$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/75C7147454F611EDBF0A4B11C4F9AE02.roa File: 75C7147454F611EDBF0A4B11C4F9AE02.roa (raw, json) Hash identifier: qrkLHWQRjDdltXsLrEkTg9PZ6hBrSkxVhTLB+j4/xdM= Subject key identifier: B5:E3:70:80:4F:75:76:B0:E6:7F:50:3E:8B:03:71:AE:2D:57:34:4F Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B57C Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/75C7147454F611EDBF0A4B11C4F9AE02.roa Signing time: Thu 08 May 2025 16:13:12 +0000 ROA not before: Thu 08 May 2025 16:13:12 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 139507 IP address blocks: 103.146.215.0/24 maxlen: 24 103.152.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 02:36:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46460 (0xb57c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:13:12 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd818-8f83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:a8:bb:00:a9:a4:e4:cc:07:b4:8d:27:5c:5e: 8c:ae:59:78:6a:a3:72:45:d6:c0:c3:77:45:c2:0d: 36:8c:3f:a9:40:80:58:38:e5:41:d1:37:c8:78:a4: bd:23:5a:39:38:5d:5b:b7:12:e9:67:7e:0b:19:86: 91:5a:51:04:81:e9:5b:e8:4e:6b:3c:c9:72:0a:c2: 6e:f1:21:be:a4:da:44:d0:06:66:57:c3:cf:ca:74: 5f:b7:b5:2b:8e:e5:01:78:b4:27:b5:41:c6:9f:77: 6a:16:f3:62:1f:c3:9f:b1:cb:7c:92:95:8d:07:c5: 6a:5b:dd:4a:ea:60:29:91:26:ed:89:f0:b5:10:53: 7c:e6:44:9a:46:57:36:07:f7:db:c9:ad:c1:c0:28: a0:03:eb:a9:9e:05:fe:e0:03:73:49:b5:78:0c:4d: 5f:ac:bb:ee:94:1d:ea:80:89:ef:80:b5:9a:51:8f: c6:44:6f:6c:93:b2:1a:70:2b:91:58:eb:96:0f:4d: 03:4c:21:07:f7:f0:48:82:b7:f3:41:b2:dc:fc:42: 50:c0:5c:eb:ff:a8:5e:29:31:82:19:bf:da:cc:fa: 71:77:f2:cb:0f:c2:4d:73:00:34:87:e8:63:ad:33: 20:41:ac:7d:67:0b:18:47:16:4c:f3:71:3f:6d:3f: b2:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:E3:70:80:4F:75:76:B0:E6:7F:50:3E:8B:03:71:AE:2D:57:34:4F X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/75C7147454F611EDBF0A4B11C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.146.215.0/24 103.152.109.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:30:c2:e7:98:30:a3:df:80:58:c1:9c:05:be:e5:40:46:a4: 73:a7:32:6e:f2:ea:d5:21:be:17:17:10:cf:be:9c:31:f5:ce: 91:9a:50:68:d5:9d:9c:a6:ef:37:73:a3:7b:f5:05:fb:26:c6: 37:a2:b5:99:8d:05:22:2c:2b:08:ff:90:f7:06:95:75:04:76: 37:98:db:28:1a:18:fe:cd:3d:c2:a4:26:39:8f:8a:6e:92:30: c7:3c:dd:f3:f2:53:d9:ae:5a:94:3e:f4:b0:10:6d:ac:4a:ad: 39:49:16:9b:23:67:59:60:84:3b:01:3d:22:b6:e2:c9:55:2e: 27:44:29:bf:c1:91:bc:96:06:9c:61:69:4a:c0:52:3d:6e:30: 66:65:13:7e:bd:cb:61:cd:a9:b2:e4:0f:08:4e:88:55:2a:b9: 77:7b:1c:60:3e:99:c2:c3:01:b4:53:1c:44:70:76:60:d9:c8: 46:49:3a:f3:d9:4b:21:87:77:de:fd:b8:50:2e:de:0e:ec:ce: ad:24:d0:35:43:32:8b:5e:9b:49:f0:a5:d2:94:d4:05:9a:28: 65:2b:86:9c:60:34:66:07:3c:8f:b3:cb:41:aa:05:62:06:c2: d8:75:f4:42:b6:7e:9a:61:c4:bb:aa:61:06:50:d0:e1:db:92: bb:02:bf:4b -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIDALV8MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MTMxMloXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q4MTgtOGY4MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM2ouwCppOTMB7SNJ1xejK5ZeGqjckXWwMN3RcINNow/qUCAWDjlQdE3yHik vSNaOThdW7cS6Wd+CxmGkVpRBIHpW+hOazzJcgrCbvEhvqTaRNAGZlfDz8p0X7e1 K47lAXi0J7VBxp93ahbzYh/Dn7HLfJKVjQfFalvdSupgKZEm7YnwtRBTfOZEmkZX Ngf328mtwcAooAPrqZ4F/uADc0m1eAxNX6y77pQd6oCJ74C1mlGPxkRvbJOyGnAr kVjrlg9NA0whB/fwSIK380Gy3PxCUMBc6/+oXikxghm/2sz6cXfyyw/CTXMANIfo Y60zIEGsfWcLGEcWTPNxP20/slMCAwEAAaOCApswggKXMB0GA1UdDgQWBBS143CA T3V2sOZ/UD6LA3GuLVc0TzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzc1QzcxNDc0 NTRGNjExRURCRjBBNEIxMUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCUGCCsGAQUFBwEHAQH/ BBYwFDASBAIAATAMAwQAZ5LXAwQAZ5htMA0GCSqGSIb3DQEBCwUAA4IBAQBPMMLn mDCj34BYwZwFvuVARqRzpzJu8urVIb4XFxDPvpwx9c6RmlBo1Z2cpu83c6N79QX7 JsY3orWZjQUiLCsI/5D3BpV1BHY3mNsoGhj+zT3CpCY5j4pukjDHPN3z8lPZrlqU PvSwEG2sSq05SRabI2dZYIQ7AT0ituLJVS4nRCm/wZG8lgacYWlKwFI9bjBmZRN+ vcthzamy5A8ITohVKrl3exxgPpnCwwG0UxxEcHZg2chGSTrz2Ushh3fe/bhQLt4O 7M6tJNA1QzKLXptJ8KXSlNQFmihlK4acYDRmBzyPs8tBqgViBsLYdfRCtn6aYcS7 qmEGUNDh25K7Ar9L -----END CERTIFICATE-----Generated at Fri May 16 10:16:48 2025 by rpki-client