$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/359072F43AD811F0A280CB19C4F9AE02.roa File: 359072F43AD811F0A280CB19C4F9AE02.roa (raw, json) Hash identifier: ZQiOC2RYvoAaaBudg4/AJNn5fLwdciVDISfzRiyZCiY= Subject key identifier: B9:96:03:9B:BC:52:D8:51:1A:FE:2E:A4:24:4D:74:C8:AD:B5:32:89 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: C3E4 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/359072F43AD811F0A280CB19C4F9AE02.roa Signing time: Tue 02 Sep 2025 11:12:36 +0000 ROA not before: Tue 02 Sep 2025 11:12:36 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 135227 IP address blocks: 103.98.210.0/23 maxlen: 23 103.123.38.0/24 maxlen: 24 103.149.154.0/24 maxlen: 24 103.212.235.0/24 maxlen: 24 2403:9dc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 15:24:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50148 (0xc3e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Sep 2 11:12:36 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68b6d124-339b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:4b:34:60:59:91:b6:56:83:4b:70:7f:ba:6c: b9:e9:a7:c8:cd:0e:42:46:06:38:9b:d7:04:28:f5: c5:57:eb:bf:2b:0e:31:79:e0:35:ad:f4:a3:c3:fc: c2:b0:bf:06:4d:9b:b5:6e:d7:c9:2b:cf:d3:88:2c: 84:5e:23:1b:51:6b:0f:5a:f5:e9:47:43:1c:4a:ba: b3:72:2b:33:09:a1:9d:32:9f:e3:b3:68:82:8c:a6: 30:6f:57:4e:2a:3b:75:e4:1f:5d:19:89:9c:7d:21: c8:29:6c:2f:7e:fc:29:be:2a:c1:2d:f4:bc:cf:e9: 39:47:89:76:1a:ec:81:9d:d2:c8:fd:c2:47:7e:49: f8:25:ec:f6:f2:82:c7:31:ec:df:7a:11:da:71:b3: e4:ed:67:21:08:aa:c1:0c:c6:7c:c6:03:76:d6:72: c5:6e:b1:09:80:38:9b:12:ca:ff:47:55:6b:6e:c9: 29:b6:b5:da:ea:31:11:ef:6b:13:4e:b2:1c:0e:0f: 94:b3:61:be:9a:16:74:6c:64:0d:cb:b0:ff:57:c7: 03:34:c1:8d:52:07:5c:c0:05:da:4f:53:f4:3e:34: 6a:12:9a:3e:0e:91:c8:2d:9b:e8:29:89:4d:56:68: 4c:62:19:be:f3:a6:b6:7b:b8:fc:98:c0:a0:51:26: e5:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:96:03:9B:BC:52:D8:51:1A:FE:2E:A4:24:4D:74:C8:AD:B5:32:89 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/359072F43AD811F0A280CB19C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.98.210.0/23 103.123.38.0/24 103.149.154.0/24 103.212.235.0/24 IPv6: 2403:9dc0::/32 Signature Algorithm: sha256WithRSAEncryption 46:61:e3:28:ba:d8:04:d4:58:87:59:65:d8:d8:a7:2b:7b:81: 1c:8d:bb:3b:0f:b3:a6:0d:15:35:e0:6e:7f:91:92:5e:d4:23: ab:47:d4:d8:79:1c:48:2e:bb:93:68:0b:36:ef:b9:71:02:06: 6d:91:a6:20:88:7c:b5:b7:a6:8f:33:74:36:8e:57:f2:c1:67: 8b:b9:79:3c:c0:dc:4f:a5:88:cf:d3:ec:04:80:92:b7:d6:2f: d9:b8:87:be:1e:ab:e8:40:8f:50:f0:7e:ca:b8:0b:84:c7:3b: ae:ae:32:57:4b:50:2f:8b:51:7a:9b:3d:f2:df:b9:aa:3c:5b: 61:4e:2c:94:15:6b:81:12:85:98:42:e0:56:6e:cb:38:6f:12: 80:72:6a:e7:65:4a:16:8e:c5:c4:a6:b5:9d:5c:62:0c:77:44: 88:49:76:4d:3c:a0:61:e6:8e:27:ce:bc:9b:73:1d:41:48:91: 34:6e:5a:77:91:4b:4d:98:8b:4e:09:61:3f:95:b4:f6:a1:76: b9:df:82:47:23:bc:ad:00:28:07:22:a9:84:dd:bc:22:c7:22: df:08:75:9d:ef:78:60:a0:f9:44:62:65:ed:03:be:da:a5:0b: 42:11:f1:ee:4b:84:f5:5b:bc:58:25:d6:fc:5f:3b:a3:f3:8b: 2a:83:f5:f9 -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgIDAMPkMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDkwMjExMTIzNloXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjhiNmQxMjQtMzM5YjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKlLNGBZkbZWg0twf7psuemnyM0OQkYGOJvXBCj1xVfrvysOMXngNa30o8P8 wrC/Bk2btW7XySvP04gshF4jG1FrD1r16UdDHEq6s3IrMwmhnTKf47NogoymMG9X Tio7deQfXRmJnH0hyClsL378Kb4qwS30vM/pOUeJdhrsgZ3SyP3CR35J+CXs9vKC xzHs33oR2nGz5O1nIQiqwQzGfMYDdtZyxW6xCYA4mxLK/0dVa27JKba12uoxEe9r E06yHA4PlLNhvpoWdGxkDcuw/1fHAzTBjVIHXMAF2k9T9D40ahKaPg6RyC2b6CmJ TVZoTGIZvvOmtnu4/JjAoFEm5ScCAwEAAaOCArYwggKyMB0GA1UdDgQWBBS5lgOb vFLYURr+LqQkTXTIrbUyiTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzM1OTA3MkY0 M0FEODExRjBBMjgwQ0IxOUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMEAGCCsGAQUFBwEHAQH/ BDEwLzAeBAIAATAYAwQBZ2LSAwQAZ3smAwQAZ5WaAwQAZ9TrMA0EAgACMAcDBQAk A53AMA0GCSqGSIb3DQEBCwUAA4IBAQBGYeMoutgE1FiHWWXY2Kcre4Ecjbs7D7Om DRU14G5/kZJe1COrR9TYeRxILruTaAs277lxAgZtkaYgiHy1t6aPM3Q2jlfywWeL uXk8wNxPpYjP0+wEgJK31i/ZuIe+HqvoQI9Q8H7KuAuExzuurjJXS1Avi1F6mz3y 37mqPFthTiyUFWuBEoWYQuBWbss4bxKAcmrnZUoWjsXEprWdXGIMd0SISXZNPKBh 5o4nzrybcx1BSJE0blp3kUtNmItOCWE/lbT2oXa534JHI7ytACgHIqmE3bwixyLf CHWd73hgoPlEYmXtA77apQtCEfHuS4T1W7xYJdb8Xzuj84sqg/X5 -----END CERTIFICATE-----Generated at Sun Sep 7 16:30:42 2025 by rpki-client