$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/63150E02511911ED9308A55CC4F9AE02.roa File: 63150E02511911ED9308A55CC4F9AE02.roa (raw, json) Hash identifier: 8aZulyeFWAqHghCBNBnTkr5CrTYQqWOAvQ1koUDe3Qk= Subject key identifier: E3:5C:45:14:52:D1:22:12:62:EB:18:DF:B4:46:9F:09:7E:EC:AF:2D Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B86E Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/63150E02511911ED9308A55CC4F9AE02.roa Signing time: Thu 08 May 2025 16:24:31 +0000 ROA not before: Thu 08 May 2025 16:24:31 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 150069 IP address blocks: 103.21.6.0/23 maxlen: 24 2001:df1:66c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 06:52:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47214 (0xb86e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:24:31 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cdabe-4af8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:11:4c:47:1b:90:ed:0d:df:af:14:70:f2:d4: 9c:13:1d:2d:1b:12:5b:d1:da:ec:2d:a5:16:de:7c: 68:a9:5f:c9:9d:cc:f3:1f:e6:88:10:83:e9:b0:0f: e8:ce:e2:77:c3:5d:74:ef:85:52:1c:ed:5e:02:7b: 8b:ee:0b:67:72:80:3d:77:a6:40:45:b9:95:fe:78: e7:4f:9b:58:10:8e:e7:7a:2e:fd:18:ab:24:6d:7a: 07:cf:39:ca:76:a5:b5:d7:57:fa:58:e9:bc:04:aa: 4b:ab:03:41:3d:58:21:1f:d6:f7:5f:50:89:94:d6: 7d:64:50:e7:13:11:6f:30:1d:2c:c3:68:4b:79:b1: 76:ca:d5:4b:01:2a:ea:0c:a5:d1:98:9d:b5:23:20: 5f:31:84:f6:5e:32:d2:08:ac:ad:b8:85:aa:94:8c: 86:95:54:c6:76:9c:50:70:79:c4:cd:f0:66:0c:57: dd:73:55:88:e5:e4:d3:5c:49:f8:2f:a4:5b:18:52: c7:fc:11:17:06:67:28:70:5b:ba:43:9e:3a:7e:6e: 4c:b5:92:be:97:20:ad:b6:fb:72:a7:08:ad:0f:0c: 29:08:64:61:12:c0:29:65:6a:3e:54:a7:d7:1c:c3: a9:94:ea:c6:a6:97:39:d8:71:e1:9e:8b:14:37:2d: 5a:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:5C:45:14:52:D1:22:12:62:EB:18:DF:B4:46:9F:09:7E:EC:AF:2D X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/63150E02511911ED9308A55CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.21.6.0/23 IPv6: 2001:df1:66c0::/48 Signature Algorithm: sha256WithRSAEncryption 6f:80:85:e1:ef:92:6a:ba:ce:22:ef:68:ef:4e:15:62:a2:0b: 98:e3:f4:5d:7e:16:7d:c4:de:91:c2:1b:2e:e4:2d:22:c4:3b: 88:f0:c6:c1:0f:6e:53:ca:b9:c5:bf:52:6d:41:53:c3:6a:97: 83:d9:37:4e:2a:13:28:8f:38:9d:9e:10:a7:0f:59:7e:13:40: 53:b6:08:ec:89:ed:67:e4:30:db:c8:d0:b6:b9:d4:cf:34:5c: e4:36:37:43:e5:5d:26:5b:7b:43:9b:fc:45:ff:99:07:00:42: b4:d9:7e:1b:e0:25:3e:b9:f0:ba:aa:23:70:33:86:db:f1:db: 70:a4:2b:36:ed:f6:9e:02:96:d1:ab:d0:04:6b:71:c7:fe:da: 5f:25:36:83:91:f1:80:bf:ad:85:3f:3b:43:50:6f:fc:38:08: 72:37:64:47:86:69:f0:b7:d6:7d:d3:35:1d:0d:83:cf:16:97: 96:83:fb:36:39:06:f6:0a:e4:04:cd:45:02:23:54:e9:17:31: 89:b7:c8:f4:48:fd:78:74:af:d2:a2:89:00:95:4f:b0:94:70: d2:35:81:90:25:01:85:ed:2b:43:e8:bc:c6:89:7e:6e:1e:4d: 71:31:32:7c:54:e3:b0:3a:06:43:c2:95:79:0f:2e:32:16:e2: e3:c3:2d:a8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIDALhuMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MjQzMVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2RhYmUtNGFmODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPYRTEcbkO0N368UcPLUnBMdLRsSW9Ha7C2lFt58aKlfyZ3M8x/miBCD6bAP 6M7id8NddO+FUhztXgJ7i+4LZ3KAPXemQEW5lf5450+bWBCO53ou/RirJG16B885 ynaltddX+ljpvASqS6sDQT1YIR/W919QiZTWfWRQ5xMRbzAdLMNoS3mxdsrVSwEq 6gyl0ZidtSMgXzGE9l4y0gisrbiFqpSMhpVUxnacUHB5xM3wZgxX3XNViOXk01xJ +C+kWxhSx/wRFwZnKHBbukOeOn5uTLWSvpcgrbb7cqcIrQ8MKQhkYRLAKWVqPlSn 1xzDqZTqxqaXOdhx4Z6LFDctWgECAwEAAaOCAqYwggKiMB0GA1UdDgQWBBTjXEUU UtEiEmLrGN+0Rp8JfuyvLTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzYzMTUwRTAy NTExOTExRUQ5MzA4QTU1Q0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDAGCCsGAQUFBwEHAQH/ BCEwHzAMBAIAATAGAwQBZxUGMA8EAgACMAkDBwAgAQ3xZsAwDQYJKoZIhvcNAQEL BQADggEBAG+AheHvkmq6ziLvaO9OFWKiC5jj9F1+Fn3E3pHCGy7kLSLEO4jwxsEP blPKucW/Um1BU8Nql4PZN04qEyiPOJ2eEKcPWX4TQFO2COyJ7WfkMNvI0La51M80 XOQ2N0PlXSZbe0Ob/EX/mQcAQrTZfhvgJT658LqqI3Azhtvx23CkKzbt9p4CltGr 0ARrccf+2l8lNoOR8YC/rYU/O0NQb/w4CHI3ZEeGafC31n3TNR0Ng88Wl5aD+zY5 BvYK5ATNRQIjVOkXMYm3yPRI/Xh0r9KiiQCVT7CUcNI1gZAlAYXtK0PovMaJfm4e TXExMnxU47A6BkPClXkPLjIW4uPDLag= -----END CERTIFICATE-----Generated at Tue May 13 09:08:43 2025 by rpki-client