$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/47F77B94AA9011EC85962A36C4F9AE02.roa File: 47F77B94AA9011EC85962A36C4F9AE02.roa (raw, json) Hash identifier: JhsxB7RkKJgLN1MmpW7ONYTt1VAaBiqFoAR5koK/7Ro= Subject key identifier: 53:1D:7D:2F:75:0F:31:DD:6F:CE:E5:68:C0:53:BF:A4:23:EC:63:CC Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B139 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/47F77B94AA9011EC85962A36C4F9AE02.roa Signing time: Thu 08 May 2025 15:56:19 +0000 ROA not before: Thu 08 May 2025 15:56:19 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 132497 IP address blocks: 103.31.144.0/22 maxlen: 24 103.195.248.0/22 maxlen: 22 103.195.248.0/24 maxlen: 24 103.195.249.0/24 maxlen: 24 103.195.250.0/24 maxlen: 24 103.195.251.0/24 maxlen: 24 103.225.132.0/24 maxlen: 24 103.225.133.0/24 maxlen: 24 103.225.134.0/24 maxlen: 24 103.225.135.0/24 maxlen: 24 103.226.84.0/22 maxlen: 24 150.107.16.0/24 maxlen: 24 150.107.17.0/24 maxlen: 24 150.107.18.0/24 maxlen: 24 150.107.19.0/24 maxlen: 24 150.129.28.0/22 maxlen: 24 150.242.196.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 13:22:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45369 (0xb139) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 15:56:19 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd423-1bec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f2:dc:b6:54:3b:6c:67:81:f4:e8:1f:0c:af: 49:3d:90:cf:09:b7:0c:dd:3e:e1:a5:5d:56:1f:2e: aa:a5:aa:45:05:47:90:8e:c7:41:12:f8:95:d7:73: c9:42:bc:00:8d:0e:e1:a0:86:91:51:ca:60:c7:3c: ba:a4:5a:ad:8e:10:8c:5e:9c:e2:27:54:e4:5e:3b: d3:2f:b8:23:67:4c:f1:0b:d2:db:1d:20:eb:b8:d9: cc:e0:a1:c5:82:a2:81:74:9f:c1:84:43:b0:27:d0: 03:0c:3c:d4:42:73:9d:ac:d7:74:5d:db:57:e9:73: 45:1a:41:fa:86:aa:bd:9b:96:21:c5:39:83:84:de: e8:8a:aa:b5:63:95:47:3c:f3:74:d7:e2:e8:b7:51: 5a:83:ba:19:b2:9b:57:54:b1:5f:6f:8c:c5:3c:94: a3:b6:27:29:b5:78:f7:86:69:2d:77:95:5e:c4:d3: a6:c0:82:5f:92:39:5e:c1:bc:5b:7e:e4:b6:03:db: f2:b7:72:5a:6d:b9:d0:c8:a9:64:8d:51:c3:a6:c3: 41:7f:69:ad:34:f8:6f:04:62:f9:cb:d5:f7:6c:30: 6b:a7:40:d8:2c:88:31:43:61:5f:ae:22:fc:e4:e5: dd:3f:f4:cc:2e:48:b6:1b:f4:f2:35:1a:62:96:f8: cc:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:1D:7D:2F:75:0F:31:DD:6F:CE:E5:68:C0:53:BF:A4:23:EC:63:CC X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/47F77B94AA9011EC85962A36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.31.144.0/22 103.195.248.0/22 103.225.132.0/22 103.226.84.0/22 150.107.16.0/22 150.129.28.0/22 150.242.196.0/22 Signature Algorithm: sha256WithRSAEncryption 51:a7:b3:25:a7:5c:2c:32:c5:0a:4b:28:ac:9d:64:46:fe:98: 9d:e6:c6:c1:f0:e9:79:93:75:07:72:e5:9e:a4:91:67:90:a9: 4d:cd:40:c8:f2:37:73:22:4b:09:0e:60:df:3e:ef:b9:a6:27: 45:e5:90:b7:51:b2:8b:ba:60:c0:d9:a8:43:40:60:64:09:00: 9a:3e:90:f0:7e:72:19:85:1a:01:14:91:03:50:2e:87:dc:92: 59:db:49:d7:90:3b:d2:3a:8f:8d:ca:08:50:77:df:84:c7:eb: 97:f8:06:29:09:60:22:21:de:29:9c:ac:d4:a0:9b:e3:88:d7: 41:3f:a7:cf:c8:ef:b3:4d:49:d7:bf:c4:35:2e:e6:10:86:b8: f1:5e:37:5a:e9:02:9b:35:4e:68:de:14:a9:a5:6d:c5:d2:98: 27:95:c7:c7:26:b1:59:ad:58:f7:fb:40:f0:31:70:c9:e7:da: af:9b:bc:7a:97:a7:c2:15:a5:86:44:9f:96:20:95:0d:27:da: bc:24:49:58:04:6f:07:9e:d7:64:1a:8c:6f:2e:df:b1:fa:52: 55:a3:8c:dd:be:21:9e:d9:09:af:b5:38:cf:8e:70:83:64:fb: ce:d9:6c:f0:ae:9c:1f:49:05:58:9a:b4:56:2e:db:82:66:4b: 95:a3:ed:ea -----BEGIN CERTIFICATE----- MIIFljCCBH6gAwIBAgIDALE5MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE1NTYxOVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q0MjMtMWJlYzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK/y3LZUO2xngfToHwyvST2Qzwm3DN0+4aVdVh8uqqWqRQVHkI7HQRL4lddz yUK8AI0O4aCGkVHKYMc8uqRarY4QjF6c4idU5F470y+4I2dM8QvS2x0g67jZzOCh xYKigXSfwYRDsCfQAww81EJznazXdF3bV+lzRRpB+oaqvZuWIcU5g4Te6IqqtWOV RzzzdNfi6LdRWoO6GbKbV1SxX2+MxTyUo7YnKbV494ZpLXeVXsTTpsCCX5I5XsG8 W37ktgPb8rdyWm250MipZI1Rw6bDQX9prTT4bwRi+cvV92wwa6dA2CyIMUNhX64i /OTl3T/0zC5Ithv08jUaYpb4zK8CAwEAAaOCArkwggK1MB0GA1UdDgQWBBRTHX0v dQ8x3W/O5WjAU7+kI+xjzDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzQ3Rjc3Qjk0 QUE5MDExRUM4NTk2MkEzNkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMEMGCCsGAQUFBwEHAQH/ BDQwMjAwBAIAATAqAwQCZx+QAwQCZ8P4AwQCZ+GEAwQCZ+JUAwQClmsQAwQCloEc AwQClvLEMA0GCSqGSIb3DQEBCwUAA4IBAQBRp7Mlp1wsMsUKSyisnWRG/pid5sbB 8Ol5k3UHcuWepJFnkKlNzUDI8jdzIksJDmDfPu+5pidF5ZC3UbKLumDA2ahDQGBk CQCaPpDwfnIZhRoBFJEDUC6H3JJZ20nXkDvSOo+NyghQd9+Ex+uX+AYpCWAiId4p nKzUoJvjiNdBP6fPyO+zTUnXv8Q1LuYQhrjxXjda6QKbNU5o3hSppW3F0pgnlcfH JrFZrVj3+0DwMXDJ59qvm7x6l6fCFaWGRJ+WIJUNJ9q8JElYBG8HntdkGoxvLt+x +lJVo4zdviGe2QmvtTjPjnCDZPvO2WzwrpwfSQVYmrRWLtuCZkuVo+3q -----END CERTIFICATE-----Generated at Wed May 14 01:38:54 2025 by rpki-client