$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A6BDE1C6412D11EC948F6B60C4F9AE02.roa File: A6BDE1C6412D11EC948F6B60C4F9AE02.roa (raw, json) Hash identifier: GgPxaFc4ofte6en6TC8QblM2tO4pcUoNXBTSsqB2830= Subject key identifier: 9B:CF:0B:92:2B:9C:6A:9C:79:B1:6E:B8:E5:89:88:B6:35:7F:1B:FD Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B6EF Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A6BDE1C6412D11EC948F6B60C4F9AE02.roa Signing time: Thu 08 May 2025 16:18:46 +0000 ROA not before: Thu 08 May 2025 16:18:46 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 142477 IP address blocks: 103.163.64.0/23 maxlen: 24 103.171.98.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Oct 2025 12:48:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46831 (0xb6ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:18:46 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd966-7619 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:56:0c:53:73:36:44:fc:50:e6:03:0f:e3:17: 9f:65:06:70:ef:77:a6:80:f6:82:41:ee:67:22:b8: 4f:71:02:ad:a5:1a:4b:2b:f3:ff:da:f5:e4:ec:0e: 54:c8:78:13:94:7a:0d:c1:59:25:36:12:42:90:aa: 68:47:91:c2:b8:b6:1f:7c:2d:95:59:32:04:e3:0d: b5:13:99:9a:ec:79:40:a6:26:06:e7:30:6b:cd:62: 94:50:5c:9c:7b:ba:6e:95:c1:4f:47:63:fe:31:ca: 9d:19:06:ba:62:af:28:9c:0a:20:61:e1:9b:ca:00: bc:e9:14:98:94:73:d1:51:02:39:24:4d:4a:86:35: 49:02:2f:c8:20:13:a4:12:c0:6f:5c:76:12:50:4f: 89:95:1c:fc:fb:f0:5d:2c:2e:d6:b3:7b:8e:ef:4d: f8:63:dc:81:aa:5a:2d:a1:b2:d4:aa:1f:25:c8:28: bc:63:de:00:ea:92:e5:92:55:be:f4:10:65:71:0e: da:40:ed:5f:a6:ea:f0:aa:9d:9f:de:1b:84:b3:82: 79:c2:2c:29:a2:c4:da:37:ec:b1:fa:f2:c1:6f:75: 10:63:81:6d:bd:46:c4:07:68:1b:97:96:0d:b5:1e: d9:09:46:b4:ec:17:d0:5f:a3:eb:aa:d8:99:de:e2: dc:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:CF:0B:92:2B:9C:6A:9C:79:B1:6E:B8:E5:89:88:B6:35:7F:1B:FD X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A6BDE1C6412D11EC948F6B60C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.163.64.0/23 103.171.98.0/23 Signature Algorithm: sha256WithRSAEncryption 58:31:48:9e:7d:f1:85:c0:e0:b3:1e:43:54:27:e7:0d:b5:23: 8a:96:24:e9:c4:eb:22:03:db:23:7c:5f:d6:ae:5a:93:d6:be: 6c:4b:df:90:91:61:41:70:9f:14:30:31:97:51:ce:0e:eb:d6: 5b:c1:90:fd:3c:4b:a6:42:cd:91:6f:ea:a0:8a:59:47:2a:27: c6:af:8b:84:15:bd:bf:0b:bf:64:f2:89:99:f2:7f:67:56:27: d0:6b:68:7e:22:80:4e:6d:b8:e1:41:17:b3:47:86:68:48:2c: 1a:80:cc:7b:5e:d9:d5:13:4f:8e:8c:35:4d:0f:7e:34:a1:c6: 35:24:d0:31:f8:15:4e:73:c2:e1:3d:26:b3:13:02:4a:5f:46: 4c:ed:0a:7b:1c:15:bf:b1:1f:05:cf:e5:d1:cc:72:b7:9a:1d: c4:a2:57:7d:db:66:7c:49:45:6c:40:83:13:0c:50:d8:21:9b: c1:f7:91:3a:1a:c9:3d:e7:03:02:d0:9c:ad:16:8f:66:d5:61: a6:fd:64:25:97:37:35:3c:08:6b:d9:52:08:30:28:fb:c3:db: cf:8b:f5:05:63:13:e2:87:ee:4f:08:2b:34:ef:d4:14:40:07: a1:0e:d0:e5:a1:4b:fd:03:4e:09:6f:ce:18:b8:2e:81:cc:1a: 5f:ba:d4:4e -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIDALbvMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MTg0NloXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q5NjYtNzYxOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMtWDFNzNkT8UOYDD+MXn2UGcO93poD2gkHuZyK4T3ECraUaSyvz/9r15OwO VMh4E5R6DcFZJTYSQpCqaEeRwri2H3wtlVkyBOMNtROZmux5QKYmBucwa81ilFBc nHu6bpXBT0dj/jHKnRkGumKvKJwKIGHhm8oAvOkUmJRz0VECOSRNSoY1SQIvyCAT pBLAb1x2ElBPiZUc/PvwXSwu1rN7ju9N+GPcgapaLaGy1KofJcgovGPeAOqS5ZJV vvQQZXEO2kDtX6bq8Kqdn94bhLOCecIsKaLE2jfssfrywW91EGOBbb1GxAdoG5eW DbUe2QlGtOwX0F+j66rYmd7i3OkCAwEAAaOCApswggKXMB0GA1UdDgQWBBSbzwuS K5xqnHmxbrjliYi2NX8b/TAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0E2QkRFMUM2 NDEyRDExRUM5NDhGNkI2MEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCUGCCsGAQUFBwEHAQH/ BBYwFDASBAIAATAMAwQBZ6NAAwQBZ6tiMA0GCSqGSIb3DQEBCwUAA4IBAQBYMUie ffGFwOCzHkNUJ+cNtSOKliTpxOsiA9sjfF/WrlqT1r5sS9+QkWFBcJ8UMDGXUc4O 69ZbwZD9PEumQs2Rb+qgillHKifGr4uEFb2/C79k8omZ8n9nVifQa2h+IoBObbjh QRezR4ZoSCwagMx7XtnVE0+OjDVND340ocY1JNAx+BVOc8LhPSazEwJKX0ZM7Qp7 HBW/sR8Fz+XRzHK3mh3Eold922Z8SUVsQIMTDFDYIZvB95E6Gsk95wMC0JytFo9m 1WGm/WQllzc1PAhr2VIIMCj7w9vPi/UFYxPih+5PCCs079QUQAehDtDloUv9A04J b84YuC6BzBpfutRO -----END CERTIFICATE-----Generated at Tue Oct 21 22:10:33 2025 by rpki-client