$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5F4C7CF88B2411ECB7E39916C4F9AE02.roa File: 5F4C7CF88B2411ECB7E39916C4F9AE02.roa (raw, json) Hash identifier: hGkqjC9Z59eiP7JqEMt5q8+Qn8QcOSUCeI5rdMn/HUo= Subject key identifier: 1A:72:2D:16:9C:71:A9:57:60:AD:0F:2C:8C:88:05:FB:88:FD:23:DF Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B1FB Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5F4C7CF88B2411ECB7E39916C4F9AE02.roa Signing time: Thu 08 May 2025 15:59:22 +0000 ROA not before: Thu 08 May 2025 15:59:22 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 133705 IP address blocks: 103.181.51.0/24 maxlen: 24 2001:df0:68c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 15:25:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45563 (0xb1fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 15:59:22 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd4da-467d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:f7:36:f2:40:6d:74:64:df:fe:af:a4:e6:cc: 33:ce:de:27:bd:f4:dc:88:56:47:1b:18:55:dc:33: 67:a8:69:0d:60:50:8f:79:27:80:e8:0e:4f:88:e0: 66:d0:7a:15:e3:f0:64:52:4d:a0:7d:05:3a:3b:bd: ce:ba:eb:52:1b:5e:20:c3:a4:3c:ed:ab:36:8f:7d: a1:ac:9f:6b:fc:cf:4b:37:33:a4:cc:6d:3b:7a:01: 89:e0:ca:4f:bc:3e:da:f1:b8:fd:c9:f0:97:1a:a0: 28:2d:27:30:8d:28:ca:85:76:c1:db:7f:08:21:d2: 88:66:2c:4e:e0:9e:de:29:77:3e:d6:a0:ab:17:ea: 55:81:a1:ff:9c:3c:f4:6f:0b:51:35:d7:59:0d:e8: 20:49:b9:46:5e:9e:e2:fb:ec:69:99:04:5c:5b:32: 29:bd:a6:fa:2e:4c:7d:b0:51:06:40:78:0a:65:85: 47:f7:49:43:d4:a5:9b:b7:61:6c:d4:54:7f:cb:2e: 0e:56:48:7e:1e:f3:35:30:b8:5e:61:22:3b:85:ed: f6:49:fb:3e:1c:59:46:2c:af:0c:b2:43:a3:84:00: a3:de:93:a1:70:f3:4f:b6:95:91:8f:93:97:0d:54: ed:eb:ce:eb:86:07:04:3c:9c:3c:21:18:0c:ff:5e: ea:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:72:2D:16:9C:71:A9:57:60:AD:0F:2C:8C:88:05:FB:88:FD:23:DF X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5F4C7CF88B2411ECB7E39916C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.181.51.0/24 IPv6: 2001:df0:68c0::/48 Signature Algorithm: sha256WithRSAEncryption 01:c8:e0:9c:3d:02:3e:a1:0f:bf:80:a0:55:d6:98:f9:49:71: cc:0d:ac:8c:75:68:11:80:e0:f4:c5:7a:0a:6e:83:9b:c2:54: 73:45:24:00:b3:40:e0:c5:51:09:ee:39:25:39:89:f2:80:75: 9f:09:dd:d3:e7:0f:ca:fd:ce:fe:99:9b:48:43:b8:e7:f6:8f: 15:e0:b7:1a:52:a5:8f:55:02:64:69:88:df:44:af:93:a3:60: 66:06:68:0f:51:75:76:a9:28:8a:bf:93:a4:d7:f1:db:10:42: 37:09:80:84:46:38:0e:ce:f0:94:28:16:cc:6b:de:f7:30:6a: 30:5f:a4:22:f0:0f:c3:9f:ac:f3:de:ea:dc:ca:6a:48:0e:09: d0:74:4f:e3:4a:ae:7a:59:84:49:fc:7b:05:25:02:be:aa:e8: dd:7f:a5:ab:e7:f1:7c:15:2f:35:4b:ed:87:84:d1:5f:4e:39: 17:46:ae:95:d9:9d:80:0a:3c:1e:be:8b:75:db:9a:f2:54:95: 5b:11:8a:62:fc:f1:3b:b3:93:b5:fe:f7:2a:68:78:a4:27:a3: b2:6b:f2:4a:7a:37:e5:ee:17:d3:9b:bd:f6:01:4b:dc:d6:dd: 9e:46:3b:56:13:95:75:3a:6b:8e:4e:22:6f:7b:9e:b2:d3:cc: 88:3a:7d:72 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIDALH7MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE1NTkyMloXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q0ZGEtNDY3ZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPL3NvJAbXRk3/6vpObMM87eJ7303IhWRxsYVdwzZ6hpDWBQj3kngOgOT4jg ZtB6FePwZFJNoH0FOju9zrrrUhteIMOkPO2rNo99oayfa/zPSzczpMxtO3oBieDK T7w+2vG4/cnwlxqgKC0nMI0oyoV2wdt/CCHSiGYsTuCe3il3PtagqxfqVYGh/5w8 9G8LUTXXWQ3oIEm5Rl6e4vvsaZkEXFsyKb2m+i5MfbBRBkB4CmWFR/dJQ9Slm7dh bNRUf8suDlZIfh7zNTC4XmEiO4Xt9kn7PhxZRiyvDLJDo4QAo96ToXDzT7aVkY+T lw1U7evO64YHBDycPCEYDP9e6g8CAwEAAaOCAqYwggKiMB0GA1UdDgQWBBQaci0W nHGpV2CtDyyMiAX7iP0j3zAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzVGNEM3Q0Y4 OEIyNDExRUNCN0UzOTkxNkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDAGCCsGAQUFBwEHAQH/ BCEwHzAMBAIAATAGAwQAZ7UzMA8EAgACMAkDBwAgAQ3waMAwDQYJKoZIhvcNAQEL BQADggEBAAHI4Jw9Aj6hD7+AoFXWmPlJccwNrIx1aBGA4PTFegpug5vCVHNFJACz QODFUQnuOSU5ifKAdZ8J3dPnD8r9zv6Zm0hDuOf2jxXgtxpSpY9VAmRpiN9Er5Oj YGYGaA9RdXapKIq/k6TX8dsQQjcJgIRGOA7O8JQoFsxr3vcwajBfpCLwD8OfrPPe 6tzKakgOCdB0T+NKrnpZhEn8ewUlAr6q6N1/pavn8XwVLzVL7YeE0V9OORdGrpXZ nYAKPB6+i3XbmvJUlVsRimL88Tuzk7X+9ypoeKQno7Jr8kp6N+XuF9ObvfYBS9zW 3Z5GO1YTlXU6a45OIm97nrLTzIg6fXI= -----END CERTIFICATE-----Generated at Wed May 14 19:56:21 2025 by rpki-client