cNQLmkQaS5qLAbhMkAInKbR6mIIEEOlBYj/OKfnrdgUQC72iL86Jn2 eallom4bF3cQKmAycI7n2QF6OfZPhAHMlVIBv5hTCgKp47VKbn3Ivd4O2Vj/R17p gp3rFkUtE0K5N+3ytGlz034R0biZFPLEYMcfuuQJCAUCu3/rWl7iAWwmC8c9L4lD 2iV+PTfgaSK3dUzF7A93Wte7G+HhPUZ06TsN7YUjekBYHZfSVe+Zg3igGtkp2wcG l81SP4PCNN/GhTmaw2F5d0cgZQcQh3k= -----END CERTIFICATE-----Generated at Mon Jul 21 12:33:18 2025 by rpki-client