$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/03CEA55C531E11F096E3B680C4F9AE02.roa File: 03CEA55C531E11F096E3B680C4F9AE02.roa (raw, json) Hash identifier: WyHcgZlUVqXkBXuDLvuYbq+XFTmQxnsvhUZvlPWRgAw= Subject key identifier: B7:E6:24:2E:0E:16:E3:FB:FF:E4:F7:83:16:49:D3:32:4F:16:DF:68 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: C2EA Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/03CEA55C531E11F096E3B680C4F9AE02.roa Signing time: Wed 20 Aug 2025 08:50:34 +0000 ROA not before: Wed 20 Aug 2025 08:50:34 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 150654 IP address blocks: 103.155.147.0/24 maxlen: 24 103.166.214.0/24 maxlen: 24 103.168.33.0/24 maxlen: 24 103.168.173.0/24 maxlen: 24 103.171.109.0/24 maxlen: 24 103.174.93.0/24 maxlen: 24 103.178.202.0/24 maxlen: 24 103.180.175.0/24 maxlen: 24 103.181.150.0/24 maxlen: 24 175.111.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:25:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49898 (0xc2ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Aug 20 08:50:34 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68a58c59-abe0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:82:71:dd:e4:b4:d4:51:b6:b5:10:22:7c:9e: 13:ac:5a:ca:e3:89:3e:53:3f:a8:50:dc:8f:53:46: 85:5e:89:18:fc:f9:0c:7c:6e:d4:8f:1d:f2:de:05: fb:55:9b:2f:14:6d:2b:d5:ed:b1:0a:a4:ad:c9:c3: f4:c2:df:0b:7d:5d:73:1b:3b:3e:08:39:15:33:ef: bb:2d:44:bf:99:83:7d:c8:69:a2:60:07:95:2c:61: dd:fa:9f:0e:9c:ae:d3:51:6a:b4:dc:06:61:46:61: f7:fa:2f:30:c3:80:db:91:1c:4c:2d:f4:92:79:6b: 74:c3:d9:da:7d:7a:6e:59:39:4c:95:09:52:36:dc: ed:cd:b4:17:52:9a:93:4a:4d:ba:c9:fb:8c:2c:73: 23:5b:b1:ce:39:36:72:a6:cb:16:b6:c1:69:1f:ee: 26:b8:79:0e:ff:1b:5d:58:23:59:62:b8:a3:bb:a5: 4f:18:4d:e1:e4:72:75:25:2a:65:54:99:35:a3:5b: 33:5d:1a:23:48:f0:6a:c9:28:78:c9:b9:d2:27:45: 1e:9a:05:e1:fd:84:24:77:43:4f:69:fb:b3:3f:69: 8a:fc:96:04:b6:0a:36:76:ff:55:c8:32:12:5d:9b: fb:8f:45:60:b5:af:6e:ab:19:3c:c2:ce:7a:b5:5d: c7:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:E6:24:2E:0E:16:E3:FB:FF:E4:F7:83:16:49:D3:32:4F:16:DF:68 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/03CEA55C531E11F096E3B680C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.155.147.0/24 103.166.214.0/24 103.168.33.0/24 103.168.173.0/24 103.171.109.0/24 103.174.93.0/24 103.178.202.0/24 103.180.175.0/24 103.181.150.0/24 175.111.97.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:1e:72:3b:bb:2e:23:d0:a5:32:b9:13:8e:3c:16:9f:25:d4: 06:20:17:c9:84:b2:38:38:46:7c:89:79:2b:85:44:3f:28:c5: 9c:0e:24:04:f5:22:27:48:a4:20:72:1a:54:90:63:11:28:00: c0:97:10:63:46:de:e3:21:07:15:32:fe:43:3d:a9:87:19:3f: 96:35:3d:1d:f8:33:bd:6d:f3:b7:96:37:99:da:d7:49:b1:ce: e1:1b:33:06:d5:57:c0:10:7c:07:35:eb:82:b4:bf:9d:85:b3: d2:02:f7:eb:8c:5d:d4:ce:08:9f:2c:92:3e:9f:1d:9d:99:3a: 17:78:e4:d7:cd:46:87:4f:a8:e9:cb:ca:a3:ac:8b:b4:4e:4b: 2c:5c:8a:09:6b:b0:d8:15:7e:83:9b:fc:57:57:bb:c1:1b:3c: 96:45:a1:fc:35:ac:03:47:b6:be:a8:df:bc:38:b3:af:1f:c7: 74:4a:bd:0e:d6:8b:2d:ed:3c:53:bc:8e:59:ae:e4:6b:a9:b7: b7:05:38:68:fc:75:f9:39:80:f4:2f:d4:3b:06:92:c3:23:f7: 6c:46:8a:d4:de:f7:0f:80:0f:8d:7d:df:3c:56:a9:0e:d4:36: e1:b6:cb:4e:6d:35:a2:c4:79:fd:21:8b:00:04:b3:9b:52:14: fa:5f:20:90 -----BEGIN CERTIFICATE----- MIIFqDCCBJCgAwIBAgIDAMLqMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDgyMDA4NTAzNFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjhhNThjNTktYWJlMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALOCcd3ktNRRtrUQInyeE6xayuOJPlM/qFDcj1NGhV6JGPz5DHxu1I8d8t4F +1WbLxRtK9XtsQqkrcnD9MLfC31dcxs7Pgg5FTPvuy1Ev5mDfchpomAHlSxh3fqf Dpyu01FqtNwGYUZh9/ovMMOA25EcTC30knlrdMPZ2n16blk5TJUJUjbc7c20F1Ka k0pNusn7jCxzI1uxzjk2cqbLFrbBaR/uJrh5Dv8bXVgjWWK4o7ulTxhN4eRydSUq ZVSZNaNbM10aI0jwaskoeMm50idFHpoF4f2EJHdDT2n7sz9pivyWBLYKNnb/Vcgy El2b+49FYLWvbqsZPMLOerVdx08CAwEAAaOCAsswggLHMB0GA1UdDgQWBBS35iQu Dhbj+//k94MWSdMyTxbfaDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzAzQ0VBNTVD NTMxRTExRjA5NkUzQjY4MEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMFUGCCsGAQUFBwEHAQH/ BEYwRDBCBAIAATA8AwQAZ5uTAwQAZ6bWAwQAZ6ghAwQAZ6itAwQAZ6ttAwQAZ65d AwQAZ7LKAwQAZ7SvAwQAZ7WWAwQAr29hMA0GCSqGSIb3DQEBCwUAA4IBAQArHnI7 uy4j0KUyuROOPBafJdQGIBfJhLI4OEZ8iXkrhUQ/KMWcDiQE9SInSKQgchpUkGMR KADAlxBjRt7jIQcVMv5DPamHGT+WNT0d+DO9bfO3ljeZ2tdJsc7hGzMG1VfAEHwH NeuCtL+dhbPSAvfrjF3UzgifLJI+nx2dmToXeOTXzUaHT6jpy8qjrIu0TkssXIoJ a7DYFX6Dm/xXV7vBGzyWRaH8NawDR7a+qN+8OLOvH8d0Sr0O1ost7TxTvI5ZruRr qbe3BTho/HX5OYD0L9Q7BpLDI/dsRorU3vcPgA+Nfd88VqkO1DbhtstObTWixHn9 IYsABLObUhT6XyCQ -----END CERTIFICATE-----Generated at Sun Aug 24 06:32:24 2025 by rpki-client