$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/732F297C151E11ECA422CD83C4F9AE02.roa File: 732F297C151E11ECA422CD83C4F9AE02.roa (raw, json) Hash identifier: hPRcH4R7PhyTWgtcW+bL0VktAIgCixQE86UNK5BJSkM= Subject key identifier: F3:A0:B2:01:37:62:AD:7A:E6:F1:8C:28:DA:CF:33:E2:8D:D6:98:D0 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B734 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/732F297C151E11ECA422CD83C4F9AE02.roa Signing time: Thu 08 May 2025 16:19:52 +0000 ROA not before: Thu 08 May 2025 16:19:52 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 146890 IP address blocks: 103.173.20.0/23 maxlen: 24 2001:df1:cb40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 08:51:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46900 (0xb734) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:19:52 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd9a8-4e5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:8a:af:ba:5f:af:1b:32:50:a3:e3:2f:90:9d: b0:45:5e:54:15:9d:db:19:12:60:ce:dd:84:28:c7: 4b:b1:bb:79:d0:e5:8a:15:5a:87:64:fd:6d:c7:3b: 02:36:9c:fc:cf:e9:79:c3:d0:fd:e8:10:09:67:8b: bf:da:7f:6a:0a:0f:bf:61:cf:9c:b7:63:ed:45:82: 33:43:ae:52:5c:40:64:b6:9f:72:98:f4:0a:43:f9: 4b:0c:d9:70:3d:7f:2e:15:96:92:d3:8d:00:8f:72: 47:90:4b:c8:f6:d8:19:ba:ed:24:01:19:d6:1c:3c: d2:aa:ed:f5:29:1d:ac:b4:59:9f:a9:fe:3d:24:93: bf:12:84:97:67:a1:7f:5e:6e:18:65:24:75:68:ff: 29:a2:68:50:ba:d4:82:36:86:c5:d5:f6:20:3e:28: 43:76:76:36:d3:ca:bd:61:07:04:af:77:5a:ce:04: 9b:32:0c:31:91:9b:e4:e2:18:56:ad:4b:6d:4e:df: d0:87:4f:87:b9:6a:86:df:7e:d5:3b:97:da:c3:d1: 0d:d5:94:be:53:bd:7f:8f:91:a5:72:d2:45:5a:bd: 38:f4:04:17:1d:34:af:7b:45:82:31:ff:2f:d1:2c: 87:00:54:e7:f5:2e:eb:ee:6b:3b:9a:87:55:52:c7: 9c:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:A0:B2:01:37:62:AD:7A:E6:F1:8C:28:DA:CF:33:E2:8D:D6:98:D0 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/732F297C151E11ECA422CD83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.173.20.0/23 IPv6: 2001:df1:cb40::/48 Signature Algorithm: sha256WithRSAEncryption 3e:29:64:09:4f:f5:d4:3e:a3:3e:0b:d5:69:0c:c6:0d:8c:6d: 6b:4e:cc:43:ea:30:7d:7b:65:4d:55:8e:84:6e:95:07:01:8e: eb:45:83:2a:12:0a:f9:62:3a:b5:78:89:62:06:5c:43:c8:aa: f7:d5:c3:07:50:66:e5:83:0e:64:11:0c:4d:19:84:d7:fd:82: 2b:2b:7b:b1:8d:76:d4:a0:31:4a:f0:47:12:53:43:9f:d7:ef: e9:72:86:5d:1e:81:ab:ab:0a:41:c0:93:5d:44:b8:24:21:d0: 06:20:e0:b7:16:20:a2:32:a3:75:c8:c1:6e:8f:a2:c2:d5:15: 3d:4e:f9:57:d9:1d:54:cc:05:5e:91:98:d0:b2:0a:34:94:21: 22:01:3d:f7:aa:f6:47:16:1a:04:a1:e9:55:d0:18:0e:ef:32: 8b:63:d4:33:9d:a8:f3:d7:ad:68:24:ef:2f:78:99:bb:a9:83: 60:2f:3c:d1:cd:49:b4:3f:de:2c:6f:d7:cc:a5:67:77:f5:27: 37:7a:57:c4:2e:f4:58:ab:68:16:8f:df:e9:dd:36:da:9a:d9: 52:8a:32:dc:5b:70:45:30:3c:f4:57:c9:b3:96:28:2e:75:8c: 85:ce:16:2e:7d:41:8f:ea:fc:37:1c:e7:07:4c:9c:3a:5f:79: fb:dc:11:df -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIDALc0MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MTk1MloXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q5YTgtNGU1ZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALSKr7pfrxsyUKPjL5CdsEVeVBWd2xkSYM7dhCjHS7G7edDlihVah2T9bcc7 Ajac/M/pecPQ/egQCWeLv9p/agoPv2HPnLdj7UWCM0OuUlxAZLafcpj0CkP5SwzZ cD1/LhWWktONAI9yR5BLyPbYGbrtJAEZ1hw80qrt9SkdrLRZn6n+PSSTvxKEl2eh f15uGGUkdWj/KaJoULrUgjaGxdX2ID4oQ3Z2NtPKvWEHBK93Ws4EmzIMMZGb5OIY Vq1LbU7f0IdPh7lqht9+1TuX2sPRDdWUvlO9f4+RpXLSRVq9OPQEFx00r3tFgjH/ L9EshwBU5/Uu6+5rO5qHVVLHnJMCAwEAAaOCAqYwggKiMB0GA1UdDgQWBBTzoLIB N2KteubxjCjazzPijdaY0DAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzczMkYyOTdD MTUxRTExRUNBNDIyQ0Q4M0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDAGCCsGAQUFBwEHAQH/ BCEwHzAMBAIAATAGAwQBZ60UMA8EAgACMAkDBwAgAQ3xy0AwDQYJKoZIhvcNAQEL BQADggEBAD4pZAlP9dQ+oz4L1WkMxg2MbWtOzEPqMH17ZU1VjoRulQcBjutFgyoS CvliOrV4iWIGXEPIqvfVwwdQZuWDDmQRDE0ZhNf9gisre7GNdtSgMUrwRxJTQ5/X 7+lyhl0egaurCkHAk11EuCQh0AYg4LcWIKIyo3XIwW6PosLVFT1O+VfZHVTMBV6R mNCyCjSUISIBPfeq9kcWGgSh6VXQGA7vMotj1DOdqPPXrWgk7y94mbupg2AvPNHN SbQ/3ixv18ylZ3f1Jzd6V8Qu9FiraBaP3+ndNtqa2VKKMtxbcEUwPPRXybOWKC51 jIXOFi59QY/q/Dcc5wdMnDpfefvcEd8= -----END CERTIFICATE-----Generated at Tue May 13 11:22:14 2025 by rpki-client