$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/732998D246A511EC8BF89865C4F9AE02.roa File: 732998D246A511EC8BF89865C4F9AE02.roa (raw, json) Hash identifier: 9XZLNlF228xeC7FKpf0//QJJImXwFhYJM1eIp4aRT5A= Subject key identifier: 3E:2B:FF:FE:6F:8F:F4:F6:BF:1E:B5:27:AD:7F:C0:53:FF:C1:F0:DE Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B779 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/732998D246A511EC8BF89865C4F9AE02.roa Signing time: Thu 08 May 2025 16:20:53 +0000 ROA not before: Thu 08 May 2025 16:20:53 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 147232 IP address blocks: 103.176.74.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 08:51:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46969 (0xb779) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:20:53 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd9e4-81cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:2d:d1:68:e5:cd:93:a0:22:bd:a5:28:f2:8d: ab:84:f7:8b:f4:20:6b:33:bb:45:a2:9b:a0:77:68: 3a:3d:ea:88:26:df:a6:39:10:38:6f:f9:ef:66:ae: 88:3c:77:19:bd:e3:5c:7d:ea:20:3c:07:6a:a7:a0: f8:5b:3a:d6:a7:8b:fc:b3:7c:6d:dd:e0:76:f8:53: 51:c3:a2:37:fc:41:d1:61:2a:a1:0d:34:be:b1:f7: 90:32:12:33:d2:ce:ec:36:f7:a6:d3:c3:5b:a7:bb: 9d:ba:d5:45:af:e5:6a:87:34:c5:4e:0c:f0:f5:13: 29:2f:15:e4:de:4e:84:c4:f3:ca:cc:2b:a6:f0:b4: 46:86:1a:bc:f9:9e:dc:6c:2d:e0:58:df:08:43:be: 2f:3e:f0:1f:6a:4a:48:84:67:de:31:4e:9b:3b:f3: 7e:36:74:b0:27:39:2b:c1:fe:5b:2c:a2:f7:2c:75: d8:9f:4f:e8:6e:b7:c6:34:2b:4e:63:d0:1f:cc:af: f8:d1:71:dd:c4:b7:e4:67:ab:7f:06:99:2a:ed:c0: e5:af:01:0b:22:6c:37:37:46:b9:70:65:1b:9c:50: 3e:b1:58:f8:94:80:a4:43:74:75:c5:27:e2:87:fe: 99:a2:2a:54:69:8f:5e:74:20:4f:1d:76:8f:5b:6f: dc:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:2B:FF:FE:6F:8F:F4:F6:BF:1E:B5:27:AD:7F:C0:53:FF:C1:F0:DE X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/732998D246A511EC8BF89865C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.176.74.0/23 Signature Algorithm: sha256WithRSAEncryption 0b:94:28:01:91:0d:bc:b7:7e:8f:2e:4f:4c:e9:3b:09:71:d1: fc:60:b3:d6:22:5a:5c:27:f5:46:0b:24:a2:98:4b:c5:0e:e5: 5e:11:e8:b5:93:38:2b:9a:29:86:b2:06:a5:fe:c8:24:ed:82: 87:e4:23:14:3a:0b:01:79:3a:15:d4:ce:48:b1:4d:27:6d:d9: 25:fa:6c:c0:de:3c:be:9e:a1:a1:dd:30:ac:0b:16:dc:2d:b1: eb:00:8b:b4:e4:45:cb:38:a5:b7:6f:21:5f:ab:1a:c8:52:4c: b2:28:64:93:f1:cb:90:ed:b0:36:26:3d:84:d2:ac:61:5a:bf: 3f:28:a1:fb:1b:49:fd:de:24:75:73:17:ab:37:20:7f:25:55: d2:98:a5:39:d7:58:5c:08:d7:39:ff:7f:30:d3:b3:61:46:5d: 40:8a:63:87:af:4c:9c:f5:b8:6f:d8:3a:bd:94:0e:cf:44:f2: 9a:b3:12:d1:a6:4f:9b:e5:4e:c6:d0:b8:b2:b7:43:2b:26:b4: e3:1f:77:b8:f2:e6:b7:e5:85:a3:a7:1e:4b:f9:93:8d:d4:72: c4:f4:9d:d4:18:fe:95:c0:21:04:fb:67:36:3c:75:13:40:50: b5:60:ca:75:cd:f3:be:0f:a8:2f:e1:a2:db:ad:82:13:82:70: 56:98:b7:3f -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDALd5MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MjA1M1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q5ZTQtODFjZjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOct0WjlzZOgIr2lKPKNq4T3i/QgazO7RaKboHdoOj3qiCbfpjkQOG/572au iDx3Gb3jXH3qIDwHaqeg+Fs61qeL/LN8bd3gdvhTUcOiN/xB0WEqoQ00vrH3kDIS M9LO7Db3ptPDW6e7nbrVRa/laoc0xU4M8PUTKS8V5N5OhMTzyswrpvC0RoYavPme 3Gwt4FjfCEO+Lz7wH2pKSIRn3jFOmzvzfjZ0sCc5K8H+Wyyi9yx12J9P6G63xjQr TmPQH8yv+NFx3cS35GerfwaZKu3A5a8BCyJsNzdGuXBlG5xQPrFY+JSApEN0dcUn 4of+maIqVGmPXnQgTx12j1tv3FUCAwEAAaOCApUwggKRMB0GA1UdDgQWBBQ+K//+ b4/09r8etSetf8BT/8Hw3jAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzczMjk5OEQy NDZBNTExRUM4QkY4OTg2NUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQBZ7BKMA0GCSqGSIb3DQEBCwUAA4IBAQALlCgBkQ28t36P Lk9M6TsJcdH8YLPWIlpcJ/VGCySimEvFDuVeEei1kzgrmimGsgal/sgk7YKH5CMU OgsBeToV1M5IsU0nbdkl+mzA3jy+nqGh3TCsCxbcLbHrAIu05EXLOKW3byFfqxrI UkyyKGST8cuQ7bA2Jj2E0qxhWr8/KKH7G0n93iR1cxerNyB/JVXSmKU511hcCNc5 /38w07NhRl1AimOHr0yc9bhv2Dq9lA7PRPKasxLRpk+b5U7G0Liyt0MrJrTjH3e4 8ua35YWjpx5L+ZON1HLE9J3UGP6VwCEE+2c2PHUTQFC1YMp1zfO+D6gv4aLbrYIT gnBWmLc/ -----END CERTIFICATE-----Generated at Tue May 13 12:39:21 2025 by rpki-client