$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/95906936568B11ED903D1846C4F9AE02.roa File: 95906936568B11ED903D1846C4F9AE02.roa (raw, json) Hash identifier: c5fdznX7y2/JzfiyDO+ILLO5+7imLcs5aaURIqz/oUo= Subject key identifier: CF:05:01:DD:3E:16:46:23:E4:01:E8:25:EF:A7:77:07:18:16:BA:56 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B866 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/95906936568B11ED903D1846C4F9AE02.roa Signing time: Thu 08 May 2025 16:24:24 +0000 ROA not before: Thu 08 May 2025 16:24:24 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 150057 IP address blocks: 103.76.0.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 12:39:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47206 (0xb866) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:24:24 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cdab8-a21b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c9:c1:67:12:c3:67:dc:d4:f3:d1:8c:65:6e: 60:93:b3:4c:c8:22:b8:09:7e:7d:b2:8a:71:bc:c2: 58:c6:b9:d6:ce:ea:3d:e6:2a:a3:e2:52:f3:1a:68: 6b:21:7c:14:8c:01:2f:4a:96:33:28:14:c2:65:6b: 7b:a8:cb:4c:e6:9b:c8:bf:e4:7d:e7:af:ac:1a:35: 34:7a:8f:85:0d:4e:7a:0a:56:c7:93:60:db:3e:c8: 6e:df:4f:2f:3f:0a:23:20:49:b7:c1:10:10:dd:7b: 0f:e4:e2:3a:8f:7f:16:10:d8:51:0a:49:2a:de:3e: f1:db:02:15:c3:d2:f4:2b:f5:79:51:5b:fc:12:1f: ea:ea:f9:4d:85:ce:7f:59:51:22:69:a9:40:3e:fe: f2:89:37:38:ab:e6:5d:b2:5e:cf:b3:45:78:29:62: 41:1a:96:92:c4:75:c2:8d:40:86:78:b6:bd:73:74: 1e:15:7c:0a:b9:1f:e0:64:ec:26:fa:51:fd:f7:0d: 48:e9:7c:ae:ca:59:18:d7:aa:24:04:61:a3:7c:a9: a7:40:81:07:e2:07:fb:3c:54:fc:41:c5:e8:89:f2: a9:12:3f:a2:c5:8c:0a:df:78:ab:6e:97:13:b4:bd: db:03:97:e3:35:e3:71:c9:5e:5a:f8:60:aa:fa:2f: b1:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:05:01:DD:3E:16:46:23:E4:01:E8:25:EF:A7:77:07:18:16:BA:56 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/95906936568B11ED903D1846C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.76.0.0/23 Signature Algorithm: sha256WithRSAEncryption 02:02:00:bc:d7:ea:89:5f:c1:8e:97:a8:c2:6a:25:7a:6b:15: 76:d6:b6:7c:33:7e:b3:88:c8:b0:d0:8b:dc:01:97:a8:0c:a7: f2:6d:d5:2f:83:3a:c3:21:bd:c2:cc:e8:05:aa:5a:58:82:23: 07:f4:93:90:79:5a:39:9d:74:a9:e9:08:00:66:33:76:3b:e0: d3:d0:15:e4:17:b9:af:6d:0c:16:5c:84:57:f4:d1:2a:1b:3f: 27:39:26:f9:80:2d:b4:a4:aa:29:59:e6:f9:80:40:ba:17:c5: 61:ea:02:10:87:e0:7b:59:3b:44:3f:d0:c0:8f:52:cf:5d:00: 9d:13:8d:5a:93:04:ad:67:61:25:4d:0a:96:d3:be:79:4c:c2: 5f:9c:39:bd:1b:58:82:be:5b:5c:c0:82:76:93:96:35:23:b2: d3:b4:25:32:cf:c7:3b:62:dc:30:a2:d0:03:9c:d3:af:45:42: 7b:cf:26:27:a6:2a:29:d1:5c:0e:e8:cb:1c:64:89:ce:35:c1: 11:e4:97:28:17:2b:fd:9f:95:42:70:ee:6a:32:9b:c7:cc:ba: 5f:47:c0:c4:85:9c:b4:7a:9d:d4:9e:73:37:ac:b0:f9:e0:1f: 11:0e:e2:0b:73:45:49:37:9d:3f:f3:18:3c:a3:1a:87:cc:e3: 2a:52:c1:4b -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDALhmMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MjQyNFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2RhYjgtYTIxYjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK7JwWcSw2fc1PPRjGVuYJOzTMgiuAl+fbKKcbzCWMa51s7qPeYqo+JS8xpo ayF8FIwBL0qWMygUwmVre6jLTOabyL/kfeevrBo1NHqPhQ1OegpWx5Ng2z7Ibt9P Lz8KIyBJt8EQEN17D+TiOo9/FhDYUQpJKt4+8dsCFcPS9Cv1eVFb/BIf6ur5TYXO f1lRImmpQD7+8ok3OKvmXbJez7NFeCliQRqWksR1wo1Ahni2vXN0HhV8Crkf4GTs JvpR/fcNSOl8rspZGNeqJARho3ypp0CBB+IH+zxU/EHF6InyqRI/osWMCt94q26X E7S92wOX4zXjccleWvhgqvovsRECAwEAAaOCApUwggKRMB0GA1UdDgQWBBTPBQHd PhZGI+QB6CXvp3cHGBa6VjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzk1OTA2OTM2 NTY4QjExRUQ5MDNEMTg0NkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQBZ0wAMA0GCSqGSIb3DQEBCwUAA4IBAQACAgC81+qJX8GO l6jCaiV6axV21rZ8M36ziMiw0IvcAZeoDKfybdUvgzrDIb3CzOgFqlpYgiMH9JOQ eVo5nXSp6QgAZjN2O+DT0BXkF7mvbQwWXIRX9NEqGz8nOSb5gC20pKopWeb5gEC6 F8Vh6gIQh+B7WTtEP9DAj1LPXQCdE41akwStZ2ElTQqW0755TMJfnDm9G1iCvltc wIJ2k5Y1I7LTtCUyz8c7YtwwotADnNOvRUJ7zyYnpiop0VwO6MscZInONcER5Jco Fyv9n5VCcO5qMpvHzLpfR8DEhZy0ep3UnnM3rLD54B8RDuILc0VJN50/8xg8oxqH zOMqUsFL -----END CERTIFICATE-----Generated at Wed May 14 15:08:24 2025 by rpki-client