$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4E8CD9D0CF4B11EFB61FC224C4F9AE02.roa File: 4E8CD9D0CF4B11EFB61FC224C4F9AE02.roa (raw, json) Hash identifier: eRuInuGI84y8gjhPq4kxayVpnsrjqVCOQRZaSzc8e5g= Subject key identifier: 7F:43:C2:47:33:53:EE:8C:CD:79:23:36:3D:06:AD:DE:39:25:51:F5 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B912 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4E8CD9D0CF4B11EFB61FC224C4F9AE02.roa Signing time: Thu 08 May 2025 16:27:01 +0000 ROA not before: Thu 08 May 2025 16:27:01 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 151158 IP address blocks: 103.120.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:54:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47378 (0xb912) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:27:01 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cdb55-ce58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:a3:ad:ed:65:94:a2:f6:28:79:f6:37:de:73: 76:59:ae:15:09:fe:a6:53:20:a8:1b:e5:17:8e:42: 52:71:90:ae:fb:ca:6a:40:dd:aa:47:0a:bb:8b:ee: db:33:d6:e0:b2:40:58:2f:df:01:a1:bc:15:73:d7: 02:d4:69:df:16:95:cf:a1:be:40:da:20:e9:af:50: a4:c1:08:0d:62:ca:71:0d:6e:ca:62:24:a4:94:e1: f0:bd:04:01:ba:a6:e1:08:76:22:33:7e:2a:a9:54: e6:b6:09:84:39:7c:fb:58:11:ee:25:13:f9:89:91: d9:a7:ff:c7:e6:82:34:b0:e4:42:57:d5:c2:e1:24: 30:e4:11:2e:57:5b:f9:1f:2b:54:62:83:cc:c5:ba: e7:11:1a:09:6f:b1:89:2f:28:83:07:83:71:ba:d0: 22:84:c7:a2:eb:ca:08:76:8e:5c:42:f4:2b:92:23: 40:63:fd:36:07:2d:e7:b9:a7:d2:6f:30:72:84:27: a1:42:2a:3e:40:86:f1:e4:b6:52:d2:3f:32:48:e7: 95:73:00:c6:22:1e:63:d6:e6:02:47:08:9c:1d:36: 7d:fd:a4:cb:0c:73:5f:32:b7:cd:0e:29:32:55:ff: 82:0a:ff:a7:f9:3e:cd:76:0b:c2:03:36:0a:6a:a7: 79:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:43:C2:47:33:53:EE:8C:CD:79:23:36:3D:06:AD:DE:39:25:51:F5 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/4E8CD9D0CF4B11EFB61FC224C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.108.0/24 Signature Algorithm: sha256WithRSAEncryption b0:5b:1e:c8:5f:88:09:a9:5b:30:32:de:3e:91:fa:c5:96:fc: 34:65:41:b0:e1:ce:d7:8d:9f:10:05:88:07:41:7c:0c:92:7f: 56:cb:b2:c2:96:6d:9d:f3:2f:28:eb:83:8f:2c:8f:f9:98:86: 70:f1:27:8d:a8:52:db:b1:ae:4c:43:09:bd:ec:2c:1a:96:2c: 83:48:95:d9:c8:5b:2d:f0:8a:83:ae:98:c3:55:c4:bf:c3:11: 34:38:50:21:67:ca:e5:ce:9d:97:a5:dc:c8:73:a1:a9:35:f9: d9:39:24:28:e1:eb:89:01:b1:4d:16:72:76:92:bc:0d:f7:dd: 27:f1:cb:8e:81:bf:3e:00:d2:50:2c:c0:41:aa:c5:f5:5a:0a: 22:84:f9:82:f2:0d:81:15:38:61:b9:cd:de:7a:e0:30:43:18: 77:2e:a1:8d:e3:b7:f3:4c:a5:2d:dc:b7:b5:24:4c:f4:54:c6: de:a1:27:b0:5c:9a:3c:45:3c:6b:d2:41:64:5e:7e:8e:16:2f: 6e:77:50:db:7b:59:74:00:e5:1e:90:7c:68:62:12:04:f1:31: aa:1f:af:c3:55:31:c4:ae:f9:0e:4b:42:83:d4:5b:88:d2:1b: 66:d8:04:29:be:d9:f8:b6:95:10:f3:5b:ae:44:af:b6:c0:ea: 25:7d:36:e1 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDALkSMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MjcwMVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2RiNTUtY2U1ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOOjre1llKL2KHn2N95zdlmuFQn+plMgqBvlF45CUnGQrvvKakDdqkcKu4vu 2zPW4LJAWC/fAaG8FXPXAtRp3xaVz6G+QNog6a9QpMEIDWLKcQ1uymIkpJTh8L0E Abqm4Qh2IjN+KqlU5rYJhDl8+1gR7iUT+YmR2af/x+aCNLDkQlfVwuEkMOQRLldb +R8rVGKDzMW65xEaCW+xiS8ogweDcbrQIoTHouvKCHaOXEL0K5IjQGP9Ngct57mn 0m8wcoQnoUIqPkCG8eS2UtI/MkjnlXMAxiIeY9bmAkcInB02ff2kywxzXzK3zQ4p MlX/ggr/p/k+zXYLwgM2CmqneXMCAwEAAaOCApUwggKRMB0GA1UdDgQWBBR/Q8JH M1PujM15IzY9Bq3eOSVR9TAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzRFOENEOUQw Q0Y0QjExRUZCNjFGQzIyNEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQAZ3hsMA0GCSqGSIb3DQEBCwUAA4IBAQCwWx7IX4gJqVsw Mt4+kfrFlvw0ZUGw4c7XjZ8QBYgHQXwMkn9Wy7LClm2d8y8o64OPLI/5mIZw8SeN qFLbsa5MQwm97CwaliyDSJXZyFst8IqDrpjDVcS/wxE0OFAhZ8rlzp2XpdzIc6Gp NfnZOSQo4euJAbFNFnJ2krwN990n8cuOgb8+ANJQLMBBqsX1WgoihPmC8g2BFThh uc3eeuAwQxh3LqGN47fzTKUt3Le1JEz0VMbeoSewXJo8RTxr0kFkXn6OFi9ud1Db e1l0AOUekHxoYhIE8TGqH6/DVTHErvkOS0KD1FuI0htm2AQpvtn4tpUQ81uuRK+2 wOolfTbh -----END CERTIFICATE-----Generated at Tue May 13 02:17:15 2025 by rpki-client