$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/425D8074997311EEBEE9587DC4F9AE02.roa File: 425D8074997311EEBEE9587DC4F9AE02.roa (raw, json) Hash identifier: kldvkV1/DvFXA3/Xj9ahdznUDJyG8NnIbftafo7PZWg= Subject key identifier: BF:D9:90:5E:12:AC:62:6C:B3:28:F0:15:B8:B2:F7:88:C6:C8:C6:BF Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B93C Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/425D8074997311EEBEE9587DC4F9AE02.roa Signing time: Thu 08 May 2025 16:27:41 +0000 ROA not before: Thu 08 May 2025 16:27:41 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 151716 IP address blocks: 103.250.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 13:22:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47420 (0xb93c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:27:41 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cdb7d-ec6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ad:4c:df:55:3a:d6:23:70:6a:5e:85:3a:e8: f4:7e:f1:b8:d6:b5:98:ee:6b:b9:5e:de:69:52:39: 4d:3f:4c:b7:9b:50:d9:b8:e9:a8:11:aa:7a:81:58: dd:9f:97:c9:c6:95:a9:93:8a:68:3b:d0:b5:a3:89: c3:e3:ce:45:ef:ec:a1:ff:09:17:4a:3b:77:5a:91: ca:2e:2b:f5:e5:0d:ca:0d:b8:d2:02:01:ed:8a:ff: 3f:8f:00:ee:b1:7d:98:de:6b:21:b7:f7:78:87:a7: 4b:e4:11:80:27:04:ae:6b:5b:df:c0:e5:62:6f:2b: 87:25:c4:fe:b2:2f:5e:b3:da:b7:b0:b1:c1:32:e3: bf:d6:b5:60:f5:68:2a:3c:d2:2c:46:e6:a8:de:24: 53:87:ac:f5:c7:d9:7a:d1:d1:41:2e:d8:5e:ea:7f: 7e:cc:0a:3d:d6:8f:08:76:a1:cf:87:1b:44:70:67: f7:95:73:a3:f1:5c:e4:8f:0e:5e:fa:7a:46:fc:40: 7a:1b:7c:b0:41:6a:a3:b4:7b:ff:7a:cb:e9:11:3d: 3f:b2:a6:7a:33:d1:90:ce:7d:ff:34:8a:e7:5a:be: f2:36:41:f0:6d:f6:e7:97:51:c9:0b:7d:90:0e:4c: 5d:a4:65:69:70:06:c5:fa:53:f4:82:47:f5:11:64: 11:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:D9:90:5E:12:AC:62:6C:B3:28:F0:15:B8:B2:F7:88:C6:C8:C6:BF X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/425D8074997311EEBEE9587DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.250.96.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:bc:c0:8a:c5:5b:ce:7d:78:1b:df:7f:34:32:1f:a4:04:fa: 57:fc:31:c2:ed:77:99:f6:75:92:cb:af:55:0d:61:fe:08:0b: 28:fd:ce:61:a2:15:4b:0a:27:be:0d:56:43:6d:41:de:5b:cc: 5c:c2:1b:b5:d6:62:cd:66:e6:a7:ea:1b:39:55:7f:0c:5c:60: 9b:c7:cc:e9:14:27:60:c6:58:46:dd:c2:3c:64:74:b5:ea:97: c0:41:7b:89:a3:ef:a1:87:61:7f:04:ef:15:03:51:ed:5a:6f: 2e:af:b8:5e:0e:18:d6:b0:35:f8:91:7b:6b:ce:68:f9:68:cf: c2:43:d3:16:4c:a4:74:ec:b7:67:a7:e6:cf:24:a6:66:77:ef: 76:37:b5:05:2d:ef:10:8e:70:43:20:22:53:5a:53:06:c0:ea: f1:a0:77:95:58:b5:a5:c0:57:70:da:b3:68:71:76:7e:07:c9: df:71:e6:3c:99:7c:1c:4c:dd:b9:b1:9d:72:28:a1:65:60:65: 24:36:e6:49:bd:5a:2b:51:4a:4f:1e:b4:56:05:7f:48:b8:d4: f0:84:27:12:57:a2:2f:57:c4:72:64:79:8c:99:d6:cd:96:64: 65:4b:57:ce:f6:41:86:17:d3:11:5e:4b:23:ba:2b:41:36:2d: 72:71:fc:5b -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDALk8MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2Mjc0MVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2RiN2QtZWM2YzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK2tTN9VOtYjcGpehTro9H7xuNa1mO5ruV7eaVI5TT9Mt5tQ2bjpqBGqeoFY 3Z+XycaVqZOKaDvQtaOJw+PORe/sof8JF0o7d1qRyi4r9eUNyg240gIB7Yr/P48A 7rF9mN5rIbf3eIenS+QRgCcErmtb38DlYm8rhyXE/rIvXrPat7CxwTLjv9a1YPVo KjzSLEbmqN4kU4es9cfZetHRQS7YXup/fswKPdaPCHahz4cbRHBn95Vzo/Fc5I8O Xvp6RvxAeht8sEFqo7R7/3rL6RE9P7KmejPRkM59/zSK51q+8jZB8G3255dRyQt9 kA5MXaRlaXAGxfpT9IJH9RFkEQECAwEAAaOCApUwggKRMB0GA1UdDgQWBBS/2ZBe EqxibLMo8BW4sveIxsjGvzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzQyNUQ4MDc0 OTk3MzExRUVCRUU5NTg3REM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQAZ/pgMA0GCSqGSIb3DQEBCwUAA4IBAQBKvMCKxVvOfXgb 3380Mh+kBPpX/DHC7XeZ9nWSy69VDWH+CAso/c5hohVLCie+DVZDbUHeW8xcwhu1 1mLNZuan6hs5VX8MXGCbx8zpFCdgxlhG3cI8ZHS16pfAQXuJo++hh2F/BO8VA1Ht Wm8ur7heDhjWsDX4kXtrzmj5aM/CQ9MWTKR07Ldnp+bPJKZmd+92N7UFLe8QjnBD ICJTWlMGwOrxoHeVWLWlwFdw2rNocXZ+B8nfceY8mXwcTN25sZ1yKKFlYGUkNuZJ vVorUUpPHrRWBX9IuNTwhCcSV6IvV8RyZHmMmdbNlmRlS1fO9kGGF9MRXksjuitB Ni1ycfxb -----END CERTIFICATE-----Generated at Tue May 13 22:53:59 2025 by rpki-client