$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6729F86CA59611EF8CE5915BC4F9AE02.roa File: 6729F86CA59611EF8CE5915BC4F9AE02.roa (raw, json) Hash identifier: yzfDYhQ5baxLM7WvorTXQwRuxoCZye7W/qRUpQtdBK8= Subject key identifier: 70:58:FF:CB:50:23:C2:E6:42:3E:3F:96:7B:2C:23:9E:D0:AD:4F:50 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B91D Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6729F86CA59611EF8CE5915BC4F9AE02.roa Signing time: Thu 08 May 2025 16:27:12 +0000 ROA not before: Thu 08 May 2025 16:27:12 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 151176 IP address blocks: 103.255.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 09:52:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47389 (0xb91d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:27:12 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cdb60-8e0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:39:b4:5e:e4:0f:f1:19:01:4a:8e:c8:55:7a: 2b:4a:4e:cf:ae:94:eb:96:ef:0a:7a:0b:e0:00:16: a7:97:8e:11:58:09:94:89:83:f1:fd:55:e7:65:eb: fe:be:72:da:e8:57:7f:c4:8d:c6:b2:2e:c9:77:d1: 7b:67:16:07:95:31:54:d1:c4:c8:7c:bb:54:b1:e3: 5b:db:03:54:4e:a9:aa:57:6c:fd:3a:8c:5e:4e:a9: 31:87:70:60:78:08:2a:d5:47:59:81:32:6e:85:9f: de:a8:bc:1c:65:0d:ed:1a:14:59:4d:51:dd:ef:49: 36:f0:b1:5a:a7:cd:45:4c:d2:06:70:90:9e:ab:60: 5c:a2:c9:8c:45:22:62:24:fd:61:03:2e:f5:41:37: b6:91:6b:70:95:56:76:e6:93:37:50:8c:83:c1:7f: 2b:76:a4:f7:37:23:39:3f:d3:70:d6:25:51:2d:65: 40:2d:8c:b4:c3:a9:13:d4:86:b7:9f:98:67:60:95: cb:cd:a9:a0:25:df:a5:25:c7:e9:6d:23:98:c6:43: e8:10:45:29:bb:d1:99:53:a4:d2:11:ff:54:32:e8: 48:f2:b0:95:e2:40:04:b7:9b:eb:a3:bb:ee:5b:c8: 75:89:52:13:bb:68:6a:3b:2a:be:50:21:c4:5b:95: c9:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:58:FF:CB:50:23:C2:E6:42:3E:3F:96:7B:2C:23:9E:D0:AD:4F:50 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6729F86CA59611EF8CE5915BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.255.28.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:21:1b:5a:92:03:e0:b7:8c:df:5d:9e:56:98:4e:e5:5a:14: 61:45:82:c8:26:f4:6b:26:e6:e6:57:40:05:f7:9a:e1:5a:00: 1c:b5:b7:0c:65:a7:0e:d8:48:70:ed:85:ec:17:41:32:7e:b8: cf:6d:2b:ea:e6:33:a2:6d:12:76:ba:10:ea:dc:80:50:97:6e: 2d:7e:15:b4:a6:9f:95:9f:7a:23:bd:2d:31:6a:fc:82:29:0a: 3b:12:e6:dd:85:a6:cc:5b:ca:cc:ef:13:d6:7f:73:a8:22:8b: fb:3e:b5:2b:6d:eb:ff:de:5c:e2:2d:b0:ce:ec:c0:8f:63:0e: 02:48:8a:1f:a6:58:52:25:41:a2:3b:b2:a0:27:61:45:f4:a8: 85:47:d8:93:19:7a:30:21:99:76:61:24:ac:50:33:29:3a:ee: c8:cc:9a:e2:ff:fb:a5:dd:fb:ca:50:d6:d9:8d:e1:20:7f:d8: 27:4c:ce:dd:79:d4:a0:c5:14:ab:e3:bc:6e:0b:ac:7d:d4:78: 17:4d:c9:8b:b1:65:20:0e:6a:e5:c3:5a:3c:ac:c7:29:ff:8d: f6:e9:7f:ce:9b:e2:2d:fc:5d:cf:2a:b6:8c:d6:dd:32:59:f2: 97:e0:8b:db:a0:a5:6c:9c:d8:f9:d2:ce:2f:58:85:46:7e:53: af:08:46:86 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDALkdMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MjcxMloXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2RiNjAtOGUwYTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKs5tF7kD/EZAUqOyFV6K0pOz66U65bvCnoL4AAWp5eOEVgJlImD8f1V52Xr /r5y2uhXf8SNxrIuyXfRe2cWB5UxVNHEyHy7VLHjW9sDVE6pqlds/TqMXk6pMYdw YHgIKtVHWYEyboWf3qi8HGUN7RoUWU1R3e9JNvCxWqfNRUzSBnCQnqtgXKLJjEUi YiT9YQMu9UE3tpFrcJVWduaTN1CMg8F/K3ak9zcjOT/TcNYlUS1lQC2MtMOpE9SG t5+YZ2CVy82poCXfpSXH6W0jmMZD6BBFKbvRmVOk0hH/VDLoSPKwleJABLeb66O7 7lvIdYlSE7toajsqvlAhxFuVybECAwEAAaOCApUwggKRMB0GA1UdDgQWBBRwWP/L UCPC5kI+P5Z7LCOe0K1PUDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzY3MjlGODZD QTU5NjExRUY4Q0U1OTE1QkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQAZ/8cMA0GCSqGSIb3DQEBCwUAA4IBAQCfIRtakgPgt4zf XZ5WmE7lWhRhRYLIJvRrJubmV0AF95rhWgActbcMZacO2Ehw7YXsF0EyfrjPbSvq 5jOibRJ2uhDq3IBQl24tfhW0pp+Vn3ojvS0xavyCKQo7EubdhabMW8rM7xPWf3Oo Iov7PrUrbev/3lziLbDO7MCPYw4CSIofplhSJUGiO7KgJ2FF9KiFR9iTGXowIZl2 YSSsUDMpOu7IzJri//ul3fvKUNbZjeEgf9gnTM7dedSgxRSr47xuC6x91HgXTcmL sWUgDmrlw1o8rMcp/4326X/Om+It/F3PKraM1t0yWfKX4IvboKVsnNj50s4vWIVG flOvCEaG -----END CERTIFICATE-----Generated at Wed May 14 13:04:54 2025 by rpki-client