$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/01696736B64911EC804C2C4EC4F9AE02.roa File: 01696736B64911EC804C2C4EC4F9AE02.roa (raw, json) Hash identifier: 6Y3c4Zq7lnmmeAYBVZaUNrESHL25JMz6fZ84yX/CzBU= Subject key identifier: CE:20:DD:58:95:F6:10:5B:BF:1A:0B:13:BF:B0:81:F8:20:33:DD:C4 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B222 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/01696736B64911EC804C2C4EC4F9AE02.roa Signing time: Thu 08 May 2025 15:59:57 +0000 ROA not before: Thu 08 May 2025 15:59:57 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 133987 IP address blocks: 103.184.205.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 05:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45602 (0xb222) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 15:59:57 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd4fd-ba1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a9:b5:2d:1b:10:40:27:6f:db:d5:32:4c:ed: 67:a7:5d:e1:6a:b0:38:cd:73:ca:ed:7f:74:f3:6d: 97:ef:16:63:18:52:55:e3:82:58:c1:39:f2:d3:cd: 00:cb:dd:91:69:ed:b4:75:c1:27:3a:85:28:67:5f: df:32:10:fd:0f:1e:97:a4:eb:e5:68:1a:f7:3f:60: 07:10:71:2f:ee:f8:98:ea:29:f8:85:c5:ea:c1:c8: cc:af:99:1c:1e:94:0a:6b:bb:89:ff:75:6c:a1:65: 08:5b:41:6d:9b:a4:31:4f:eb:d5:9f:3d:ce:43:da: 15:a7:9c:6e:06:bf:ee:39:c6:bb:2b:ab:6a:90:0f: f3:44:b6:70:3c:cb:c7:2c:1d:a1:24:96:e8:f7:ac: 74:3b:e0:5f:2a:9b:6e:68:60:5c:e8:9c:62:4d:fc: 55:0e:c6:e5:8b:63:dc:53:0b:0c:ab:51:6d:42:6c: 6b:96:2d:64:9c:c5:d4:20:5c:d3:d2:00:61:48:f1: ff:ec:0e:32:20:50:cf:f5:7b:a6:17:dc:6c:aa:e6: dd:93:cb:72:83:cb:e7:85:b3:0e:0f:1e:ad:9a:a4: 52:50:2a:43:c8:95:a5:09:d9:0c:71:b1:9e:2a:0d: 07:86:13:fb:cd:6e:5c:6f:c3:b3:4e:8b:16:f6:80: d7:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:20:DD:58:95:F6:10:5B:BF:1A:0B:13:BF:B0:81:F8:20:33:DD:C4 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/01696736B64911EC804C2C4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.184.205.0/24 Signature Algorithm: sha256WithRSAEncryption 26:fc:f9:bc:ba:65:ed:a2:a2:50:73:a6:fc:9c:3f:0d:66:e6: 9a:33:98:4d:0d:97:c9:d7:e3:48:01:a8:e9:8f:82:7c:83:23: 64:6d:d9:22:8c:33:a5:f1:34:f8:0f:24:aa:66:bb:eb:36:b4: 6c:67:81:13:57:16:fe:7c:68:34:5f:12:b1:dd:3d:38:8e:91: e4:37:94:02:54:c3:0a:48:bf:55:38:9b:46:f8:66:47:07:ab: 27:aa:60:d3:53:41:55:ba:f0:d4:96:f5:5d:08:e4:50:ca:2c: 6a:a6:d8:27:81:20:6a:b5:a9:68:a9:d2:c0:d5:65:0f:20:16: 9d:3e:77:a2:b8:d5:09:3f:71:63:4f:c2:a3:da:88:ed:10:da: 38:e8:c0:bd:47:af:db:3c:09:c8:6b:07:8a:79:61:04:82:37: 6f:65:49:1a:cf:d3:2e:16:7f:ec:cd:64:bf:0c:a5:75:10:64: ff:8e:2e:9f:85:a1:cd:ee:2d:d3:93:c1:a9:0b:ab:7e:6b:08: 0d:5f:67:8b:09:60:04:f1:e3:e2:65:22:fc:d2:e5:12:75:70: 32:d1:f5:2b:f3:5d:7b:3b:40:dd:41:ff:91:86:c1:69:ef:2b: 0e:f4:88:4e:28:d9:5e:49:83:2f:4b:01:b6:24:7b:17:0e:0a: ee:24:53:16 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDALIiMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE1NTk1N1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q0ZmQtYmExYTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMyptS0bEEAnb9vVMkztZ6dd4WqwOM1zyu1/dPNtl+8WYxhSVeOCWME58tPN AMvdkWnttHXBJzqFKGdf3zIQ/Q8el6Tr5Wga9z9gBxBxL+74mOop+IXF6sHIzK+Z HB6UCmu7if91bKFlCFtBbZukMU/r1Z89zkPaFaecbga/7jnGuyurapAP80S2cDzL xywdoSSW6PesdDvgXyqbbmhgXOicYk38VQ7G5Ytj3FMLDKtRbUJsa5YtZJzF1CBc 09IAYUjx/+wOMiBQz/V7phfcbKrm3ZPLcoPL54WzDg8erZqkUlAqQ8iVpQnZDHGx nioNB4YT+81uXG/Ds06LFvaA1xMCAwEAAaOCApUwggKRMB0GA1UdDgQWBBTOIN1Y lfYQW78aCxO/sIH4IDPdxDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzAxNjk2NzM2 QjY0OTExRUM4MDRDMkM0RUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQAZ7jNMA0GCSqGSIb3DQEBCwUAA4IBAQAm/Pm8umXtoqJQ c6b8nD8NZuaaM5hNDZfJ1+NIAajpj4J8gyNkbdkijDOl8TT4DySqZrvrNrRsZ4ET Vxb+fGg0XxKx3T04jpHkN5QCVMMKSL9VOJtG+GZHB6snqmDTU0FVuvDUlvVdCORQ yixqptgngSBqtaloqdLA1WUPIBadPneiuNUJP3FjT8Kj2ojtENo46MC9R6/bPAnI aweKeWEEgjdvZUkaz9MuFn/szWS/DKV1EGT/ji6fhaHN7i3Tk8GpC6t+awgNX2eL CWAE8ePiZSL80uUSdXAy0fUr8117O0DdQf+RhsFp7ysO9IhOKNleSYMvSwG2JHsX DgruJFMW -----END CERTIFICATE-----Generated at Tue May 13 08:30:26 2025 by rpki-client