$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/733E675E37C211EC824BDA24C4F9AE02.roa File: 733E675E37C211EC824BDA24C4F9AE02.roa (raw, json) Hash identifier: lFds2GOS9TByFMfR5rQ9zaCcB4JblCICeW/aFvyRLnc= Subject key identifier: 64:53:07:D4:C2:0D:78:86:34:34:69:CD:85:F6:28:35:5E:62:AE:E2 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B618 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/733E675E37C211EC824BDA24C4F9AE02.roa Signing time: Thu 08 May 2025 16:15:33 +0000 ROA not before: Thu 08 May 2025 16:15:33 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141287 IP address blocks: 103.158.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 07:03:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46616 (0xb618) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:15:33 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd8a5-e731 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:85:f7:11:6a:07:86:4d:bc:35:69:0e:42:76: 9e:f8:c8:10:ca:c1:5d:21:0f:c9:f9:18:a6:b7:8f: 8a:31:e0:51:65:d9:7b:b8:a4:db:a3:7d:c0:d2:48: cf:30:2a:66:c1:e3:20:af:46:92:7e:a6:be:0b:e8: 5c:c4:21:02:03:94:41:10:78:23:24:3f:bb:3c:78: 6d:a9:f0:1a:7f:65:e2:b8:f3:0d:aa:1c:ba:74:1f: 8f:fd:4c:19:db:59:08:37:fd:1c:84:bb:9e:e0:05: a9:69:0b:91:b6:48:b2:21:4a:71:fd:0f:86:74:50: 15:d3:8e:58:7e:6a:ce:0f:93:b4:cd:f4:24:52:77: 5f:5d:8c:65:ee:bf:01:b9:00:ec:a3:7d:d3:52:2c: 0b:c6:f2:e6:0e:cc:ca:47:42:f9:4f:4a:60:b3:db: 2e:30:fa:70:dc:33:c1:23:02:f1:85:d2:57:a6:42: 72:4b:ae:ec:2a:54:be:ac:66:01:00:5f:d1:45:1d: b1:bb:b1:38:86:2d:17:a9:a4:6e:98:ff:45:e9:85: e3:21:a7:b3:d2:80:e4:39:86:fb:fb:c2:b3:b8:c6: 9c:5e:65:b3:e6:9c:97:2d:d2:88:b5:81:64:51:c5: e8:51:a1:97:42:77:b2:8c:13:91:a4:5d:79:be:2d: 69:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:53:07:D4:C2:0D:78:86:34:34:69:CD:85:F6:28:35:5E:62:AE:E2 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/733E675E37C211EC824BDA24C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.158.41.0/24 Signature Algorithm: sha256WithRSAEncryption b0:5f:89:94:df:bd:0a:52:cb:48:46:33:91:0c:6c:b7:65:c0: 08:81:71:93:0e:6b:bc:f4:68:7e:00:83:2e:20:f6:4e:00:7d: d9:64:96:90:70:90:12:43:d6:6b:a0:89:d6:2b:8c:69:31:6a: e6:5f:8f:23:b3:d7:a2:d4:ca:75:be:a5:5e:1d:bf:e9:70:38: ed:36:b3:00:83:e7:10:27:e2:da:82:a9:ea:d2:11:52:70:9e: 0c:74:74:b5:13:32:bb:b0:91:e0:f1:74:83:88:ce:b2:c9:3b: 56:65:f7:0a:8b:d5:95:61:0c:11:2e:5f:b2:8e:bc:35:c7:30: e2:49:0e:df:4d:76:c2:3d:9f:fa:42:17:ba:2f:87:f4:14:91: a0:b2:ef:42:06:d7:9e:0f:cb:34:bd:9c:a6:4a:2a:1f:43:52: 1a:f5:d5:da:d4:4c:0f:a9:da:3b:e3:3e:d6:dd:60:fa:0e:56: 97:04:c9:ee:0e:4e:bb:94:71:45:15:9e:ad:64:b9:46:a6:15: 52:f3:52:5c:65:03:26:5f:5a:9c:ab:9d:74:f8:d6:c9:29:a1: 2c:61:46:65:36:7c:cd:16:c5:b2:d7:34:fa:af:41:91:25:5b: 06:bb:4f:0a:55:85:f2:2d:a6:7f:75:5c:24:3e:52:38:56:d8: cb:8d:80:22 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDALYYMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MTUzM1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q4YTUtZTczMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM+F9xFqB4ZNvDVpDkJ2nvjIEMrBXSEPyfkYprePijHgUWXZe7ik26N9wNJI zzAqZsHjIK9Gkn6mvgvoXMQhAgOUQRB4IyQ/uzx4banwGn9l4rjzDaocunQfj/1M GdtZCDf9HIS7nuAFqWkLkbZIsiFKcf0PhnRQFdOOWH5qzg+TtM30JFJ3X12MZe6/ AbkA7KN901IsC8by5g7MykdC+U9KYLPbLjD6cNwzwSMC8YXSV6ZCckuu7CpUvqxm AQBf0UUdsbuxOIYtF6mkbpj/RemF4yGns9KA5DmG+/vCs7jGnF5ls+acly3SiLWB ZFHF6FGhl0J3sowTkaRdeb4tadkCAwEAAaOCApUwggKRMB0GA1UdDgQWBBRkUwfU wg14hjQ0ac2F9ig1XmKu4jAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzczM0U2NzVF MzdDMjExRUM4MjRCREEyNEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQAZ54pMA0GCSqGSIb3DQEBCwUAA4IBAQCwX4mU370KUstI RjORDGy3ZcAIgXGTDmu89Gh+AIMuIPZOAH3ZZJaQcJASQ9ZroInWK4xpMWrmX48j s9ei1Mp1vqVeHb/pcDjtNrMAg+cQJ+Lagqnq0hFScJ4MdHS1EzK7sJHg8XSDiM6y yTtWZfcKi9WVYQwRLl+yjrw1xzDiSQ7fTXbCPZ/6Qhe6L4f0FJGgsu9CBteeD8s0 vZymSiofQ1Ia9dXa1EwPqdo74z7W3WD6DlaXBMnuDk67lHFFFZ6tZLlGphVS81Jc ZQMmX1qcq510+NbJKaEsYUZlNnzNFsWy1zT6r0GRJVsGu08KVYXyLaZ/dVwkPlI4 VtjLjYAi -----END CERTIFICATE-----Generated at Wed May 14 11:05:43 2025 by rpki-client