$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/19D2E01C5B2911F0878FC358C4F9AE02.roa File: 19D2E01C5B2911F0878FC358C4F9AE02.roa (raw, json) Hash identifier: ANdHWs0h3BjFvqB8FkxAm9KcF2koxamSIUl68+27Q58= Subject key identifier: E1:AF:69:95:A9:76:FC:D5:8C:69:B5:F9:32:2F:C1:05:EE:9A:53:26 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: BFF5 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/19D2E01C5B2911F0878FC358C4F9AE02.roa Signing time: Thu 10 Jul 2025 09:00:24 +0000 ROA not before: Thu 10 Jul 2025 09:00:24 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141259 IP address blocks: 103.183.52.0/23 maxlen: 24 2001:df0:8540::/48 maxlen: 48 2400:5ca0::/32 maxlen: 32 2400:5ca0::/48 maxlen: 48 2400:5ca0:1::/48 maxlen: 48 2400:5ca0:2::/48 maxlen: 48 2400:5ca0:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 15:24:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49141 (0xbff5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jul 10 09:00:24 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=686f8128-7795 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:6e:d6:5d:b2:3c:b3:af:fb:01:31:b2:51:97: 8b:b0:4c:e0:31:44:04:df:49:89:14:39:27:48:48: ed:33:5f:12:ef:50:51:b7:15:01:52:1a:76:af:13: 3a:3c:ad:56:77:ee:d8:6c:ca:52:69:c6:37:21:e0: 13:67:72:08:c1:a9:02:42:0b:15:12:7d:2b:37:9e: df:c0:03:45:e0:25:17:26:6d:b2:97:54:e7:b0:e5: 05:0b:82:6e:e8:0f:a2:ed:ad:12:4f:9c:9f:8c:f3: 60:c8:be:55:28:13:da:4b:3a:b0:4f:a3:dc:cc:84: 28:80:22:fa:0e:87:0c:30:43:62:86:7a:93:1f:1f: c5:a9:68:90:c9:76:20:ff:31:0d:d8:db:00:d3:92: 4d:f9:ea:64:bd:99:6f:a0:9c:0f:13:ab:9f:91:59: bc:da:17:50:2e:c1:f2:b5:0d:fd:a7:2c:e9:e4:0d: b3:5f:c3:b5:04:40:c6:b5:c2:41:f4:9d:7e:fd:c8: da:53:d9:a4:1b:ce:74:bd:4e:ae:f6:be:df:0b:84: bf:7a:00:37:b5:4e:1a:90:33:43:19:b9:11:f5:3b: 7f:ed:2b:d7:f1:4d:23:07:99:32:98:0f:59:e3:0d: 8f:e7:2f:9e:8e:23:d9:4d:72:46:80:9f:87:2f:ff: e4:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:AF:69:95:A9:76:FC:D5:8C:69:B5:F9:32:2F:C1:05:EE:9A:53:26 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/19D2E01C5B2911F0878FC358C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.183.52.0/23 IPv6: 2001:df0:8540::/48 2400:5ca0::/32 Signature Algorithm: sha256WithRSAEncryption b2:ec:a3:e5:db:32:d9:78:7a:cb:a2:f6:f3:17:05:1e:de:34: de:eb:72:59:12:7a:5b:37:0f:29:dc:03:55:bc:e3:e5:66:24: ac:44:79:03:27:46:a8:37:e0:40:f7:dc:97:12:49:db:39:20: ed:7a:c7:e0:82:7c:45:30:1c:39:1a:87:6d:23:79:28:aa:00: c8:a4:19:d8:9a:fb:15:85:aa:1b:ea:8d:37:03:88:36:95:36: a8:08:1e:15:f3:3e:83:0d:c6:43:91:85:42:72:cd:8e:2c:93: 70:06:19:d5:c7:22:1e:23:c8:01:25:19:ed:0e:9f:ef:81:e2: 1e:20:04:1d:52:39:be:df:fc:e2:5c:3f:26:c0:c5:f5:d0:ae: 7e:b5:d6:b2:dd:0f:dc:04:5a:f8:96:82:18:16:7c:c5:cd:c7: 58:bd:d4:40:1f:30:7a:1f:89:32:b9:3a:1d:51:bf:69:67:65: 35:8c:c1:71:e1:26:c1:77:84:4f:16:47:59:c8:4d:21:7a:f8: 17:c3:12:ba:74:a9:5e:d2:d7:a1:3f:8d:bf:fd:d2:d1:0d:17: 5a:7c:92:8a:f3:b8:98:87:a4:c3:e0:2f:49:52:42:31:b9:c6: 21:49:f3:0b:62:66:a9:9b:da:19:34:90:39:aa:f5:4c:a2:ce: 0b:f2:5a:fc -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgIDAL/1MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDcxMDA5MDAyNFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjg2ZjgxMjgtNzc5NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOVu1l2yPLOv+wExslGXi7BM4DFEBN9JiRQ5J0hI7TNfEu9QUbcVAVIadq8T OjytVnfu2GzKUmnGNyHgE2dyCMGpAkILFRJ9Kzee38ADReAlFyZtspdU57DlBQuC bugPou2tEk+cn4zzYMi+VSgT2ks6sE+j3MyEKIAi+g6HDDBDYoZ6kx8fxalokMl2 IP8xDdjbANOSTfnqZL2Zb6CcDxOrn5FZvNoXUC7B8rUN/acs6eQNs1/DtQRAxrXC QfSdfv3I2lPZpBvOdL1Orva+3wuEv3oAN7VOGpAzQxm5EfU7f+0r1/FNIweZMpgP WeMNj+cvno4j2U1yRoCfhy//5GECAwEAAaOCAq0wggKpMB0GA1UdDgQWBBThr2mV qXb81YxptfkyL8EF7ppTJjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzE5RDJFMDFD NUIyOTExRjA4NzhGQzM1OEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDcGCCsGAQUFBwEHAQH/ BCgwJjAMBAIAATAGAwQBZ7c0MBYEAgACMBADBwAgAQ3whUADBQAkAFygMA0GCSqG SIb3DQEBCwUAA4IBAQCy7KPl2zLZeHrLovbzFwUe3jTe63JZEnpbNw8p3ANVvOPl ZiSsRHkDJ0aoN+BA99yXEknbOSDtesfggnxFMBw5GodtI3koqgDIpBnYmvsVhaob 6o03A4g2lTaoCB4V8z6DDcZDkYVCcs2OLJNwBhnVxyIeI8gBJRntDp/vgeIeIAQd Ujm+3/ziXD8mwMX10K5+tday3Q/cBFr4loIYFnzFzcdYvdRAHzB6H4kyuTodUb9p Z2U1jMFx4SbBd4RPFkdZyE0hevgXwxK6dKle0tehP42//dLRDRdafJKK87iYh6TD 4C9JUkIxucYhSfMLYmapm9oZNJA5qvVMos4L8lr8 -----END CERTIFICATE-----Generated at Sun Jul 20 22:47:47 2025 by rpki-client