$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/587758E6DD3111EAB2EA1D0AC4F9AE02.roa File: 587758E6DD3111EAB2EA1D0AC4F9AE02.roa (raw, json) Hash identifier: NAxgvP49FwCHXJxpqlBrXjg39XRSJmvbN1DwbtAcAlk= Subject key identifier: 30:AA:37:A1:32:83:B4:EF:24:09:14:23:B1:84:5C:44:3B:45:BB:41 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: BA21 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/587758E6DD3111EAB2EA1D0AC4F9AE02.roa Signing time: Thu 08 May 2025 16:31:10 +0000 ROA not before: Thu 08 May 2025 16:31:10 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 45815 IP address blocks: 103.154.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 12:39:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47649 (0xba21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:31:10 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cdc4d-d5b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:6f:2c:42:0d:5c:b4:a3:3a:af:74:c9:01:72: e0:a9:b9:66:72:d5:7e:9a:53:a3:97:23:26:5d:30: 03:f5:8a:c6:61:70:92:c4:12:21:27:fb:12:53:62: 7f:13:52:06:b6:0a:1b:54:18:56:67:7f:7b:4d:a0: 57:f7:f6:04:ba:79:ee:95:3e:1f:53:3e:73:16:47: 03:ab:86:93:d0:6c:c3:47:78:4e:ea:89:56:83:eb: 84:f6:b6:46:aa:81:97:a9:8a:d3:7b:bf:10:7c:4f: 5d:7e:91:bc:5d:0b:57:ca:64:4b:06:53:9c:2b:b5: 77:b5:dd:c1:6e:d4:31:36:cf:6f:56:6f:b0:30:f8: bb:2f:96:90:29:66:9d:a1:67:23:94:c1:eb:9f:1b: 22:48:fe:8e:9a:ca:82:72:60:7a:c7:4c:55:2a:7f: 49:14:c5:f8:9f:0e:cc:0d:49:ff:89:05:4f:7d:78: 4d:52:31:22:56:6a:83:30:3d:a7:6b:f6:ca:ee:61: 2b:cb:60:0d:0f:18:05:77:57:62:b1:d3:ea:27:50: 1f:09:44:a0:7b:03:0f:ff:ed:7a:b6:0c:27:7c:e8: fe:6c:ba:34:ce:6d:21:84:87:68:b3:83:16:10:e5: ab:78:e5:0d:2e:32:0f:5c:46:a8:a8:e7:96:9d:68: 9c:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:AA:37:A1:32:83:B4:EF:24:09:14:23:B1:84:5C:44:3B:45:BB:41 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/587758E6DD3111EAB2EA1D0AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.154.75.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:35:8b:ad:e7:1a:d4:dd:db:2f:1d:0d:43:c9:c6:f7:f5:57: 9f:a9:3c:4d:54:a4:59:28:0a:09:54:92:38:ac:75:99:84:c7: 62:d5:6d:e9:92:39:ae:f9:87:47:96:bc:89:06:6e:91:88:8b: b2:9e:38:d4:7c:bc:5e:02:be:4c:fe:99:59:65:f0:18:2f:8d: 24:f7:bf:e3:7b:fb:58:eb:24:23:59:7d:93:c5:fb:c1:ff:36: 4b:9f:6b:75:dd:62:f6:03:16:07:b0:3a:c1:a6:28:95:ca:cc: 15:b0:0f:4e:6a:20:bb:04:8d:ea:7c:96:57:7a:b0:b1:64:96: 38:da:e2:ff:49:be:c1:64:66:b3:cd:36:65:0a:3e:4f:9d:c4: 7f:71:1d:e8:20:e2:67:d9:75:61:85:2f:40:1b:31:b6:82:cd: d2:39:bb:7f:41:ba:df:de:e1:9f:28:ea:0a:0a:79:e6:c2:a0: eb:1a:37:a8:7e:1e:0e:7c:72:19:41:66:65:65:75:ae:9e:30: 2b:4c:9e:80:0e:5c:3a:93:fc:83:ee:99:4c:1a:7c:20:d8:f7: 98:a8:56:89:c2:60:46:99:38:d7:ac:ec:86:05:38:0b:c7:95: 91:7c:54:c2:68:ed:0d:f6:de:0a:9c:80:e3:a8:23:bd:91:3b: 4d:38:69:ae -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDALohMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MzExMFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2RjNGQtZDViMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ5vLEINXLSjOq90yQFy4Km5ZnLVfppTo5cjJl0wA/WKxmFwksQSISf7ElNi fxNSBrYKG1QYVmd/e02gV/f2BLp57pU+H1M+cxZHA6uGk9Bsw0d4TuqJVoPrhPa2 RqqBl6mK03u/EHxPXX6RvF0LV8pkSwZTnCu1d7XdwW7UMTbPb1ZvsDD4uy+WkClm naFnI5TB658bIkj+jprKgnJgesdMVSp/SRTF+J8OzA1J/4kFT314TVIxIlZqgzA9 p2v2yu5hK8tgDQ8YBXdXYrHT6idQHwlEoHsDD//terYMJ3zo/my6NM5tIYSHaLOD FhDlq3jlDS4yD1xGqKjnlp1onLcCAwEAAaOCApUwggKRMB0GA1UdDgQWBBQwqjeh MoO07yQJFCOxhFxEO0W7QTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzU4Nzc1OEU2 REQzMTExRUFCMkVBMUQwQUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQAZ5pLMA0GCSqGSIb3DQEBCwUAA4IBAQA+NYut5xrU3dsv HQ1Dycb39VefqTxNVKRZKAoJVJI4rHWZhMdi1W3pkjmu+YdHlryJBm6RiIuynjjU fLxeAr5M/plZZfAYL40k97/je/tY6yQjWX2TxfvB/zZLn2t13WL2AxYHsDrBpiiV yswVsA9OaiC7BI3qfJZXerCxZJY42uL/Sb7BZGazzTZlCj5PncR/cR3oIOJn2XVh hS9AGzG2gs3SObt/Qbrf3uGfKOoKCnnmwqDrGjeofh4OfHIZQWZlZXWunjArTJ6A Dlw6k/yD7plMGnwg2PeYqFaJwmBGmTjXrOyGBTgLx5WRfFTCaO0N9t4KnIDjqCO9 kTtNOGmu -----END CERTIFICATE-----Generated at Wed May 14 15:15:16 2025 by rpki-client