$ rpki-client -vvf rpki.apnic.net/member_repository/A918CEC7/9BB4EAB4C87B11EDA6132A40C4F9AE02/CCD6FD9AC92E11ED931E6469C4F9AE02.roa File: CCD6FD9AC92E11ED931E6469C4F9AE02.roa (raw, json) Hash identifier: AlNdMEqXqtWYBM5+8lhBY2zJlx8VS9MwTfRR8jw8484= Subject key identifier: 35:89:E6:93:A1:BD:1D:57:E1:16:04:34:A5:65:20:5C:B6:08:66:BC Certificate issuer: /CN=A918CEC7/serialNumber=41618AE13A41F999C5790428B716FCAE5424A891 Certificate serial: 01D3 Authority key identifier: 41:61:8A:E1:3A:41:F9:99:C5:79:04:28:B7:16:FC:AE:54:24:A8:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QWGK4TpB-ZnFeQQotxb8rlQkqJE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918CEC7/9BB4EAB4C87B11EDA6132A40C4F9AE02/CCD6FD9AC92E11ED931E6469C4F9AE02.roa Signing time: Thu 21 Aug 2025 03:10:19 +0000 ROA not before: Thu 21 Aug 2025 03:10:19 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 142120 IP address blocks: 103.166.150.0/23 maxlen: 23 103.166.150.0/24 maxlen: 24 103.166.151.0/24 maxlen: 24 2001:df2:29c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918CEC7/9BB4EAB4C87B11EDA6132A40C4F9AE02/QWGK4TpB-ZnFeQQotxb8rlQkqJE.crl rsync://rpki.apnic.net/member_repository/A918CEC7/9BB4EAB4C87B11EDA6132A40C4F9AE02/QWGK4TpB-ZnFeQQotxb8rlQkqJE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QWGK4TpB-ZnFeQQotxb8rlQkqJE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 03:10:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 467 (0x1d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918CEC7, serialNumber=41618AE13A41F999C5790428B716FCAE5424A891 Validity Not Before: Aug 21 03:10:19 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68a68e1b-8c03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:c8:16:4f:e0:86:86:c0:e6:bc:04:bc:14:48: 8c:0a:b0:a5:1a:e0:06:f3:21:75:c5:fe:6c:6a:b4: 3f:32:ac:03:87:90:c0:cc:69:50:17:34:b3:14:00: 1c:b9:6b:2a:24:08:fb:a6:f4:29:af:41:92:7d:b7: 9d:f6:dd:30:2c:8e:5e:a6:39:d3:25:5d:39:82:7d: 7e:ab:5f:5e:fc:cb:82:a5:d0:8d:58:42:37:6f:f2: 3f:19:52:c3:8d:d2:68:2f:76:ac:21:1a:9e:e5:4b: 31:19:a5:67:3c:25:73:4a:9c:d5:19:b9:c1:ef:ab: 98:4b:bb:96:be:05:3b:bc:98:b6:ea:5f:39:e7:d0: 37:eb:aa:bd:f9:b2:b6:49:54:8f:d1:eb:76:cf:88: 6d:92:e0:6d:8f:28:9a:7a:d6:37:43:52:60:b0:2a: 95:35:f7:a5:92:17:77:69:c3:05:a5:e7:21:d7:8a: 6b:c5:08:1e:ff:45:35:50:a3:c0:54:a4:4f:4f:36: ee:f7:87:59:40:76:68:0c:e1:34:48:ec:29:1f:74: b9:a5:b4:ac:c4:9e:27:41:9b:f0:cc:42:cd:6a:fa: 7b:14:45:e2:c9:6c:20:94:5b:1c:a1:6c:a6:b7:9b: 45:c7:36:1d:23:07:1a:f7:92:b1:eb:0e:64:85:e5: 1e:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:89:E6:93:A1:BD:1D:57:E1:16:04:34:A5:65:20:5C:B6:08:66:BC X509v3 Authority Key Identifier: keyid:41:61:8A:E1:3A:41:F9:99:C5:79:04:28:B7:16:FC:AE:54:24:A8:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918CEC7/9BB4EAB4C87B11EDA6132A40C4F9AE02/QWGK4TpB-ZnFeQQotxb8rlQkqJE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QWGK4TpB-ZnFeQQotxb8rlQkqJE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CEC7/9BB4EAB4C87B11EDA6132A40C4F9AE02/CCD6FD9AC92E11ED931E6469C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.166.150.0/23 IPv6: 2001:df2:29c0::/48 Signature Algorithm: sha256WithRSAEncryption 77:87:42:cf:95:a9:1d:99:e5:a4:cd:02:8d:10:52:1d:4e:0e: 79:0d:f9:a5:c4:e2:dd:1d:46:9e:d6:81:6d:6b:7a:5c:6b:2a: 7a:da:bd:96:41:d6:62:09:16:a5:c2:b9:d0:cd:cd:01:99:b5: 72:40:d5:66:87:0c:a9:ff:8b:20:4d:da:4e:09:30:d9:34:33: 70:57:f5:fa:9a:d4:a9:05:53:b3:53:8d:1f:e8:fa:16:8b:a3: 78:d6:8b:99:c1:87:4b:92:47:d0:81:84:09:ea:13:99:aa:cf: 2c:e4:10:04:82:89:42:75:7d:60:6b:1e:54:02:fa:b0:dc:38: 90:9a:59:8f:f8:22:34:2b:ff:59:64:4f:68:cd:82:e6:8a:d0: bc:6e:cf:b8:fe:49:79:8f:ce:8a:a1:db:cb:3b:ca:7d:93:df: 88:40:43:ac:d2:fe:bc:a5:f2:65:47:43:e4:e2:8f:40:96:15: 95:0d:e2:63:5f:c7:0d:15:74:ac:b6:c7:ca:f4:1a:42:c1:60: 7d:d4:61:2d:0f:25:9d:7d:7a:04:a1:29:31:46:9a:50:2d:d0: 57:03:15:6b:b4:2b:c0:18:81:c8:e6:2e:fc:d1:f1:de:b5:59: 06:7a:ef:35:85:09:2e:0c:d7:70:64:72:49:9f:55:63:2b:be: b9:e8:5f:34 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAdMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OENFQzcxMTAvBgNVBAUTKDQxNjE4QUUxM0E0MUY5OTlDNTc5MDQyOEI3MTZGQ0FF NTQyNEE4OTEwHhcNMjUwODIxMDMxMDE5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE2OGUxYi04YzAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5MgWT+CGhsDmvAS8FEiMCrClGuAG8yF1xf5sarQ/MqwDh5DAzGlQFzSzFAAc uWsqJAj7pvQpr0GSfbed9t0wLI5epjnTJV05gn1+q19e/MuCpdCNWEI3b/I/GVLD jdJoL3asIRqe5UsxGaVnPCVzSpzVGbnB76uYS7uWvgU7vJi26l8559A366q9+bK2 SVSP0et2z4htkuBtjyiaetY3Q1JgsCqVNfelkhd3acMFpech14prxQge/0U1UKPA VKRPTzbu94dZQHZoDOE0SOwpH3S5pbSsxJ4nQZvwzELNavp7FEXiyWwglFscoWym t5tFxzYdIwca95Kx6w5kheUe3QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDWJ5pOh vR1X4RYENKVlIFy2CGa8MB8GA1UdIwQYMBaAFEFhiuE6QfmZxXkEKLcW/K5UJKiR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Q0VDNy85QkI0RUFCNEM4 N0IxMUVEQTYxMzJBNDBDNEY5QUUwMi9RV0dLNFRwQi1abkZlUVFvdHhiOHJsUWtx SkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FXR0s0VHBCLVpuRmVRUW90eGI4cmxRa3FKRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OENFQzcvOUJCNEVBQjRDODdCMTFFREE2MTMyQTQwQzRGOUFFMDIvQ0NENkZEOUFD OTJFMTFFRDkzMUU2NDY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnppYwDwQCAAIwCQMHACABDfIpwDANBgkqhkiG9w0BAQsF AAOCAQEAd4dCz5WpHZnlpM0CjRBSHU4OeQ35pcTi3R1GntaBbWt6XGsqetq9lkHW YgkWpcK50M3NAZm1ckDVZocMqf+LIE3aTgkw2TQzcFf1+prUqQVTs1ONH+j6Fouj eNaLmcGHS5JH0IGECeoTmarPLOQQBIKJQnV9YGseVAL6sNw4kJpZj/giNCv/WWRP aM2C5orQvG7PuP5JeY/OiqHbyzvKfZPfiEBDrNL+vKXyZUdD5OKPQJYVlQ3iY1/H DRV0rLbHyvQaQsFgfdRhLQ8lnX16BKEpMUaaUC3QVwMVa7QrwBiByOYu/NHx3rVZ BnrvNYUJLgzXcGRySZ9VYyu+uehfNA== -----END CERTIFICATE-----Generated at Fri Aug 22 18:45:29 2025 by rpki-client