$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5220488ABDCF11EA8755D90DC4F9AE02.roa File: 5220488ABDCF11EA8755D90DC4F9AE02.roa (raw, json) Hash identifier: yqRmYy/7TjbzsYF2kBr2IQArmzgKl4uiKMT/W5IIRwg= Subject key identifier: 93:BA:2F:29:01:CC:BA:6F:65:19:55:B7:0F:D4:80:D4:1F:BA:89:40 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B1F9 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5220488ABDCF11EA8755D90DC4F9AE02.roa Signing time: Thu 08 May 2025 15:59:20 +0000 ROA not before: Thu 08 May 2025 15:59:20 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 133697 IP address blocks: 103.145.168.0/23 maxlen: 24 2001:df2:49c0::/48 maxlen: 48 2001:df5:8140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:54:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45561 (0xb1f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 15:59:20 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd4d8-df83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:69:71:bb:6e:71:1c:c9:e0:60:56:2a:3a:8d: 7b:27:b1:08:f7:0f:c9:58:1b:e0:40:53:93:3e:a4: eb:3a:4e:de:42:5a:2e:0f:a3:37:ad:fb:36:3d:fc: f4:ec:56:f5:f1:99:68:34:a4:fb:dd:cf:78:0a:95: bc:33:ae:b5:47:ef:6a:71:3d:dd:82:ae:26:fb:c5: 40:d0:cc:36:3a:93:23:d9:52:29:3c:94:f7:19:6f: 84:39:fc:1b:85:7f:d4:c2:5e:d4:ad:e7:b4:15:20: 15:4f:80:07:ea:64:39:8c:31:a8:80:ec:8a:f4:18: 7e:ba:fb:3f:3e:93:93:9c:89:bf:da:7a:87:d6:81: bc:4c:35:00:d4:bf:26:e0:6a:a4:78:c4:f1:70:7a: e4:5c:5a:e9:7a:70:e8:19:27:3a:60:37:2d:28:55: e6:09:b5:02:e6:9b:cc:35:62:7f:93:34:3f:bd:84: 9c:e4:76:96:5d:6d:8c:5e:e9:8c:a6:7c:8d:e9:e1: a5:d6:53:db:cd:7d:d7:91:da:00:cb:8d:fd:bc:7a: 02:8b:5b:4e:fa:ce:4f:70:07:f6:68:90:42:bc:e3: eb:ee:ca:ef:7a:d4:c8:73:7f:b6:3c:01:fe:38:d3: 27:b1:f0:4e:3e:57:c6:0f:30:07:ec:71:83:0f:83: 10:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:BA:2F:29:01:CC:BA:6F:65:19:55:B7:0F:D4:80:D4:1F:BA:89:40 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5220488ABDCF11EA8755D90DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.145.168.0/23 IPv6: 2001:df2:49c0::/48 2001:df5:8140::/48 Signature Algorithm: sha256WithRSAEncryption 84:0d:8f:c1:03:52:1b:2c:d7:d1:22:cf:5c:4a:4f:e5:ba:c5: dc:62:b6:81:c1:be:93:2a:d5:2d:f5:1a:e4:27:77:09:2e:d2: cd:fe:66:73:ca:56:ff:99:a6:91:77:f4:0b:d7:ae:f2:d6:04: c1:84:67:df:13:cc:dd:89:7b:aa:e8:c4:d0:5e:36:15:15:db: 4c:0e:cf:67:3b:64:47:ae:10:c1:8f:16:f0:06:03:2e:2f:75: 0c:cc:1c:d7:e9:e4:13:32:bf:15:92:5b:05:24:b4:22:95:cd: 1c:2c:06:f8:52:01:36:b7:4b:38:60:34:3d:4d:a5:28:b6:46: 73:5c:81:aa:7f:1f:9e:1e:b8:8e:a9:55:be:a0:01:21:14:94: ad:a6:ba:53:d1:d7:c3:c9:62:b1:09:d9:aa:3b:8a:e1:55:0d: 91:c1:62:5b:34:07:ef:85:7d:86:7c:4f:ff:6e:aa:3d:f0:42: b0:da:b4:23:bf:46:d0:7c:98:68:a6:fd:25:b5:ac:d2:ed:77: 16:19:15:ba:c0:ca:81:75:8f:1e:b2:e7:a0:97:d4:51:b1:b0: 18:fa:63:96:9c:75:ef:a2:88:a2:7d:14:3c:32:ad:52:da:5c: bd:b0:0c:36:ef:77:4d:a3:26:b9:86:d4:60:74:42:ac:4a:fb: 1e:54:5e:92 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgIDALH5MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE1NTkyMFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q0ZDgtZGY4MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKVpcbtucRzJ4GBWKjqNeyexCPcPyVgb4EBTkz6k6zpO3kJaLg+jN637Nj38 9OxW9fGZaDSk+93PeAqVvDOutUfvanE93YKuJvvFQNDMNjqTI9lSKTyU9xlvhDn8 G4V/1MJe1K3ntBUgFU+AB+pkOYwxqIDsivQYfrr7Pz6Tk5yJv9p6h9aBvEw1ANS/ JuBqpHjE8XB65Fxa6Xpw6BknOmA3LShV5gm1AuabzDVif5M0P72EnOR2ll1tjF7p jKZ8jenhpdZT281915HaAMuN/bx6AotbTvrOT3AH9miQQrzj6+7K73rUyHN/tjwB /jjTJ7HwTj5Xxg8wB+xxgw+DEO0CAwEAAaOCAq8wggKrMB0GA1UdDgQWBBSTui8p Acy6b2UZVbcP1IDUH7qJQDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzUyMjA0ODhB QkRDRjExRUE4NzU1RDkwREM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDkGCCsGAQUFBwEHAQH/ BCowKDAMBAIAATAGAwQBZ5GoMBgEAgACMBIDBwAgAQ3yScADBwAgAQ31gUAwDQYJ KoZIhvcNAQELBQADggEBAIQNj8EDUhss19Eiz1xKT+W6xdxitoHBvpMq1S31GuQn dwku0s3+ZnPKVv+ZppF39AvXrvLWBMGEZ98TzN2Je6roxNBeNhUV20wOz2c7ZEeu EMGPFvAGAy4vdQzMHNfp5BMyvxWSWwUktCKVzRwsBvhSATa3SzhgND1NpSi2RnNc gap/H54euI6pVb6gASEUlK2mulPR18PJYrEJ2ao7iuFVDZHBYls0B++FfYZ8T/9u qj3wQrDatCO/RtB8mGim/SW1rNLtdxYZFbrAyoF1jx6y56CX1FGxsBj6Y5acde+i iKJ9FDwyrVLaXL2wDDbvd02jJrmG1GB0QqxK+x5UXpI= -----END CERTIFICATE-----Generated at Tue May 13 00:14:01 2025 by rpki-client