$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/AEFF6EF21FDB11EEBDC47457C4F9AE02.roa File: AEFF6EF21FDB11EEBDC47457C4F9AE02.roa (raw, json) Hash identifier: DzqE5ZVEFGrEWpTlpxGXexpXdse45alL8VyKI3K0vGY= Subject key identifier: F7:1A:53:78:9B:78:45:92:72:A1:8F:A7:73:83:B8:12:4F:BA:7E:06 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B90C Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/AEFF6EF21FDB11EEBDC47457C4F9AE02.roa Signing time: Thu 08 May 2025 16:26:56 +0000 ROA not before: Thu 08 May 2025 16:26:56 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 151150 IP address blocks: 103.247.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 12:12:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47372 (0xb90c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:26:56 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cdb50-074e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:52:94:a8:5d:ab:59:64:bb:5c:29:cf:03:31: 31:4e:9e:3a:f8:24:8d:4e:9b:84:f1:42:15:38:e4: 6c:38:ac:7f:6f:51:41:64:88:86:04:75:59:e4:80: 80:12:ed:43:c9:92:35:40:1a:4c:72:d6:7c:0a:df: 8f:d9:5f:5f:5f:f2:75:09:3d:c0:47:f9:79:ed:4b: 1e:b0:55:d4:74:ef:6f:13:d6:25:f2:57:cc:aa:e6: cd:87:cd:e6:00:42:63:0e:a6:af:96:6c:26:11:f0: 43:02:63:6c:a2:83:6e:7d:ee:a3:63:09:e3:a7:7c: 74:4a:b6:4e:71:b5:da:0d:e0:72:63:ee:5c:a3:2a: 68:15:cf:a2:de:a0:b0:04:20:46:64:ac:4c:f2:2b: b5:cc:c7:dc:61:ad:4f:f7:d6:2d:81:56:9b:b8:c1: b0:a4:21:27:66:19:6e:6c:52:c9:6a:2f:f6:72:7a: 04:c5:56:be:18:7a:6a:1e:55:08:0d:a2:b9:ee:2d: 89:30:dd:ec:04:6e:f5:9c:c9:9c:da:6b:9a:c9:15: ad:d0:ce:e0:74:50:92:04:8a:ca:94:07:ea:ad:c7: 22:fd:4d:48:f8:74:14:a0:fd:39:55:48:08:27:5b: 45:d8:e1:12:51:8a:d8:b5:d2:e9:9e:a5:82:6c:7c: bf:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:1A:53:78:9B:78:45:92:72:A1:8F:A7:73:83:B8:12:4F:BA:7E:06 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/AEFF6EF21FDB11EEBDC47457C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.247.67.0/24 Signature Algorithm: sha256WithRSAEncryption 92:59:4e:80:d4:d1:cc:86:f8:02:4e:6a:4c:fa:9e:f3:10:f5: 59:b4:89:49:25:d5:84:2d:e7:bf:28:5e:1d:1c:4e:cc:6e:e0: 5e:a3:fc:cb:ab:f5:c2:03:7d:7d:6c:30:b2:ca:5d:bc:b6:81: 58:53:ab:05:64:fe:99:64:a1:9a:00:96:27:28:a7:a9:4d:ed: b9:b8:41:6b:9b:dc:78:5d:f5:49:b0:8b:c6:6f:c7:a2:54:f9: c5:d4:8f:e3:39:e0:c0:4e:bc:20:37:25:8b:46:3f:b4:87:ad: 74:ab:98:e9:f0:98:a9:16:75:1d:69:85:f6:9e:24:a4:f3:3e: 33:e9:13:b2:e1:88:05:ce:e1:0e:f7:06:06:25:e4:bf:d4:0b: a6:40:dc:df:6c:52:1a:cc:a3:8a:96:f9:6c:42:f4:ad:9f:51: 78:56:d1:4a:04:8d:bc:ca:17:a0:ec:9c:9b:24:50:9f:9a:b2: 71:6d:94:67:31:ba:42:1c:25:d7:5e:90:a8:33:6d:6d:27:4a: 2b:21:f8:8e:65:ef:c7:77:89:06:cc:c8:7b:36:7f:b9:b5:9c: af:4f:92:05:5a:93:99:41:4f:96:c3:cd:64:67:a3:71:67:81: e5:f8:8f:e3:0e:8d:13:15:42:5e:4c:cc:9a:6e:a3:cf:d5:89: 3a:1c:0c:a0 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDALkMMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MjY1NloXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2RiNTAtMDc0ZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALlSlKhdq1lku1wpzwMxMU6eOvgkjU6bhPFCFTjkbDisf29RQWSIhgR1WeSA gBLtQ8mSNUAaTHLWfArfj9lfX1/ydQk9wEf5ee1LHrBV1HTvbxPWJfJXzKrmzYfN 5gBCYw6mr5ZsJhHwQwJjbKKDbn3uo2MJ46d8dEq2TnG12g3gcmPuXKMqaBXPot6g sAQgRmSsTPIrtczH3GGtT/fWLYFWm7jBsKQhJ2YZbmxSyWov9nJ6BMVWvhh6ah5V CA2iue4tiTDd7ARu9ZzJnNprmskVrdDO4HRQkgSKypQH6q3HIv1NSPh0FKD9OVVI CCdbRdjhElGK2LXS6Z6lgmx8v+ECAwEAAaOCApUwggKRMB0GA1UdDgQWBBT3GlN4 m3hFknKhj6dzg7gST7p+BjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0FFRkY2RUYy MUZEQjExRUVCREM0NzQ1N0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQAZ/dDMA0GCSqGSIb3DQEBCwUAA4IBAQCSWU6A1NHMhvgC TmpM+p7zEPVZtIlJJdWELee/KF4dHE7MbuBeo/zLq/XCA319bDCyyl28toFYU6sF ZP6ZZKGaAJYnKKepTe25uEFrm9x4XfVJsIvGb8eiVPnF1I/jOeDATrwgNyWLRj+0 h610q5jp8JipFnUdaYX2niSk8z4z6ROy4YgFzuEO9wYGJeS/1AumQNzfbFIazKOK lvlsQvStn1F4VtFKBI28yheg7JybJFCfmrJxbZRnMbpCHCXXXpCoM21tJ0orIfiO Ze/Hd4kGzMh7Nn+5tZyvT5IFWpOZQU+Ww81kZ6NxZ4Hl+I/jDo0TFUJeTMyabqPP 1Yk6HAyg -----END CERTIFICATE-----Generated at Fri Jun 6 06:48:10 2025 by rpki-client