$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/589ECD4471E711EC93623E71C4F9AE02.roa File: 589ECD4471E711EC93623E71C4F9AE02.roa (raw, json) Hash identifier: fJbb2SQbnqH37Ze5ccsKzmuhwVvB43hu7smGkDlWTD0= Subject key identifier: C9:1E:64:B1:17:8E:50:04:85:45:CE:BC:39:89:D0:F5:EE:90:5F:70 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B23D Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/589ECD4471E711EC93623E71C4F9AE02.roa Signing time: Thu 08 May 2025 16:00:24 +0000 ROA not before: Thu 08 May 2025 16:00:24 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 134025 IP address blocks: 103.149.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:54:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45629 (0xb23d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:00:24 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd518-e60e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:ae:9f:fb:24:66:26:51:7d:01:ad:f2:68:27: a2:74:d1:de:1f:81:c2:d8:e9:93:0b:a8:66:e6:30: cd:05:d0:4f:b6:22:f9:c8:c3:a5:cb:28:fe:c7:17: 1c:78:64:45:a7:23:4e:49:43:c7:d6:10:6e:be:3e: 65:c2:63:42:fa:70:ac:53:01:ab:5f:a4:d8:5d:26: 28:e7:58:00:12:b8:76:8e:7c:be:9b:63:29:ce:42: f0:fd:7e:b3:02:0c:ae:4c:b9:15:92:c2:b3:71:88: 94:2b:06:4b:7c:b0:57:2e:68:c5:5e:3d:16:8f:91: 82:52:d8:29:3d:77:39:b6:b4:dc:bd:79:cc:71:8e: 17:5d:5f:05:ab:08:66:55:57:73:a3:3f:d3:25:0b: c9:4c:89:35:cb:b1:31:fe:00:f9:fe:b1:54:e3:81: 86:80:23:f6:0f:69:91:4b:b6:04:56:34:04:75:eb: 0e:7c:79:5c:52:42:9b:90:4b:66:65:f6:6b:76:a7: bd:67:33:b7:7f:de:f9:f6:05:1a:85:0b:06:32:b6: 68:1a:26:03:dd:40:10:70:d1:bf:d8:78:5d:17:15: af:ca:e8:41:1f:df:67:d1:49:c4:eb:d7:22:77:5a: b6:75:fb:7c:a1:c0:b5:7e:44:6e:30:20:65:fe:7b: 2d:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:1E:64:B1:17:8E:50:04:85:45:CE:BC:39:89:D0:F5:EE:90:5F:70 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/589ECD4471E711EC93623E71C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.149.70.0/24 Signature Algorithm: sha256WithRSAEncryption b9:6c:75:0a:1a:b0:ad:ba:20:8a:c7:56:8e:6f:22:d3:19:65: 2c:d5:fd:68:03:23:e7:da:85:1b:d4:eb:c6:20:59:19:03:cf: a8:e6:61:5d:54:bb:39:08:7d:75:c3:33:d2:96:80:2c:4b:52: 6e:00:47:b6:08:9e:2d:ac:7e:01:af:30:ce:47:7b:1b:18:44: d5:fd:55:15:19:77:d9:42:03:a2:67:a3:07:44:92:0e:e2:e5: 55:db:a1:78:e5:86:3c:aa:fa:71:3e:9e:04:3e:fb:bc:3b:b3: 53:72:b0:9d:34:49:c2:c8:2a:08:ea:3b:8c:db:c4:f6:c4:d8: 6f:86:a8:c3:ef:f7:2a:2c:3b:52:46:1d:e7:ca:ba:c4:93:f7: 57:3d:7d:b9:b5:86:76:e8:02:91:54:de:1f:4a:00:6c:5e:91: d8:a3:db:50:65:6c:a2:e1:36:b4:44:9b:1c:eb:28:d5:c9:33: f1:41:5d:33:2c:85:cd:98:ed:9b:de:10:4b:ba:64:24:bf:5a: e6:bb:ee:f4:1a:fd:65:27:e5:ce:5e:f8:d3:67:1a:e5:6b:5d: 83:04:05:38:43:27:02:66:65:4f:2e:1c:c2:04:71:84:3a:a4: 5d:14:90:21:41:66:00:e7:04:dc:2f:ee:a5:d1:1b:d4:b4:b4: c4:74:4e:0a -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDALI9MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MDAyNFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q1MTgtZTYwZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJWun/skZiZRfQGt8mgnonTR3h+BwtjpkwuoZuYwzQXQT7Yi+cjDpcso/scX HHhkRacjTklDx9YQbr4+ZcJjQvpwrFMBq1+k2F0mKOdYABK4do58vptjKc5C8P1+ swIMrky5FZLCs3GIlCsGS3ywVy5oxV49Fo+RglLYKT13Oba03L15zHGOF11fBasI ZlVXc6M/0yULyUyJNcuxMf4A+f6xVOOBhoAj9g9pkUu2BFY0BHXrDnx5XFJCm5BL ZmX2a3anvWczt3/e+fYFGoULBjK2aBomA91AEHDRv9h4XRcVr8roQR/fZ9FJxOvX IndatnX7fKHAtX5EbjAgZf57LZ0CAwEAAaOCApUwggKRMB0GA1UdDgQWBBTJHmSx F45QBIVFzrw5idD17pBfcDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzU4OUVDRDQ0 NzFFNzExRUM5MzYyM0U3MUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQAZ5VGMA0GCSqGSIb3DQEBCwUAA4IBAQC5bHUKGrCtuiCK x1aObyLTGWUs1f1oAyPn2oUb1OvGIFkZA8+o5mFdVLs5CH11wzPSloAsS1JuAEe2 CJ4trH4BrzDOR3sbGETV/VUVGXfZQgOiZ6MHRJIO4uVV26F45YY8qvpxPp4EPvu8 O7NTcrCdNEnCyCoI6juM28T2xNhvhqjD7/cqLDtSRh3nyrrEk/dXPX25tYZ26AKR VN4fSgBsXpHYo9tQZWyi4Ta0RJsc6yjVyTPxQV0zLIXNmO2b3hBLumQkv1rmu+70 Gv1lJ+XOXvjTZxrla12DBAU4QycCZmVPLhzCBHGEOqRdFJAhQWYA5wTcL+6l0RvU tLTEdE4K -----END CERTIFICATE-----Generated at Tue May 13 01:25:48 2025 by rpki-client