$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A263AE3A824711F08017A05FC4F9AE02.roa File: A263AE3A824711F08017A05FC4F9AE02.roa (raw, json) Hash identifier: vxAuf2duVBB/HaoNQ89IziX7U6YiiF0pslm8umpEhqY= Subject key identifier: 36:42:DB:72:B5:FD:C8:78:5A:56:A8:F4:BF:A3:97:86:1C:45:26:BA Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: C42B Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A263AE3A824711F08017A05FC4F9AE02.roa Signing time: Wed 03 Sep 2025 13:15:37 +0000 ROA not before: Wed 03 Sep 2025 13:15:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 135700 IP address blocks: 103.65.192.0/22 maxlen: 22 103.65.192.0/24 maxlen: 24 103.65.193.0/24 maxlen: 24 103.65.194.0/24 maxlen: 24 103.65.195.0/24 maxlen: 24 103.173.146.0/23 maxlen: 24 2001:df3:b840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 15:24:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50219 (0xc42b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Sep 3 13:15:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68b83f79-355d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:16:66:2f:4d:44:e8:fd:1f:e1:5d:c8:5d:e1: c6:6f:79:4d:cc:4e:2d:4c:59:81:99:92:e2:71:cc: 00:da:27:29:b4:56:fc:77:a3:a2:65:ee:5d:54:fb: 8e:8d:53:7e:23:65:35:d6:db:ef:c8:d0:87:fb:c2: bb:12:aa:70:82:33:34:f8:ba:c8:78:88:9e:31:f2: 49:53:2a:a1:29:99:b1:c3:7f:35:4b:0c:7e:be:9e: 96:75:e5:45:93:c8:b3:6e:b7:23:c4:a2:b6:b7:49: ff:f6:2d:cf:1a:12:a7:5c:27:55:aa:22:bd:59:41: 42:84:77:4f:b8:17:35:e1:a3:d0:49:b4:a3:74:f9: d9:fa:06:bc:52:98:e3:db:78:4f:3b:46:7d:0d:93: 56:07:d4:d7:10:e3:3a:52:b6:31:c2:98:65:b1:ab: 08:d1:00:0a:5c:fa:02:37:d7:a8:09:1f:db:31:a9: c5:11:f1:b0:ca:32:c8:be:6a:0d:1a:c8:13:ea:05: dc:57:8c:32:a4:e8:0f:32:aa:80:7b:9d:1d:c4:30: 10:8b:41:c7:2b:ad:26:43:4d:2c:f8:98:c9:a7:63: 4a:49:d0:a2:fe:5e:58:8a:8e:76:be:c2:25:b2:8b: ff:9c:e1:e5:50:a7:e3:81:43:4f:13:07:e3:23:be: 5d:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:42:DB:72:B5:FD:C8:78:5A:56:A8:F4:BF:A3:97:86:1C:45:26:BA X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A263AE3A824711F08017A05FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.65.192.0/22 103.173.146.0/23 IPv6: 2001:df3:b840::/48 Signature Algorithm: sha256WithRSAEncryption 19:0c:bd:6b:1b:50:a1:4c:f1:92:07:51:41:c6:13:ba:b3:57: 41:3f:5b:e6:1e:75:55:7c:7d:d4:ee:93:a5:0a:c2:dd:68:a6: d5:37:d6:8e:75:45:aa:71:90:0f:65:a9:4d:64:83:ca:28:34: 9c:1b:be:d9:cb:70:b4:fb:72:16:8e:42:96:31:3b:08:f0:5b: 3c:cd:9c:d6:b5:14:e9:94:86:0f:a5:6d:b4:27:2b:d4:15:82: 1e:14:96:38:5d:d2:69:ed:09:c5:f7:82:5f:b2:75:e4:0a:9d: e6:88:2a:07:a3:8a:ba:a6:1d:e3:32:51:23:84:92:36:0c:41: d2:87:28:0a:2b:dd:2c:67:8f:29:d6:a1:73:65:98:0f:00:e5: f9:ca:64:60:21:df:84:f5:09:a7:1f:e3:3a:7d:44:12:59:85: 1b:e2:28:43:a0:67:35:4e:dd:5a:fd:ba:4b:c4:eb:41:ca:f1: 60:e9:8e:67:5c:ce:e7:e0:e0:2d:bc:f3:e2:9e:b4:62:86:b8: 34:0f:be:ff:d1:19:95:dc:da:c3:d1:ca:5d:d0:e1:19:c7:79: 0a:47:99:55:11:6d:36:9b:35:d9:e8:30:15:d1:8f:ba:7c:97: 55:2a:2a:3e:98:6a:15:99:2e:54:94:c3:b4:4a:3f:dd:8e:61: 2c:e4:a0:2f -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgIDAMQrMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDkwMzEzMTUzN1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjhiODNmNzktMzU1ZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPYWZi9NROj9H+FdyF3hxm95TcxOLUxZgZmS4nHMANonKbRW/HejomXuXVT7 jo1TfiNlNdbb78jQh/vCuxKqcIIzNPi6yHiInjHySVMqoSmZscN/NUsMfr6elnXl RZPIs263I8SitrdJ//YtzxoSp1wnVaoivVlBQoR3T7gXNeGj0Em0o3T52foGvFKY 49t4TztGfQ2TVgfU1xDjOlK2McKYZbGrCNEAClz6AjfXqAkf2zGpxRHxsMoyyL5q DRrIE+oF3FeMMqToDzKqgHudHcQwEItBxyutJkNNLPiYyadjSknQov5eWIqOdr7C JbKL/5zh5VCn44FDTxMH4yO+XTUCAwEAAaOCAqwwggKoMB0GA1UdDgQWBBQ2Qtty tf3IeFpWqPS/o5eGHEUmujAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0EyNjNBRTNB ODI0NzExRjA4MDE3QTA1RkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDYGCCsGAQUFBwEHAQH/ BCcwJTASBAIAATAMAwQCZ0HAAwQBZ62SMA8EAgACMAkDBwAgAQ3zuEAwDQYJKoZI hvcNAQELBQADggEBABkMvWsbUKFM8ZIHUUHGE7qzV0E/W+YedVV8fdTuk6UKwt1o ptU31o51RapxkA9lqU1kg8ooNJwbvtnLcLT7chaOQpYxOwjwWzzNnNa1FOmUhg+l bbQnK9QVgh4Uljhd0mntCcX3gl+ydeQKneaIKgejirqmHeMyUSOEkjYMQdKHKAor 3SxnjynWoXNlmA8A5fnKZGAh34T1Cacf4zp9RBJZhRviKEOgZzVO3Vr9ukvE60HK 8WDpjmdczufg4C288+KetGKGuDQPvv/RGZXc2sPRyl3Q4RnHeQpHmVURbTabNdno MBXRj7p8l1UqKj6YahWZLlSUw7RKP92OYSzkoC8= -----END CERTIFICATE-----Generated at Sun Sep 7 16:26:50 2025 by rpki-client