$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2A13F66886B111ED8E341612C4F9AE02.roa File: 2A13F66886B111ED8E341612C4F9AE02.roa (raw, json) Hash identifier: DEn6weSe2WJv2KP6jrxyn35igWNxZD0QG7iwKgy/75w= Subject key identifier: 53:37:11:FE:F8:34:A3:4B:3E:A3:01:77:AD:5B:58:D3:C0:B5:7A:94 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B338 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2A13F66886B111ED8E341612C4F9AE02.roa Signing time: Thu 08 May 2025 16:04:15 +0000 ROA not before: Thu 08 May 2025 16:04:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 135700 IP address blocks: 103.48.144.0/23 maxlen: 24 103.173.146.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 15:33:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45880 (0xb338) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:04:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd5ff-a861 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ac:b3:06:dd:b3:f4:84:d2:c6:bd:16:2b:64: cb:77:2e:43:66:6f:bb:72:3e:12:59:22:d8:22:cd: e7:a6:a4:4c:29:50:ab:58:a5:2e:23:45:12:a7:3f: 63:74:fa:3d:c8:9c:f2:ea:d8:16:6e:e9:79:69:59: 9a:03:db:78:7c:23:b1:b6:af:14:a8:dc:df:2a:28: b9:de:b6:6d:e3:7f:35:d9:10:b1:62:c7:b4:5a:57: e9:37:6a:38:98:13:c5:f0:91:6b:72:cb:28:59:5a: 86:8b:88:8a:d0:1f:fe:5b:e3:45:e7:86:be:75:49: 4e:37:5a:48:79:2b:62:cf:f2:8e:be:06:64:68:28: 63:b6:c3:00:69:7e:87:fa:4b:e4:34:e1:8b:16:27: ec:41:8a:12:41:75:ea:0d:b5:4b:e4:cd:c5:10:c1: ec:cf:6f:d6:65:e3:36:d5:c5:40:96:da:a9:19:41: a5:bf:e3:db:56:73:02:04:25:f7:21:55:37:4b:97: 65:c4:3d:1b:5f:19:5e:4a:34:54:74:a3:ed:c0:8f: 1a:db:68:26:29:9e:c1:81:76:7f:1a:bc:be:9c:3a: 23:c6:a0:cf:9f:ec:e0:d6:37:b2:b4:61:c7:d6:02: 06:0a:b7:c9:77:31:f7:89:69:e7:12:08:01:55:2f: c2:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:37:11:FE:F8:34:A3:4B:3E:A3:01:77:AD:5B:58:D3:C0:B5:7A:94 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/2A13F66886B111ED8E341612C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.48.144.0/23 103.173.146.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:8d:53:e3:b4:94:a4:4c:1b:86:3b:5a:6a:0b:66:8b:4f:88: 0d:2a:31:f8:34:8a:28:31:ca:74:15:a3:29:32:e7:5a:3b:e3: d7:da:9f:45:20:01:a8:3e:fc:bd:83:cb:cd:b1:41:7a:9f:0a: 02:73:ce:67:94:b8:c9:21:cc:ca:1b:d5:6c:cb:19:9c:0e:03: 65:7f:99:2c:f1:d2:7f:05:46:12:19:c0:52:21:7e:03:38:37: d9:5e:73:9e:41:46:b1:d0:ca:34:84:8f:45:f8:3f:14:27:b1: 97:22:65:a5:4f:93:fc:1e:d8:c6:b7:46:11:46:96:f3:bd:80: 2a:19:e3:f7:b0:b5:b6:c2:8d:cd:e4:b6:57:4d:81:00:ea:14: a7:7c:40:de:09:99:81:c8:4b:aa:04:b8:cd:08:fe:b7:cc:c9: 21:67:96:dc:f0:bc:42:0b:d3:79:b2:db:c0:b4:a3:aa:db:00: ed:9f:1f:f1:4d:ef:28:6b:22:20:1f:ae:bc:0f:07:d2:21:79: 78:5c:46:c0:d5:32:71:4a:75:95:94:1f:39:ea:e0:81:8f:57: 7c:dc:f9:99:9c:38:8d:04:bf:50:3f:3a:45:c2:c8:4b:2a:f5: 12:7d:d9:5d:da:7b:53:c9:a6:88:b1:fc:9b:42:fe:ec:b3:10: dc:8f:99:5a -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIDALM4MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MDQxNVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q1ZmYtYTg2MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALSsswbds/SE0sa9Fitky3cuQ2Zvu3I+Elki2CLN56akTClQq1ilLiNFEqc/ Y3T6Pcic8urYFm7peWlZmgPbeHwjsbavFKjc3yooud62beN/NdkQsWLHtFpX6Tdq OJgTxfCRa3LLKFlahouIitAf/lvjReeGvnVJTjdaSHkrYs/yjr4GZGgoY7bDAGl+ h/pL5DThixYn7EGKEkF16g21S+TNxRDB7M9v1mXjNtXFQJbaqRlBpb/j21ZzAgQl 9yFVN0uXZcQ9G18ZXko0VHSj7cCPGttoJimewYF2fxq8vpw6I8agz5/s4NY3srRh x9YCBgq3yXcx94lp5xIIAVUvwnsCAwEAAaOCApswggKXMB0GA1UdDgQWBBRTNxH+ +DSjSz6jAXetW1jTwLV6lDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzJBMTNGNjY4 ODZCMTExRUQ4RTM0MTYxMkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCUGCCsGAQUFBwEHAQH/ BBYwFDASBAIAATAMAwQBZzCQAwQBZ62SMA0GCSqGSIb3DQEBCwUAA4IBAQA9jVPj tJSkTBuGO1pqC2aLT4gNKjH4NIooMcp0FaMpMudaO+PX2p9FIAGoPvy9g8vNsUF6 nwoCc85nlLjJIczKG9VsyxmcDgNlf5ks8dJ/BUYSGcBSIX4DODfZXnOeQUax0Mo0 hI9F+D8UJ7GXImWlT5P8HtjGt0YRRpbzvYAqGeP3sLW2wo3N5LZXTYEA6hSnfEDe CZmByEuqBLjNCP63zMkhZ5bc8LxCC9N5stvAtKOq2wDtnx/xTe8oayIgH668DwfS IXl4XEbA1TJxSnWVlB856uCBj1d83PmZnDiNBL9QPzpFwshLKvUSfdld2ntTyaaI sfybQv7ssxDcj5la -----END CERTIFICATE-----Generated at Fri May 16 23:59:11 2025 by rpki-client