$ rpki-client -vvf rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/C0681BF2CF4911EF8531B085C4F9AE02.roa File: C0681BF2CF4911EF8531B085C4F9AE02.roa (raw, json) Hash identifier: 5HCOc9+lcCKuixbrdeM973cbz14gTLhtEdJh3Ihte7k= Subject key identifier: 18:E3:4E:32:D7:01:F1:63:69:56:D3:01:C6:80:C5:DF:60:57:F7:11 Certificate issuer: /CN=A918BB4D/serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Certificate serial: 06CA Authority key identifier: EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/C0681BF2CF4911EF8531B085C4F9AE02.roa Signing time: Tue 20 May 2025 09:34:26 +0000 ROA not before: Tue 20 May 2025 09:34:26 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 932 IP address blocks: 43.254.216.0/22 maxlen: 24 103.238.224.0/22 maxlen: 24 103.244.88.0/22 maxlen: 24 116.206.176.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 22:23:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1738 (0x6ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BB4D, serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Validity Not Before: May 20 09:34:26 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=682c4ca2-c648 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:c8:6a:88:da:0b:6a:bb:a0:1a:6c:32:a2:4d: 14:c3:c6:ee:a2:66:e0:15:7a:4b:56:54:7a:3d:ea: 5d:85:5e:ec:99:b1:46:3a:d8:3b:3b:5f:fc:87:7e: 98:cc:78:71:23:b7:e8:c2:bb:dc:e0:d4:1b:e9:55: 9c:fd:63:bf:48:5f:0c:57:3b:68:4d:a4:7f:6c:c5: a5:06:55:a3:28:7f:23:ab:e3:d3:c6:d0:ce:6d:5b: f5:c4:cf:5a:ba:a2:b2:f9:c4:90:9e:ff:b0:c2:8b: 0a:56:33:98:11:01:02:c2:c8:d3:51:30:21:5d:fa: 82:62:04:30:a8:6c:fc:7a:7a:a6:40:74:54:a8:f1: b5:d9:26:f7:f4:1e:a0:48:cf:6f:82:a7:e8:e3:af: 71:6f:28:16:7c:15:f9:14:9e:95:eb:e1:07:8f:7d: 7c:66:fb:ee:31:64:c6:d8:bb:f1:60:19:2c:83:c6: 9c:96:57:6a:78:cb:b4:9a:9c:91:3c:a6:a7:4f:91: 93:11:20:b3:f4:21:c6:b9:41:2f:fe:13:a8:f1:93: 6e:1f:b4:47:63:12:74:ff:4d:81:13:91:44:f4:4d: 3c:29:f6:17:96:5b:15:94:af:24:97:64:57:30:c8: 2a:f6:d0:df:4f:d6:ac:69:d1:d9:c8:b0:6f:4a:c8: 78:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:E3:4E:32:D7:01:F1:63:69:56:D3:01:C6:80:C5:DF:60:57:F7:11 X509v3 Authority Key Identifier: keyid:EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/C0681BF2CF4911EF8531B085C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.254.216.0/22 103.238.224.0/22 103.244.88.0/22 116.206.176.0/22 Signature Algorithm: sha256WithRSAEncryption 5e:f6:c1:86:82:3e:28:a2:e7:09:e5:8f:6a:25:bd:86:60:11: 0c:bc:a9:64:81:a4:04:3d:2e:1d:6e:d5:8f:8d:81:1e:4b:cc: 32:9f:a3:35:9d:c0:65:fb:a5:ef:26:93:13:7e:e3:d2:e6:53: b1:5f:7f:ad:e5:13:b6:c8:c0:13:8d:44:88:23:f3:ab:84:77: dd:2d:91:57:00:d1:17:3d:7a:7e:2a:56:f4:ad:cd:46:98:91: 51:1e:47:98:67:7d:ed:22:07:67:bd:ef:d2:72:52:7f:a1:cc: 86:b8:26:ef:aa:cb:a8:21:51:b7:e6:60:d8:09:a8:90:b1:a8: 50:95:1e:53:7a:16:f1:85:42:b5:e8:f7:41:97:e0:ff:82:b7: 66:cd:9b:42:c5:38:f4:e4:42:1c:5a:1d:f9:0f:33:48:d0:60: 5b:08:68:0f:6d:05:d3:84:cf:e6:65:81:1e:7b:70:56:d3:6d: 5a:5a:32:14:ef:4c:64:f1:c9:9e:0c:e4:5c:4f:af:24:24:ab: e3:81:2a:7a:fb:a9:20:78:6a:69:ca:c8:52:19:4a:9c:bb:eb: 26:50:58:43:2c:20:a0:37:07:31:ef:76:ea:7a:df:ff:ee:6f: 53:fa:43:3d:f5:56:4f:24:c2:31:31:71:8d:ff:8f:b3:08:54: 7f:5c:66:cd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICBsowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJCNEQxMTAvBgNVBAUTKEVGNDAzNjQzRUE5ODIwQUU2RDlENjIyRjlBRUZEN0E0 QzkxNTRGMjQwHhcNMjUwNTIwMDkzNDI2WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJjNGNhMi1jNjQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArMhqiNoLarugGmwyok0Uw8buombgFXpLVlR6PepdhV7smbFGOtg7O1/8h36Y zHhxI7fowrvc4NQb6VWc/WO/SF8MVztoTaR/bMWlBlWjKH8jq+PTxtDObVv1xM9a uqKy+cSQnv+wwosKVjOYEQECwsjTUTAhXfqCYgQwqGz8enqmQHRUqPG12Sb39B6g SM9vgqfo469xbygWfBX5FJ6V6+EHj318ZvvuMWTG2LvxYBksg8aclldqeMu0mpyR PKanT5GTESCz9CHGuUEv/hOo8ZNuH7RHYxJ0/02BE5FE9E08KfYXllsVlK8kl2RX MMgq9tDfT9asadHZyLBvSsh4CwIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFBjjTjLX AfFjaVbTAcaAxd9gV/cRMB8GA1UdIwQYMBaAFO9ANkPqmCCubZ1iL5rv16TJFU8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkI0RC9DQTU2M0JFODY1 MjIxMUVCODBGNkU5NEJDNEY5QUUwMi83MEEyUS1xWUlLNXRuV0l2bXVfWHBNa1ZU eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcwQTJRLXFZSUs1dG5XSXZtdV9YcE1rVlR5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEJCNEQvQ0E1NjNCRTg2NTIyMTFFQjgwRjZFOTRCQzRGOUFFMDIvQzA2ODFCRjJD RjQ5MTFFRjg1MzFCMDg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAIr/tgDBAJn7uADBAJn9FgDBAJ0zrAwDQYJKoZIhvcNAQEL BQADggEBAF72wYaCPiii5wnlj2olvYZgEQy8qWSBpAQ9Lh1u1Y+NgR5LzDKfozWd wGX7pe8mkxN+49LmU7Fff63lE7bIwBONRIgj86uEd90tkVcA0Rc9en4qVvStzUaY kVEeR5hnfe0iB2e979JyUn+hzIa4Ju+qy6ghUbfmYNgJqJCxqFCVHlN6FvGFQrXo 90GX4P+Ct2bNm0LFOPTkQhxaHfkPM0jQYFsIaA9tBdOEz+ZlgR57cFbTbVpaMhTv TGTxyZ4M5FxPryQkq+OBKnr7qSB4amnKyFIZSpy76yZQWEMsIKA3BzHvdup63//u b1P6Qz31Vk8kwjExcY3/j7MIVH9cZs0= -----END CERTIFICATE-----Generated at Tue Jun 3 23:45:41 2025 by rpki-client