$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/358E4A322A0911EF9CB0DF42C4F9AE02.roa File: 358E4A322A0911EF9CB0DF42C4F9AE02.roa (raw, json) Hash identifier: k6q6OTvrZt9FZR0CO++DFp2+lnzvKo+0IpmYhHGGDHU= Subject key identifier: BE:94:70:22:B7:5B:9B:A2:50:84:FC:E4:04:45:3D:6F:B0:8F:F8:C2 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B6B5 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/358E4A322A0911EF9CB0DF42C4F9AE02.roa Signing time: Thu 08 May 2025 16:17:56 +0000 ROA not before: Thu 08 May 2025 16:17:56 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141841 IP address blocks: 103.168.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:54:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46773 (0xb6b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:17:56 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd933-aade Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:cb:d4:e9:69:1e:a9:88:e9:dc:8e:3a:ed:ad: 9a:c9:23:0b:96:cb:d1:2b:1b:57:91:01:36:e1:bd: 97:3e:63:0c:d6:ee:7c:09:29:7a:7d:d5:20:3c:89: d4:7d:60:a7:a3:20:8d:4a:db:e4:1f:53:de:7b:a9: 05:54:28:37:69:57:eb:7f:3e:63:e8:10:b7:4e:32: ca:e2:7e:3a:65:29:7e:2f:2e:61:e2:00:4c:70:30: ef:53:39:8b:76:59:a8:73:89:d6:e7:92:64:16:15: c9:d6:3a:40:4c:92:ea:e7:16:0c:03:fa:53:74:48: ea:94:0b:53:e9:1b:59:dd:13:d4:d4:fe:44:34:88: 4c:32:48:fa:bb:bb:47:9a:47:7d:45:9c:4e:e3:61: 09:ae:83:e0:82:e6:af:d3:bd:01:cc:3e:b8:84:d9: 4a:05:1f:45:72:34:26:44:05:61:66:d6:1f:e5:99: ca:40:17:f1:f4:99:eb:37:36:4d:64:b0:8b:95:7a: 76:29:f9:18:fd:56:3c:50:98:c4:5b:03:a2:5f:26: 94:2a:20:af:be:4f:36:1f:82:92:b6:5d:34:b0:11: 36:31:a9:e6:9d:87:6b:3f:f1:66:bb:4e:95:9e:0f: 39:c5:13:7d:1c:3e:e6:df:a9:46:e7:b1:4a:e2:a8: d3:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:94:70:22:B7:5B:9B:A2:50:84:FC:E4:04:45:3D:6F:B0:8F:F8:C2 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/358E4A322A0911EF9CB0DF42C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.168.74.0/24 Signature Algorithm: sha256WithRSAEncryption 58:fe:7d:52:eb:dc:97:d9:25:d0:72:33:99:f7:11:9d:ff:a6: 46:30:7d:54:1c:98:10:99:77:15:53:73:00:e7:e3:96:b9:27: bd:88:6c:9c:8f:39:25:53:64:ed:4d:b8:ef:40:15:95:e7:9c: 79:a1:1f:51:8e:a1:ad:20:bc:f7:6d:15:83:b9:c2:c8:52:25: 89:ae:4d:05:0f:a1:38:15:8e:c3:0e:19:0e:48:be:87:a4:14: 5e:eb:83:5d:38:dd:11:f4:b0:9b:5e:25:8c:a4:94:4d:00:97: ef:42:36:df:a8:89:3a:57:19:b4:8d:a4:36:e2:ef:e6:35:d7: 83:93:6c:c6:ed:07:99:05:93:9b:b7:67:38:06:47:1c:b9:4c: b4:fc:01:e1:26:c7:48:37:c5:67:b1:49:96:d8:e5:a1:86:45: 64:3f:ff:3b:36:4e:24:e4:f6:1f:ed:e1:9d:d4:42:5e:55:6d: b6:30:1e:33:03:b2:0c:38:2b:4d:65:f6:fd:fc:c0:c0:0c:c3: cc:92:7a:5e:d2:b6:f4:8f:ee:1a:5e:a1:70:30:a2:09:86:2b: 46:f3:48:fd:12:e0:86:c6:c6:a8:41:55:7a:50:17:8b:fe:98: d0:4a:db:bf:d4:98:54:50:2d:45:66:e7:78:94:2a:fc:d3:84: 87:bb:9a:7b -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDALa1MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MTc1NloXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q5MzMtYWFkZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALXL1OlpHqmI6dyOOu2tmskjC5bL0SsbV5EBNuG9lz5jDNbufAkpen3VIDyJ 1H1gp6MgjUrb5B9T3nupBVQoN2lX638+Y+gQt04yyuJ+OmUpfi8uYeIATHAw71M5 i3ZZqHOJ1ueSZBYVydY6QEyS6ucWDAP6U3RI6pQLU+kbWd0T1NT+RDSITDJI+ru7 R5pHfUWcTuNhCa6D4ILmr9O9Acw+uITZSgUfRXI0JkQFYWbWH+WZykAX8fSZ6zc2 TWSwi5V6din5GP1WPFCYxFsDol8mlCogr75PNh+CkrZdNLARNjGp5p2Haz/xZrtO lZ4POcUTfRw+5t+pRuexSuKo0zMCAwEAAaOCApUwggKRMB0GA1UdDgQWBBS+lHAi t1ubolCE/OQERT1vsI/4wjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzM1OEU0QTMy MkEwOTExRUY5Q0IwREY0MkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQAZ6hKMA0GCSqGSIb3DQEBCwUAA4IBAQBY/n1S69yX2SXQ cjOZ9xGd/6ZGMH1UHJgQmXcVU3MA5+OWuSe9iGycjzklU2TtTbjvQBWV55x5oR9R jqGtILz3bRWDucLIUiWJrk0FD6E4FY7DDhkOSL6HpBRe64NdON0R9LCbXiWMpJRN AJfvQjbfqIk6Vxm0jaQ24u/mNdeDk2zG7QeZBZObt2c4BkccuUy0/AHhJsdIN8Vn sUmW2OWhhkVkP/87Nk4k5PYf7eGd1EJeVW22MB4zA7IMOCtNZfb9/MDADMPMknpe 0rb0j+4aXqFwMKIJhitG80j9EuCGxsaoQVV6UBeL/pjQStu/1JhUUC1FZud4lCr8 04SHu5p7 -----END CERTIFICATE-----Generated at Tue May 13 01:15:01 2025 by rpki-client