$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/80055FC2F74C11EABD2A4F5EC4F9AE02.roa File: 80055FC2F74C11EABD2A4F5EC4F9AE02.roa (raw, json) Hash identifier: wwNu4ZmHBUmYTamCExvuS/eOf0+O4ongJoPcNsxzAe0= Subject key identifier: C5:9D:DD:C0:3C:E9:31:ED:7B:22:35:70:29:5A:79:3C:AB:FA:2C:CF Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B42E Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/80055FC2F74C11EABD2A4F5EC4F9AE02.roa Signing time: Thu 08 May 2025 16:08:03 +0000 ROA not before: Thu 08 May 2025 16:08:03 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136690 IP address blocks: 103.154.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 11:04:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46126 (0xb42e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:08:03 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd6e3-35d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:eb:b6:3d:1d:75:ee:04:0c:c1:6f:72:5f:3d: af:f9:aa:c4:87:32:2c:9c:13:a8:a8:68:50:e7:32: 7f:df:b5:7b:18:8d:00:42:d6:cb:b9:cf:b4:78:8f: b0:70:be:91:28:29:b4:51:0b:8f:10:0b:dd:7a:95: 15:74:30:0c:6c:58:7c:06:b8:75:03:7d:5e:ca:c1: ba:59:3f:8e:39:12:3b:bc:5a:f6:99:2d:e3:b3:e0: 05:53:34:6e:98:30:db:e6:c9:e7:a7:ed:96:03:00: b3:8c:2b:47:d8:7f:d4:69:d0:82:cf:bb:73:ed:d1: 16:a0:3d:92:29:32:71:e0:fd:6d:44:75:c2:11:24: 3e:2b:93:2c:1a:c5:e2:8b:5f:82:3e:64:7e:ef:c0: 90:68:5e:f4:5d:94:a2:1d:96:ec:c9:2b:ab:ab:9e: 01:8b:0b:80:c8:88:5d:1f:47:dc:6b:78:6a:4e:96: 6e:02:4c:e8:30:94:90:6b:ed:e4:f9:f2:07:97:1c: 99:34:b2:15:51:24:cb:e9:d7:32:75:84:9e:b2:71: 66:74:ef:22:a7:a2:49:42:b1:e3:2f:4c:27:cb:53: 31:4d:18:da:9b:c9:28:2c:24:a2:82:df:f9:89:22: 73:1f:1d:e3:d0:7b:17:54:b7:10:88:73:69:db:06: 5d:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:9D:DD:C0:3C:E9:31:ED:7B:22:35:70:29:5A:79:3C:AB:FA:2C:CF X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/80055FC2F74C11EABD2A4F5EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.154.99.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:02:5a:16:a4:e0:cf:bd:62:32:8c:a0:2b:28:c2:c8:8d:da: 80:d3:b6:cc:12:9c:0a:8c:9a:35:21:09:50:2d:bc:4d:4d:ac: 8d:77:83:e5:0a:69:79:97:d1:a3:5e:33:b8:84:99:ef:b3:d1: 85:46:77:4b:8b:ce:59:34:3b:c7:43:a2:0e:99:3f:ac:23:e6: e5:97:d1:09:aa:df:f8:da:56:a1:c7:5e:2b:3d:65:8d:26:59: 6a:02:8c:e6:a6:e2:10:d2:5c:ff:0b:7b:ab:48:23:16:a0:ac: e0:8c:08:13:e7:43:af:d7:3d:36:41:21:91:e9:a1:02:84:62: 7a:45:eb:c0:2f:b8:73:19:1b:73:98:df:9a:9e:96:73:3c:fa: d0:e4:32:a4:be:74:9b:cc:8d:dd:0b:20:40:64:10:b5:d6:16: f5:9d:c5:7b:39:67:4a:ce:74:85:07:7f:49:7f:e4:85:19:03: d2:b3:8e:ab:16:85:42:db:bf:80:64:53:6c:50:72:23:cd:1a: 26:11:5b:3d:61:ab:d4:c1:b1:82:87:6c:b8:3a:d5:dd:9f:21: 3b:7f:13:1c:c4:3b:a2:8f:d8:f3:86:8a:df:16:d0:4e:ca:a2: e0:b0:cd:93:16:21:d4:0a:21:aa:06:a5:66:17:6b:67:7f:d8: 46:0e:aa:b4 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDALQuMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MDgwM1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q2ZTMtMzVkNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKfrtj0dde4EDMFvcl89r/mqxIcyLJwTqKhoUOcyf9+1exiNAELWy7nPtHiP sHC+kSgptFELjxAL3XqVFXQwDGxYfAa4dQN9XsrBulk/jjkSO7xa9pkt47PgBVM0 bpgw2+bJ56ftlgMAs4wrR9h/1GnQgs+7c+3RFqA9kikyceD9bUR1whEkPiuTLBrF 4otfgj5kfu/AkGhe9F2Uoh2W7Mkrq6ueAYsLgMiIXR9H3Gt4ak6WbgJM6DCUkGvt 5PnyB5ccmTSyFVEky+nXMnWEnrJxZnTvIqeiSUKx4y9MJ8tTMU0Y2pvJKCwkooLf +Ykicx8d49B7F1S3EIhzadsGXT8CAwEAAaOCApUwggKRMB0GA1UdDgQWBBTFnd3A POkx7XsiNXApWnk8q/oszzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzgwMDU1RkMy Rjc0QzExRUFCRDJBNEY1RUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQAZ5pjMA0GCSqGSIb3DQEBCwUAA4IBAQAtAloWpODPvWIy jKArKMLIjdqA07bMEpwKjJo1IQlQLbxNTayNd4PlCml5l9GjXjO4hJnvs9GFRndL i85ZNDvHQ6IOmT+sI+bll9EJqt/42lahx14rPWWNJllqAozmpuIQ0lz/C3urSCMW oKzgjAgT50Ov1z02QSGR6aEChGJ6RevAL7hzGRtzmN+anpZzPPrQ5DKkvnSbzI3d CyBAZBC11hb1ncV7OWdKznSFB39Jf+SFGQPSs46rFoVC27+AZFNsUHIjzRomEVs9 YavUwbGCh2y4OtXdnyE7fxMcxDuij9jzhorfFtBOyqLgsM2TFiHUCiGqBqVmF2tn f9hGDqq0 -----END CERTIFICATE-----Generated at Thu May 15 23:31:37 2025 by rpki-client