$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/66BA00047A1B11EE91851116C4F9AE02.roa File: 66BA00047A1B11EE91851116C4F9AE02.roa (raw, json) Hash identifier: 0ypT/WWgShuAQpw934qQa/HU646fzyE2WL8kzEwLsqk= Subject key identifier: F2:F4:EA:3C:60:34:8E:9C:EC:4F:54:8E:5D:C9:68:F1:64:3D:C4:22 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B2A4 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/66BA00047A1B11EE91851116C4F9AE02.roa Signing time: Thu 08 May 2025 16:01:57 +0000 ROA not before: Thu 08 May 2025 16:01:57 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 134866 IP address blocks: 43.239.196.0/22 maxlen: 22 43.239.196.0/24 maxlen: 24 43.239.197.0/24 maxlen: 24 43.239.198.0/24 maxlen: 24 43.239.199.0/24 maxlen: 24 103.39.28.0/22 maxlen: 22 103.39.28.0/24 maxlen: 24 103.39.29.0/24 maxlen: 24 103.39.30.0/24 maxlen: 24 103.39.31.0/24 maxlen: 24 103.119.192.0/24 maxlen: 24 103.119.193.0/24 maxlen: 24 103.119.194.0/24 maxlen: 24 103.119.195.0/24 maxlen: 24 2403:49c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 15:25:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45732 (0xb2a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:01:57 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd574-f9d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d6:08:2a:36:94:6b:d8:8b:d4:0e:95:12:62: 2f:de:b0:0b:0b:7f:96:01:13:b2:52:cf:f3:a0:17: f9:ea:c8:7b:c5:54:2d:46:dd:17:66:68:cb:3c:59: e2:e2:ec:43:02:2f:7e:ec:e1:54:98:3d:41:63:25: f1:81:d5:5e:0e:49:df:5a:8f:9f:d0:24:70:0b:3d: 0c:34:93:03:5f:36:ed:25:73:ff:be:26:b0:cc:59: 04:df:f3:0c:14:63:65:d6:c0:18:22:ff:3f:2d:d0: b8:c0:99:7b:2e:63:e4:41:c0:6b:f1:b0:95:88:8c: 58:86:c9:e4:35:dc:44:36:8e:6d:ba:f4:5a:3d:f0: f4:56:59:96:a6:ed:68:37:56:f6:1f:b6:48:90:f9: a9:51:98:b5:2a:1f:b4:fa:99:4d:92:7a:cc:02:9a: ed:93:f3:89:51:52:f3:fa:98:db:22:38:52:67:05: 43:83:74:a6:e2:0b:e7:60:13:f5:8f:e2:4e:ef:ca: ff:e3:b4:05:91:ef:1f:8c:92:66:89:7d:1b:0f:f9: 9f:e1:a9:a8:da:91:18:f8:64:ec:94:40:79:ba:7c: fc:f3:7f:80:97:c6:78:9f:a0:6e:af:6e:1d:95:db: cd:e8:7e:f8:ba:bb:f3:14:e1:64:f5:05:da:f5:c4: 91:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:F4:EA:3C:60:34:8E:9C:EC:4F:54:8E:5D:C9:68:F1:64:3D:C4:22 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/66BA00047A1B11EE91851116C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.239.196.0/22 103.39.28.0/22 103.119.192.0/22 IPv6: 2403:49c0::/32 Signature Algorithm: sha256WithRSAEncryption 7c:ca:62:f4:00:5a:7c:85:77:34:ca:e9:2e:66:24:ed:a2:10: 85:1e:8c:10:e6:16:44:ac:a4:55:29:e0:ec:c9:4b:73:83:68: af:04:c9:1a:8f:f6:e6:1d:7b:e3:a8:eb:0a:ad:12:40:2f:97: 75:1a:5e:b1:15:0e:6a:a4:20:82:8d:83:f0:f7:11:2e:82:b9: 7d:05:8c:0d:3c:14:77:32:7e:2d:5d:ad:20:1f:e8:95:72:cf: 4f:8c:88:19:d7:ac:82:86:2a:f8:e8:c0:db:2b:95:bb:18:1a: d2:a4:12:55:03:08:d8:e9:6c:b2:5e:59:3e:1b:be:b5:b0:3e: c8:f6:40:36:99:e8:07:21:31:07:85:a5:d4:10:c5:21:4d:34: e8:ca:fc:36:cb:fb:58:05:dd:1d:32:9e:47:1e:81:7a:38:47: e1:f4:25:dc:d4:5e:ca:1d:5e:e6:54:54:3b:28:1c:d4:eb:62: eb:7f:c5:c5:03:8d:35:a9:77:29:ba:e8:96:80:f6:45:6a:41: 46:b9:dc:a9:58:15:d8:87:8c:c9:b6:7a:c8:c5:8b:cf:de:6a: ef:27:3c:27:31:c9:e7:75:61:d7:3e:e5:1e:46:f6:26:67:fa: 35:7f:a7:4f:6d:99:31:e8:1a:f6:96:91:56:26:88:c6:9d:9e: ae:05:54:b9 -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgIDALKkMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MDE1N1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q1NzQtZjlkODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMjWCCo2lGvYi9QOlRJiL96wCwt/lgETslLP86AX+erIe8VULUbdF2ZoyzxZ 4uLsQwIvfuzhVJg9QWMl8YHVXg5J31qPn9AkcAs9DDSTA1827SVz/74msMxZBN/z DBRjZdbAGCL/Py3QuMCZey5j5EHAa/GwlYiMWIbJ5DXcRDaObbr0Wj3w9FZZlqbt aDdW9h+2SJD5qVGYtSoftPqZTZJ6zAKa7ZPziVFS8/qY2yI4UmcFQ4N0puIL52AT 9Y/iTu/K/+O0BZHvH4ySZol9Gw/5n+GpqNqRGPhk7JRAebp8/PN/gJfGeJ+gbq9u HZXbzeh++Lq78xThZPUF2vXEkTECAwEAAaOCArAwggKsMB0GA1UdDgQWBBTy9Oo8 YDSOnOxPVI5dyWjxZD3EIjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzY2QkEwMDA0 N0ExQjExRUU5MTg1MTExNkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDoGCCsGAQUFBwEHAQH/ BCswKTAYBAIAATASAwQCK+/EAwQCZyccAwQCZ3fAMA0EAgACMAcDBQAkA0nAMA0G CSqGSIb3DQEBCwUAA4IBAQB8ymL0AFp8hXc0yukuZiTtohCFHowQ5hZErKRVKeDs yUtzg2ivBMkaj/bmHXvjqOsKrRJAL5d1Gl6xFQ5qpCCCjYPw9xEugrl9BYwNPBR3 Mn4tXa0gH+iVcs9PjIgZ16yChir46MDbK5W7GBrSpBJVAwjY6WyyXlk+G761sD7I 9kA2megHITEHhaXUEMUhTTToyvw2y/tYBd0dMp5HHoF6OEfh9CXc1F7KHV7mVFQ7 KBzU62Lrf8XFA401qXcpuuiWgPZFakFGudypWBXYh4zJtnrIxYvP3mrvJzwnMcnn dWHXPuUeRvYmZ/o1f6dPbZkx6Br2lpFWJojGnZ6uBVS5 -----END CERTIFICATE-----Generated at Wed May 14 23:34:29 2025 by rpki-client