$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/51EECCE0EDBA11EF9D283576C4F9AE02.roa File: 51EECCE0EDBA11EF9D283576C4F9AE02.roa (raw, json) Hash identifier: 2/muJTNTOwAfl56ql3LorjW5cmsZNRoWN2vy+k0/R5g= Subject key identifier: 76:11:90:EA:70:F4:76:A5:53:04:B1:B8:5D:B8:C2:B5:CC:BB:81:F8 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B294 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/51EECCE0EDBA11EF9D283576C4F9AE02.roa Signing time: Thu 08 May 2025 16:01:42 +0000 ROA not before: Thu 08 May 2025 16:01:42 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 134375 IP address blocks: 45.251.48.0/22 maxlen: 24 103.164.24.0/23 maxlen: 24 103.176.140.0/23 maxlen: 24 103.179.8.0/23 maxlen: 24 103.219.228.0/22 maxlen: 24 203.145.42.0/23 maxlen: 24 203.145.56.0/23 maxlen: 24 2001:df4:e6c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:54:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45716 (0xb294) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:01:42 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd566-669b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a3:7b:44:1f:d1:24:f2:c3:68:63:e4:90:91: 4d:d0:18:dd:1c:49:1c:b0:e3:91:01:c5:b5:1e:de: 60:a2:a0:33:cc:2e:28:f5:78:61:f1:0d:4e:0c:43: 6f:eb:0a:27:6a:a1:bc:d1:70:5a:1f:59:26:4f:de: 7a:03:30:2e:fd:dc:1a:ef:b5:44:7d:10:86:40:94: 25:d9:51:b5:56:29:99:45:d4:0e:0d:b1:36:b6:dc: 20:c7:b2:6f:89:9b:24:19:dd:42:6a:70:4c:5d:6b: e8:31:32:0c:18:8e:57:d4:37:1b:95:25:b8:53:39: 33:74:e2:6a:2c:75:55:a5:95:46:5a:b5:72:4d:5f: 44:4b:2f:63:04:38:55:ed:78:e0:d0:ef:de:b3:f8: 2c:47:23:5a:aa:79:26:a1:cd:0b:95:75:dc:6f:9f: 13:34:76:c6:e2:b3:c8:bc:f3:f5:f4:b1:21:e1:4d: cc:11:c9:c8:c7:c2:82:ea:b2:48:37:d2:8b:4b:e5: 1a:c0:b4:ac:f8:2c:b7:e5:81:92:1e:41:f1:aa:89: 06:69:72:6d:49:37:d2:31:c8:b4:5f:0c:e8:6a:28: f1:49:e8:46:30:1c:b3:fc:3e:fc:24:52:27:d6:2b: 3b:50:ba:5a:d5:ca:5f:49:ae:c1:c9:c2:9c:7e:26: 88:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:11:90:EA:70:F4:76:A5:53:04:B1:B8:5D:B8:C2:B5:CC:BB:81:F8 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/51EECCE0EDBA11EF9D283576C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.251.48.0/22 103.164.24.0/23 103.176.140.0/23 103.179.8.0/23 103.219.228.0/22 203.145.42.0/23 203.145.56.0/23 IPv6: 2001:df4:e6c0::/48 Signature Algorithm: sha256WithRSAEncryption 85:1a:37:17:28:88:92:f2:d9:51:f6:f0:e6:04:b1:c1:1a:4c: a0:cb:39:db:6c:2b:d9:7e:b8:6d:ab:ef:fe:b1:8e:57:91:aa: ce:8c:a3:5f:9c:7f:41:7d:b7:02:07:62:0f:12:47:50:1b:ec: 73:3f:75:28:c3:89:d0:b4:17:a1:15:2e:b0:47:3a:f3:6a:55: 95:41:4f:c6:ad:d9:1c:2e:1c:d3:96:0f:ec:bb:fa:87:6d:b8: 2e:d1:de:ac:f5:72:37:33:08:c9:24:3a:92:dc:85:87:29:bb: 8d:f4:32:78:5e:a4:1b:9d:51:83:00:8a:2a:0b:3f:3e:b7:70: 27:d8:04:ba:09:4b:bf:0d:3a:9d:5d:34:57:be:fe:5a:e4:de: 12:1e:19:c8:cc:30:65:dd:f4:8e:b5:6a:9b:64:c0:d7:c0:7a: ef:ca:e9:9e:42:da:ce:5f:b4:d4:cc:0a:68:3e:b0:17:b7:fe: 72:d7:f7:94:4a:f6:f5:0b:4a:09:3f:76:34:32:af:4f:7c:82: 2f:ec:d0:e2:af:01:68:1a:a9:63:0f:ed:a1:23:60:20:f4:58: b3:1e:03:a8:05:2f:a2:20:9e:5c:f9:c2:21:01:51:ef:89:fb: 69:ca:50:cb:7f:ae:d8:7c:45:e9:12:40:62:d5:dc:32:09:a3: 5d:b0:d3:cd -----BEGIN CERTIFICATE----- MIIFpzCCBI+gAwIBAgIDALKUMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MDE0MloXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q1NjYtNjY5YjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM+je0Qf0STyw2hj5JCRTdAY3RxJHLDjkQHFtR7eYKKgM8wuKPV4YfENTgxD b+sKJ2qhvNFwWh9ZJk/eegMwLv3cGu+1RH0QhkCUJdlRtVYpmUXUDg2xNrbcIMey b4mbJBndQmpwTF1r6DEyDBiOV9Q3G5UluFM5M3Tiaix1VaWVRlq1ck1fREsvYwQ4 Ve144NDv3rP4LEcjWqp5JqHNC5V13G+fEzR2xuKzyLzz9fSxIeFNzBHJyMfCguqy SDfSi0vlGsC0rPgst+WBkh5B8aqJBmlybUk30jHItF8M6Goo8UnoRjAcs/w+/CRS J9YrO1C6WtXKX0muwcnCnH4miKMCAwEAAaOCAsowggLGMB0GA1UdDgQWBBR2EZDq cPR2pVMEsbhduMK1zLuB+DAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzUxRUVDQ0Uw RURCQTExRUY5RDI4MzU3NkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMFQGCCsGAQUFBwEHAQH/ BEUwQzAwBAIAATAqAwQCLfswAwQBZ6QYAwQBZ7CMAwQBZ7MIAwQCZ9vkAwQBy5Eq AwQBy5E4MA8EAgACMAkDBwAgAQ305sAwDQYJKoZIhvcNAQELBQADggEBAIUaNxco iJLy2VH28OYEscEaTKDLOdtsK9l+uG2r7/6xjleRqs6Mo1+cf0F9twIHYg8SR1Ab 7HM/dSjDidC0F6EVLrBHOvNqVZVBT8at2RwuHNOWD+y7+odtuC7R3qz1cjczCMkk OpLchYcpu430MnhepBudUYMAiioLPz63cCfYBLoJS78NOp1dNFe+/lrk3hIeGcjM MGXd9I61aptkwNfAeu/K6Z5C2s5ftNTMCmg+sBe3/nLX95RK9vULSgk/djQyr098 gi/s0OKvAWgaqWMP7aEjYCD0WLMeA6gFL6Ignlz5wiEBUe+J+2nKUMt/rth8RekS QGLV3DIJo12w080= -----END CERTIFICATE-----Generated at Tue May 13 01:51:17 2025 by rpki-client