$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4A1EF9BCFE3711EF9A63CD78C4F9AE02.roa File: 4A1EF9BCFE3711EF9A63CD78C4F9AE02.roa (raw, json) Hash identifier: N4n0PxspCtI5nXwDGWpiwGSiP3vZLiGo3fnfE54QhNU= Subject key identifier: 69:70:E3:88:27:8D:AE:7F:B2:08:0F:3A:CE:75:60:91:6F:45:3C:EA Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: BA6E Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4A1EF9BCFE3711EF9A63CD78C4F9AE02.roa Signing time: Thu 08 May 2025 16:32:20 +0000 ROA not before: Thu 08 May 2025 16:32:20 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 59194 IP address blocks: 103.105.72.0/24 maxlen: 24 103.209.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:54:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47726 (0xba6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:32:20 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cdc94-6d1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:07:3a:d7:1c:cc:c5:fe:17:6b:0e:90:58:76: d0:33:98:5d:06:f3:5b:5a:34:8f:50:9c:3a:58:e2: 1e:9b:3d:6d:2f:3b:3f:ef:b8:7f:7a:ae:1c:03:86: dc:5a:2a:0c:ae:42:b4:f5:a0:8b:c1:c0:c7:29:e3: 59:a0:4e:7b:ad:45:e3:6b:fa:12:99:00:fd:8f:9a: fc:18:0d:95:3c:31:58:e7:0a:6a:9f:7c:5a:c9:80: 50:23:69:c9:54:1e:8b:b7:88:33:80:f4:86:01:15: c8:b6:27:b5:e6:30:ae:b8:60:f8:c3:2e:3a:05:b8: a8:3a:e7:8e:f3:54:e4:d5:21:1e:3e:18:a7:62:1b: 58:2f:e3:ae:82:43:e1:7a:a3:39:3a:6c:05:3d:ea: a3:66:3e:2e:3c:19:13:f3:0c:c2:0d:0d:06:ae:99: c2:59:cf:c0:fe:39:b2:7f:b7:92:84:bd:a1:a0:2b: 96:19:e1:a2:a0:bb:39:b1:80:17:75:09:14:11:71: 52:b5:61:e8:be:d5:ec:d4:e5:8e:c0:b3:d3:28:b4: b6:22:40:47:02:29:88:4f:ea:18:59:f1:25:22:6b: d1:30:9a:c4:57:e2:89:ba:67:ba:c3:7e:d6:f3:ee: c4:7f:04:22:aa:a5:b7:06:aa:fe:39:99:73:d8:b9: be:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:70:E3:88:27:8D:AE:7F:B2:08:0F:3A:CE:75:60:91:6F:45:3C:EA X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4A1EF9BCFE3711EF9A63CD78C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.105.72.0/24 103.209.26.0/24 Signature Algorithm: sha256WithRSAEncryption 03:d4:37:21:d1:2e:25:1e:e0:18:fb:19:79:3d:b7:76:ab:65: b1:f3:a2:7e:20:3d:ea:de:4a:97:55:16:18:96:71:17:63:26: 92:09:b0:21:d3:f7:43:a5:10:c2:82:bd:50:6a:fe:db:e0:91: fa:d3:19:d3:ab:11:23:89:5c:dc:95:2b:3d:5a:30:23:88:0b: 5a:52:d0:db:d6:57:72:52:08:fd:25:47:10:b8:b9:41:c5:eb: 4d:ef:1b:3e:6f:d3:8a:b0:2b:06:fe:ff:de:4d:cd:20:44:30: 0c:db:94:77:da:d4:f3:ad:86:1e:32:de:11:83:86:89:2c:58: b3:9b:c3:6c:c5:03:d5:98:a8:d0:e0:b6:4b:7c:5a:ea:63:7e: 01:97:80:43:4f:bc:f7:a0:c1:09:dc:a7:37:4d:8d:78:16:d1: ad:19:2a:29:01:8d:09:26:10:47:88:f3:14:77:21:e7:df:7d: c9:d5:b9:84:55:38:1c:d6:77:97:45:c0:c7:fc:98:6f:b9:f7: 6a:6b:ac:ab:6c:a9:20:08:49:9d:50:22:4c:0f:79:45:67:14: 8f:58:78:3e:73:12:e1:11:83:18:ac:f0:52:b8:3b:6e:86:1a: 1d:be:dc:e7:a0:81:cc:70:fc:a0:01:bc:e3:f1:5e:2a:66:36: 70:b8:11:97 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIDALpuMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MzIyMFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2RjOTQtNmQxYjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALcHOtcczMX+F2sOkFh20DOYXQbzW1o0j1CcOljiHps9bS87P++4f3quHAOG 3FoqDK5CtPWgi8HAxynjWaBOe61F42v6EpkA/Y+a/BgNlTwxWOcKap98WsmAUCNp yVQei7eIM4D0hgEVyLYnteYwrrhg+MMuOgW4qDrnjvNU5NUhHj4Yp2IbWC/jroJD 4XqjOTpsBT3qo2Y+LjwZE/MMwg0NBq6ZwlnPwP45sn+3koS9oaArlhnhoqC7ObGA F3UJFBFxUrVh6L7V7NTljsCz0yi0tiJARwIpiE/qGFnxJSJr0TCaxFfiibpnusN+ 1vPuxH8EIqqltwaq/jmZc9i5vvECAwEAAaOCApswggKXMB0GA1UdDgQWBBRpcOOI J42uf7IIDzrOdWCRb0U86jAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzRBMUVGOUJD RkUzNzExRUY5QTYzQ0Q3OEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCUGCCsGAQUFBwEHAQH/ BBYwFDASBAIAATAMAwQAZ2lIAwQAZ9EaMA0GCSqGSIb3DQEBCwUAA4IBAQAD1Dch 0S4lHuAY+xl5Pbd2q2Wx86J+ID3q3kqXVRYYlnEXYyaSCbAh0/dDpRDCgr1Qav7b 4JH60xnTqxEjiVzclSs9WjAjiAtaUtDb1ldyUgj9JUcQuLlBxetN7xs+b9OKsCsG /v/eTc0gRDAM25R32tTzrYYeMt4Rg4aJLFizm8NsxQPVmKjQ4LZLfFrqY34Bl4BD T7z3oMEJ3Kc3TY14FtGtGSopAY0JJhBHiPMUdyHn333J1bmEVTgc1neXRcDH/Jhv ufdqa6yrbKkgCEmdUCJMD3lFZxSPWHg+cxLhEYMYrPBSuDtuhhodvtznoIHMcPyg Abzj8V4qZjZwuBGX -----END CERTIFICATE-----Generated at Tue May 13 00:52:31 2025 by rpki-client