$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7827BB2E56B711EE9C283D27C4F9AE02.roa File: 7827BB2E56B711EE9C283D27C4F9AE02.roa (raw, json) Hash identifier: A5BL5fArwuMIIyjIPIurpLSUY2E9uclu83P6zGQr/54= Subject key identifier: E0:95:A6:45:0A:83:C8:ED:58:02:E4:79:21:DB:F5:A4:51:11:72:EF Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B417 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7827BB2E56B711EE9C283D27C4F9AE02.roa Signing time: Thu 08 May 2025 16:07:43 +0000 ROA not before: Thu 08 May 2025 16:07:43 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136657 IP address blocks: 103.170.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 11:04:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46103 (0xb417) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:07:43 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd6cf-9353 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:2d:2b:36:4d:4c:a6:fa:fe:26:91:9d:cd:8e: 96:ab:ba:ef:bc:ca:e7:fa:00:21:3f:b5:df:af:3b: 39:0f:55:73:1e:17:5d:c7:61:e9:bb:74:aa:28:bc: 6e:5d:ee:3d:0e:85:c8:57:28:24:e5:a3:ec:66:b2: fa:63:1c:67:a8:f8:70:c7:f6:47:b7:0e:40:3c:35: 3b:8a:d4:dd:9e:31:02:8e:8a:5a:c8:b0:67:ea:49: 00:a4:96:6e:b0:02:6b:fc:e6:bb:08:a1:ee:d4:bf: a6:11:d4:4d:0e:da:7b:da:ae:ed:a3:eb:85:0c:35: c9:2d:23:19:a3:c0:e4:66:8d:85:ce:e4:b3:9c:bf: 27:ee:ba:73:fc:b0:7e:75:60:2e:9b:1d:22:00:58: ab:5b:ed:e2:ca:c8:4e:f0:f5:d7:68:b0:37:61:c3: f9:10:e3:c0:8a:ea:48:38:14:c8:83:cd:b8:3e:09: 66:ba:4d:35:bb:fe:af:6e:01:e2:cb:6d:e4:d4:62: 31:6d:bf:7b:e2:ed:43:32:75:b4:0d:4d:47:79:cc: ef:fb:09:b0:14:a8:a7:61:f5:d8:12:d0:6b:38:f7: 68:20:7b:30:ec:fd:b3:94:7b:77:52:11:b0:dc:23: 98:45:51:36:7a:fb:d4:26:30:86:8d:7b:13:e4:b6: dd:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:95:A6:45:0A:83:C8:ED:58:02:E4:79:21:DB:F5:A4:51:11:72:EF X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7827BB2E56B711EE9C283D27C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.170.149.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:97:17:3d:b6:6a:77:14:10:23:d3:e7:89:18:6d:12:0a:a0: 36:79:62:5e:c6:06:2c:9d:13:7b:3b:73:54:30:90:63:8c:2c: f0:ff:f8:56:c3:f9:a0:36:78:5e:22:6d:57:69:7b:13:8c:74: 46:73:57:7d:c7:27:2f:61:a5:01:3e:e8:9b:d2:39:f8:9b:f9: c6:8c:b3:25:3c:44:d4:9c:21:a1:e9:aa:4a:c2:c8:8f:41:b6: 67:61:28:3b:b5:f9:8c:de:de:0b:10:08:b8:18:68:c3:76:44: 31:88:c3:07:87:15:4d:08:9a:a4:bf:0a:58:16:e7:e6:e2:3c: 00:58:87:bb:ac:f8:51:b2:15:cf:3f:22:88:6b:8b:a4:a3:df: cb:39:49:0a:22:7d:e2:41:19:43:82:c1:f7:49:d2:e1:de:34: aa:b1:ab:10:ff:6e:31:af:9d:bc:a4:7d:8f:86:33:bc:88:c7: 94:98:af:cc:cd:4e:39:12:f0:00:3d:51:0d:02:56:a6:76:4d: d0:37:ea:c7:8d:a5:74:89:16:eb:a9:5a:68:40:e2:b2:fa:00: a6:4f:94:43:e6:e6:f3:1d:c9:18:58:a5:49:2b:e6:d6:d3:34: 5f:b7:f8:64:91:91:70:7a:26:08:4e:ad:21:b7:2d:4d:0e:b0: 06:fc:7a:c8 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDALQXMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MDc0M1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q2Y2YtOTM1MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMMtKzZNTKb6/iaRnc2Olqu677zK5/oAIT+13687OQ9Vcx4XXcdh6bt0qii8 bl3uPQ6FyFcoJOWj7Gay+mMcZ6j4cMf2R7cOQDw1O4rU3Z4xAo6KWsiwZ+pJAKSW brACa/zmuwih7tS/phHUTQ7ae9qu7aPrhQw1yS0jGaPA5GaNhc7ks5y/J+66c/yw fnVgLpsdIgBYq1vt4srITvD112iwN2HD+RDjwIrqSDgUyIPNuD4JZrpNNbv+r24B 4stt5NRiMW2/e+LtQzJ1tA1NR3nM7/sJsBSop2H12BLQazj3aCB7MOz9s5R7d1IR sNwjmEVRNnr71CYwho17E+S23fsCAwEAAaOCApUwggKRMB0GA1UdDgQWBBTglaZF CoPI7VgC5Hkh2/WkURFy7zAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzc4MjdCQjJF NTZCNzExRUU5QzI4M0QyN0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQAZ6qVMA0GCSqGSIb3DQEBCwUAA4IBAQAflxc9tmp3FBAj 0+eJGG0SCqA2eWJexgYsnRN7O3NUMJBjjCzw//hWw/mgNnheIm1XaXsTjHRGc1d9 xycvYaUBPuib0jn4m/nGjLMlPETUnCGh6apKwsiPQbZnYSg7tfmM3t4LEAi4GGjD dkQxiMMHhxVNCJqkvwpYFufm4jwAWIe7rPhRshXPPyKIa4uko9/LOUkKIn3iQRlD gsH3SdLh3jSqsasQ/24xr528pH2PhjO8iMeUmK/MzU45EvAAPVENAlamdk3QN+rH jaV0iRbrqVpoQOKy+gCmT5RD5ubzHckYWKVJK+bW0zRft/hkkZFweiYITq0hty1N DrAG/HrI -----END CERTIFICATE-----Generated at Thu May 15 16:06:15 2025 by rpki-client