$ rpki-client -vvf rpki.apnic.net/member_repository/A918337F/468EF726D6AF11E4B3717141C4F9AE02/783D3BDABCE011EA81F10855C4F9AE02.roa File: 783D3BDABCE011EA81F10855C4F9AE02.roa (raw, json) Hash identifier: DAi7XHb5iPgy6jmEfDMNPj813+qw6g8bFNaplUoWq+0= Subject key identifier: CF:E8:E4:CF:A2:4D:BC:71:08:31:27:9C:5F:2F:83:70:56:9A:02:E9 Certificate issuer: /CN=A918337F/serialNumber=31E7B10F718B1189A0319D6447E13F6C46407AA5 Certificate serial: 26EE Authority key identifier: 31:E7:B1:0F:71:8B:11:89:A0:31:9D:64:47:E1:3F:6C:46:40:7A:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MeexD3GLEYmgMZ1kR-E_bEZAeqU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918337F/468EF726D6AF11E4B3717141C4F9AE02/783D3BDABCE011EA81F10855C4F9AE02.roa Signing time: Thu 26 Jun 2025 15:53:33 +0000 ROA not before: Thu 26 Jun 2025 15:53:33 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 45345 IP address blocks: 45.114.232.0/23 maxlen: 24 103.2.184.0/22 maxlen: 22 115.126.160.0/19 maxlen: 19 163.47.224.0/22 maxlen: 22 2404:e400::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918337F/468EF726D6AF11E4B3717141C4F9AE02/MeexD3GLEYmgMZ1kR-E_bEZAeqU.crl rsync://rpki.apnic.net/member_repository/A918337F/468EF726D6AF11E4B3717141C4F9AE02/MeexD3GLEYmgMZ1kR-E_bEZAeqU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MeexD3GLEYmgMZ1kR-E_bEZAeqU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 15:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9966 (0x26ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918337F, serialNumber=31E7B10F718B1189A0319D6447E13F6C46407AA5 Validity Not Before: Jun 26 15:53:33 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=685d6cfd-af83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:c4:69:8e:ac:18:88:a9:3f:a0:19:0d:02:1c: 82:73:e0:1b:9f:13:37:54:8e:32:cc:0c:a2:fc:1c: a0:26:26:01:36:83:f6:7f:16:e1:7f:58:0c:df:37: 2a:b6:ba:64:c4:ef:45:5b:23:3f:34:cd:41:18:3a: de:85:43:cb:a9:d9:39:14:d7:b6:a7:b2:27:f4:a3: ec:2a:0a:37:33:7b:5c:b8:e1:e5:38:41:5b:e1:b7: 4b:51:ac:ce:58:38:5b:75:fb:9d:bb:9a:56:4c:cd: 68:63:63:29:2c:66:49:8c:5f:1a:3d:5e:d0:f7:e6: 7a:eb:3d:5f:6f:60:05:5e:6e:4c:7a:87:7a:15:b4: 80:f2:b6:8f:0e:8b:1f:67:bc:a5:1f:5e:6d:25:53: d7:48:3a:b0:bc:6c:a2:11:91:33:ae:12:f8:eb:3f: 6f:5b:1f:86:fb:f2:b3:04:69:5d:74:6f:bc:0f:28: 91:04:fa:97:ae:84:7c:51:3e:2b:9f:c6:f6:ad:73: 1c:a9:b7:1d:55:53:b9:f2:19:59:30:d2:ba:b3:c4: 57:a2:a6:71:6f:20:71:4f:ae:fa:91:94:9d:66:02: 02:70:2c:19:f7:a7:bb:57:48:a7:a2:c9:59:4f:6f: 70:77:cb:e9:50:ce:2d:43:96:bd:56:63:bf:df:d8: 7c:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:E8:E4:CF:A2:4D:BC:71:08:31:27:9C:5F:2F:83:70:56:9A:02:E9 X509v3 Authority Key Identifier: keyid:31:E7:B1:0F:71:8B:11:89:A0:31:9D:64:47:E1:3F:6C:46:40:7A:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918337F/468EF726D6AF11E4B3717141C4F9AE02/MeexD3GLEYmgMZ1kR-E_bEZAeqU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MeexD3GLEYmgMZ1kR-E_bEZAeqU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918337F/468EF726D6AF11E4B3717141C4F9AE02/783D3BDABCE011EA81F10855C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.114.232.0/23 103.2.184.0/22 115.126.160.0/19 163.47.224.0/22 IPv6: 2404:e400::/32 Signature Algorithm: sha256WithRSAEncryption 48:da:76:57:49:83:2c:d3:07:17:22:92:fa:70:45:d1:01:e0: e5:65:1d:74:8e:37:c2:69:20:91:7e:cb:51:75:40:21:82:dd: 53:a5:97:0d:20:8b:a4:16:6b:3a:6c:91:17:97:1d:16:a0:38: 9c:42:05:9b:0e:f6:6a:be:f6:a9:46:7c:06:24:6c:0b:08:f0: 06:ea:e4:03:05:43:22:29:58:34:86:59:98:1a:7e:e5:23:a8: 82:3f:2f:7c:23:e3:e8:5d:c6:b3:82:62:e7:c6:fe:c7:88:d2: fb:1f:12:53:e4:05:1a:27:ae:0a:f9:ec:4b:82:83:c0:57:e3: 37:00:72:23:7b:55:fc:f0:ee:54:23:80:9a:16:34:72:72:8a: 22:17:ee:10:df:2b:fa:14:fd:d6:f1:dc:1c:2d:b2:ed:7b:75: 37:c3:09:36:1f:e9:36:98:1c:65:d8:5d:b8:ff:b2:21:97:12: ca:21:e2:12:be:b9:45:7b:4a:44:42:2b:3f:9e:50:17:fc:5d: 73:81:30:05:60:e2:d3:5b:4a:72:7b:da:4f:b7:7e:db:c8:46: 9e:4e:f9:fb:9c:88:e3:6e:73:3d:81:37:b0:05:9a:c3:ea:41: e0:49:a2:bd:76:b4:5b:32:78:37:a7:7c:3c:ef:b8:0f:6b:bc: 88:e9:95:04 -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICJu4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODMzN0YxMTAvBgNVBAUTKDMxRTdCMTBGNzE4QjExODlBMDMxOUQ2NDQ3RTEzRjZD NDY0MDdBQTUwHhcNMjUwNjI2MTU1MzMzWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODVkNmNmZC1hZjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0MRpjqwYiKk/oBkNAhyCc+AbnxM3VI4yzAyi/BygJiYBNoP2fxbhf1gM3zcq trpkxO9FWyM/NM1BGDrehUPLqdk5FNe2p7In9KPsKgo3M3tcuOHlOEFb4bdLUazO WDhbdfudu5pWTM1oY2MpLGZJjF8aPV7Q9+Z66z1fb2AFXm5Meod6FbSA8raPDosf Z7ylH15tJVPXSDqwvGyiEZEzrhL46z9vWx+G+/KzBGlddG+8DyiRBPqXroR8UT4r n8b2rXMcqbcdVVO58hlZMNK6s8RXoqZxbyBxT676kZSdZgICcCwZ96e7V0inoslZ T29wd8vpUM4tQ5a9VmO/39h8wwIDAQABo4ICtjCCArIwHQYDVR0OBBYEFM/o5M+i TbxxCDEnnF8vg3BWmgLpMB8GA1UdIwQYMBaAFDHnsQ9xixGJoDGdZEfhP2xGQHql MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MzM3Ri80NjhFRjcyNkQ2 QUYxMUU0QjM3MTcxNDFDNEY5QUUwMi9NZWV4RDNHTEVZbWdNWjFrUi1FX2JFWkFl cVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01lZXhEM0dMRVltZ01aMWtSLUVfYkVaQWVxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODMzN0YvNDY4RUY3MjZENkFGMTFFNEIzNzE3MTQxQzRGOUFFMDIvNzgzRDNCREFC Q0UwMTFFQTgxRjEwODU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBAEtcugDBAJnArgDBAVzfqADBAKjL+AwDQQCAAIwBwMFACQE 5AAwDQYJKoZIhvcNAQELBQADggEBAEjadldJgyzTBxcikvpwRdEB4OVlHXSON8Jp IJF+y1F1QCGC3VOllw0gi6QWazpskReXHRagOJxCBZsO9mq+9qlGfAYkbAsI8Abq 5AMFQyIpWDSGWZgafuUjqII/L3wj4+hdxrOCYufG/seI0vsfElPkBRonrgr57EuC g8BX4zcAciN7Vfzw7lQjgJoWNHJyiiIX7hDfK/oU/dbx3Bwtsu17dTfDCTYf6TaY HGXYXbj/siGXEsoh4hK+uUV7SkRCKz+eUBf8XXOBMAVg4tNbSnJ72k+3ftvIRp5O +fuciONucz2BN7AFmsPqQeBJor12tFsyeDenfDzvuA9rvIjplQQ= -----END CERTIFICATE-----Generated at Thu Jul 3 12:20:31 2025 by rpki-client