$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0AB540B2F36C11EB8AC12660C4F9AE02.roa File: 0AB540B2F36C11EB8AC12660C4F9AE02.roa (raw, json) Hash identifier: HrXjy3/HGC/z3Jk2yTr28ZpNium7t9DIU5o/Ql7Zt/I= Subject key identifier: 3F:AB:87:71:75:F5:A4:4E:32:A8:C2:A3:04:E0:E9:85:9D:AC:B3:28 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B6EC Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0AB540B2F36C11EB8AC12660C4F9AE02.roa Signing time: Thu 08 May 2025 16:18:44 +0000 ROA not before: Thu 08 May 2025 16:18:44 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 142471 IP address blocks: 103.170.88.0/24 maxlen: 24 2001:df1:a940::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:54:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46828 (0xb6ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:18:44 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd964-b888 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:0b:8a:69:08:80:f4:84:3f:cf:15:ee:6f:4b: 34:9a:77:d6:22:3b:f5:82:b8:35:7a:26:42:9b:6d: 99:eb:db:a7:0d:67:67:a8:b9:94:77:16:67:a4:bd: 16:e1:8a:65:29:f6:c3:ca:c5:38:83:b0:b8:ca:8d: 95:bf:84:56:3e:01:cc:8f:8e:c3:f8:5b:0b:3a:71: 2f:cb:0e:ec:95:bf:a0:da:88:2d:fb:9a:23:83:28: 18:7f:3d:58:44:d7:68:56:9c:5e:3a:a6:9b:82:2e: af:f3:bf:ba:5b:86:c2:bd:2f:52:58:79:95:1a:0c: 49:85:5d:7a:bc:3c:0d:0f:1e:43:8e:13:6b:cc:24: d6:67:99:41:81:f3:77:2d:f2:1d:86:2e:9d:53:43: 2d:14:89:63:58:27:76:be:28:e3:f6:90:21:76:99: ee:5b:8a:b3:3e:a5:e2:41:45:c4:9d:f8:86:41:25: e7:c3:44:30:60:c6:d1:56:47:37:a3:c6:0d:fc:a5: eb:e5:c6:38:12:dd:e2:19:64:d7:c3:b8:40:a3:d6: e1:ca:cb:c6:f6:fe:17:d3:fc:6a:5a:0f:50:2a:03: 53:e7:9b:19:b4:aa:72:ae:c8:e9:fb:ba:c8:ff:36: f1:3c:1a:45:6f:6d:ef:24:9f:c1:e5:79:2e:01:45: 54:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:AB:87:71:75:F5:A4:4E:32:A8:C2:A3:04:E0:E9:85:9D:AC:B3:28 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0AB540B2F36C11EB8AC12660C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.170.88.0/24 IPv6: 2001:df1:a940::/48 Signature Algorithm: sha256WithRSAEncryption 96:e9:f0:f6:25:fd:63:ce:a8:36:eb:12:c3:1f:ca:35:16:fa: aa:63:33:1a:6f:71:ab:7b:21:aa:8f:10:f8:43:26:e4:1f:5c: 1d:a8:89:0b:a9:b9:8b:7d:42:d5:30:01:18:c2:27:22:3a:39: 69:d4:df:a0:32:ac:2b:2f:1a:23:c0:05:b3:e1:9c:dd:bd:87: 98:c7:ad:65:c5:be:c0:e9:94:ac:92:6d:cd:6b:69:29:33:fa: 55:73:7b:f6:20:cc:1c:ff:30:37:52:bc:a9:60:c0:43:93:9b: 46:5d:5d:94:1f:b0:18:35:c2:6b:20:bc:da:78:bd:89:54:ac: c2:1e:86:89:48:5a:a8:05:bb:5c:f4:f1:93:74:a1:09:ed:1a: 65:eb:15:c7:9f:1d:46:e5:c9:bd:74:5c:a4:6a:62:00:33:5c: 77:82:3a:13:2b:eb:8f:72:40:83:81:9b:90:b4:09:7e:85:a6: da:7f:93:2d:cd:53:0b:43:20:b1:4f:19:b4:57:e4:18:e0:dc: c4:8d:08:4b:1e:3b:fd:4c:a5:92:c8:78:2b:93:41:cf:6e:09: 40:5e:bd:61:7b:b3:21:a5:38:2d:ce:39:cb:a5:af:a3:bc:a0: 25:3f:a5:cf:fb:9f:b4:1f:d5:74:5c:b0:98:9c:ed:fc:01:90: a3:0c:7c:a9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIDALbsMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MTg0NFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q5NjQtYjg4ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK8LimkIgPSEP88V7m9LNJp31iI79YK4NXomQpttmevbpw1nZ6i5lHcWZ6S9 FuGKZSn2w8rFOIOwuMqNlb+EVj4BzI+Ow/hbCzpxL8sO7JW/oNqILfuaI4MoGH89 WETXaFacXjqmm4Iur/O/uluGwr0vUlh5lRoMSYVderw8DQ8eQ44Ta8wk1meZQYHz dy3yHYYunVNDLRSJY1gndr4o4/aQIXaZ7luKsz6l4kFFxJ34hkEl58NEMGDG0VZH N6PGDfyl6+XGOBLd4hlk18O4QKPW4crLxvb+F9P8aloPUCoDU+ebGbSqcq7I6fu6 yP828TwaRW9t7ySfweV5LgFFVBMCAwEAAaOCAqYwggKiMB0GA1UdDgQWBBQ/q4dx dfWkTjKowqME4OmFnayzKDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzBBQjU0MEIy RjM2QzExRUI4QUMxMjY2MEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDAGCCsGAQUFBwEHAQH/ BCEwHzAMBAIAATAGAwQAZ6pYMA8EAgACMAkDBwAgAQ3xqUAwDQYJKoZIhvcNAQEL BQADggEBAJbp8PYl/WPOqDbrEsMfyjUW+qpjMxpvcat7IaqPEPhDJuQfXB2oiQup uYt9QtUwARjCJyI6OWnU36AyrCsvGiPABbPhnN29h5jHrWXFvsDplKySbc1raSkz +lVze/YgzBz/MDdSvKlgwEOTm0ZdXZQfsBg1wmsgvNp4vYlUrMIeholIWqgFu1z0 8ZN0oQntGmXrFcefHUblyb10XKRqYgAzXHeCOhMr649yQIOBm5C0CX6Fptp/ky3N UwtDILFPGbRX5Bjg3MSNCEseO/1MpZLIeCuTQc9uCUBevWF7syGlOC3OOculr6O8 oCU/pc/7n7Qf1XRcsJic7fwBkKMMfKk= -----END CERTIFICATE-----Generated at Tue May 13 01:24:47 2025 by rpki-client