$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/71B16478031011EBB8C8F10DC4F9AE02.roa File: 71B16478031011EBB8C8F10DC4F9AE02.roa (raw, json) Hash identifier: 39SE++K2pNsUbRrckShIZGgPQCSjA7QJl8UP67po+L4= Subject key identifier: 48:1D:22:28:50:0A:5A:D9:FE:94:7F:EB:41:B1:88:84:B0:AB:2F:E5 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B3EE Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/71B16478031011EBB8C8F10DC4F9AE02.roa Signing time: Thu 08 May 2025 16:07:06 +0000 ROA not before: Thu 08 May 2025 16:07:06 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136360 IP address blocks: 103.91.96.0/22 maxlen: 24 103.160.46.0/23 maxlen: 24 2001:df4:f680::/48 maxlen: 48 2001:df5:9480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:54:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46062 (0xb3ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:07:06 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd6aa-4f78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:59:fb:90:2f:63:c5:7b:54:bb:df:75:c8:40: 22:7c:a2:51:23:dc:75:41:af:31:05:f4:57:ea:f8: ce:04:dd:15:ca:88:93:5b:06:7f:0d:60:d8:ad:f7: 6a:d2:7c:cf:60:fa:b5:5e:0b:00:7f:0e:ed:f0:52: e1:e6:18:8a:b3:11:29:be:01:5d:c0:6b:fc:41:d8: a3:fc:2e:a2:34:fb:8d:63:bf:92:63:6f:d7:30:3a: 03:6c:9d:5a:a9:8a:c7:08:74:e8:ec:96:fc:ab:c7: b0:76:29:b0:95:75:9b:e5:0d:3f:f8:b1:c1:0f:bf: 8e:84:50:62:ca:46:1b:b2:25:4c:ed:05:8f:6c:ab: 20:91:39:0b:e5:87:06:f0:56:74:d7:e8:4e:f6:9a: 32:69:4f:1e:ed:29:73:70:52:ef:bc:74:28:46:8a: 1a:c2:ac:dd:15:d5:5b:dc:37:df:d8:f4:c4:20:45: 70:a3:56:40:a1:1a:b3:22:94:cf:ff:27:cd:05:68: e0:ed:d0:89:31:01:ad:f0:c7:a0:d5:36:89:0e:38: 6e:c7:b4:04:fe:40:db:14:75:9c:a0:9b:14:fe:a6: ff:e0:08:63:39:47:ea:7a:04:6b:27:3e:e0:d4:4d: bf:c2:61:64:00:f2:16:18:b3:40:60:03:55:8b:1c: cb:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:1D:22:28:50:0A:5A:D9:FE:94:7F:EB:41:B1:88:84:B0:AB:2F:E5 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/71B16478031011EBB8C8F10DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.91.96.0/22 103.160.46.0/23 IPv6: 2001:df4:f680::/48 2001:df5:9480::/48 Signature Algorithm: sha256WithRSAEncryption 95:a8:aa:bd:60:61:7e:7b:c5:5d:f9:9d:77:77:73:8c:75:12: 32:da:00:ef:96:82:0e:c1:a5:93:42:63:30:82:c4:dc:47:f7: f2:3a:1a:a6:97:ed:3f:41:33:46:ed:3c:f7:94:e6:70:e8:e4: e4:da:fd:46:07:7d:83:bc:67:6b:85:c3:de:17:5c:bc:90:30: eb:ae:f6:cb:40:a3:ca:97:81:6c:16:f5:31:f4:e0:9d:da:4c: 23:8e:4a:05:c5:4d:94:43:f0:fc:eb:b4:8e:a9:63:06:26:47: 55:d7:5c:7d:41:27:54:04:9b:d3:5a:2f:de:a4:ed:cf:4a:97: a6:cb:5a:ee:fe:51:f9:3d:81:eb:a2:e5:5a:7b:53:d8:07:04: 9c:4c:0e:a4:95:6f:ac:d9:5a:8d:c4:c0:91:44:7b:a7:c4:3a: 8a:c9:b5:fb:e2:c1:19:60:a9:90:f7:d0:b7:84:bf:60:17:e8: 1e:a4:5c:16:3b:8b:5f:70:1b:7d:47:db:54:e5:09:89:de:e6: 32:3a:7d:c6:6c:90:ae:12:94:18:47:c7:0f:84:5a:fd:b8:c9: d4:52:cf:75:59:c5:6e:6f:44:09:f5:18:55:94:d4:9e:95:32: ad:2c:00:8b:8a:25:a6:17:35:d7:ca:10:44:0f:7a:f8:3a:e6: bd:ee:4c:ac -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgIDALPuMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MDcwNloXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q2YWEtNGY3ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALBZ+5AvY8V7VLvfdchAInyiUSPcdUGvMQX0V+r4zgTdFcqIk1sGfw1g2K33 atJ8z2D6tV4LAH8O7fBS4eYYirMRKb4BXcBr/EHYo/wuojT7jWO/kmNv1zA6A2yd WqmKxwh06OyW/KvHsHYpsJV1m+UNP/ixwQ+/joRQYspGG7IlTO0Fj2yrIJE5C+WH BvBWdNfoTvaaMmlPHu0pc3BS77x0KEaKGsKs3RXVW9w339j0xCBFcKNWQKEasyKU z/8nzQVo4O3QiTEBrfDHoNU2iQ44bse0BP5A2xR1nKCbFP6m/+AIYzlH6noEayc+ 4NRNv8JhZADyFhizQGADVYscy+sCAwEAAaOCArUwggKxMB0GA1UdDgQWBBRIHSIo UApa2f6Uf+tBsYiEsKsv5TAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzcxQjE2NDc4 MDMxMDExRUJCOEM4RjEwREM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMD8GCCsGAQUFBwEHAQH/ BDAwLjASBAIAATAMAwQCZ1tgAwQBZ6AuMBgEAgACMBIDBwAgAQ309oADBwAgAQ31 lIAwDQYJKoZIhvcNAQELBQADggEBAJWoqr1gYX57xV35nXd3c4x1EjLaAO+Wgg7B pZNCYzCCxNxH9/I6GqaX7T9BM0btPPeU5nDo5OTa/UYHfYO8Z2uFw94XXLyQMOuu 9stAo8qXgWwW9TH04J3aTCOOSgXFTZRD8PzrtI6pYwYmR1XXXH1BJ1QEm9NaL96k 7c9Kl6bLWu7+Ufk9geui5Vp7U9gHBJxMDqSVb6zZWo3EwJFEe6fEOorJtfviwRlg qZD30LeEv2AX6B6kXBY7i19wG31H21TlCYne5jI6fcZskK4SlBhHxw+EWv24ydRS z3VZxW5vRAn1GFWU1J6VMq0sAIuKJaYXNdfKEEQPevg65r3uTKw= -----END CERTIFICATE-----Generated at Tue May 13 00:27:00 2025 by rpki-client