$ rpki-client -vvf rpki.apnic.net/member_repository/A918C21E/2575CFF032AA11EEA6099B3BC4F9AE02/79266D5C32AB11EE8EEB9940C4F9AE02.roa File: 79266D5C32AB11EE8EEB9940C4F9AE02.roa (raw, json) Hash identifier: z9EaBOoQtdVuIHEm9IdKFd2T44FBt8oNShj0hBUX4to= Subject key identifier: 41:AD:89:58:20:63:9F:86:62:30:25:89:76:2E:DD:24:A0:AB:56:21 Certificate issuer: /CN=A918C21E/serialNumber=00E40D956D68D61DA8581E54E8B8C2DBA16CB327 Certificate serial: 0184 Authority key identifier: 00:E4:0D:95:6D:68:D6:1D:A8:58:1E:54:E8:B8:C2:DB:A1:6C:B3:27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AOQNlW1o1h2oWB5U6LjC26Fssyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C21E/2575CFF032AA11EEA6099B3BC4F9AE02/79266D5C32AB11EE8EEB9940C4F9AE02.roa Signing time: Thu 21 Aug 2025 04:09:48 +0000 ROA not before: Thu 21 Aug 2025 04:09:48 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 136744 IP address blocks: 103.247.30.0/23 maxlen: 23 103.247.30.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C21E/2575CFF032AA11EEA6099B3BC4F9AE02/AOQNlW1o1h2oWB5U6LjC26Fssyc.crl rsync://rpki.apnic.net/member_repository/A918C21E/2575CFF032AA11EEA6099B3BC4F9AE02/AOQNlW1o1h2oWB5U6LjC26Fssyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AOQNlW1o1h2oWB5U6LjC26Fssyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 388 (0x184) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C21E, serialNumber=00E40D956D68D61DA8581E54E8B8C2DBA16CB327 Validity Not Before: Aug 21 04:09:48 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68a69c0c-b692 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:fd:a4:9d:0b:ef:0f:92:65:fe:79:7b:d7:b0: 7a:33:d0:d6:33:b4:ec:a7:4b:1b:2e:b8:1e:8d:da: a5:12:3d:43:2f:7e:4e:ef:f5:42:08:1c:41:b8:d0: 4b:8d:60:70:4e:ad:68:da:0c:b7:d5:43:72:08:ab: 5c:42:6a:ff:8e:d8:fd:03:9e:1f:9d:49:a3:88:09: 93:ef:8c:6a:69:eb:ef:2d:af:e3:b9:8b:39:2d:48: e3:7a:22:85:21:9b:9b:db:0a:24:52:c0:fa:c6:04: ba:b2:ec:c0:e8:1a:93:98:0e:87:cc:c1:ed:9d:e6: 85:df:c1:a8:d0:c3:90:c2:fe:be:60:2c:74:b3:08: 54:bd:6c:cb:bd:ff:19:b4:bb:f9:0d:67:70:ef:92: c3:17:93:5c:1c:62:30:37:60:ab:04:23:a2:09:6c: 68:96:fa:36:b9:55:3f:7b:6d:14:09:b0:86:c0:13: 41:59:d4:84:4d:43:31:a5:bf:ec:67:ef:d4:40:1f: ed:c2:f6:dd:72:cf:38:8f:c3:71:e0:38:3f:02:a5: 31:6f:99:54:0f:71:0f:ae:26:a1:99:2d:6a:80:7f: fd:8d:4b:6a:2c:c9:0a:56:5a:63:68:55:57:c7:09: 5b:73:fa:6f:28:9a:cb:eb:a1:b8:ff:bc:d7:94:b5: ea:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:AD:89:58:20:63:9F:86:62:30:25:89:76:2E:DD:24:A0:AB:56:21 X509v3 Authority Key Identifier: keyid:00:E4:0D:95:6D:68:D6:1D:A8:58:1E:54:E8:B8:C2:DB:A1:6C:B3:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C21E/2575CFF032AA11EEA6099B3BC4F9AE02/AOQNlW1o1h2oWB5U6LjC26Fssyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AOQNlW1o1h2oWB5U6LjC26Fssyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C21E/2575CFF032AA11EEA6099B3BC4F9AE02/79266D5C32AB11EE8EEB9940C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.247.30.0/23 Signature Algorithm: sha256WithRSAEncryption 48:a6:d5:e0:52:d1:7f:30:76:58:f1:17:54:6a:c8:22:23:c0: 77:19:53:6d:2f:a3:49:ba:c4:73:52:02:1e:f6:7d:f1:8a:cd: 3a:d3:10:f2:be:a7:69:30:61:0b:a7:c6:21:b7:34:13:38:c7: 67:e3:03:3e:5e:22:d4:11:6a:be:77:09:96:d0:33:47:8a:da: fc:85:fd:12:fb:65:f3:e2:20:7b:41:9a:a9:83:35:d3:b8:9f: 6e:9e:a9:91:66:91:f4:64:9e:3b:83:7e:77:91:d8:fb:ca:3a: 3b:61:2d:8c:96:78:d6:d9:ac:15:42:16:0b:78:14:6b:c5:f8: 1e:69:42:dd:36:9d:3b:15:43:31:1b:15:49:0a:f9:82:9a:6d: 87:26:5a:ea:5a:9a:33:c6:69:83:46:aa:9d:c9:13:01:be:be: a9:87:30:51:6b:d8:e6:f6:09:9a:c4:27:8c:aa:50:b6:4d:4e: 61:e1:64:44:06:98:20:0e:40:48:87:38:fe:16:42:da:04:06: e6:a9:ed:5f:ba:e5:c6:52:61:08:e4:a0:55:7b:ce:f6:b2:3e: 00:24:ed:af:9d:f2:4e:c8:ea:22:26:e8:e1:e0:f6:63:58:2b: 4f:73:a1:94:89:65:c3:ef:14:1f:f3:0e:e1:83:57:fc:db:95: 1e:c5:94:d6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEMyMUUxMTAvBgNVBAUTKDAwRTQwRDk1NkQ2OEQ2MURBODU4MUU1NEU4QjhDMkRC QTE2Q0IzMjcwHhcNMjUwODIxMDQwOTQ4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE2OWMwYy1iNjkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzv2knQvvD5Jl/nl717B6M9DWM7Tsp0sbLrgejdqlEj1DL35O7/VCCBxBuNBL jWBwTq1o2gy31UNyCKtcQmr/jtj9A54fnUmjiAmT74xqaevvLa/juYs5LUjjeiKF IZub2wokUsD6xgS6suzA6BqTmA6HzMHtneaF38Go0MOQwv6+YCx0swhUvWzLvf8Z tLv5DWdw75LDF5NcHGIwN2CrBCOiCWxolvo2uVU/e20UCbCGwBNBWdSETUMxpb/s Z+/UQB/twvbdcs84j8Nx4Dg/AqUxb5lUD3EPriahmS1qgH/9jUtqLMkKVlpjaFVX xwlbc/pvKJrL66G4/7zXlLXqOQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEGtiVgg Y5+GYjAliXYu3SSgq1YhMB8GA1UdIwQYMBaAFADkDZVtaNYdqFgeVOi4wtuhbLMn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzIxRS8yNTc1Q0ZGMDMy QUExMUVFQTYwOTlCM0JDNEY5QUUwMi9BT1FObFcxbzFoMm9XQjVVNkxqQzI2RnNz eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FPUU5sVzFvMWgyb1dCNVU2TGpDMjZGc3N5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEMyMUUvMjU3NUNGRjAzMkFBMTFFRUE2MDk5QjNCQzRGOUFFMDIvNzkyNjZENUMz MkFCMTFFRThFRUI5OTQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn9x4wDQYJKoZIhvcNAQELBQADggEBAEim1eBS0X8wdljx F1RqyCIjwHcZU20vo0m6xHNSAh72ffGKzTrTEPK+p2kwYQunxiG3NBM4x2fjAz5e ItQRar53CZbQM0eK2vyF/RL7ZfPiIHtBmqmDNdO4n26eqZFmkfRknjuDfneR2PvK OjthLYyWeNbZrBVCFgt4FGvF+B5pQt02nTsVQzEbFUkK+YKabYcmWupamjPGaYNG qp3JEwG+vqmHMFFr2Ob2CZrEJ4yqULZNTmHhZEQGmCAOQEiHOP4WQtoEBuap7V+6 5cZSYQjkoFV7zvayPgAk7a+d8k7I6iIm6OHg9mNYK09zoZSJZcPvFB/zDuGDV/zb lR7FlNY= -----END CERTIFICATE-----Generated at Sat Aug 23 19:34:53 2025 by rpki-client