$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/154E6D9C453811EBAD39C03FC4F9AE02.roa File: 154E6D9C453811EBAD39C03FC4F9AE02.roa (raw, json) Hash identifier: pCj9bilk/znfn09I0D0pCSx11q53RDPNR07AfWyiFMo= Subject key identifier: E5:C4:F2:B1:58:44:AB:4B:B1:AD:86:C5:24:E3:DA:96:93:66:08:7A Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B640 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/154E6D9C453811EBAD39C03FC4F9AE02.roa Signing time: Thu 08 May 2025 16:16:10 +0000 ROA not before: Thu 08 May 2025 16:16:10 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141477 IP address blocks: 103.160.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:54:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46656 (0xb640) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:16:10 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd8ca-2954 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b3:ef:9f:84:54:07:99:0d:78:b0:84:85:cd: c4:c9:28:6e:50:96:73:2b:1a:b5:14:15:3f:93:33: 83:17:8f:e7:a8:ab:08:db:06:ea:9c:b5:07:e9:1e: e1:61:3c:fd:ef:34:e4:63:5f:37:c1:6b:21:36:23: bb:1e:a3:35:2d:01:07:7b:cb:3c:37:ab:c5:37:9b: ce:c0:4b:dc:ea:bc:ab:3c:cf:fb:12:92:92:b3:a1: 57:32:31:f7:c1:1d:a6:5f:3e:b3:0b:6b:50:6b:0f: 78:d2:fb:ef:6d:5e:38:30:db:2d:3a:9a:d5:62:2d: a8:4e:9b:1a:76:45:14:80:9c:c3:fc:6c:88:a4:49: e0:31:2f:c9:89:8b:8f:f1:41:9d:01:76:f9:1a:03: 71:56:b0:99:e2:a3:90:c5:3b:98:d9:64:88:34:a4: 02:92:8d:b5:35:74:68:83:db:5c:01:29:3f:3a:f2: 26:98:64:21:56:c2:d9:e7:65:9e:bc:81:77:0b:60: 9e:bf:b4:09:8d:c9:11:ab:ed:e4:11:de:89:93:03: d6:9b:33:d3:12:7a:b1:7b:57:38:7b:69:c2:37:22: e1:7a:3f:37:9b:3d:ef:5c:f6:2e:f5:09:22:7a:12: 7f:6e:65:cb:f3:13:5a:58:ca:81:d3:0a:ca:54:d1: 84:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:C4:F2:B1:58:44:AB:4B:B1:AD:86:C5:24:E3:DA:96:93:66:08:7A X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/154E6D9C453811EBAD39C03FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.160.209.0/24 Signature Algorithm: sha256WithRSAEncryption 50:22:4a:41:33:9b:1f:cd:82:8f:e4:d4:43:7d:37:0a:53:df: 86:58:a4:25:ab:25:d1:0b:8a:cd:6e:6e:fd:51:01:cf:f1:e3: a4:e4:16:4c:60:8b:e7:09:b7:10:4d:b4:66:d2:30:7d:f9:14: 4b:e4:b1:db:f8:d9:97:5e:9d:6a:79:00:cc:dc:72:20:ed:40: 50:41:83:3f:b6:4c:75:83:09:d8:71:4c:3d:71:92:10:30:71: 06:5b:4a:e7:a7:4f:51:0f:12:85:fc:e4:a5:2e:ce:ba:fc:65: 10:7a:d1:8d:2f:92:b7:1f:58:7c:e0:9d:49:4d:24:be:b4:dd: fe:2a:f1:46:75:11:79:8f:7c:be:bb:40:67:2f:1a:c7:32:fb: 40:d0:bb:16:b6:72:67:87:c6:9c:83:44:1e:31:94:a4:b5:3b: 59:a4:dd:23:5d:da:7b:fa:1f:3b:61:fd:b8:e3:77:b5:40:10: bb:18:f5:cb:d9:52:bb:23:d8:96:21:30:89:d5:1c:49:f2:7b: 4e:f7:88:9d:f0:59:3d:9c:a6:a3:8b:df:49:6c:75:f5:65:0c: 2b:5f:0f:0a:3b:32:05:0e:ad:19:4e:87:ea:28:47:99:d9:7e: 2a:4e:8d:21:16:6d:d7:e0:5d:82:9c:be:2d:3f:2d:1c:ce:81: 7d:52:47:49 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDALZAMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MTYxMFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q4Y2EtMjk1NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL2z75+EVAeZDXiwhIXNxMkoblCWcysatRQVP5MzgxeP56irCNsG6py1B+ke 4WE8/e805GNfN8FrITYjux6jNS0BB3vLPDerxTebzsBL3Oq8qzzP+xKSkrOhVzIx 98Edpl8+swtrUGsPeNL7721eODDbLTqa1WItqE6bGnZFFICcw/xsiKRJ4DEvyYmL j/FBnQF2+RoDcVawmeKjkMU7mNlkiDSkApKNtTV0aIPbXAEpPzryJphkIVbC2edl nryBdwtgnr+0CY3JEavt5BHeiZMD1psz0xJ6sXtXOHtpwjci4Xo/N5s971z2LvUJ InoSf25ly/MTWljKgdMKylTRhFcCAwEAAaOCApUwggKRMB0GA1UdDgQWBBTlxPKx WESrS7GthsUk49qWk2YIejAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzE1NEU2RDlD NDUzODExRUJBRDM5QzAzRkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQAZ6DRMA0GCSqGSIb3DQEBCwUAA4IBAQBQIkpBM5sfzYKP 5NRDfTcKU9+GWKQlqyXRC4rNbm79UQHP8eOk5BZMYIvnCbcQTbRm0jB9+RRL5LHb +NmXXp1qeQDM3HIg7UBQQYM/tkx1gwnYcUw9cZIQMHEGW0rnp09RDxKF/OSlLs66 /GUQetGNL5K3H1h84J1JTSS+tN3+KvFGdRF5j3y+u0BnLxrHMvtA0LsWtnJnh8ac g0QeMZSktTtZpN0jXdp7+h87Yf2443e1QBC7GPXL2VK7I9iWITCJ1RxJ8ntO94id 8Fk9nKaji99JbHX1ZQwrXw8KOzIFDq0ZTofqKEeZ2X4qTo0hFm3X4F2CnL4tPy0c zoF9UkdJ -----END CERTIFICATE-----Generated at Tue May 13 00:32:25 2025 by rpki-client