$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0DA61428624311F09CA65726C4F9AE02.roa File: 0DA61428624311F09CA65726C4F9AE02.roa (raw, json) Hash identifier: rw6Hx3jXT1nI4X0Cp6EG/DRSQsErp4hLS63Ux18ms+o= Subject key identifier: DD:CB:E4:F2:B1:23:DD:C2:BC:D0:D8:36:5F:5B:68:F1:E8:DF:0B:6E Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: C05F Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0DA61428624311F09CA65726C4F9AE02.roa Signing time: Thu 17 Jul 2025 05:04:14 +0000 ROA not before: Thu 17 Jul 2025 05:04:14 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 146908 IP address blocks: 103.167.102.0/24 maxlen: 24 103.167.103.0/24 maxlen: 24 103.173.194.0/24 maxlen: 24 103.173.195.0/24 maxlen: 24 103.184.126.0/23 maxlen: 24 2001:df1:16c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 12:39:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49247 (0xc05f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jul 17 05:04:14 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6878844d-2bae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:64:13:3a:9b:dc:91:60:63:ae:92:3c:29:28: 00:c7:3b:c8:60:8e:90:9a:ac:e2:2d:be:dd:46:8b: 2c:2e:6e:8d:19:fd:b0:c1:cd:f6:8b:33:70:10:4b: 9c:c1:59:c7:b8:86:24:be:75:b0:c9:6c:a1:50:a5: a5:ee:61:7e:f3:de:97:ab:a0:7d:0d:85:e5:33:5c: d8:57:eb:5f:8b:c6:9b:da:7b:f7:a7:5e:fa:a1:56: 62:1d:2f:61:cd:83:2b:8f:fa:35:ac:34:61:3c:22: b1:e9:b7:df:03:5e:10:a4:85:3f:e5:94:db:f6:46: 6e:9c:ce:34:08:db:1e:5c:26:53:40:e0:2b:62:df: d6:8b:6f:0a:62:72:1f:6b:6b:60:73:c9:29:04:85: bd:60:07:86:29:4d:40:37:74:7b:88:1d:23:0f:80: 21:e1:22:7d:c9:e9:3e:fd:bf:27:59:7d:6d:c1:2e: 23:1f:18:9d:aa:32:5d:17:09:a9:fd:a4:0b:75:52: 84:cc:c8:c3:69:ea:d6:8b:40:fa:01:19:29:86:ae: da:c0:cb:34:a7:c7:28:77:d2:1c:2b:1e:61:af:71: 07:66:11:a0:58:e4:d5:af:69:e0:97:6b:44:73:93: 07:f1:a0:a9:02:82:63:42:8a:70:ce:a1:9c:2d:ad: 9c:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:CB:E4:F2:B1:23:DD:C2:BC:D0:D8:36:5F:5B:68:F1:E8:DF:0B:6E X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0DA61428624311F09CA65726C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.102.0/23 103.173.194.0/23 103.184.126.0/23 IPv6: 2001:df1:16c0::/48 Signature Algorithm: sha256WithRSAEncryption 79:0e:19:30:27:4e:46:13:04:a3:a6:fc:0b:0d:9e:b9:b8:1f: 04:54:40:a9:9d:80:61:1f:b7:a5:3a:d3:3b:6e:57:a1:1b:71: 53:dc:52:d1:86:87:2f:7e:05:2f:5c:c4:4f:73:18:b6:72:20: 4d:f5:12:d4:18:6a:77:32:a7:36:c7:d4:3e:98:e3:54:fd:81: 45:6f:29:a4:71:5b:d2:14:91:4a:be:b6:a6:cb:b1:d4:38:48: 33:a1:60:c6:05:33:36:e8:60:4e:9d:7a:5e:17:3e:26:a2:47: 89:df:ea:67:09:cc:61:a7:01:bd:75:fe:7b:8c:20:75:44:23: 8d:1a:59:ca:5f:1f:b4:0f:e3:78:a0:7a:ac:9a:f3:59:82:c4: a5:5d:d4:69:1b:31:fb:94:cd:60:8f:ea:9a:d7:b4:d3:98:27: 08:d8:84:27:53:ba:f3:34:dd:64:de:86:78:61:5e:6b:85:a9: c5:f2:c1:f0:bb:3a:bb:6b:d6:2e:91:84:0b:b1:7d:2d:cd:a2: 74:28:2e:3d:3b:9d:a2:06:30:dd:b1:f3:9a:0b:29:ac:aa:40: 0f:05:05:8b:d9:02:25:39:29:4b:83:41:e7:61:81:13:ea:67: 2b:aa:0f:42:0d:bd:fb:b0:46:c7:5a:30:14:00:52:f0:cd:56: 9c:b9:80:e3 -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgIDAMBfMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDcxNzA1MDQxNFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjg3ODg0NGQtMmJhZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALNkEzqb3JFgY66SPCkoAMc7yGCOkJqs4i2+3UaLLC5ujRn9sMHN9oszcBBL nMFZx7iGJL51sMlsoVClpe5hfvPel6ugfQ2F5TNc2FfrX4vGm9p796de+qFWYh0v Yc2DK4/6Naw0YTwisem33wNeEKSFP+WU2/ZGbpzONAjbHlwmU0DgK2Lf1otvCmJy H2trYHPJKQSFvWAHhilNQDd0e4gdIw+AIeEifcnpPv2/J1l9bcEuIx8YnaoyXRcJ qf2kC3VShMzIw2nq1otA+gEZKYau2sDLNKfHKHfSHCseYa9xB2YRoFjk1a9p4Jdr RHOTB/GgqQKCY0KKcM6hnC2tnNUCAwEAAaOCArIwggKuMB0GA1UdDgQWBBTdy+Ty sSPdwrzQ2DZfW2jx6N8LbjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzBEQTYxNDI4 NjI0MzExRjA5Q0E2NTcyNkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDwGCCsGAQUFBwEHAQH/ BC0wKzAYBAIAATASAwQBZ6dmAwQBZ63CAwQBZ7h+MA8EAgACMAkDBwAgAQ3xFsAw DQYJKoZIhvcNAQELBQADggEBAHkOGTAnTkYTBKOm/AsNnrm4HwRUQKmdgGEft6U6 0ztuV6EbcVPcUtGGhy9+BS9cxE9zGLZyIE31EtQYancypzbH1D6Y41T9gUVvKaRx W9IUkUq+tqbLsdQ4SDOhYMYFMzboYE6del4XPiaiR4nf6mcJzGGnAb11/nuMIHVE I40aWcpfH7QP43igeqya81mCxKVd1GkbMfuUzWCP6prXtNOYJwjYhCdTuvM03WTe hnhhXmuFqcXywfC7Ortr1i6RhAuxfS3NonQoLj07naIGMN2x85oLKayqQA8FBYvZ AiU5KUuDQedhgRPqZyuqD0INvfuwRsdaMBQAUvDNVpy5gOM= -----END CERTIFICATE-----Generated at Mon Jul 21 18:22:00 2025 by rpki-client