$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/78C4D6A2A93D11ED9CD5A25BC4F9AE02.roa File: 78C4D6A2A93D11ED9CD5A25BC4F9AE02.roa (raw, json) Hash identifier: DUcs240YkbF+RGFaDJKt/znO/U5UyL5nwPMPq8j8OXs= Subject key identifier: 2E:9D:D9:2C:C3:DD:4F:D2:50:F7:E3:07:A6:69:1A:00:4C:99:C6:D6 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: BA9C Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/78C4D6A2A93D11ED9CD5A25BC4F9AE02.roa Signing time: Fri 09 May 2025 11:11:21 +0000 ROA not before: Fri 09 May 2025 11:11:21 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 150654 IP address blocks: 45.112.56.0/24 maxlen: 24 45.112.57.0/24 maxlen: 24 45.112.58.0/24 maxlen: 24 45.112.59.0/24 maxlen: 24 103.155.147.0/24 maxlen: 24 103.166.214.0/24 maxlen: 24 103.168.22.0/24 maxlen: 24 103.168.173.0/24 maxlen: 24 103.171.109.0/24 maxlen: 24 103.174.93.0/24 maxlen: 24 103.180.175.0/24 maxlen: 24 103.181.150.0/24 maxlen: 24 103.239.168.0/24 maxlen: 24 103.239.169.0/24 maxlen: 24 103.239.170.0/24 maxlen: 24 103.239.171.0/24 maxlen: 24 163.223.54.0/24 maxlen: 24 175.111.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 15:22:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47772 (0xba9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 9 11:11:21 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681de2d9-545d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b1:e3:58:b6:8d:4f:6c:3b:7d:46:4d:fc:b6: 9d:fe:4e:cb:81:15:98:8f:3d:ca:7b:51:7c:45:ad: 60:7e:b9:1f:21:a4:c1:5a:d6:34:50:94:14:1c:76: 63:d3:96:cd:21:15:0c:fb:8a:2d:cd:e8:58:d1:77: 1f:63:d8:93:91:69:72:6c:ea:25:1c:01:80:b2:cf: 61:42:9b:26:a4:2e:25:ca:99:b3:3f:17:d1:de:1c: 85:f0:b5:e2:bf:20:d9:d8:a3:98:92:e2:1a:84:f8: d5:c8:e1:00:00:12:79:ab:e6:9a:a0:fc:4a:44:3b: 0e:3a:04:87:05:d0:97:39:4d:43:e2:17:e9:ba:4d: 32:ad:c0:1b:f2:9f:b3:61:c3:47:01:cd:6a:e1:31: ed:7a:28:f9:bf:c9:04:24:45:55:77:47:97:02:c8: ac:44:1a:b3:ab:ec:c4:57:c1:54:88:c2:31:66:68: 4d:04:a4:85:69:19:bc:31:fc:1f:52:28:7b:08:af: 9d:4b:e2:a5:bd:2c:44:0a:45:b0:54:5b:5c:f8:48: 93:13:bf:85:ef:3f:ca:22:25:d2:b6:0c:d5:08:13: 56:0b:77:96:ee:93:79:2e:59:df:de:27:4d:ab:a0: 5a:7d:18:1a:6e:e9:11:18:3a:d3:82:cc:b1:cb:93: 36:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:9D:D9:2C:C3:DD:4F:D2:50:F7:E3:07:A6:69:1A:00:4C:99:C6:D6 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/78C4D6A2A93D11ED9CD5A25BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.112.56.0/22 103.155.147.0/24 103.166.214.0/24 103.168.22.0/24 103.168.173.0/24 103.171.109.0/24 103.174.93.0/24 103.180.175.0/24 103.181.150.0/24 103.239.168.0/22 163.223.54.0/24 175.111.97.0/24 Signature Algorithm: sha256WithRSAEncryption a6:ec:64:d8:c7:c4:a3:4d:6c:d1:77:cf:63:c5:5c:64:b0:af: ab:e5:72:09:d6:48:6d:07:dc:11:a4:25:ef:a4:db:9d:ad:1b: e4:d1:1c:ff:04:5f:15:86:ef:23:73:e2:e7:23:9f:86:5b:91: 98:c4:e9:9b:79:91:56:b9:f5:de:24:f4:ce:dd:97:0d:4d:19: 2b:42:7d:a0:58:4f:37:d2:46:19:ad:33:b4:51:60:51:0e:30: ec:fc:e8:97:a6:9a:bf:5d:57:8a:4d:a6:ca:88:80:84:f9:7f: a3:ea:ba:82:fd:51:63:c9:d9:3b:2b:35:60:a5:66:97:d5:22: ec:c5:1d:ac:64:d8:44:60:6d:5e:1f:fc:f2:8a:f4:c2:bb:9e: e4:8e:61:bf:97:c8:21:97:7a:0b:60:c3:e1:d0:33:9d:49:21: f3:fc:ba:6f:4c:56:e1:e4:cd:88:4c:ab:00:d0:a9:de:8b:5c: f2:bd:a0:e5:ec:86:da:02:bd:96:fa:1f:dc:ce:ab:67:74:fc: d7:d8:a2:d8:04:c5:c3:49:4c:cb:29:78:22:a0:9a:a0:cc:83: ff:93:7f:20:61:dc:43:53:ed:38:83:e5:99:6d:aa:27:a2:ef: 10:a4:57:22:ed:f9:73:93:67:de:d5:5a:76:fe:55:18:2e:1a: f4:c0:f0:8c -----BEGIN CERTIFICATE----- MIIFtDCCBJygAwIBAgIDALqcMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwOTExMTEyMVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxZGUyZDktNTQ1ZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM+x41i2jU9sO31GTfy2nf5Oy4EVmI89yntRfEWtYH65HyGkwVrWNFCUFBx2 Y9OWzSEVDPuKLc3oWNF3H2PYk5FpcmzqJRwBgLLPYUKbJqQuJcqZsz8X0d4chfC1 4r8g2dijmJLiGoT41cjhAAASeavmmqD8SkQ7DjoEhwXQlzlNQ+IX6bpNMq3AG/Kf s2HDRwHNauEx7Xoo+b/JBCRFVXdHlwLIrEQas6vsxFfBVIjCMWZoTQSkhWkZvDH8 H1IoewivnUvipb0sRApFsFRbXPhIkxO/he8/yiIl0rYM1QgTVgt3lu6TeS5Z394n TaugWn0YGm7pERg604LMscuTNjsCAwEAAaOCAtcwggLTMB0GA1UdDgQWBBQundks w91P0lD34wemaRoATJnG1jAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzc4QzRENkEy QTkzRDExRUQ5Q0Q1QTI1QkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMGEGCCsGAQUFBwEHAQH/ BFIwUDBOBAIAATBIAwQCLXA4AwQAZ5uTAwQAZ6bWAwQAZ6gWAwQAZ6itAwQAZ6tt AwQAZ65dAwQAZ7SvAwQAZ7WWAwQCZ++oAwQAo982AwQAr29hMA0GCSqGSIb3DQEB CwUAA4IBAQCm7GTYx8SjTWzRd89jxVxksK+r5XIJ1khtB9wRpCXvpNudrRvk0Rz/ BF8Vhu8jc+LnI5+GW5GYxOmbeZFWufXeJPTO3ZcNTRkrQn2gWE830kYZrTO0UWBR DjDs/OiXppq/XVeKTabKiICE+X+j6rqC/VFjydk7KzVgpWaX1SLsxR2sZNhEYG1e H/zyivTCu57kjmG/l8ghl3oLYMPh0DOdSSHz/LpvTFbh5M2ITKsA0Knei1zyvaDl 7IbaAr2W+h/czqtndPzX2KLYBMXDSUzLKXgioJqgzIP/k38gYdxDU+04g+WZbaon ou8QpFci7flzk2fe1Vp2/lUYLhr0wPCM -----END CERTIFICATE-----Generated at Mon May 12 19:36:38 2025 by rpki-client