$ rpki-client -vvf rpki.apnic.net/member_repository/A916EB94/E3CC25D8811E11EC92025551C4F9AE02/66EDABB6815411EF98D05E1EC4F9AE02.roa File: 66EDABB6815411EF98D05E1EC4F9AE02.roa (raw, json) Hash identifier: SS7LsXp/x71VoteuW8pTuBwbWh8OyBISF5BhDwIPz/Q= Subject key identifier: 49:C5:44:22:27:2A:88:38:7B:65:B2:70:F4:80:61:6B:80:F6:25:E0 Certificate issuer: /CN=A916EB94/serialNumber=C4D4FB0FF027796E9DAA17B75551FD0B77F1982F Certificate serial: 0423 Authority key identifier: C4:D4:FB:0F:F0:27:79:6E:9D:AA:17:B7:55:51:FD:0B:77:F1:98:2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNT7D_AneW6dqhe3VVH9C3fxmC8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EB94/E3CC25D8811E11EC92025551C4F9AE02/66EDABB6815411EF98D05E1EC4F9AE02.roa Signing time: Tue 01 Jul 2025 01:06:21 +0000 ROA not before: Tue 01 Jul 2025 01:06:21 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 58688 IP address blocks: 103.20.180.0/22 maxlen: 24 103.217.112.0/22 maxlen: 24 103.247.44.0/22 maxlen: 24 2405:6900:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EB94/E3CC25D8811E11EC92025551C4F9AE02/xNT7D_AneW6dqhe3VVH9C3fxmC8.crl rsync://rpki.apnic.net/member_repository/A916EB94/E3CC25D8811E11EC92025551C4F9AE02/xNT7D_AneW6dqhe3VVH9C3fxmC8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNT7D_AneW6dqhe3VVH9C3fxmC8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 01:06:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1059 (0x423) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EB94, serialNumber=C4D4FB0FF027796E9DAA17B75551FD0B77F1982F Validity Not Before: Jul 1 01:06:21 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6863348c-573a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:3c:db:1b:60:c0:3e:85:34:c0:69:39:26:fe: e4:70:f9:1d:82:08:20:07:48:93:87:e7:20:59:0b: 6c:e8:5e:14:12:63:13:55:d3:e2:c4:db:5a:56:61: 94:9d:9f:32:64:42:66:59:f3:24:24:2a:35:a2:2b: 6d:08:d5:a5:bb:2c:54:83:de:bb:2d:75:e2:82:78: c1:9f:4f:a4:b2:4e:b4:cc:cf:b9:d7:e0:35:e2:56: 46:16:05:99:55:29:60:54:a4:66:07:84:2f:ec:4f: 39:10:99:53:d8:ad:46:e7:b3:81:24:f7:06:27:86: dd:3d:5c:37:75:13:4c:8f:c5:e8:46:1f:5e:e7:54: 60:6d:bd:00:6b:f8:77:ee:04:17:ac:de:b7:31:06: af:94:b6:95:44:68:41:70:96:39:69:e3:10:af:94: f3:ac:83:c6:f8:1e:0d:79:c6:bf:b5:61:b8:5d:81: 52:64:a1:9e:67:a0:db:dc:3d:ee:a0:11:59:5d:db: df:6f:db:3b:e3:5a:cf:6c:cb:4f:ff:ff:02:1d:c1: d9:9a:f0:b4:b1:7e:31:0d:26:e4:96:30:ed:f6:1e: 79:1a:8f:f8:04:e1:9c:84:eb:c3:21:9d:bf:10:bb: 47:0b:6d:e3:94:a7:a3:1f:7c:b9:80:01:9d:fa:0a: 78:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:C5:44:22:27:2A:88:38:7B:65:B2:70:F4:80:61:6B:80:F6:25:E0 X509v3 Authority Key Identifier: keyid:C4:D4:FB:0F:F0:27:79:6E:9D:AA:17:B7:55:51:FD:0B:77:F1:98:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EB94/E3CC25D8811E11EC92025551C4F9AE02/xNT7D_AneW6dqhe3VVH9C3fxmC8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNT7D_AneW6dqhe3VVH9C3fxmC8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EB94/E3CC25D8811E11EC92025551C4F9AE02/66EDABB6815411EF98D05E1EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.20.180.0/22 103.217.112.0/22 103.247.44.0/22 IPv6: 2405:6900:f000::/36 Signature Algorithm: sha256WithRSAEncryption 1c:a0:b2:f7:11:31:10:43:b7:50:52:cc:f4:6d:97:82:b8:8f: 15:45:14:f2:23:9a:a4:d1:c9:99:63:5c:c1:9d:c1:a6:34:bc: f6:bd:12:61:5d:66:b7:87:27:04:be:29:a7:9a:59:d2:8a:c9: a2:43:8b:ba:90:0c:f5:9c:5e:d0:8a:66:80:a5:98:a5:bc:e2: 48:0d:c1:b1:9c:9e:4a:a9:63:d0:51:c5:fe:c3:39:a0:10:83: 95:9c:9e:25:e9:7f:b8:31:c9:61:af:31:a1:d5:67:b9:13:b2: 87:ec:e4:cb:4d:fd:5f:83:5b:04:7d:3f:30:3f:4d:59:d5:6c: be:71:f5:8a:1b:fb:5a:81:67:83:a9:36:21:1a:7a:ee:de:d7: 93:80:8f:76:8e:37:e5:17:2c:89:34:f4:c1:a0:25:86:af:f9: fd:b1:71:f6:ac:20:be:1d:e4:4f:a6:b3:91:19:92:e4:82:d4: 63:f8:a7:23:f9:62:94:4c:a9:af:50:f1:0e:82:f7:b4:d8:a6: 32:1a:72:f0:95:ac:61:cd:d0:12:61:42:dc:4a:f4:a8:3d:f4: d1:9e:8a:1d:57:e8:06:5c:6c:20:38:1f:d4:08:b5:0f:77:16: 96:a5:d3:ef:c0:86:a8:a5:b1:9f:3a:a8:dd:28:52:67:03:ab: 25:c4:bc:db -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICBCMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVCOTQxMTAvBgNVBAUTKEM0RDRGQjBGRjAyNzc5NkU5REFBMTdCNzU1NTFGRDBC NzdGMTk4MkYwHhcNMjUwNzAxMDEwNjIxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYzMzQ4Yy01NzNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmTzbG2DAPoU0wGk5Jv7kcPkdggggB0iTh+cgWQts6F4UEmMTVdPixNtaVmGU nZ8yZEJmWfMkJCo1oittCNWluyxUg967LXXignjBn0+ksk60zM+51+A14lZGFgWZ VSlgVKRmB4Qv7E85EJlT2K1G57OBJPcGJ4bdPVw3dRNMj8XoRh9e51Rgbb0Aa/h3 7gQXrN63MQavlLaVRGhBcJY5aeMQr5TzrIPG+B4Neca/tWG4XYFSZKGeZ6Db3D3u oBFZXdvfb9s741rPbMtP//8CHcHZmvC0sX4xDSbkljDt9h55Go/4BOGchOvDIZ2/ ELtHC23jlKejH3y5gAGd+gp4mwIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFEnFRCIn Kog4e2WycPSAYWuA9iXgMB8GA1UdIwQYMBaAFMTU+w/wJ3lunaoXt1VR/Qt38Zgv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RUI5NC9FM0NDMjVEODgx MUUxMUVDOTIwMjU1NTFDNEY5QUUwMi94TlQ3RF9BbmVXNmRxaGUzVlZIOUMzZnht QzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hOVDdEX0FuZVc2ZHFoZTNWVkg5QzNmeG1DOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkVCOTQvRTNDQzI1RDg4MTFFMTFFQzkyMDI1NTUxQzRGOUFFMDIvNjZFREFCQjY4 MTU0MTFFRjk4RDA1RTFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOwYIKwYBBQUHAQcBAf8E LDAqMBgEAgABMBIDBAJnFLQDBAJn2XADBAJn9ywwDgQCAAIwCAMGBCQFaQDwMA0G CSqGSIb3DQEBCwUAA4IBAQAcoLL3ETEQQ7dQUsz0bZeCuI8VRRTyI5qk0cmZY1zB ncGmNLz2vRJhXWa3hycEvimnmlnSismiQ4u6kAz1nF7QimaApZilvOJIDcGxnJ5K qWPQUcX+wzmgEIOVnJ4l6X+4MclhrzGh1We5E7KH7OTLTf1fg1sEfT8wP01Z1Wy+ cfWKG/tagWeDqTYhGnru3teTgI92jjflFyyJNPTBoCWGr/n9sXH2rCC+HeRPprOR GZLkgtRj+Kcj+WKUTKmvUPEOgve02KYyGnLwlaxhzdASYULcSvSoPfTRnoodV+gG XGwgOB/UCLUPdxaWpdPvwIaopbGfOqjdKFJnA6slxLzb -----END CERTIFICATE-----Generated at Thu Jul 3 02:01:42 2025 by rpki-client