$ rpki-client -vvf rpki.apnic.net/member_repository/A918DF0C/5B190E30184311EBB3AA713AC4F9AE02/181D7270184711EBAD14343FC4F9AE02.roa File: 181D7270184711EBAD14343FC4F9AE02.roa (raw, json) Hash identifier: 5QwGgc3JqdXZSTvBXI4oSH3gmsCO0bHwVogWGbZDobI= Subject key identifier: 38:07:25:C3:35:72:E5:77:DF:B4:69:C6:1A:F4:20:FC:4D:81:6F:1F Certificate issuer: /CN=A918DF0C/serialNumber=8E1B718686417848D9D3E62263C6E0D304BD37EC Certificate serial: 076B Authority key identifier: 8E:1B:71:86:86:41:78:48:D9:D3:E6:22:63:C6:E0:D3:04:BD:37:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhtxhoZBeEjZ0-YiY8bg0wS9N-w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918DF0C/5B190E30184311EBB3AA713AC4F9AE02/181D7270184711EBAD14343FC4F9AE02.roa Signing time: Wed 30 Apr 2025 21:32:20 +0000 ROA not before: Wed 30 Apr 2025 21:32:20 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 63963 IP address blocks: 43.231.76.0/22 maxlen: 22 43.231.76.0/24 maxlen: 24 43.231.77.0/24 maxlen: 24 43.231.78.0/24 maxlen: 24 43.231.79.0/24 maxlen: 24 103.50.168.0/22 maxlen: 22 103.50.168.0/24 maxlen: 24 103.50.169.0/24 maxlen: 24 103.50.170.0/24 maxlen: 24 103.50.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918DF0C/5B190E30184311EBB3AA713AC4F9AE02/jhtxhoZBeEjZ0-YiY8bg0wS9N-w.crl rsync://rpki.apnic.net/member_repository/A918DF0C/5B190E30184311EBB3AA713AC4F9AE02/jhtxhoZBeEjZ0-YiY8bg0wS9N-w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhtxhoZBeEjZ0-YiY8bg0wS9N-w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 21:50:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1899 (0x76b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918DF0C, serialNumber=8E1B718686417848D9D3E62263C6E0D304BD37EC Validity Not Before: Apr 30 21:32:20 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=681296e3-139b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:3d:e4:4c:7b:4d:35:36:c6:b0:94:13:bb:ac: 67:cf:16:1c:b2:61:43:40:3f:75:a6:aa:ab:ab:af: d1:50:f3:25:90:b3:90:d1:9b:4c:e2:9f:84:ef:28: 6a:0d:c5:8e:25:da:11:df:98:6d:59:0c:d2:55:62: b7:37:11:d7:cf:81:2f:5a:fc:cd:65:9f:36:41:63: ee:05:69:96:81:8e:1a:cb:c3:a8:2b:e8:f3:1a:94: 68:b1:99:28:dc:03:d6:b4:51:bf:c3:bc:f1:4d:a7: 27:8f:b7:6f:88:10:dd:ec:2a:23:13:85:6e:95:2d: 74:d0:be:fc:ed:4e:b0:ea:3c:a3:c0:f5:d2:0d:1a: b7:2e:e3:7b:e6:3d:9b:96:c5:16:6f:fa:ae:65:e6: da:19:71:52:c0:e9:45:d4:d2:fd:e8:74:d7:a8:c4: cb:e3:83:93:ce:66:7b:6e:9a:bf:19:03:69:d9:44: 2b:e5:ee:54:3e:48:07:93:21:a5:81:e3:84:77:da: dc:43:18:c4:6a:94:ff:1b:d9:40:88:42:03:e3:85: a5:af:94:07:6e:65:8e:c1:79:cc:e5:5b:aa:2a:29: a5:c6:6b:74:6c:83:4d:f6:0d:fa:9d:65:76:40:44: 48:98:83:40:d7:0b:85:34:17:76:66:f4:ad:3f:82: 26:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:07:25:C3:35:72:E5:77:DF:B4:69:C6:1A:F4:20:FC:4D:81:6F:1F X509v3 Authority Key Identifier: keyid:8E:1B:71:86:86:41:78:48:D9:D3:E6:22:63:C6:E0:D3:04:BD:37:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918DF0C/5B190E30184311EBB3AA713AC4F9AE02/jhtxhoZBeEjZ0-YiY8bg0wS9N-w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhtxhoZBeEjZ0-YiY8bg0wS9N-w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918DF0C/5B190E30184311EBB3AA713AC4F9AE02/181D7270184711EBAD14343FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.231.76.0/22 103.50.168.0/22 Signature Algorithm: sha256WithRSAEncryption 8f:bb:a9:56:cb:d4:5d:b5:96:b1:a4:4b:d7:42:82:d1:b2:9d: da:2b:da:ec:da:eb:8e:35:38:7d:5c:51:ae:42:a8:7a:75:40: 00:73:36:fd:8b:76:51:30:aa:c1:70:46:09:8b:80:75:aa:be: d9:db:f5:78:55:1e:85:7a:d7:1e:86:9f:e0:e5:84:9a:60:49: fc:8e:1c:84:63:02:17:de:f1:eb:b3:ae:ac:93:75:96:2e:0a: d6:f4:1b:b3:bd:6e:39:6c:27:04:ee:e9:1a:0a:64:2d:c1:ec: 39:04:ea:f3:3c:c8:6a:1e:cb:1f:4d:ed:cb:71:7d:42:99:92: 6d:68:b1:dd:63:5e:af:10:9d:33:6f:b4:a2:42:9f:40:0e:f2: 65:23:5f:3e:8c:d6:71:66:c7:54:73:a3:84:05:ec:76:da:94: f6:f7:02:d7:97:36:ba:b2:03:12:ab:3c:81:e8:ed:20:28:18: 0f:89:70:0c:53:b6:b7:83:33:5d:e8:d5:86:22:a1:04:16:27: 34:cd:30:6f:2c:f2:77:d3:de:e1:78:dd:3f:d4:ba:5f:77:98: f8:7c:4b:49:8b:f9:83:76:11:07:f8:d8:02:4b:36:28:58:6f: 5d:c5:ae:d3:b3:a5:c5:ed:05:a5:7b:9c:18:15:57:b4:77:6b: 6b:a6:33:43 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICB2swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OERGMEMxMTAvBgNVBAUTKDhFMUI3MTg2ODY0MTc4NDhEOUQzRTYyMjYzQzZFMEQz MDRCRDM3RUMwHhcNMjUwNDMwMjEzMjIwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyOTZlMy0xMzliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtj3kTHtNNTbGsJQTu6xnzxYcsmFDQD91pqqrq6/RUPMlkLOQ0ZtM4p+E7yhq DcWOJdoR35htWQzSVWK3NxHXz4EvWvzNZZ82QWPuBWmWgY4ay8OoK+jzGpRosZko 3APWtFG/w7zxTacnj7dviBDd7CojE4VulS100L787U6w6jyjwPXSDRq3LuN75j2b lsUWb/quZebaGXFSwOlF1NL96HTXqMTL44OTzmZ7bpq/GQNp2UQr5e5UPkgHkyGl geOEd9rcQxjEapT/G9lAiEID44Wlr5QHbmWOwXnM5VuqKimlxmt0bINN9g36nWV2 QERImINA1wuFNBd2ZvStP4ImYwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDgHJcM1 cuV337Rpxhr0IPxNgW8fMB8GA1UdIwQYMBaAFI4bcYaGQXhI2dPmImPG4NMEvTfs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4REYwQy81QjE5MEUzMDE4 NDMxMUVCQjNBQTcxM0FDNEY5QUUwMi9qaHR4aG9aQmVFalowLVlpWThiZzB3UzlO LXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2podHhob1pCZUVqWjAtWWlZOGJnMHdTOU4tdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OERGMEMvNUIxOTBFMzAxODQzMTFFQkIzQUE3MTNBQzRGOUFFMDIvMTgxRDcyNzAx ODQ3MTFFQkFEMTQzNDNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr50wDBAJnMqgwDQYJKoZIhvcNAQELBQADggEBAI+7qVbL 1F21lrGkS9dCgtGyndor2uza6441OH1cUa5CqHp1QABzNv2LdlEwqsFwRgmLgHWq vtnb9XhVHoV61x6Gn+DlhJpgSfyOHIRjAhfe8euzrqyTdZYuCtb0G7O9bjlsJwTu 6RoKZC3B7DkE6vM8yGoeyx9N7ctxfUKZkm1osd1jXq8QnTNvtKJCn0AO8mUjXz6M 1nFmx1Rzo4QF7HbalPb3AteXNrqyAxKrPIHo7SAoGA+JcAxTtreDM13o1YYioQQW JzTNMG8s8nfT3uF43T/Uul93mPh8S0mL+YN2EQf42AJLNihYb13FrtOzpcXtBaV7 nBgVV7R3a2umM0M= -----END CERTIFICATE-----Generated at Sat May 17 02:40:35 2025 by rpki-client