$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/616C73B8BDCF11EA8755D90DC4F9AE02.roa File: 616C73B8BDCF11EA8755D90DC4F9AE02.roa (raw, json) Hash identifier: 9eW0T9m5T4spsRXUGyrRtdBalkYn5ICNktK6DS70qvw= Subject key identifier: 65:BB:71:2F:F3:A4:6E:C7:58:AE:1E:8C:83:EE:E0:4A:61:B0:A2:B6 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B549 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/616C73B8BDCF11EA8755D90DC4F9AE02.roa Signing time: Thu 08 May 2025 16:12:24 +0000 ROA not before: Thu 08 May 2025 16:12:24 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 138761 IP address blocks: 103.140.190.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:54:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46409 (0xb549) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:12:24 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd7e8-c194 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:df:64:60:24:a5:9b:f9:dd:78:a9:7e:42:41: eb:f6:8d:f6:52:6b:22:16:65:d0:90:9f:3b:67:9e: 1c:95:0a:36:a7:08:3a:f6:5b:f5:b8:1e:46:dc:8c: 52:79:37:67:07:8d:48:4b:ff:bd:a2:48:29:3e:43: 69:b9:7e:35:5c:67:31:82:7b:df:45:e8:98:ea:fe: c6:54:37:09:01:6d:eb:ad:21:2c:62:b4:26:be:ce: 11:15:d8:92:98:ae:6b:01:12:9c:f5:3e:ec:a5:10: 34:59:23:2e:3e:a6:5e:44:ae:9e:5a:e5:93:ee:89: 1a:2b:73:d2:09:31:df:39:f5:71:b6:8c:85:92:f4: f9:5b:82:25:8b:fb:1c:1f:b2:b7:e1:40:96:98:9f: 29:a3:74:96:a0:f7:e2:e6:ee:6f:7c:57:22:8e:a7: a8:6d:fd:5e:ba:e5:e7:c4:14:f8:dd:eb:73:67:ab: a6:dd:39:34:8a:ce:71:46:e9:31:4e:6d:6c:24:4c: e0:0c:61:ee:e7:b6:81:55:df:1a:a6:ad:b2:93:92: 98:00:ab:07:dc:f5:99:0d:c1:8d:98:23:a9:21:5c: f7:0e:df:91:f8:b2:ea:65:14:f0:be:1a:77:2b:13: 6e:3f:ad:b8:c5:17:49:6e:42:e3:65:7c:90:bf:48: ac:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:BB:71:2F:F3:A4:6E:C7:58:AE:1E:8C:83:EE:E0:4A:61:B0:A2:B6 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/616C73B8BDCF11EA8755D90DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.190.0/23 Signature Algorithm: sha256WithRSAEncryption 8b:6c:7f:05:a4:5c:28:8e:95:da:42:4c:17:e4:5e:59:5b:68: 02:31:ac:24:a5:89:b5:e9:58:de:46:71:c7:72:94:d9:c8:74: 8f:64:ff:bc:ff:6e:e2:7a:ba:44:a0:12:8a:1f:60:16:2c:03: 49:61:b7:ec:08:54:07:d2:af:9c:b9:5b:2f:a6:62:8d:80:97: 71:19:1e:d9:f7:2c:97:be:e4:31:08:21:a2:a5:09:bb:fe:97: d4:64:e1:93:8c:19:14:49:64:10:88:04:c0:8d:7c:a7:39:2a: 44:3f:92:0a:ea:74:c9:8e:3f:79:96:22:45:72:00:41:0c:97: 06:eb:38:20:d9:6b:c1:5b:8a:a7:ef:3a:38:8f:a2:ec:76:4f: dc:aa:77:de:ce:4a:c9:ea:fd:02:0e:c9:6d:07:55:4b:c3:58: b7:fa:1c:4a:3e:07:74:c1:6b:bd:34:9c:83:c9:6e:a5:a8:09: fb:8f:6a:67:26:b5:ff:01:34:d2:0b:e8:af:f1:3c:18:72:53: 5e:2b:86:29:f0:54:f5:c5:62:9f:d4:27:3f:3a:d5:27:3f:ba: 85:01:6e:64:13:61:3d:57:29:8a:cc:f2:45:bc:de:d6:25:62: 37:f8:5d:0e:6e:23:bd:ce:67:fa:a6:ff:3e:1e:d4:2d:26:c6: fe:01:c8:25 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDALVJMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MTIyNFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q3ZTgtYzE5NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL3fZGAkpZv53XipfkJB6/aN9lJrIhZl0JCfO2eeHJUKNqcIOvZb9bgeRtyM Unk3ZweNSEv/vaJIKT5Dabl+NVxnMYJ730XomOr+xlQ3CQFt660hLGK0Jr7OERXY kpiuawESnPU+7KUQNFkjLj6mXkSunlrlk+6JGitz0gkx3zn1cbaMhZL0+VuCJYv7 HB+yt+FAlpifKaN0lqD34ubub3xXIo6nqG39Xrrl58QU+N3rc2erpt05NIrOcUbp MU5tbCRM4Axh7ue2gVXfGqatspOSmACrB9z1mQ3BjZgjqSFc9w7fkfiy6mUU8L4a dysTbj+tuMUXSW5C42V8kL9IrCsCAwEAAaOCApUwggKRMB0GA1UdDgQWBBRlu3Ev 86Rux1iuHoyD7uBKYbCitjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzYxNkM3M0I4 QkRDRjExRUE4NzU1RDkwREM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQBZ4y+MA0GCSqGSIb3DQEBCwUAA4IBAQCLbH8FpFwojpXa QkwX5F5ZW2gCMawkpYm16VjeRnHHcpTZyHSPZP+8/27ierpEoBKKH2AWLANJYbfs CFQH0q+cuVsvpmKNgJdxGR7Z9yyXvuQxCCGipQm7/pfUZOGTjBkUSWQQiATAjXyn OSpEP5IK6nTJjj95liJFcgBBDJcG6zgg2WvBW4qn7zo4j6Lsdk/cqnfezkrJ6v0C DsltB1VLw1i3+hxKPgd0wWu9NJyDyW6lqAn7j2pnJrX/ATTSC+iv8TwYclNeK4Yp 8FT1xWKf1Cc/OtUnP7qFAW5kE2E9VymKzPJFvN7WJWI3+F0ObiO9zmf6pv8+HtQt Jsb+Acgl -----END CERTIFICATE-----Generated at Tue May 13 02:28:21 2025 by rpki-client