$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/29F195DEB27911EDBDA94E62C4F9AE02.roa File: 29F195DEB27911EDBDA94E62C4F9AE02.roa (raw, json) Hash identifier: 2Lp4ZVR7p0hjJsUNywatnk3FNFTF5kSAhdukDyBr68g= Subject key identifier: CD:64:75:1F:9F:B7:F4:75:EF:F4:1B:F8:37:87:87:BA:56:51:A2:A8 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B812 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/29F195DEB27911EDBDA94E62C4F9AE02.roa Signing time: Thu 08 May 2025 16:23:09 +0000 ROA not before: Thu 08 May 2025 16:23:09 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 149574 IP address blocks: 103.187.58.0/23 maxlen: 24 2001:df1:fec0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 15:25:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47122 (0xb812) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:23:09 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cda6c-976a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:ec:11:63:ad:c4:11:26:19:db:15:bb:c9:c4: 47:a4:f2:52:85:73:ba:c4:d5:69:e3:cb:31:0d:cf: 3d:07:b6:39:11:6c:ee:1d:82:99:e5:8b:6e:b8:3b: 43:e5:82:de:04:c5:e5:8a:b5:ae:e7:db:43:01:77: 1e:d0:74:02:70:bb:3d:85:f7:41:89:aa:e1:50:60: 8c:8d:a4:97:a0:e2:70:4a:11:6b:29:ec:33:23:f3: d8:4f:e8:26:d6:94:8b:cc:73:ec:ef:f3:d8:77:30: 72:24:6f:90:f9:da:22:f3:90:42:5e:d4:f4:2b:2d: 5c:5d:79:8b:55:a7:c2:58:b8:30:ff:a4:93:4f:36: 58:ea:60:b4:5b:e7:cd:6f:50:f0:1e:78:35:ac:ae: 7d:04:20:15:51:cc:78:6b:22:1c:9e:17:b9:a4:58: 41:04:3b:c5:a5:07:36:a7:7e:df:76:67:8a:4b:a9: c3:12:c3:36:7a:32:9a:60:ec:1a:6b:4e:fd:63:c3: 2c:f0:e3:b9:b5:17:d4:d5:b3:be:59:97:8e:52:e5: 29:0c:48:18:29:59:0e:4d:cc:e0:76:38:c8:5c:80: b8:4d:5d:b6:3c:58:51:d7:1b:f5:83:4b:6d:e4:80: 07:8b:f2:2a:f8:e8:c6:36:e2:38:b5:b3:e4:80:a5: 1b:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:64:75:1F:9F:B7:F4:75:EF:F4:1B:F8:37:87:87:BA:56:51:A2:A8 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/29F195DEB27911EDBDA94E62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.187.58.0/23 IPv6: 2001:df1:fec0::/48 Signature Algorithm: sha256WithRSAEncryption a1:5c:35:a5:4e:05:3c:e1:37:40:fb:f3:7b:3c:f0:4f:28:42: 23:6e:29:d9:45:3f:68:71:fc:78:8f:37:d9:e5:6e:19:5b:ec: 56:6e:1b:d1:1c:7a:bf:62:3a:bc:d4:2a:2a:90:b0:9a:86:59: 6c:5a:0c:c2:d3:bf:98:bb:85:06:41:c9:64:69:4f:04:ec:e7: 55:58:ef:20:cc:a8:56:c1:44:eb:2f:d9:e8:93:72:00:81:ee: 89:3f:d6:b6:eb:17:2f:1f:52:00:8b:85:80:be:1e:e2:a3:72: a5:34:a5:eb:8d:65:6f:de:d1:9d:ff:9b:6c:c6:2c:a5:fe:62: 6c:22:e9:ed:9e:b3:92:48:eb:18:af:5b:16:05:d9:af:c4:dd: 32:5c:74:44:44:f8:a5:8a:6c:41:d9:58:a2:59:84:59:99:d3: 3b:f5:01:1a:9a:28:59:03:dc:11:94:76:dc:38:df:d6:96:8a: 2e:8b:24:2c:63:11:65:57:73:8e:f3:18:40:41:38:a2:17:4b: 0f:4d:42:8f:e3:87:a0:a4:ad:25:a1:ba:98:c3:bf:42:05:77: 07:b3:ba:69:37:18:b1:20:47:23:36:e5:35:7b:c1:89:6e:5f: 44:c5:1b:c9:94:72:d3:34:5c:18:6c:4e:e5:40:cd:f2:24:a1: 44:f6:32:92 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIDALgSMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MjMwOVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2RhNmMtOTc2YTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJXsEWOtxBEmGdsVu8nER6TyUoVzusTVaePLMQ3PPQe2ORFs7h2CmeWLbrg7 Q+WC3gTF5Yq1rufbQwF3HtB0AnC7PYX3QYmq4VBgjI2kl6DicEoRaynsMyPz2E/o JtaUi8xz7O/z2HcwciRvkPnaIvOQQl7U9CstXF15i1Wnwli4MP+kk082WOpgtFvn zW9Q8B54NayufQQgFVHMeGsiHJ4XuaRYQQQ7xaUHNqd+33ZnikupwxLDNnoymmDs GmtO/WPDLPDjubUX1NWzvlmXjlLlKQxIGClZDk3M4HY4yFyAuE1dtjxYUdcb9YNL beSAB4vyKvjoxjbiOLWz5IClG08CAwEAAaOCAqYwggKiMB0GA1UdDgQWBBTNZHUf n7f0de/0G/g3h4e6VlGiqDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzI5RjE5NURF QjI3OTExRURCREE5NEU2MkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDAGCCsGAQUFBwEHAQH/ BCEwHzAMBAIAATAGAwQBZ7s6MA8EAgACMAkDBwAgAQ3x/sAwDQYJKoZIhvcNAQEL BQADggEBAKFcNaVOBTzhN0D783s88E8oQiNuKdlFP2hx/HiPN9nlbhlb7FZuG9Ec er9iOrzUKiqQsJqGWWxaDMLTv5i7hQZByWRpTwTs51VY7yDMqFbBROsv2eiTcgCB 7ok/1rbrFy8fUgCLhYC+HuKjcqU0peuNZW/e0Z3/m2zGLKX+Ymwi6e2es5JI6xiv WxYF2a/E3TJcdERE+KWKbEHZWKJZhFmZ0zv1ARqaKFkD3BGUdtw439aWii6LJCxj EWVXc47zGEBBOKIXSw9NQo/jh6CkrSWhupjDv0IFdwezumk3GLEgRyM25TV7wYlu X0TFG8mUctM0XBhsTuVAzfIkoUT2MpI= -----END CERTIFICATE-----Generated at Wed May 14 19:56:29 2025 by rpki-client