$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4A325C8E8C7411EBAD97854FC4F9AE02.roa File: 4A325C8E8C7411EBAD97854FC4F9AE02.roa (raw, json) Hash identifier: PRgJ4GB2Qmonzxgg1zOkeRphygJRVTB/AEDC6iWSiL4= Subject key identifier: 1E:DF:DB:36:FB:FB:3F:11:F2:F1:43:30:8E:A4:5B:3B:F2:F7:CA:09 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B546 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4A325C8E8C7411EBAD97854FC4F9AE02.roa Signing time: Thu 08 May 2025 16:12:21 +0000 ROA not before: Thu 08 May 2025 16:12:21 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 138756 IP address blocks: 103.140.50.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:54:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46406 (0xb546) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:12:21 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd7e5-d67f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:3c:c1:2d:77:2a:29:40:a0:5e:b5:17:c5:22: e2:e0:c1:25:cc:a0:d5:53:47:ab:3c:23:c8:20:f6: e3:09:20:cf:1e:29:0a:56:dc:b2:a2:5f:e9:ca:e5: 2d:62:c7:49:1d:2c:32:88:ab:fa:4b:41:37:a1:b8: 7b:77:bc:e5:2e:f9:8b:0b:f8:9c:e9:08:0b:20:64: 0c:35:07:81:9c:e3:6c:9f:28:c0:92:8b:d6:69:57: ec:ba:a3:e6:92:f8:87:6e:2f:4c:88:bd:a7:a9:5e: 3d:e0:9a:6c:93:e2:75:3b:4b:fa:56:79:31:5e:a4: c5:04:c7:fd:e1:50:b7:84:55:f4:58:9a:3d:17:cd: e2:a4:3c:db:81:22:d0:b7:13:c0:69:d7:f3:f5:ea: df:a4:30:03:65:8e:ed:3c:e2:45:97:2c:8f:7b:6c: 65:78:66:5b:cc:65:32:3c:36:2d:ea:0e:9e:da:f6: 58:93:99:79:30:a2:a7:21:0c:63:cb:06:59:c4:a7: d6:ff:cc:b0:07:a1:53:8f:8a:0b:c6:91:cf:a1:90: a9:2e:17:79:dc:1b:bd:a3:13:7f:73:24:8f:8a:a6: 53:4c:05:40:98:43:ab:7c:ff:2d:ba:86:ba:b7:1b: 24:6d:65:29:25:7c:4b:af:58:bd:bf:a8:06:b4:7d: e0:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:DF:DB:36:FB:FB:3F:11:F2:F1:43:30:8E:A4:5B:3B:F2:F7:CA:09 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4A325C8E8C7411EBAD97854FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.50.0/23 Signature Algorithm: sha256WithRSAEncryption b0:83:96:0f:69:ae:96:e8:44:da:28:1d:78:bd:1e:8e:26:7e: 54:3a:56:76:c9:98:ac:51:1f:e2:41:45:95:93:7f:ad:6b:8d: fe:bb:5e:d4:09:7e:78:6a:88:25:82:74:7d:38:83:22:d1:2a: 78:fc:83:ca:57:f6:5f:ef:ca:51:84:e7:10:e4:7b:77:0e:ac: 4f:80:cf:7b:cd:5d:b3:13:cc:e8:2b:7e:39:a2:fa:f0:79:2d: e1:bd:7c:3f:20:8d:03:f8:cf:33:91:b7:be:96:5c:f4:18:77: 80:45:1c:a4:4c:f3:0a:23:d7:29:0c:3e:74:43:66:c1:9c:e6: ad:62:9b:71:fc:3b:94:c9:41:40:4f:d7:7a:76:f6:a9:1a:42: 0a:23:e7:1c:21:88:b7:4c:44:88:e7:18:9b:49:82:82:29:32: d7:b3:0a:b4:b5:be:be:30:91:48:e3:af:3b:1e:f0:55:13:ce: b3:a8:46:e3:dc:6f:11:ed:d5:99:34:70:04:da:25:8e:99:84: 08:28:1a:d3:88:5b:ec:92:68:37:d1:fa:23:5b:21:da:08:a8: 02:67:92:f2:7f:61:b7:38:df:e3:b6:a1:82:a0:e8:ac:54:1b: 92:f4:38:c4:8c:8c:55:cc:bb:9b:51:4f:f7:7b:3c:5e:da:35: 27:2d:a4:9e -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDALVGMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MTIyMVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q3ZTUtZDY3ZjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL48wS13KilAoF61F8Ui4uDBJcyg1VNHqzwjyCD24wkgzx4pClbcsqJf6crl LWLHSR0sMoir+ktBN6G4e3e85S75iwv4nOkICyBkDDUHgZzjbJ8owJKL1mlX7Lqj 5pL4h24vTIi9p6lePeCabJPidTtL+lZ5MV6kxQTH/eFQt4RV9FiaPRfN4qQ824Ei 0LcTwGnX8/Xq36QwA2WO7TziRZcsj3tsZXhmW8xlMjw2LeoOntr2WJOZeTCipyEM Y8sGWcSn1v/MsAehU4+KC8aRz6GQqS4XedwbvaMTf3Mkj4qmU0wFQJhDq3z/LbqG urcbJG1lKSV8S69Yvb+oBrR94M0CAwEAAaOCApUwggKRMB0GA1UdDgQWBBQe39s2 +/s/EfLxQzCOpFs78vfKCTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzRBMzI1QzhF OEM3NDExRUJBRDk3ODU0RkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQBZ4wyMA0GCSqGSIb3DQEBCwUAA4IBAQCwg5YPaa6W6ETa KB14vR6OJn5UOlZ2yZisUR/iQUWVk3+ta43+u17UCX54aoglgnR9OIMi0Sp4/IPK V/Zf78pRhOcQ5Ht3DqxPgM97zV2zE8zoK345ovrweS3hvXw/II0D+M8zkbe+llz0 GHeARRykTPMKI9cpDD50Q2bBnOatYptx/DuUyUFAT9d6dvapGkIKI+ccIYi3TESI 5xibSYKCKTLXswq0tb6+MJFI4687HvBVE86zqEbj3G8R7dWZNHAE2iWOmYQIKBrT iFvskmg30fojWyHaCKgCZ5Lyf2G3ON/jtqGCoOisVBuS9DjEjIxVzLubUU/3ezxe 2jUnLaSe -----END CERTIFICATE-----Generated at Tue May 13 02:22:26 2025 by rpki-client