$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/57EE6DAE0E1611EBA01C3D7CC4F9AE02.roa File: 57EE6DAE0E1611EBA01C3D7CC4F9AE02.roa (raw, json) Hash identifier: i0yLjce5GmXJb9ullVxqfSOO3sOxBVLC4BlLr46RrXE= Subject key identifier: BB:4A:73:7D:82:D7:83:B0:33:E8:45:3A:42:61:8A:82:1B:1B:BB:6C Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B2C6 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/57EE6DAE0E1611EBA01C3D7CC4F9AE02.roa Signing time: Thu 08 May 2025 16:02:28 +0000 ROA not before: Thu 08 May 2025 16:02:28 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 134913 IP address blocks: 27.96.88.0/22 maxlen: 24 103.50.76.0/22 maxlen: 24 103.211.112.0/22 maxlen: 24 160.238.76.0/22 maxlen: 24 2402:57c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 07:03:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45766 (0xb2c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:02:28 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd594-0076 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:5e:1e:fb:55:20:17:28:67:cd:77:20:fd:f0: aa:67:17:e6:ae:9a:24:3b:06:1e:f4:88:3e:f6:ae: 75:bf:c9:15:87:9b:b9:2d:8f:79:cc:c2:8d:f1:5a: 62:65:87:8f:e5:df:d2:d2:41:4a:e7:e8:de:aa:00: c7:94:68:98:9d:55:d4:8c:1e:93:23:54:ff:f1:94: 18:ea:1f:f4:0b:8c:31:9b:46:56:ab:06:fd:21:34: 9b:d8:f1:b9:af:e4:18:82:dd:b2:3f:26:59:cf:ae: 8e:55:17:16:7b:00:6b:59:54:be:c3:3f:50:13:13: 51:a2:64:a5:c2:46:0f:34:bc:64:85:fd:2a:da:e0: 20:0c:07:89:da:8e:89:86:7d:e1:b6:09:8f:e9:62: 16:d3:02:dd:b0:99:e7:72:d3:30:e0:57:d4:83:f6: 79:58:f8:25:5a:14:f8:f9:10:7b:47:3b:6e:87:8a: 0c:e6:87:81:25:99:e4:70:f8:12:f6:2b:eb:d3:e7: 0c:58:b7:d7:c8:ac:14:28:c5:ca:19:c5:dc:42:11: 56:f0:7b:03:e7:52:f4:92:3f:ad:6a:85:ef:1e:cb: 10:ef:33:69:a2:ed:32:c9:97:cf:77:ce:5b:b9:de: 2a:6f:17:19:bf:56:46:66:29:7f:4a:de:c8:15:ca: bc:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:4A:73:7D:82:D7:83:B0:33:E8:45:3A:42:61:8A:82:1B:1B:BB:6C X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/57EE6DAE0E1611EBA01C3D7CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.96.88.0/22 103.50.76.0/22 103.211.112.0/22 160.238.76.0/22 IPv6: 2402:57c0::/32 Signature Algorithm: sha256WithRSAEncryption 05:43:e8:50:4f:6e:68:0a:c3:45:73:16:fd:3a:79:f1:74:2a: 4c:fe:6e:af:5a:3b:61:5c:e2:b2:6c:c9:93:09:1f:c8:32:b4: b3:72:5d:83:90:f6:9b:97:0f:39:dd:fa:e1:3e:e2:19:34:94: a5:4b:e2:f8:c3:09:73:a9:80:1e:05:eb:ad:a7:e7:b2:95:4e: b6:30:c0:73:c9:4c:d2:fc:da:1c:f8:36:b3:3a:29:49:85:ab: db:2e:9b:77:ec:bd:a7:1e:db:8b:23:3b:34:be:c7:fe:fb:b5: 2c:e7:0a:0c:fa:a5:19:f4:88:83:3a:46:99:87:65:ec:be:e9: 8f:e7:f5:97:0d:e5:38:28:fb:4b:e2:c2:48:a6:dc:8b:77:eb: b6:0e:94:9d:bb:d1:0c:a8:46:35:4b:87:f4:e0:17:a7:e3:2d: 77:f8:cb:04:fe:99:0a:bf:3e:48:6b:10:b3:ea:52:c6:b7:72: bf:4f:7b:d0:8c:bd:3c:8c:03:28:67:f8:46:32:c1:14:40:c5: e6:ff:2c:7a:a1:3e:4f:c5:d5:79:41:a3:f7:bd:47:b6:51:fc: a5:15:3b:e4:09:39:d6:00:c3:6e:04:12:dc:5f:18:75:15:05: a4:22:76:ff:ca:43:9a:b2:dd:84:d0:39:be:d3:f7:11:f9:15: 1c:14:80:2c -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgIDALLGMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MDIyOFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q1OTQtMDA3NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMReHvtVIBcoZ813IP3wqmcX5q6aJDsGHvSIPvaudb/JFYebuS2PeczCjfFa YmWHj+Xf0tJBSufo3qoAx5RomJ1V1IwekyNU//GUGOof9AuMMZtGVqsG/SE0m9jx ua/kGILdsj8mWc+ujlUXFnsAa1lUvsM/UBMTUaJkpcJGDzS8ZIX9KtrgIAwHidqO iYZ94bYJj+liFtMC3bCZ53LTMOBX1IP2eVj4JVoU+PkQe0c7boeKDOaHgSWZ5HD4 EvYr69PnDFi318isFCjFyhnF3EIRVvB7A+dS9JI/rWqF7x7LEO8zaaLtMsmXz3fO W7neKm8XGb9WRmYpf0reyBXKvLUCAwEAAaOCArYwggKyMB0GA1UdDgQWBBS7SnN9 gteDsDPoRTpCYYqCGxu7bDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzU3RUU2REFF MEUxNjExRUJBMDFDM0Q3Q0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMEAGCCsGAQUFBwEHAQH/ BDEwLzAeBAIAATAYAwQCG2BYAwQCZzJMAwQCZ9NwAwQCoO5MMA0EAgACMAcDBQAk AlfAMA0GCSqGSIb3DQEBCwUAA4IBAQAFQ+hQT25oCsNFcxb9OnnxdCpM/m6vWjth XOKybMmTCR/IMrSzcl2DkPablw853frhPuIZNJSlS+L4wwlzqYAeBeutp+eylU62 MMBzyUzS/Noc+DazOilJhavbLpt37L2nHtuLIzs0vsf++7Us5woM+qUZ9IiDOkaZ h2XsvumP5/WXDeU4KPtL4sJIptyLd+u2DpSdu9EMqEY1S4f04Ben4y13+MsE/pkK vz5IaxCz6lLGt3K/T3vQjL08jAMoZ/hGMsEUQMXm/yx6oT5PxdV5QaP3vUe2Ufyl FTvkCTnWAMNuBBLcXxh1FQWkInb/ykOast2E0Dm+0/cR+RUcFIAs -----END CERTIFICATE-----Generated at Wed May 14 11:36:07 2025 by rpki-client