$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/85A6922EF9C711EBA99B2C64C4F9AE02.roa File: 85A6922EF9C711EBA99B2C64C4F9AE02.roa (raw, json) Hash identifier: pVlraX+ea8Yz2rXFIS2rGj1HgV53jJirPVEH0V6ZyBI= Subject key identifier: 4F:73:F8:AF:65:97:12:CE:6E:6A:15:B4:43:84:98:3D:AB:90:C3:C0 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B4D2 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/85A6922EF9C711EBA99B2C64C4F9AE02.roa Signing time: Thu 08 May 2025 16:10:36 +0000 ROA not before: Thu 08 May 2025 16:10:36 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 137661 IP address blocks: 103.122.36.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 07:03:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46290 (0xb4d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:10:36 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd77b-ea85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:58:32:6d:8d:49:55:fb:44:96:68:83:4d:ee: 02:b6:ec:31:e1:58:9d:15:a8:f6:ad:a7:76:3f:48: ae:7e:9f:62:84:15:8b:b3:8e:2a:04:94:c1:a2:05: 8d:46:70:76:0c:d2:95:a9:68:df:4f:d6:b3:03:b7: 1d:53:d3:9a:03:76:41:9b:56:7f:83:d7:0a:19:5b: 13:0a:27:b5:af:8d:88:b1:0c:05:b7:7c:b5:21:cd: e3:0e:a2:f6:b0:66:3d:8b:4b:96:10:1b:ef:65:e0: ba:fc:43:c5:2d:08:71:47:61:1d:32:e4:3c:77:0e: 4f:0e:da:f8:ef:21:2d:c5:47:4d:e0:b3:f0:12:f8: 65:de:7a:29:42:86:dc:9c:d1:c2:4f:29:55:6a:42: 4e:3f:bb:cd:ee:8e:fa:57:0a:6b:02:22:c5:89:d1: 75:7c:84:ab:b3:31:12:a1:95:57:14:58:80:05:84: eb:0b:ed:0a:4d:f8:ea:fb:62:51:9b:ad:f0:72:3c: f6:61:0d:22:b3:30:9b:26:8a:e0:be:61:f5:78:7e: 5a:a2:60:20:ee:5d:b7:88:29:30:25:b3:56:d5:6e: 02:91:06:df:e5:c6:98:7f:1c:cc:07:0b:e9:7d:da: d9:66:35:0a:be:c5:1f:bd:ac:95:07:21:47:ce:d5: 9e:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:73:F8:AF:65:97:12:CE:6E:6A:15:B4:43:84:98:3D:AB:90:C3:C0 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/85A6922EF9C711EBA99B2C64C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.122.36.0/22 Signature Algorithm: sha256WithRSAEncryption 86:2c:f2:b6:30:cb:ee:54:0e:bb:cd:26:0f:82:f6:d1:b2:e2: 4b:ef:09:1c:70:66:82:ba:eb:76:bd:dd:b7:15:ad:0d:b9:a4: 9f:0e:27:31:97:71:8d:ad:1f:2c:08:74:03:77:c9:17:e6:e6: d8:50:bc:61:79:77:22:75:ea:02:7f:8e:dd:05:c1:c3:87:46: 9c:be:ff:ca:d2:a0:32:c8:45:5a:a3:05:0a:61:92:a8:8a:af: b7:96:cc:3f:b9:a9:a2:d0:e8:c4:52:6f:85:fa:05:6a:51:9b: 73:ae:06:d5:5b:8a:ee:c9:12:ce:e9:5d:5f:64:8d:55:78:96: e5:69:e9:95:7b:2d:8e:f6:07:9a:73:0e:d1:11:58:d1:21:a1: b2:8c:db:b7:a0:5d:cb:93:e6:19:1e:aa:f6:d8:ea:ab:db:89: 93:c2:7c:9d:82:a5:11:32:0f:bb:b1:69:1c:66:bf:e9:9b:c4: ce:e9:b1:c8:4a:1f:63:ec:99:95:54:7d:d5:86:c0:58:58:f6: cd:0e:3a:10:34:c6:7d:2d:32:2a:48:d0:23:7f:6d:55:b0:5b: 1b:e1:12:d3:c8:03:58:de:eb:78:52:00:93:7b:0d:46:81:ce: d2:fd:04:0d:36:85:b9:78:60:00:9d:22:89:24:a0:5b:79:35: 1c:3a:67:0c -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDALTSMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MTAzNloXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q3N2ItZWE4NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMFYMm2NSVX7RJZog03uArbsMeFYnRWo9q2ndj9Irn6fYoQVi7OOKgSUwaIF jUZwdgzSlalo30/WswO3HVPTmgN2QZtWf4PXChlbEwonta+NiLEMBbd8tSHN4w6i 9rBmPYtLlhAb72XguvxDxS0IcUdhHTLkPHcOTw7a+O8hLcVHTeCz8BL4Zd56KUKG 3JzRwk8pVWpCTj+7ze6O+lcKawIixYnRdXyEq7MxEqGVVxRYgAWE6wvtCk346vti UZut8HI89mENIrMwmyaK4L5h9Xh+WqJgIO5dt4gpMCWzVtVuApEG3+XGmH8czAcL 6X3a2WY1Cr7FH72slQchR87VnksCAwEAAaOCApUwggKRMB0GA1UdDgQWBBRPc/iv ZZcSzm5qFbRDhJg9q5DDwDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzg1QTY5MjJF RjlDNzExRUJBOTlCMkM2NEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQCZ3okMA0GCSqGSIb3DQEBCwUAA4IBAQCGLPK2MMvuVA67 zSYPgvbRsuJL7wkccGaCuut2vd23Fa0NuaSfDicxl3GNrR8sCHQDd8kX5ubYULxh eXcideoCf47dBcHDh0acvv/K0qAyyEVaowUKYZKoiq+3lsw/uami0OjEUm+F+gVq UZtzrgbVW4ruyRLO6V1fZI1VeJblaemVey2O9geacw7REVjRIaGyjNu3oF3Lk+YZ Hqr22Oqr24mTwnydgqURMg+7sWkcZr/pm8TO6bHISh9j7JmVVH3VhsBYWPbNDjoQ NMZ9LTIqSNAjf21VsFsb4RLTyANY3ut4UgCTew1Ggc7S/QQNNoW5eGAAnSKJJKBb eTUcOmcM -----END CERTIFICATE-----Generated at Wed May 14 10:05:24 2025 by rpki-client