$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A7B1689E066411EDA7A8DF3BC4F9AE02.roa File: A7B1689E066411EDA7A8DF3BC4F9AE02.roa (raw, json) Hash identifier: xLi31rCwb4BKV//Fq0QJPVeQ3EQDhNpDBklTF+P00PM= Subject key identifier: 7E:E7:DA:8B:DB:BE:75:14:19:98:44:B6:98:DC:86:A8:86:CF:3D:5C Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B9E9 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A7B1689E066411EDA7A8DF3BC4F9AE02.roa Signing time: Thu 08 May 2025 16:30:16 +0000 ROA not before: Thu 08 May 2025 16:30:16 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 205544 IP address blocks: 103.173.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 12:12:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47593 (0xb9e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:30:16 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cdc18-77d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a5:e5:e1:f8:ce:63:f5:32:44:f3:08:cb:d1: d7:da:66:97:af:4b:49:b7:9f:24:e8:c1:88:0d:51: 37:9f:37:76:7e:e3:30:ba:f5:c0:73:28:55:25:be: 77:17:38:1d:b9:89:d7:d9:0e:94:f9:4d:c3:76:92: db:66:90:31:11:16:d1:11:c4:df:79:ff:21:36:0b: a2:eb:15:e3:29:61:4c:2e:a5:b3:7c:bf:6c:95:2b: d0:fe:88:55:d2:83:b1:4c:6d:e9:69:d6:8e:33:fa: 2a:77:20:63:8f:54:f1:59:82:b8:36:5d:5a:ff:19: dc:22:6b:de:da:1f:fa:c4:41:3e:49:a5:71:ed:9e: ef:d9:a0:d1:64:f8:ab:12:dc:0d:01:3e:29:7a:a6: 05:7c:f7:67:21:01:46:49:c2:20:46:6e:91:ce:5b: c8:6b:7c:4f:ab:45:07:14:4d:24:13:87:05:49:33: 6d:b9:21:2c:12:14:a2:2d:d6:0c:1d:00:3c:f4:51: dc:92:7c:fe:38:32:5a:e5:32:b8:2d:6f:96:89:00: 12:76:f1:1d:ee:6d:69:4d:1e:bd:99:f1:08:c7:3f: 77:0b:d3:5a:f5:28:0f:de:37:af:0d:97:7c:9c:68: ee:e5:f7:b8:b7:31:c8:c1:8b:c4:a0:56:2d:12:ed: 56:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:E7:DA:8B:DB:BE:75:14:19:98:44:B6:98:DC:86:A8:86:CF:3D:5C X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A7B1689E066411EDA7A8DF3BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.173.197.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:12:0c:a5:d0:5e:fb:58:df:6e:ea:54:63:43:65:a7:be:39: df:f7:a4:29:5b:5f:fc:1f:85:f0:ca:13:79:42:28:42:d0:2a: 29:f9:98:e9:48:63:cb:df:7f:69:62:3b:46:d2:ab:80:59:52: 78:20:67:c0:76:9b:ae:c7:2a:8f:e5:b3:55:c9:4c:76:5f:51: d8:b5:28:ec:8f:97:48:14:86:44:f6:8a:33:dc:69:b9:17:9c: 58:50:c4:45:9c:d8:55:a9:53:22:e5:b6:11:be:65:64:e8:8c: 17:23:8a:67:c3:16:48:83:7d:b1:90:08:d2:62:57:68:17:74: c5:f3:64:7f:3d:59:50:1d:27:89:dd:4b:18:40:87:40:de:90: 6c:32:df:95:5a:72:e7:68:f1:df:50:2f:d3:69:d0:3d:9f:41: 04:48:47:b7:82:a6:26:31:ad:b6:34:e0:4b:c7:22:49:d5:c0: be:5a:a1:a0:c2:4c:6a:e0:8b:c2:9e:c2:83:66:16:2b:0b:98: 0d:de:c6:fd:96:f1:67:82:6d:ca:8d:0a:e3:f6:da:d8:36:46: d0:89:b6:e6:03:76:5a:3a:cb:82:2c:21:bd:7b:a5:1b:ef:30: ea:d9:b0:94:55:ff:80:5f:bb:ff:ab:3c:5b:42:cf:12:ff:5c: ef:36:95:d4 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDALnpMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MzAxNloXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2RjMTgtNzdkMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALml5eH4zmP1MkTzCMvR19pml69LSbefJOjBiA1RN583dn7jMLr1wHMoVSW+ dxc4HbmJ19kOlPlNw3aS22aQMREW0RHE33n/ITYLousV4ylhTC6ls3y/bJUr0P6I VdKDsUxt6WnWjjP6KncgY49U8VmCuDZdWv8Z3CJr3tof+sRBPkmlce2e79mg0WT4 qxLcDQE+KXqmBXz3ZyEBRknCIEZukc5byGt8T6tFBxRNJBOHBUkzbbkhLBIUoi3W DB0APPRR3JJ8/jgyWuUyuC1vlokAEnbxHe5taU0evZnxCMc/dwvTWvUoD943rw2X fJxo7uX3uLcxyMGLxKBWLRLtVgUCAwEAAaOCApUwggKRMB0GA1UdDgQWBBR+59qL 2751FBmYRLaY3Iaohs89XDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0E3QjE2ODlF MDY2NDExRURBN0E4REYzQkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQAZ63FMA0GCSqGSIb3DQEBCwUAA4IBAQAsEgyl0F77WN9u 6lRjQ2Wnvjnf96QpW1/8H4XwyhN5QihC0Cop+ZjpSGPL339pYjtG0quAWVJ4IGfA dpuuxyqP5bNVyUx2X1HYtSjsj5dIFIZE9ooz3Gm5F5xYUMRFnNhVqVMi5bYRvmVk 6IwXI4pnwxZIg32xkAjSYldoF3TF82R/PVlQHSeJ3UsYQIdA3pBsMt+VWnLnaPHf UC/TadA9n0EESEe3gqYmMa22NOBLxyJJ1cC+WqGgwkxq4IvCnsKDZhYrC5gN3sb9 lvFngm3KjQrj9trYNkbQibbmA3ZaOsuCLCG9e6Ub7zDq2bCUVf+AX7v/qzxbQs8S /1zvNpXU -----END CERTIFICATE-----Generated at Fri Jun 6 06:44:20 2025 by rpki-client