$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1B8688B44C5511ECAD47F327C4F9AE02.roa File: 1B8688B44C5511ECAD47F327C4F9AE02.roa (raw, json) Hash identifier: tHhPvMzZdZCp6OXK4QZuDIC2/KCbB6u3mW1PexXeW+c= Subject key identifier: 4C:A3:0F:C1:67:8A:31:F5:8B:98:A0:21:D5:E1:09:E9:48:BD:DA:41 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B1BA Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1B8688B44C5511ECAD47F327C4F9AE02.roa Signing time: Thu 08 May 2025 15:58:21 +0000 ROA not before: Thu 08 May 2025 15:58:21 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 133276 IP address blocks: 103.243.224.0/24 maxlen: 24 103.243.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:54:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45498 (0xb1ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 15:58:21 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd49d-ae51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:71:7a:9e:90:12:fe:45:db:f6:6e:f8:58:76: 44:2e:dc:a0:ea:93:f3:36:8c:ef:e1:24:12:6c:fc: ff:25:32:e0:6d:90:b9:7f:57:d5:2a:bd:47:91:92: 04:b6:85:64:7b:32:e0:f9:28:82:a2:9a:36:91:eb: af:95:20:40:96:34:5d:97:09:bc:f1:aa:be:eb:06: 41:4b:24:56:b8:ed:be:81:ab:e2:9b:16:ce:ec:a4: 13:ac:91:e6:ff:f6:c8:02:6c:97:bb:3f:40:24:89: e1:c2:59:3a:31:56:c8:44:22:6d:1c:eb:99:ce:6f: b3:bf:df:f7:9f:02:cc:29:37:f1:e1:1a:ca:67:7d: aa:ed:7c:ad:0b:bd:9d:64:12:93:a7:b4:b1:4a:67: 47:02:2b:5b:62:ff:57:1d:29:59:d7:a8:5f:f4:02: b9:68:c5:e8:fd:b5:fc:4f:ec:96:50:c9:b5:2f:c2: 41:3d:52:4d:23:fc:17:1a:85:8d:66:c5:d9:5c:ac: 22:58:3d:fa:92:e0:e2:95:29:c3:bb:fd:07:e6:f9: d5:79:ba:81:a3:4c:d8:27:c4:9c:13:9a:e0:89:ce: 29:27:03:03:98:0c:a5:6c:3c:fc:90:25:60:ea:06: df:5f:9c:50:1f:77:b5:f8:8a:5d:df:8f:d3:46:92: 73:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:A3:0F:C1:67:8A:31:F5:8B:98:A0:21:D5:E1:09:E9:48:BD:DA:41 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1B8688B44C5511ECAD47F327C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.243.224.0/24 103.243.226.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:86:84:34:b7:c5:19:81:32:73:1c:86:7f:ad:be:43:bd:9a: cc:e3:f9:cb:89:d3:f4:90:93:e2:d0:0e:0a:03:8f:f9:fb:41: 41:02:07:d9:ae:06:a2:63:57:1f:a0:14:40:43:27:75:90:54: 34:b2:f1:19:86:9d:64:f6:7e:59:b2:9e:c2:07:46:86:25:f2: 7f:6e:74:10:bd:7e:9b:1d:1c:4f:2d:e6:5b:a5:08:ab:d0:76: 0d:20:00:2a:16:e1:40:93:40:43:08:8c:7d:15:e8:f3:33:6e: 8b:2d:b9:57:a6:55:6b:5d:01:19:f7:05:0f:a1:3e:ef:51:3e: 42:92:f3:14:25:1b:7b:60:a5:82:c9:d4:df:7d:75:40:05:8e: 0a:cd:29:48:75:5a:33:63:99:57:07:48:b9:5c:86:cf:b4:84: c0:e6:1c:b6:ab:af:5c:3f:f0:9a:ad:c9:ee:25:12:2a:04:2e: b0:37:70:e0:2c:8f:c5:e8:7b:13:a3:76:49:6f:88:ca:47:28: e9:0b:c0:f1:06:6d:c7:37:bf:c3:2b:13:5a:27:dc:5f:79:c6: a1:3b:0f:fa:3e:53:af:7d:7f:17:fc:d6:5c:6d:b9:78:c4:3e: 03:57:07:d4:b9:45:cf:a4:96:eb:fa:6a:37:41:cd:d1:a8:1e: ac:d0:07:fa -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIDALG6MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE1NTgyMVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q0OWQtYWU1MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALNxep6QEv5F2/Zu+Fh2RC7coOqT8zaM7+EkEmz8/yUy4G2QuX9X1Sq9R5GS BLaFZHsy4PkogqKaNpHrr5UgQJY0XZcJvPGqvusGQUskVrjtvoGr4psWzuykE6yR 5v/2yAJsl7s/QCSJ4cJZOjFWyEQibRzrmc5vs7/f958CzCk38eEaymd9qu18rQu9 nWQSk6e0sUpnRwIrW2L/Vx0pWdeoX/QCuWjF6P21/E/sllDJtS/CQT1STSP8FxqF jWbF2VysIlg9+pLg4pUpw7v9B+b51Xm6gaNM2CfEnBOa4InOKScDA5gMpWw8/JAl YOoG31+cUB93tfiKXd+P00aSc20CAwEAAaOCApswggKXMB0GA1UdDgQWBBRMow/B Z4ox9YuYoCHV4QnpSL3aQTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzFCODY4OEI0 NEM1NTExRUNBRDQ3RjMyN0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCUGCCsGAQUFBwEHAQH/ BBYwFDASBAIAATAMAwQAZ/PgAwQAZ/PiMA0GCSqGSIb3DQEBCwUAA4IBAQBOhoQ0 t8UZgTJzHIZ/rb5DvZrM4/nLidP0kJPi0A4KA4/5+0FBAgfZrgaiY1cfoBRAQyd1 kFQ0svEZhp1k9n5Zsp7CB0aGJfJ/bnQQvX6bHRxPLeZbpQir0HYNIAAqFuFAk0BD CIx9FejzM26LLblXplVrXQEZ9wUPoT7vUT5CkvMUJRt7YKWCydTffXVABY4KzSlI dVozY5lXB0i5XIbPtITA5hy2q69cP/CarcnuJRIqBC6wN3DgLI/F6HsTo3ZJb4jK RyjpC8DxBm3HN7/DKxNaJ9xfecahOw/6PlOvfX8X/NZcbbl4xD4DVwfUuUXPpJbr +mo3Qc3RqB6s0Af6 -----END CERTIFICATE-----Generated at Tue May 13 04:53:38 2025 by rpki-client