$ rpki-client -vvf rpki.apnic.net/member_repository/A918EF61/16A6DC6083DA11E7A003736BC4F9AE02/C44B0ADA83DA11E7AD4F156CC4F9AE02.roa File: C44B0ADA83DA11E7AD4F156CC4F9AE02.roa (raw, json) Hash identifier: CF41fEpYfOio5+N+rdP4mHFE/1R/CEvPcYP/7UAC+WQ= Subject key identifier: 59:55:08:93:A9:A6:A3:7C:DF:48:FC:20:2A:6A:D6:51:59:FB:DB:5D Certificate issuer: /CN=A918EF61/serialNumber=C48AACEB4DDAEE3C6042E66216AD791507B47C6B Certificate serial: 1918 Authority key identifier: C4:8A:AC:EB:4D:DA:EE:3C:60:42:E6:62:16:AD:79:15:07:B4:7C:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIqs603a7jxgQuZiFq15FQe0fGs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EF61/16A6DC6083DA11E7A003736BC4F9AE02/C44B0ADA83DA11E7AD4F156CC4F9AE02.roa Signing time: Tue 24 Jun 2025 16:27:06 +0000 ROA not before: Tue 24 Jun 2025 16:27:06 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 17882 IP address blocks: 59.153.112.0/24 maxlen: 24 59.153.113.0/24 maxlen: 24 59.153.114.0/24 maxlen: 24 59.153.115.0/24 maxlen: 24 103.57.92.0/24 maxlen: 24 103.57.93.0/24 maxlen: 24 103.57.94.0/24 maxlen: 24 103.57.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EF61/16A6DC6083DA11E7A003736BC4F9AE02/xIqs603a7jxgQuZiFq15FQe0fGs.crl rsync://rpki.apnic.net/member_repository/A918EF61/16A6DC6083DA11E7A003736BC4F9AE02/xIqs603a7jxgQuZiFq15FQe0fGs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIqs603a7jxgQuZiFq15FQe0fGs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 16:33:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6424 (0x1918) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EF61, serialNumber=C48AACEB4DDAEE3C6042E66216AD791507B47C6B Validity Not Before: Jun 24 16:27:06 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=685ad1da-7082 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e9:e4:b2:24:55:13:66:06:d4:fa:f0:dd:eb: 8b:7d:65:d6:6f:f4:29:cb:b9:41:12:1e:bc:07:8c: 3f:61:a9:b0:09:39:e4:a1:99:25:bd:f4:84:1e:cf: 16:a4:21:a3:72:44:eb:66:59:a9:72:6e:d5:c2:26: 3f:50:84:23:7a:68:67:d8:c6:9e:df:7a:0b:76:b1: 67:28:04:9d:88:ef:34:8f:43:8b:c0:72:c8:40:71: 31:3f:94:78:d5:be:8f:c3:31:25:c4:29:ec:6d:e5: fd:fd:0b:da:c4:61:a3:b1:47:b6:70:a2:72:e9:f2: f2:71:0c:eb:c7:f6:f0:d5:fc:47:0e:3a:eb:48:78: bf:1f:1e:48:d2:69:83:60:7a:04:6e:43:93:fa:23: 4e:db:8f:1c:ff:cb:9e:07:b3:fa:e3:36:5c:00:60: ff:d5:fc:1b:32:fe:f8:80:f7:8d:b7:1f:b2:18:91: 78:ab:5e:c5:dd:0f:bb:4c:c1:df:57:8c:e9:98:4b: 99:dd:ca:25:55:0f:9e:15:e5:cd:7f:79:df:43:c3: 11:fc:42:e1:b1:8d:fa:b2:19:73:a2:6e:c6:81:d0: d9:1a:00:a4:2f:d4:38:40:27:f1:4a:5b:3d:69:10: 3e:ce:7e:3a:81:fc:f7:39:14:84:2b:cf:d4:93:6e: 64:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:55:08:93:A9:A6:A3:7C:DF:48:FC:20:2A:6A:D6:51:59:FB:DB:5D X509v3 Authority Key Identifier: keyid:C4:8A:AC:EB:4D:DA:EE:3C:60:42:E6:62:16:AD:79:15:07:B4:7C:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EF61/16A6DC6083DA11E7A003736BC4F9AE02/xIqs603a7jxgQuZiFq15FQe0fGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIqs603a7jxgQuZiFq15FQe0fGs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EF61/16A6DC6083DA11E7A003736BC4F9AE02/C44B0ADA83DA11E7AD4F156CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.153.112.0/22 103.57.92.0/22 Signature Algorithm: sha256WithRSAEncryption 8e:cb:29:8a:4a:d3:3e:f1:24:ba:42:b2:21:be:a3:b8:03:8a: 98:41:27:31:96:3b:37:f0:f4:95:b3:2b:52:e1:1b:5e:a1:f2: 74:4e:c5:94:29:5c:31:4a:c8:9a:b7:1a:9c:a8:42:ef:d5:e2: c7:8d:49:3a:ed:91:0a:03:8e:5b:27:ed:d5:b2:6e:fe:a8:ab: b4:d0:2d:8e:a1:79:da:f7:cd:e6:3e:e7:61:b6:e1:7c:38:2f: 06:e8:92:53:cd:22:ea:39:4f:f1:f5:9e:c6:89:e7:98:cc:90: 2f:65:85:1d:02:02:75:34:52:98:82:e9:cf:4c:97:84:fa:c6: 23:5b:d3:67:30:d4:56:b1:5b:e1:bb:f4:dc:bb:bc:a9:c2:c9: 01:0d:c9:fb:eb:98:68:59:35:1c:6e:0e:13:c5:4c:d0:47:20: ce:ad:79:e5:9d:bd:a7:86:6a:e9:2d:79:8e:42:c3:21:03:32: a0:d0:c7:3d:72:0f:85:d0:8e:0f:3d:26:8c:80:1b:21:6e:b0: 22:91:73:78:69:69:c5:ef:5d:2d:a9:55:1a:d7:0c:c5:94:cb: c6:3e:f3:7d:d0:29:bf:e4:6a:90:32:e4:19:54:76:bf:e7:f3: 9c:60:8f:f3:2e:fd:7e:10:da:06:6c:3c:29:10:fa:58:04:13: 95:5f:3a:bc -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICGRgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVGNjExMTAvBgNVBAUTKEM0OEFBQ0VCNEREQUVFM0M2MDQyRTY2MjE2QUQ3OTE1 MDdCNDdDNkIwHhcNMjUwNjI0MTYyNzA2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODVhZDFkYS03MDgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0unksiRVE2YG1Prw3euLfWXWb/Qpy7lBEh68B4w/YamwCTnkoZklvfSEHs8W pCGjckTrZlmpcm7VwiY/UIQjemhn2Mae33oLdrFnKASdiO80j0OLwHLIQHExP5R4 1b6PwzElxCnsbeX9/QvaxGGjsUe2cKJy6fLycQzrx/bw1fxHDjrrSHi/Hx5I0mmD YHoEbkOT+iNO248c/8ueB7P64zZcAGD/1fwbMv74gPeNtx+yGJF4q17F3Q+7TMHf V4zpmEuZ3colVQ+eFeXNf3nfQ8MR/ELhsY36shlzom7GgdDZGgCkL9Q4QCfxSls9 aRA+zn46gfz3ORSEK8/Uk25kZwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFlVCJOp pqN830j8ICpq1lFZ+9tdMB8GA1UdIwQYMBaAFMSKrOtN2u48YELmYhateRUHtHxr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RUY2MS8xNkE2REM2MDgz REExMUU3QTAwMzczNkJDNEY5QUUwMi94SXFzNjAzYTdqeGdRdVppRnExNUZRZTBm R3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hJcXM2MDNhN2p4Z1F1WmlGcTE1RlFlMGZHcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVGNjEvMTZBNkRDNjA4M0RBMTFFN0EwMDM3MzZCQzRGOUFFMDIvQzQ0QjBBREE4 M0RBMTFFN0FENEYxNTZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAI7mXADBAJnOVwwDQYJKoZIhvcNAQELBQADggEBAI7LKYpK 0z7xJLpCsiG+o7gDiphBJzGWOzfw9JWzK1LhG16h8nROxZQpXDFKyJq3GpyoQu/V 4seNSTrtkQoDjlsn7dWybv6oq7TQLY6hedr3zeY+52G24Xw4LwboklPNIuo5T/H1 nsaJ55jMkC9lhR0CAnU0UpiC6c9Ml4T6xiNb02cw1FaxW+G79Ny7vKnCyQENyfvr mGhZNRxuDhPFTNBHIM6teeWdvaeGaukteY5CwyEDMqDQxz1yD4XQjg89JoyAGyFu sCKRc3hpacXvXS2pVRrXDMWUy8Y+833QKb/kapAy5BlUdr/n85xgj/Mu/X4Q2gZs PCkQ+lgEE5VfOrw= -----END CERTIFICATE-----Generated at Thu Jul 3 22:59:46 2025 by rpki-client