$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F8C66E967D8F11F0AD090F18C4F9AE02.roa File: F8C66E967D8F11F0AD090F18C4F9AE02.roa (raw, json) Hash identifier: TPnnhzaF0YLEQMTFTEQmOqodB1JyPDqLjXMcuQUMdhE= Subject key identifier: 67:C9:A9:08:4F:64:FE:59:D9:C9:79:7F:1E:9B:90:16:F4:39:35:B9 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: C2E3 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F8C66E967D8F11F0AD090F18C4F9AE02.roa Signing time: Wed 20 Aug 2025 06:36:16 +0000 ROA not before: Wed 20 Aug 2025 06:36:16 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 137659 IP address blocks: 103.121.234.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:25:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49891 (0xc2e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Aug 20 06:36:16 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68a56cdf-4f4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:9e:0b:75:64:04:1b:58:ea:bf:97:4a:4c:35: eb:b2:04:4b:9d:30:4f:7a:1d:81:00:a0:54:61:8e: 5c:f4:b4:af:a2:7d:bf:8a:9d:c2:df:b2:90:d1:e2: c4:ee:5a:26:a8:95:bd:d3:bd:dd:54:93:ce:7a:dc: 7d:79:9f:9b:51:3c:36:48:b8:35:bc:61:f3:e5:1b: 9e:8d:3b:ef:a0:22:e7:cc:4b:76:9b:99:39:7d:6d: c2:85:3a:8e:9d:df:36:d8:3c:3b:a3:8f:20:dc:c7: 91:f1:9b:f6:f9:d8:9f:21:f3:c6:ef:ea:9c:33:50: 73:c8:55:c1:e2:5b:64:39:5e:42:e4:8e:4b:7e:7d: a8:af:80:95:ef:aa:01:6b:b0:01:f1:c6:11:20:f5: ce:24:86:d1:19:cf:31:e4:a2:f6:0f:24:12:d0:e8: 5b:72:6d:89:1d:f9:3d:9b:2f:9c:60:71:53:3d:4f: b2:14:2a:35:f4:ae:41:25:6a:db:fd:ac:c7:31:52: 5d:1b:a1:ae:5a:64:1e:5b:1a:fc:4e:34:49:b9:36: 21:05:9b:13:50:94:66:78:e3:7d:0f:34:d4:02:7b: ce:3b:f1:cb:26:33:b9:f5:96:0b:fe:28:e1:5d:1f: cc:14:c2:fd:14:bc:21:4b:3a:ed:33:82:91:ad:a4: 9b:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:C9:A9:08:4F:64:FE:59:D9:C9:79:7F:1E:9B:90:16:F4:39:35:B9 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F8C66E967D8F11F0AD090F18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.121.234.0/23 Signature Algorithm: sha256WithRSAEncryption a4:ee:63:36:a6:d3:73:46:ef:e0:8a:c1:8f:32:94:2d:e9:25: e4:57:c3:01:34:e5:1c:1b:48:a0:1f:a0:ae:d3:16:89:d9:c8: 99:8b:23:6d:67:52:85:79:07:da:79:48:52:4f:81:ba:ef:dc: 1b:ef:ac:35:82:85:df:e3:06:60:10:a7:2f:7e:42:b5:b1:0c: 12:f8:e5:7b:a0:83:fd:c5:31:26:65:4a:b5:6d:39:dc:54:f8: de:b3:5c:24:1c:56:15:f0:e3:02:9c:3a:1f:46:2a:8d:ca:1a: 22:1b:e7:c7:47:b5:72:ec:b0:cc:b3:23:a8:b4:8d:42:f4:7b: 46:7e:6f:b0:95:f4:ac:84:b5:67:b4:f1:8e:c6:9f:32:42:41: f3:17:14:08:f0:2a:a9:09:bd:22:a0:f7:74:ef:69:70:e9:15: 07:c2:73:5d:3a:80:99:cc:11:c8:76:b2:b8:71:c8:09:81:d5: d3:bb:25:4a:bf:84:50:24:ab:85:a0:9e:e6:d7:72:09:25:79: b4:7f:26:11:37:94:63:f6:8c:03:ff:fd:a3:ce:df:70:b6:b0: 9f:8c:ae:f1:97:25:f3:e8:8d:af:58:ea:cf:0f:5c:41:1f:63: ba:bd:b9:83:de:05:15:0a:1a:b3:18:ee:a3:b8:58:5e:f0:52: 8f:97:9a:70 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDAMLjMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDgyMDA2MzYxNloXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjhhNTZjZGYtNGY0YjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOGeC3VkBBtY6r+XSkw167IES50wT3odgQCgVGGOXPS0r6J9v4qdwt+ykNHi xO5aJqiVvdO93VSTznrcfXmfm1E8Nki4Nbxh8+Ubno0776Ai58xLdpuZOX1twoU6 jp3fNtg8O6OPINzHkfGb9vnYnyHzxu/qnDNQc8hVweJbZDleQuSOS359qK+Ale+q AWuwAfHGESD1ziSG0RnPMeSi9g8kEtDoW3JtiR35PZsvnGBxUz1PshQqNfSuQSVq 2/2sxzFSXRuhrlpkHlsa/E40Sbk2IQWbE1CUZnjjfQ801AJ7zjvxyyYzufWWC/4o 4V0fzBTC/RS8IUs67TOCka2kmwMCAwEAAaOCApUwggKRMB0GA1UdDgQWBBRnyakI T2T+WdnJeX8em5AW9Dk1uTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0Y4QzY2RTk2 N0Q4RjExRjBBRDA5MEYxOEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQBZ3nqMA0GCSqGSIb3DQEBCwUAA4IBAQCk7mM2ptNzRu/g isGPMpQt6SXkV8MBNOUcG0igH6Cu0xaJ2ciZiyNtZ1KFeQfaeUhST4G679wb76w1 goXf4wZgEKcvfkK1sQwS+OV7oIP9xTEmZUq1bTncVPjes1wkHFYV8OMCnDofRiqN yhoiG+fHR7Vy7LDMsyOotI1C9HtGfm+wlfSshLVntPGOxp8yQkHzFxQI8CqpCb0i oPd072lw6RUHwnNdOoCZzBHIdrK4ccgJgdXTuyVKv4RQJKuFoJ7m13IJJXm0fyYR N5Rj9owD//2jzt9wtrCfjK7xlyXz6I2vWOrPD1xBH2O6vbmD3gUVChqzGO6juFhe 8FKPl5pw -----END CERTIFICATE-----Generated at Sun Aug 24 02:29:41 2025 by rpki-client