$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9EFEB8CA36D911F0B615063EC4F9AE02.roa File: 9EFEB8CA36D911F0B615063EC4F9AE02.roa (raw, json) Hash identifier: bgVfbMFv9Oc8p0J19gj54V1vGwZxKlvsn02vcMOsIIw= Subject key identifier: CD:E2:53:E6:35:D1:B6:29:8C:A3:4E:26:81:98:65:4F:8F:6C:2C:C1 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: BCAB Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9EFEB8CA36D911F0B615063EC4F9AE02.roa Signing time: Mon 02 Jun 2025 06:47:01 +0000 ROA not before: Mon 02 Jun 2025 06:47:01 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 135699 IP address blocks: 103.71.52.0/22 maxlen: 24 103.74.68.0/22 maxlen: 24 103.140.185.0/24 maxlen: 24 103.181.144.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Jun 2025 15:20:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48299 (0xbcab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jun 2 06:47:01 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=683d48e5-f5b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:06:27:8b:19:8a:e3:8f:34:ee:d0:8e:f9:65: a6:d8:f1:e3:e7:4f:0c:31:e0:59:63:58:39:4c:6d: 13:40:15:04:39:42:07:13:03:e6:6d:9d:48:65:a0: 62:b1:be:12:36:6a:c5:a8:ef:57:49:b7:09:e9:67: 2f:c7:0e:ba:44:c2:ca:b6:fc:00:3f:b7:25:cb:df: 88:ea:4c:fb:1b:91:66:ac:4c:0e:3a:fe:c6:c7:c2: 5f:46:d3:58:6f:8a:b9:ad:09:db:fe:b7:b0:d7:09: a8:15:e5:2c:38:5f:38:91:69:10:db:ca:9c:ba:6e: 6a:df:61:2f:1b:da:30:0d:2f:e4:6e:30:08:af:20: 9f:6a:45:23:6c:82:dc:2c:02:e4:7c:ac:0b:f3:f1: 5e:e9:51:1d:03:05:02:2a:ac:ac:28:3d:78:05:30: 5b:6d:a4:e0:0e:cf:9e:bb:8f:10:de:b9:b9:bf:9a: 14:06:61:af:c9:f2:2b:af:d8:f5:3b:cb:b4:93:ef: ec:99:01:bb:c2:db:8d:d6:01:12:a2:52:b1:7d:04: c3:55:fa:42:d6:84:ee:b7:de:58:da:b1:ae:e0:b6: 89:ff:73:5d:00:80:48:2a:fa:80:bc:57:b7:2a:12: 81:09:6b:a8:42:51:c0:42:5d:20:bd:4d:95:92:38: 8c:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:E2:53:E6:35:D1:B6:29:8C:A3:4E:26:81:98:65:4F:8F:6C:2C:C1 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9EFEB8CA36D911F0B615063EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.71.52.0/22 103.74.68.0/22 103.140.185.0/24 103.181.144.0/23 Signature Algorithm: sha256WithRSAEncryption 27:f9:c2:c2:58:6d:d5:54:5e:50:62:d8:2e:03:6f:e6:85:1f: e9:10:ae:9a:75:7a:66:16:de:b1:f0:2d:0b:5d:0d:23:cf:d4: 96:dc:23:d1:d8:b2:a1:cb:43:76:0c:c3:f9:24:58:f1:8a:9b: df:9a:54:50:6f:01:ab:ed:ed:95:ed:75:00:1b:09:d6:b4:d0: 06:b9:b9:1e:90:6e:3a:9d:c0:8f:b1:ab:45:4c:78:a6:be:cf: 7a:28:77:43:41:35:80:fe:e1:cf:9f:64:90:08:65:d0:18:42: a6:89:9b:86:5f:08:97:7e:6a:f4:8e:33:d7:b8:3b:3c:08:6f: 12:36:e2:48:9c:f9:09:da:45:db:46:ba:72:c0:c5:5a:1c:c1: 7c:bb:72:7a:aa:4e:5f:c9:ea:1f:04:d0:91:c0:7e:16:00:ee: a1:f4:95:eb:72:88:12:2f:58:38:51:71:e3:19:ec:7c:c7:91: 04:39:18:6e:15:ff:87:7e:a4:d2:3c:e5:c0:cb:70:3b:4f:bf: 23:9b:f1:33:85:41:56:f8:e0:e2:32:ee:90:60:93:cd:0f:cc: e3:4d:40:1d:97:66:0d:90:5f:d6:c5:f6:39:0c:f3:71:03:15: 42:9b:ec:98:01:27:49:ec:37:2d:66:c4:71:6c:39:c9:08:f4: f1:99:4f:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgIDALyrMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDYwMjA2NDcwMVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgzZDQ4ZTUtZjViMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANMGJ4sZiuOPNO7Qjvllptjx4+dPDDHgWWNYOUxtE0AVBDlCBxMD5m2dSGWg YrG+EjZqxajvV0m3CelnL8cOukTCyrb8AD+3JcvfiOpM+xuRZqxMDjr+xsfCX0bT WG+Kua0J2/63sNcJqBXlLDhfOJFpENvKnLpuat9hLxvaMA0v5G4wCK8gn2pFI2yC 3CwC5HysC/PxXulRHQMFAiqsrCg9eAUwW22k4A7PnruPEN65ub+aFAZhr8nyK6/Y 9TvLtJPv7JkBu8LbjdYBEqJSsX0Ew1X6QtaE7rfeWNqxruC2if9zXQCASCr6gLxX tyoSgQlrqEJRwEJdIL1NlZI4jEMCAwEAAaOCAqcwggKjMB0GA1UdDgQWBBTN4lPm NdG2KYyjTiaBmGVPj2wswTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzlFRkVCOENB MzZEOTExRjBCNjE1MDYzRUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDEGCCsGAQUFBwEHAQH/ BCIwIDAeBAIAATAYAwQCZ0c0AwQCZ0pEAwQAZ4y5AwQBZ7WQMA0GCSqGSIb3DQEB CwUAA4IBAQAn+cLCWG3VVF5QYtguA2/mhR/pEK6adXpmFt6x8C0LXQ0jz9SW3CPR 2LKhy0N2DMP5JFjxipvfmlRQbwGr7e2V7XUAGwnWtNAGubkekG46ncCPsatFTHim vs96KHdDQTWA/uHPn2SQCGXQGEKmiZuGXwiXfmr0jjPXuDs8CG8SNuJInPkJ2kXb RrpywMVaHMF8u3J6qk5fyeofBNCRwH4WAO6h9JXrcogSL1g4UXHjGex8x5EEORhu Ff+HfqTSPOXAy3A7T78jm/EzhUFW+ODiMu6QYJPND8zjTUAdl2YNkF/WxfY5DPNx AxVCm+yYASdJ7DctZsRxbDnJCPTxmU8S -----END CERTIFICATE-----Generated at Mon Jun 9 07:25:56 2025 by rpki-client