$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/283679D0FD8611EFB0589357C4F9AE02.roa File: 283679D0FD8611EFB0589357C4F9AE02.roa (raw, json) Hash identifier: mshSabYkxL8IXyOujXbRIqawyzoLz3sLH8bJ7vKmX7M= Subject key identifier: 0B:AA:77:43:6C:C4:69:53:63:FA:90:6E:92:05:08:7D:FE:5F:F5:AD Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B165 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/283679D0FD8611EFB0589357C4F9AE02.roa Signing time: Thu 08 May 2025 15:56:59 +0000 ROA not before: Thu 08 May 2025 15:56:59 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 132927 IP address blocks: 103.179.146.0/24 maxlen: 24 103.239.12.0/23 maxlen: 24 2401:19a0::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:54:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45413 (0xb165) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 15:56:59 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd44b-c493 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:e3:12:73:cc:19:5f:0b:05:f6:e7:ef:66:ed: 80:b9:04:36:9d:4d:69:34:ce:77:ca:ca:ed:d0:6c: 58:27:60:f8:ca:ef:42:e9:94:87:4b:cd:86:1d:a7: d2:c3:12:51:00:4c:d5:6a:8a:b5:2c:2f:33:b0:df: 6f:5e:c9:58:60:36:cd:2b:57:5c:39:ac:a4:c2:c4: c8:12:3b:6c:9a:01:db:bc:36:76:a9:37:fa:1e:2d: b5:c3:57:7a:96:4c:9c:23:22:fb:6b:77:0e:6a:b5: fd:6f:0a:d3:e7:32:10:f7:1c:0c:a0:7f:6b:a5:a2: 5f:96:e8:1e:1a:5b:b2:a1:a3:6a:e0:c6:e5:47:38: 8c:61:a8:ba:a0:96:5f:d3:5a:31:7e:bd:21:69:7f: 2f:e1:08:c3:48:c6:cd:cb:3b:6f:39:17:61:4d:d2: 93:d9:65:57:d8:1a:0b:7e:80:5a:72:50:14:ee:ef: a1:12:2f:2d:e5:8e:20:dd:07:b4:6d:72:7f:b9:7d: f6:d4:28:60:0b:b1:51:13:d2:03:97:2e:46:d0:c9: cd:18:91:c1:ad:1f:1b:72:42:25:31:ef:9f:be:4b: 71:7b:71:6b:1c:1c:87:e7:8c:c0:f1:94:9c:dc:f0: 16:04:24:5d:ac:1d:75:2a:a1:56:06:06:fa:2c:4c: c0:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:AA:77:43:6C:C4:69:53:63:FA:90:6E:92:05:08:7D:FE:5F:F5:AD X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/283679D0FD8611EFB0589357C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.179.146.0/24 103.239.12.0/23 IPv6: 2401:19a0::/32 Signature Algorithm: sha256WithRSAEncryption 58:1f:90:ec:a3:16:1c:9e:b1:8c:16:18:09:f4:1a:56:18:f2: 32:52:65:54:aa:14:cd:43:0f:b6:ce:7b:38:20:0c:51:86:fe: 85:47:9c:ac:b8:66:32:25:88:a2:9e:5c:b6:8b:eb:45:38:4d: bf:de:7e:bc:3d:26:94:b5:0d:2c:e3:8a:2b:31:fd:19:de:71: 09:87:2a:de:e0:1f:69:a1:53:50:6d:1d:9d:fe:a0:cc:fd:da: e3:b8:c0:ce:e6:0d:ff:24:ec:51:a4:1e:c3:5f:ed:7f:99:bc: 24:69:59:2c:9f:6e:9f:c1:1c:a7:58:75:0f:24:e4:b3:05:33: 8b:c3:f1:b6:45:ba:bb:c4:29:cc:16:96:a8:6f:f5:86:77:a6: d3:91:19:83:70:7d:cd:8f:a8:eb:9b:20:46:78:d7:a5:1e:fa: 68:87:9b:35:ef:2f:63:86:0d:6e:da:de:a8:c7:af:21:db:2e: 36:b3:ef:9c:dc:b8:33:49:f1:ad:0c:4b:e2:06:e1:7d:4c:5b: 05:03:7c:bd:c7:92:e8:10:40:09:0d:08:f1:12:67:0e:15:9a: 1a:2a:97:50:d7:fc:26:d9:9a:a6:2c:14:7a:a6:94:46:57:99: a2:22:9e:bf:e2:bd:1a:eb:03:25:5a:50:7f:95:6e:67:b1:af: 84:ba:57:f8 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgIDALFlMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE1NTY1OVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q0NGItYzQ5MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJLjEnPMGV8LBfbn72btgLkENp1NaTTOd8rK7dBsWCdg+MrvQumUh0vNhh2n 0sMSUQBM1WqKtSwvM7Dfb17JWGA2zStXXDmspMLEyBI7bJoB27w2dqk3+h4ttcNX epZMnCMi+2t3Dmq1/W8K0+cyEPccDKB/a6WiX5boHhpbsqGjauDG5Uc4jGGouqCW X9NaMX69IWl/L+EIw0jGzcs7bzkXYU3Sk9llV9gaC36AWnJQFO7voRIvLeWOIN0H tG1yf7l99tQoYAuxURPSA5cuRtDJzRiRwa0fG3JCJTHvn75LcXtxaxwch+eMwPGU nNzwFgQkXawddSqhVgYG+ixMwI8CAwEAAaOCAqowggKmMB0GA1UdDgQWBBQLqndD bMRpU2P6kG6SBQh9/l/1rTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzI4MzY3OUQw RkQ4NjExRUZCMDU4OTM1N0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDQGCCsGAQUFBwEHAQH/ BCUwIzASBAIAATAMAwQAZ7OSAwQBZ+8MMA0EAgACMAcDBQAkARmgMA0GCSqGSIb3 DQEBCwUAA4IBAQBYH5DsoxYcnrGMFhgJ9BpWGPIyUmVUqhTNQw+2zns4IAxRhv6F R5ysuGYyJYiinly2i+tFOE2/3n68PSaUtQ0s44orMf0Z3nEJhyre4B9poVNQbR2d /qDM/drjuMDO5g3/JOxRpB7DX+1/mbwkaVksn26fwRynWHUPJOSzBTOLw/G2Rbq7 xCnMFpaob/WGd6bTkRmDcH3Nj6jrmyBGeNelHvpoh5s17y9jhg1u2t6ox68h2y42 s++c3LgzSfGtDEviBuF9TFsFA3y9x5LoEEAJDQjxEmcOFZoaKpdQ1/wm2ZqmLBR6 ppRGV5miIp6/4r0a6wMlWlB/lW5nsa+Eulf4 -----END CERTIFICATE-----Generated at Mon May 12 23:55:55 2025 by rpki-client