$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A49CFAFA3A0111F09FBCCC21C4F9AE02.roa File: A49CFAFA3A0111F09FBCCC21C4F9AE02.roa (raw, json) Hash identifier: H27SFEdwjFkPSMS3MwJ89GVeJtYWzL82287Q6HP41Lo= Subject key identifier: 0E:A0:0D:10:66:59:9E:F3:05:75:D4:12:C0:62:1B:81:CE:09:21:B8 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: BF14 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A49CFAFA3A0111F09FBCCC21C4F9AE02.roa Signing time: Mon 30 Jun 2025 08:43:52 +0000 ROA not before: Mon 30 Jun 2025 08:43:52 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 137109 IP address blocks: 103.109.12.0/22 maxlen: 24 103.139.226.0/24 maxlen: 24 103.152.180.0/24 maxlen: 24 103.159.200.0/24 maxlen: 24 103.160.166.0/24 maxlen: 24 103.160.167.0/24 maxlen: 24 103.161.148.0/24 maxlen: 24 103.173.50.0/24 maxlen: 24 103.173.51.0/24 maxlen: 24 103.176.212.0/23 maxlen: 24 103.176.238.0/24 maxlen: 24 103.176.239.0/24 maxlen: 24 103.186.246.0/24 maxlen: 24 103.186.247.0/24 maxlen: 24 103.187.36.0/23 maxlen: 24 103.189.98.0/23 maxlen: 24 2405:95c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 15:29:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48916 (0xbf14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jun 30 08:43:52 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68624e48-fcad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:2b:08:ee:b6:ed:9a:b8:fc:ed:1f:f3:9e:f4: 8f:93:cc:0b:28:02:e6:27:ed:99:0a:40:16:c4:30: f0:69:04:12:dd:87:87:1f:6a:e4:87:8a:a8:19:4a: cf:6f:b0:47:15:75:fc:67:75:7e:ba:9b:b3:97:a7: 96:13:58:fe:75:d1:12:28:88:e0:ad:c7:59:48:ac: 63:82:f4:86:e4:64:15:63:5e:73:85:ef:82:a7:13: 52:53:5a:fd:82:82:b6:98:ca:30:fb:a8:4e:78:2f: 5e:8c:e5:78:56:91:dd:a3:b6:91:84:dd:e8:9f:11: a0:e2:78:df:91:b4:15:d7:b4:24:3d:7c:8f:fb:d0: 03:71:a4:cd:9d:cd:ab:4a:11:84:64:23:28:cf:d0: b4:13:11:07:4f:75:87:93:aa:e8:88:db:e6:8c:0c: cf:89:4f:8d:78:eb:b2:ab:c2:c7:ee:dc:f1:f1:65: ed:bb:63:42:bf:91:69:ef:ba:bc:0b:8c:e1:a8:6f: d9:0d:d8:d2:be:68:c4:9d:b7:71:24:9f:35:a0:4b: bc:4e:70:6e:bc:6d:87:99:0c:09:43:88:42:8f:05: 69:82:c2:26:ab:23:70:e1:84:d9:de:9a:38:14:90: a6:56:55:8b:ee:92:8e:61:a3:3f:dd:b1:09:f6:b8: 84:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:A0:0D:10:66:59:9E:F3:05:75:D4:12:C0:62:1B:81:CE:09:21:B8 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A49CFAFA3A0111F09FBCCC21C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.109.12.0/22 103.139.226.0/24 103.152.180.0/24 103.159.200.0/24 103.160.166.0/23 103.161.148.0/24 103.173.50.0/23 103.176.212.0/23 103.176.238.0/23 103.186.246.0/23 103.187.36.0/23 103.189.98.0/23 IPv6: 2405:95c0::/32 Signature Algorithm: sha256WithRSAEncryption 27:c8:44:5c:8c:1c:fd:0d:e4:77:e8:1f:e8:a3:78:af:72:db: fa:37:01:b3:10:56:75:7b:a8:6c:11:65:0d:37:28:f3:56:0d: ba:a0:17:55:2a:22:13:41:44:c4:50:45:79:68:81:a4:27:79: 43:99:a5:dd:be:31:e8:cc:cb:ed:20:09:c4:61:1b:79:12:b1: 23:59:f1:dc:06:cc:bd:29:9c:13:04:2c:b3:0c:9c:b1:4d:b9: 74:af:97:d4:bf:b7:93:9b:c9:bb:29:c3:62:da:4b:c0:9b:b9: ef:1c:ba:e7:2a:ca:19:99:7e:8d:49:fe:23:32:5f:37:98:bb: ae:34:9e:13:a7:7f:12:3d:71:2e:e3:17:ce:4e:a9:01:a3:c6: 94:0b:c7:de:85:22:e6:3d:3a:a4:ac:e3:f8:63:af:65:67:31: 12:e9:71:52:ba:b4:c4:cd:f4:7e:fe:30:c0:99:e7:b8:3f:47: 25:bf:a4:06:4f:e5:79:65:c4:30:d2:83:1c:d7:77:af:42:d0: b4:43:64:80:31:30:cb:45:5f:a9:52:c6:cb:76:c4:2d:b1:41: a7:61:93:4c:a5:61:4e:c7:23:f7:5f:30:a9:40:62:8c:b0:e9: aa:29:83:e4:c5:f7:38:d6:39:06:c1:27:fe:7a:ba:9c:d9:f9: 2a:a9:a7:cd -----BEGIN CERTIFICATE----- MIIFwzCCBKugAwIBAgIDAL8UMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDYzMDA4NDM1MloXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjg2MjRlNDgtZmNhZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL0rCO627Zq4/O0f8570j5PMCygC5iftmQpAFsQw8GkEEt2Hhx9q5IeKqBlK z2+wRxV1/Gd1frqbs5enlhNY/nXREiiI4K3HWUisY4L0huRkFWNec4XvgqcTUlNa /YKCtpjKMPuoTngvXozleFaR3aO2kYTd6J8RoOJ435G0Fde0JD18j/vQA3GkzZ3N q0oRhGQjKM/QtBMRB091h5Oq6Ijb5owMz4lPjXjrsqvCx+7c8fFl7btjQr+Rae+6 vAuM4ahv2Q3Y0r5oxJ23cSSfNaBLvE5wbrxth5kMCUOIQo8FaYLCJqsjcOGE2d6a OBSQplZVi+6SjmGjP92xCfa4hJUCAwEAAaOCAuYwggLiMB0GA1UdDgQWBBQOoA0Q Zlme8wV11BLAYhuBzgkhuDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0E0OUNGQUZB M0EwMTExRjA5RkJDQ0MyMUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMHAGCCsGAQUFBwEHAQH/ BGEwXzBOBAIAATBIAwQCZ20MAwQAZ4viAwQAZ5i0AwQAZ5/IAwQBZ6CmAwQAZ6GU AwQBZ60yAwQBZ7DUAwQBZ7DuAwQBZ7r2AwQBZ7skAwQBZ71iMA0EAgACMAcDBQAk BZXAMA0GCSqGSIb3DQEBCwUAA4IBAQAnyERcjBz9DeR36B/oo3ivctv6NwGzEFZ1 e6hsEWUNNyjzVg26oBdVKiITQUTEUEV5aIGkJ3lDmaXdvjHozMvtIAnEYRt5ErEj WfHcBsy9KZwTBCyzDJyxTbl0r5fUv7eTm8m7KcNi2kvAm7nvHLrnKsoZmX6NSf4j Ml83mLuuNJ4Tp38SPXEu4xfOTqkBo8aUC8fehSLmPTqkrOP4Y69lZzES6XFSurTE zfR+/jDAmee4P0clv6QGT+V5ZcQw0oMc13evQtC0Q2SAMTDLRV+pUsbLdsQtsUGn YZNMpWFOxyP3XzCpQGKMsOmqKYPkxfc41jkGwSf+erqc2fkqqafN -----END CERTIFICATE-----Generated at Thu Jul 3 03:45:11 2025 by rpki-client