$ rpki-client -vvf rpki.apnic.net/member_repository/A918ED57/5CD8244217B011EBB94DA714C4F9AE02/B4B34DA4D2C611ECBF3B3E53C4F9AE02.roa File: B4B34DA4D2C611ECBF3B3E53C4F9AE02.roa (raw, json) Hash identifier: wFGCcQD71t0xbsG6j/RT9j5S1Xu9ekdDINtwsZ1h1tw= Subject key identifier: F7:94:CA:FB:8D:4D:62:F5:03:96:5A:83:78:DA:76:36:08:FC:26:CB Certificate issuer: /CN=A918ED57/serialNumber=668872E87997B73B975FE3DAD4DACA8EBEC8EBA3 Certificate serial: 07B3 Authority key identifier: 66:88:72:E8:79:97:B7:3B:97:5F:E3:DA:D4:DA:CA:8E:BE:C8:EB:A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zohy6HmXtzuXX-Pa1NrKjr7I66M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918ED57/5CD8244217B011EBB94DA714C4F9AE02/B4B34DA4D2C611ECBF3B3E53C4F9AE02.roa Signing time: Thu 04 Sep 2025 22:02:38 +0000 ROA not before: Thu 04 Sep 2025 22:02:38 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 16552 IP address blocks: 43.247.168.0/22 maxlen: 24 103.14.220.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918ED57/5CD8244217B011EBB94DA714C4F9AE02/Zohy6HmXtzuXX-Pa1NrKjr7I66M.crl rsync://rpki.apnic.net/member_repository/A918ED57/5CD8244217B011EBB94DA714C4F9AE02/Zohy6HmXtzuXX-Pa1NrKjr7I66M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zohy6HmXtzuXX-Pa1NrKjr7I66M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 22:02:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1971 (0x7b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918ED57, serialNumber=668872E87997B73B975FE3DAD4DACA8EBEC8EBA3 Validity Not Before: Sep 4 22:02:38 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68ba0c7e-d63c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:bd:79:39:8d:b1:c7:89:30:a0:6c:8f:1d:ce: f1:98:c5:d0:01:05:10:63:93:a6:19:79:d0:43:fe: 40:70:c7:d0:d1:1a:99:76:e3:94:09:6c:62:42:ed: 7a:a2:cd:86:47:ff:a3:bb:6c:c6:75:0c:0a:5c:bc: 8d:b8:29:bd:7d:7c:d3:7e:f0:ea:78:51:b7:67:19: a0:3a:13:59:4e:cd:08:79:ce:f6:52:02:ac:1f:1e: 4a:4c:97:39:28:a5:7f:00:29:a4:9e:85:a0:a0:a3: 5f:7e:50:f2:aa:b8:40:fe:a0:93:f8:f6:76:fe:fa: f1:16:43:92:5a:e8:97:1c:cc:33:0b:b2:b2:19:fd: b8:30:d7:95:7c:4a:32:49:1c:1c:08:51:f2:a2:03: af:b2:08:1f:2c:12:73:7d:eb:e7:4a:01:18:24:e3: f1:b9:5a:c7:d0:d0:cd:c3:8e:43:3c:f5:f6:c5:5c: 1f:43:ea:ad:c8:d0:60:03:b4:07:aa:b8:4a:da:05: 98:d1:52:34:42:c7:92:a0:6e:76:4d:b2:65:94:4e: 3e:32:ea:d6:31:59:a6:8c:b5:c5:06:8a:fd:1f:5e: 8f:4e:f7:7a:e2:02:f6:50:3a:10:96:23:56:1a:70: d0:34:41:c5:5e:70:ee:dc:ae:06:23:02:bb:e4:66: 7f:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:94:CA:FB:8D:4D:62:F5:03:96:5A:83:78:DA:76:36:08:FC:26:CB X509v3 Authority Key Identifier: keyid:66:88:72:E8:79:97:B7:3B:97:5F:E3:DA:D4:DA:CA:8E:BE:C8:EB:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918ED57/5CD8244217B011EBB94DA714C4F9AE02/Zohy6HmXtzuXX-Pa1NrKjr7I66M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zohy6HmXtzuXX-Pa1NrKjr7I66M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918ED57/5CD8244217B011EBB94DA714C4F9AE02/B4B34DA4D2C611ECBF3B3E53C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.247.168.0/22 103.14.220.0/22 Signature Algorithm: sha256WithRSAEncryption 5c:8d:20:42:31:8c:1f:7f:b6:e0:f0:b9:98:e6:b6:5f:2b:86: 3d:e6:b0:6a:92:d6:cc:ee:3b:59:73:a1:b2:bf:18:36:77:d8: 70:9f:2c:35:d9:30:51:ec:ce:6d:4e:c3:df:b9:62:ec:a7:d5: bd:7c:5b:61:4d:a7:14:fe:6f:58:86:31:db:e5:60:53:e4:1a: f9:1e:e7:7e:9b:a7:90:bf:ad:df:b0:16:2f:8a:6a:9c:61:00: b2:37:a2:30:7c:4b:83:8c:ef:45:40:4b:46:f4:73:bf:70:74: a8:9f:9c:7f:d5:bb:35:11:e1:b7:99:f4:0f:c3:42:c7:3f:ed: 2b:94:a7:9e:db:15:65:76:b8:cb:ec:1f:74:fd:c4:f0:bc:64: 97:fb:e2:c4:a6:19:02:21:b3:bf:87:c1:71:d4:59:6b:b1:ae: df:22:4c:ea:ae:2f:9c:82:df:41:49:70:00:61:27:b2:64:dc: ca:f5:41:60:76:ff:b4:da:31:98:ad:62:d5:e5:e3:21:35:8f: 58:fb:aa:af:08:4d:76:c8:f8:99:11:9c:dd:9c:02:1e:67:c6: 82:f4:8c:c4:ea:30:e0:40:2a:dd:ea:f6:87:02:68:c8:68:5f: 0c:7b:f5:8f:5e:c2:91:2c:ab:56:7e:98:4b:0c:3b:61:f2:e1: 89:11:04:99 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICB7MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVENTcxMTAvBgNVBAUTKDY2ODg3MkU4Nzk5N0I3M0I5NzVGRTNEQUQ0REFDQThF QkVDOEVCQTMwHhcNMjUwOTA0MjIwMjM4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGJhMGM3ZS1kNjNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1r15OY2xx4kwoGyPHc7xmMXQAQUQY5OmGXnQQ/5AcMfQ0RqZduOUCWxiQu16 os2GR/+ju2zGdQwKXLyNuCm9fXzTfvDqeFG3ZxmgOhNZTs0Iec72UgKsHx5KTJc5 KKV/ACmknoWgoKNfflDyqrhA/qCT+PZ2/vrxFkOSWuiXHMwzC7KyGf24MNeVfEoy SRwcCFHyogOvsggfLBJzfevnSgEYJOPxuVrH0NDNw45DPPX2xVwfQ+qtyNBgA7QH qrhK2gWY0VI0QseSoG52TbJllE4+MurWMVmmjLXFBor9H16PTvd64gL2UDoQliNW GnDQNEHFXnDu3K4GIwK75GZ//QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPeUyvuN TWL1A5Zag3jadjYI/CbLMB8GA1UdIwQYMBaAFGaIcuh5l7c7l1/j2tTayo6+yOuj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RUQ1Ny81Q0Q4MjQ0MjE3 QjAxMUVCQjk0REE3MTRDNEY5QUUwMi9ab2h5NkhtWHR6dVhYLVBhMU5yS2pyN0k2 Nk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pvaHk2SG1YdHp1WFgtUGExTnJLanI3STY2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVENTcvNUNEODI0NDIxN0IwMTFFQkI5NERBNzE0QzRGOUFFMDIvQjRCMzREQTRE MkM2MTFFQ0JGM0IzRTUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr96gDBAJnDtwwDQYJKoZIhvcNAQELBQADggEBAFyNIEIx jB9/tuDwuZjmtl8rhj3msGqS1szuO1lzobK/GDZ32HCfLDXZMFHszm1Ow9+5Yuyn 1b18W2FNpxT+b1iGMdvlYFPkGvke536bp5C/rd+wFi+KapxhALI3ojB8S4OM70VA S0b0c79wdKifnH/VuzUR4beZ9A/DQsc/7SuUp57bFWV2uMvsH3T9xPC8ZJf74sSm GQIhs7+HwXHUWWuxrt8iTOquL5yC30FJcABhJ7Jk3Mr1QWB2/7TaMZitYtXl4yE1 j1j7qq8ITXbI+JkRnN2cAh5nxoL0jMTqMOBAKt3q9ocCaMhoXwx79Y9ewpEsq1Z+ mEsMO2Hy4YkRBJk= -----END CERTIFICATE-----Generated at Sat Sep 6 10:48:31 2025 by rpki-client