$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4DE6E99024F411F0A4E9DF2DC4F9AE02.roa File: 4DE6E99024F411F0A4E9DF2DC4F9AE02.roa (raw, json) Hash identifier: ZZwBQqU75dIuObj4miQrmfTTzbgb+GaarzXpauSKncw= Subject key identifier: C8:81:E3:56:36:24:E6:FB:29:DE:F3:CB:20:9A:1E:34:2F:28:D6:46 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: C2AC Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4DE6E99024F411F0A4E9DF2DC4F9AE02.roa Signing time: Thu 14 Aug 2025 11:14:22 +0000 ROA not before: Thu 14 Aug 2025 11:14:22 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 149617 IP address blocks: 103.160.28.0/23 maxlen: 24 103.160.132.0/23 maxlen: 24 103.185.242.0/23 maxlen: 24 2001:df1:1640::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:25:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49836 (0xc2ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Aug 14 11:14:22 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=689dc50e-da92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:09:18:7d:71:1e:33:95:12:f3:c1:9c:43:7b: 83:f8:59:a3:47:c0:f6:8f:57:bf:c4:1e:f7:13:85: 51:15:3f:8f:ec:36:20:b8:97:61:aa:32:20:2b:c3: 3f:ab:6e:ff:78:4e:1c:ba:65:0d:34:4e:c6:76:cb: aa:1b:af:8e:1c:01:e3:d1:ce:18:9a:ad:4a:3d:d4: 95:ab:af:5f:c0:09:65:d4:30:dd:90:47:ca:e0:8e: 97:47:09:d8:4f:39:8f:9e:a5:dc:9c:ed:32:7c:13: c0:dd:6d:57:9b:25:fc:11:5d:cd:c6:69:d4:9f:1d: 28:5e:0e:12:72:ea:b0:9b:b8:23:b4:cf:0b:8a:70: 3e:58:db:61:2d:36:79:04:cf:72:51:e1:04:6c:ff: 33:0e:70:02:58:ff:49:42:f8:a3:d9:c7:ec:f3:0a: f0:ca:c1:46:14:58:87:98:4c:7f:2f:f6:50:11:fa: 00:98:98:3c:50:98:79:5a:1d:1f:55:e2:31:29:fb: f8:74:0c:9b:21:74:6a:a2:24:f6:46:13:2f:09:1a: f8:f4:21:c8:9c:70:bf:7a:33:ac:26:87:47:30:cc: da:00:4f:f7:4d:9d:79:11:d8:38:d9:a6:fb:a8:dc: ae:42:a7:78:53:e7:cc:db:6c:7e:06:06:31:90:a2: 8b:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:81:E3:56:36:24:E6:FB:29:DE:F3:CB:20:9A:1E:34:2F:28:D6:46 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4DE6E99024F411F0A4E9DF2DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.160.28.0/23 103.160.132.0/23 103.185.242.0/23 IPv6: 2001:df1:1640::/48 Signature Algorithm: sha256WithRSAEncryption 5f:7a:71:8a:14:40:77:29:65:68:9e:f2:e9:38:4f:17:f0:a0: a1:be:08:ac:13:63:b4:7e:bd:e7:07:d7:69:21:14:14:a8:99: 83:cd:01:9d:c7:cf:46:1c:19:d5:e3:c1:c3:5d:b6:3c:3d:10: d2:fc:79:d8:2a:05:40:b1:43:b7:a8:b7:67:e6:a1:5d:3b:b7: da:ef:4a:7b:5b:63:89:0c:cc:76:31:24:8f:b7:f0:37:6e:e3: 0b:61:3c:d5:af:8f:8f:dd:3f:c6:d9:1c:ca:32:d3:ae:94:64: 8a:7c:1c:99:1b:e4:6c:3c:f7:e5:5e:d9:f7:10:43:ba:6b:da: 0a:a5:0c:97:ee:3d:9c:02:3f:1a:55:d0:6a:a7:d2:f7:07:b7: c6:6e:bc:54:6a:07:86:2e:52:99:fe:e1:11:7e:19:9a:d4:33: be:0e:59:ee:b0:90:c4:cb:38:84:69:8c:d9:95:76:e6:9d:28: cd:8d:46:f5:c5:0e:ca:b8:31:cb:2c:2e:b5:de:2b:6f:16:64: 6b:ae:31:bf:d7:fd:52:ea:56:a9:85:7d:c7:66:b7:c3:4f:dc: 75:14:48:a1:25:bf:50:31:67:3f:a7:e5:cc:56:8b:7f:c4:86: 2f:27:f2:96:6d:30:66:a1:c7:aa:c9:3c:cf:f7:4e:2b:db:a8: 37:06:c8:de -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgIDAMKsMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDgxNDExMTQyMloXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjg5ZGM1MGUtZGE5MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKsJGH1xHjOVEvPBnEN7g/hZo0fA9o9Xv8Qe9xOFURU/j+w2ILiXYaoyICvD P6tu/3hOHLplDTROxnbLqhuvjhwB49HOGJqtSj3UlauvX8AJZdQw3ZBHyuCOl0cJ 2E85j56l3JztMnwTwN1tV5sl/BFdzcZp1J8dKF4OEnLqsJu4I7TPC4pwPljbYS02 eQTPclHhBGz/Mw5wAlj/SUL4o9nH7PMK8MrBRhRYh5hMfy/2UBH6AJiYPFCYeVod H1XiMSn7+HQMmyF0aqIk9kYTLwka+PQhyJxwv3ozrCaHRzDM2gBP902deRHYONmm +6jcrkKneFPnzNtsfgYGMZCii+8CAwEAAaOCArIwggKuMB0GA1UdDgQWBBTIgeNW NiTm+yne88sgmh40LyjWRjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzRERTZFOTkw MjRGNDExRjBBNEU5REYyREM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDwGCCsGAQUFBwEHAQH/ BC0wKzAYBAIAATASAwQBZ6AcAwQBZ6CEAwQBZ7nyMA8EAgACMAkDBwAgAQ3xFkAw DQYJKoZIhvcNAQELBQADggEBAF96cYoUQHcpZWie8uk4TxfwoKG+CKwTY7R+vecH 12khFBSomYPNAZ3Hz0YcGdXjwcNdtjw9ENL8edgqBUCxQ7eot2fmoV07t9rvSntb Y4kMzHYxJI+38Ddu4wthPNWvj4/dP8bZHMoy066UZIp8HJkb5Gw89+Ve2fcQQ7pr 2gqlDJfuPZwCPxpV0Gqn0vcHt8ZuvFRqB4YuUpn+4RF+GZrUM74OWe6wkMTLOIRp jNmVduadKM2NRvXFDsq4McssLrXeK28WZGuuMb/X/VLqVqmFfcdmt8NP3HUUSKEl v1AxZz+n5cxWi3/Ehi8n8pZtMGahx6rJPM/3TivbqDcGyN4= -----END CERTIFICATE-----Generated at Sun Aug 24 02:35:06 2025 by rpki-client