$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/716002EAFCD411EB9A1BD21CC4F9AE02.roa File: 716002EAFCD411EB9A1BD21CC4F9AE02.roa (raw, json) Hash identifier: FQOnyW1zfhDbAicYKE442uf0CNrGwoLIClJNW+WZiTI= Subject key identifier: E6:26:9F:A6:2C:B9:0D:32:A8:DB:9A:88:A6:52:87:12:6D:76:7C:AE Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B1A8 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/716002EAFCD411EB9A1BD21CC4F9AE02.roa Signing time: Thu 08 May 2025 15:58:04 +0000 ROA not before: Thu 08 May 2025 15:58:04 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 133243 IP address blocks: 103.210.144.0/22 maxlen: 24 139.5.48.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:54:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45480 (0xb1a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 15:58:04 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd48b-281f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:21:59:df:6d:cc:88:0b:1f:11:68:8b:32:1b: 44:26:9a:69:d9:99:d6:80:31:8c:af:e0:a0:5c:7d: 22:ea:19:80:2e:84:dd:65:8a:6c:24:e7:5e:3d:30: 68:f3:17:b7:0e:c0:a2:0f:6e:cf:a8:e3:ab:0a:04: 69:a0:79:59:d6:27:75:21:1d:57:45:53:26:af:fc: da:17:f2:d2:43:bd:24:02:1a:80:89:3b:c3:66:da: ee:04:f4:05:a3:f7:a5:23:08:a2:63:50:3f:45:d2: 0d:25:cf:61:82:e7:b0:9f:85:23:21:59:6d:bb:d2: 08:83:86:d9:25:2a:f2:dd:03:00:73:85:50:a4:02: a7:ba:b2:2c:64:e3:08:d7:35:18:5b:75:39:97:3b: 5a:46:bb:96:74:16:21:eb:4c:d6:10:e5:1b:86:87: 4c:6f:91:15:53:86:7b:87:ab:64:93:20:92:4f:b4: 97:55:44:82:df:ef:f5:89:d2:6a:28:ad:87:b4:0d: a8:b6:ac:87:7a:43:84:94:7b:96:1e:db:bf:ff:37: c4:68:98:73:e1:e7:e5:02:51:05:f5:3a:c7:9a:0b: e2:1e:c7:ca:4f:f3:6a:4c:fa:c4:13:4e:25:bf:bd: cd:f7:43:23:99:d9:f2:c1:db:7c:4a:9d:78:ff:ee: 49:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:26:9F:A6:2C:B9:0D:32:A8:DB:9A:88:A6:52:87:12:6D:76:7C:AE X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/716002EAFCD411EB9A1BD21CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.210.144.0/22 139.5.48.0/22 Signature Algorithm: sha256WithRSAEncryption 92:33:4c:da:b6:f1:db:c0:7f:20:2b:7f:71:54:e5:98:ff:36: 39:e5:a2:2e:32:5a:dc:86:d4:4f:d4:cf:4f:5d:b0:b5:a2:0b: 3d:ee:03:d2:63:ae:c1:5e:2f:19:17:c2:bb:97:50:84:f6:36: fa:e6:15:e6:45:fb:47:3a:55:42:58:db:59:cf:03:70:c0:2e: 04:25:eb:d9:0d:c4:75:ab:c6:13:1d:99:c6:99:22:75:35:60: 4e:1d:10:40:2d:02:f4:9e:47:3d:b4:a9:03:31:54:00:9c:15: 64:1a:3d:eb:72:b7:29:fb:68:14:8b:31:38:06:3a:40:57:06: 8e:e3:79:c2:e7:70:03:62:03:99:29:1e:58:59:6f:44:d7:ae: 3b:de:40:af:8c:ae:23:3c:9a:8f:b3:5c:5c:68:8e:7f:3f:d6: c2:3a:10:03:63:f1:07:93:bc:04:39:22:40:21:2c:f1:c3:09: 2f:03:fe:84:11:de:71:ac:6d:7c:4c:d8:28:04:15:9e:70:f0: e9:c4:87:bf:e9:0c:fa:6d:c1:a2:1c:47:54:77:5b:b8:ba:30: f1:fb:b8:26:e0:59:91:63:e4:b0:00:c1:7d:dc:9d:44:18:0f: df:13:be:f0:ac:03:2b:ca:9e:be:2e:9a:24:bd:8e:ad:e6:0c: 5c:87:e6:c3 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIDALGoMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE1NTgwNFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q0OGItMjgxZjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOAhWd9tzIgLHxFoizIbRCaaadmZ1oAxjK/goFx9IuoZgC6E3WWKbCTnXj0w aPMXtw7Aog9uz6jjqwoEaaB5WdYndSEdV0VTJq/82hfy0kO9JAIagIk7w2ba7gT0 BaP3pSMIomNQP0XSDSXPYYLnsJ+FIyFZbbvSCIOG2SUq8t0DAHOFUKQCp7qyLGTj CNc1GFt1OZc7Wka7lnQWIetM1hDlG4aHTG+RFVOGe4erZJMgkk+0l1VEgt/v9YnS aiith7QNqLash3pDhJR7lh7bv/83xGiYc+Hn5QJRBfU6x5oL4h7Hyk/zakz6xBNO Jb+9zfdDI5nZ8sHbfEqdeP/uSWsCAwEAAaOCApswggKXMB0GA1UdDgQWBBTmJp+m LLkNMqjbmoimUocSbXZ8rjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzcxNjAwMkVB RkNENDExRUI5QTFCRDIxQ0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCUGCCsGAQUFBwEHAQH/ BBYwFDASBAIAATAMAwQCZ9KQAwQCiwUwMA0GCSqGSIb3DQEBCwUAA4IBAQCSM0za tvHbwH8gK39xVOWY/zY55aIuMlrchtRP1M9PXbC1ogs97gPSY67BXi8ZF8K7l1CE 9jb65hXmRftHOlVCWNtZzwNwwC4EJevZDcR1q8YTHZnGmSJ1NWBOHRBALQL0nkc9 tKkDMVQAnBVkGj3rcrcp+2gUizE4BjpAVwaO43nC53ADYgOZKR5YWW9E16473kCv jK4jPJqPs1xcaI5/P9bCOhADY/EHk7wEOSJAISzxwwkvA/6EEd5xrG18TNgoBBWe cPDpxIe/6Qz6bcGiHEdUd1u4ujDx+7gm4FmRY+SwAMF93J1EGA/fE77wrAMryp6+ LpokvY6t5gxch+bD -----END CERTIFICATE-----Generated at Tue May 13 01:28:41 2025 by rpki-client