$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/19F088F2859411EB84A35F50C4F9AE02.roa File: 19F088F2859411EB84A35F50C4F9AE02.roa (raw, json) Hash identifier: VcIOpkA6CPvjJKzMpZ3SD+hu9lRpfbE4FGQAYJngMlU= Subject key identifier: 3F:35:4B:A7:CD:8E:AE:4D:23:F0:0C:9D:D6:1F:92:A0:69:34:1F:98 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B6CF Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/19F088F2859411EB84A35F50C4F9AE02.roa Signing time: Thu 08 May 2025 16:18:19 +0000 ROA not before: Thu 08 May 2025 16:18:19 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141879 IP address blocks: 103.164.28.0/24 maxlen: 24 103.164.29.0/24 maxlen: 24 2001:df3:9c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 08:51:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46799 (0xb6cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:18:19 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd94b-f4c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:00:85:53:9e:63:34:cb:68:9b:a2:bd:62:0b: f5:8d:8f:39:79:a1:19:a2:48:a3:0b:aa:09:9f:11: 97:cf:be:87:18:a8:e1:e2:74:50:c8:52:02:d7:78: fd:78:24:4a:cb:4e:85:39:5f:a8:c7:90:36:4c:a0: 81:f8:62:50:63:4a:d7:a0:48:53:c1:c6:ce:ff:20: 3c:57:98:ef:f4:7f:ed:b4:6e:90:8a:ff:6f:12:0d: 47:c5:53:8c:8a:6e:63:08:b3:2d:db:80:14:3a:21: cd:a9:28:6d:38:d5:3c:41:7b:dc:40:de:67:8a:e6: b6:e2:9b:67:32:a2:7e:4c:d6:29:53:c2:23:6f:89: fe:42:d6:3f:57:b9:27:de:5b:0d:75:6d:cf:a5:60: c1:bd:40:49:5a:28:a5:71:ef:ec:7c:97:c9:2c:ea: 69:58:40:4c:34:d9:92:9a:c4:4f:2c:c7:42:76:c2: 67:2d:a4:2c:98:66:74:9d:e5:15:34:a9:95:ed:b3: 57:7d:5b:d1:ef:98:4a:63:df:53:2e:8a:2a:a5:3d: e0:3f:7e:94:5c:67:1b:9e:41:69:f5:62:aa:c2:c6: cd:2f:37:91:6a:e3:6c:d2:eb:be:51:0e:df:22:f9: 6c:88:0b:d6:9e:11:15:12:bd:16:7d:1b:0d:31:c8: 31:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:35:4B:A7:CD:8E:AE:4D:23:F0:0C:9D:D6:1F:92:A0:69:34:1F:98 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/19F088F2859411EB84A35F50C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.164.28.0/23 IPv6: 2001:df3:9c0::/48 Signature Algorithm: sha256WithRSAEncryption 40:bd:68:6d:a0:9b:c9:0b:de:d7:fe:0c:54:d3:d2:b0:8b:d7: 38:b2:cc:fb:74:e0:87:44:13:45:b4:68:b6:81:47:79:4e:cb: 4a:c2:0f:09:47:aa:e4:c1:a5:44:2f:d0:2e:d2:ad:8e:4a:78: 92:f2:5e:02:ab:31:1f:5b:bb:97:1d:06:97:a3:53:4b:bc:67: 15:ab:e7:9a:97:c3:aa:7e:ce:73:e3:36:94:d1:df:9f:b7:9a: da:be:12:d6:79:df:30:89:94:f3:f8:54:08:1b:23:b8:dd:3d: 4d:aa:14:c6:08:33:27:25:64:3c:8c:d1:ae:f7:1d:9f:19:c8: 62:4e:f0:b8:b5:56:d2:4c:ab:0b:34:2c:d4:40:52:3b:0b:d0: b4:83:c8:ca:6f:46:df:0d:a6:a6:ff:50:ae:19:20:be:58:9f: 52:6b:6f:78:97:19:69:e6:46:33:fa:6b:8c:52:e2:6b:16:c1: 9f:e7:5c:5a:67:ee:86:bf:c6:98:61:8c:b3:1b:97:4a:56:18: 4f:56:83:ca:91:44:78:5c:58:4b:5b:a2:ba:ff:91:35:f6:17: a4:1a:d1:81:10:e2:ca:50:2e:83:7a:20:8a:10:fd:d2:20:3b: de:5f:ea:af:32:49:7d:ab:98:a4:35:0a:2c:14:77:c4:fb:87: 14:27:60:30 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIDALbPMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MTgxOVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q5NGItZjRjMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALYAhVOeYzTLaJuivWIL9Y2POXmhGaJIowuqCZ8Rl8++hxio4eJ0UMhSAtd4 /XgkSstOhTlfqMeQNkyggfhiUGNK16BIU8HGzv8gPFeY7/R/7bRukIr/bxINR8VT jIpuYwizLduAFDohzakobTjVPEF73EDeZ4rmtuKbZzKifkzWKVPCI2+J/kLWP1e5 J95bDXVtz6Vgwb1ASVoopXHv7HyXySzqaVhATDTZkprETyzHQnbCZy2kLJhmdJ3l FTSple2zV31b0e+YSmPfUy6KKqU94D9+lFxnG55BafViqsLGzS83kWrjbNLrvlEO 3yL5bIgL1p4RFRK9Fn0bDTHIMfkCAwEAAaOCAqYwggKiMB0GA1UdDgQWBBQ/NUun zY6uTSPwDJ3WH5KgaTQfmDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzE5RjA4OEYy ODU5NDExRUI4NEEzNUY1MEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDAGCCsGAQUFBwEHAQH/ BCEwHzAMBAIAATAGAwQBZ6QcMA8EAgACMAkDBwAgAQ3zCcAwDQYJKoZIhvcNAQEL BQADggEBAEC9aG2gm8kL3tf+DFTT0rCL1ziyzPt04IdEE0W0aLaBR3lOy0rCDwlH quTBpUQv0C7SrY5KeJLyXgKrMR9bu5cdBpejU0u8ZxWr55qXw6p+znPjNpTR35+3 mtq+EtZ53zCJlPP4VAgbI7jdPU2qFMYIMyclZDyM0a73HZ8ZyGJO8Li1VtJMqws0 LNRAUjsL0LSDyMpvRt8Npqb/UK4ZIL5Yn1Jrb3iXGWnmRjP6a4xS4msWwZ/nXFpn 7oa/xphhjLMbl0pWGE9Wg8qRRHhcWEtborr/kTX2F6Qa0YEQ4spQLoN6IIoQ/dIg O95f6q8ySX2rmKQ1CiwUd8T7hxQnYDA= -----END CERTIFICATE-----Generated at Tue May 13 15:24:17 2025 by rpki-client