$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A9CF4900282C11EC86A35B3CC4F9AE02.roa File: A9CF4900282C11EC86A35B3CC4F9AE02.roa (raw, json) Hash identifier: tfoaBsZacRwj96KlELBcqdat/7ZpIf6E2wIdvU1oEps= Subject key identifier: 70:D0:BB:70:69:97:C3:87:E1:46:87:0F:E9:43:49:D9:71:DF:6C:81 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B6E0 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A9CF4900282C11EC86A35B3CC4F9AE02.roa Signing time: Thu 08 May 2025 16:18:34 +0000 ROA not before: Thu 08 May 2025 16:18:34 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 142453 IP address blocks: 103.90.236.0/22 maxlen: 24 103.170.82.0/23 maxlen: 24 2001:df1:2900::/48 maxlen: 48 2407:af40::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:54:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46816 (0xb6e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:18:34 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd959-2947 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:6d:45:0d:81:ca:ca:01:6f:68:00:14:6f:3f: d0:a9:02:95:30:9a:b8:8e:9e:de:d7:22:e7:4a:ec: df:b4:1a:51:a7:3f:9a:88:da:69:e3:77:d8:3a:94: 40:0d:d9:5f:ed:ce:0b:3d:6d:b4:b1:4c:d2:c6:27: ad:e6:d4:ed:f3:bc:d0:93:fb:dc:4e:25:90:b6:9b: 24:c2:d6:64:4b:3c:8f:91:e5:96:08:64:6e:ed:6a: 59:45:fd:2b:66:c5:fb:23:ed:69:c3:ea:f1:a2:f2: 2b:ef:7c:bc:e6:c9:60:be:f7:32:3a:12:f5:cf:95: 2c:88:0f:a7:0b:0e:93:c7:38:da:b9:11:af:5c:a6: d7:f5:6e:3c:2a:71:a8:21:fa:24:43:93:a7:f9:18: 66:3d:05:23:2d:0b:4b:79:ca:fe:de:a8:2f:83:ef: 3e:23:91:57:ae:7d:84:0b:20:3a:db:f8:29:69:f3: 3a:6d:fc:73:68:65:89:ae:b4:d7:8b:b1:f8:37:59: fb:55:64:b9:8a:0b:9d:b7:2d:0a:0b:5a:2d:78:34: ad:bc:1f:89:89:37:3a:c9:35:4b:76:d2:51:c9:2a: 99:55:e9:ad:98:95:91:ff:13:29:ec:be:11:65:dc: e7:40:06:60:a0:28:fd:82:d0:6c:42:90:ee:5a:5d: a0:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:D0:BB:70:69:97:C3:87:E1:46:87:0F:E9:43:49:D9:71:DF:6C:81 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A9CF4900282C11EC86A35B3CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.90.236.0/22 103.170.82.0/23 IPv6: 2001:df1:2900::/48 2407:af40::/32 Signature Algorithm: sha256WithRSAEncryption 78:22:f2:02:ec:93:89:02:bd:cf:92:a2:b0:91:7b:03:00:ec: ee:b7:e6:69:ee:33:00:66:67:d7:6d:33:e9:15:52:42:04:74: fe:00:27:cf:a7:bb:d7:cd:db:cb:7a:7a:22:34:dc:d2:d5:31: 81:46:9c:4a:cb:82:e3:5c:15:7b:d6:76:e4:b5:0b:80:96:c9: 2f:c9:a1:71:65:c2:7c:4d:0f:12:6b:e9:9b:95:e1:f5:4f:f1: 88:b2:3b:bd:99:8f:91:f7:64:10:41:d5:81:92:d5:65:12:88: 68:cf:00:42:ac:0b:61:5e:7b:3d:8b:cf:aa:68:77:87:87:54: 43:95:87:db:81:9b:1e:83:cd:f7:02:56:18:23:d0:21:b5:25: fb:2d:32:5e:63:b1:53:fe:bf:4f:01:13:7d:ad:b9:52:9f:eb: b4:6f:cd:44:09:a7:d4:cd:b8:65:ba:ba:89:d0:30:c7:b4:f5: e6:a0:19:27:21:06:24:5a:ca:0f:f5:6d:c1:6c:1e:5d:96:b7: 93:04:d3:26:24:c9:21:64:08:08:e8:a0:02:2b:57:89:d8:b5: 06:8a:5d:88:c0:b8:56:fe:51:12:7d:cd:db:b1:88:8b:c9:a1: df:00:07:f6:5b:13:a0:1c:54:9c:03:55:50:8e:fe:ac:33:13: 8a:05:66:32 -----BEGIN CERTIFICATE----- MIIFkDCCBHigAwIBAgIDALbgMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MTgzNFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q5NTktMjk0NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANRtRQ2BysoBb2gAFG8/0KkClTCauI6e3tci50rs37QaUac/mojaaeN32DqU QA3ZX+3OCz1ttLFM0sYnrebU7fO80JP73E4lkLabJMLWZEs8j5Hllghkbu1qWUX9 K2bF+yPtacPq8aLyK+98vObJYL73MjoS9c+VLIgPpwsOk8c42rkRr1ym1/VuPCpx qCH6JEOTp/kYZj0FIy0LS3nK/t6oL4PvPiORV659hAsgOtv4KWnzOm38c2hlia60 14ux+DdZ+1VkuYoLnbctCgtaLXg0rbwfiYk3Osk1S3bSUckqmVXprZiVkf8TKey+ EWXc50AGYKAo/YLQbEKQ7lpdoEcCAwEAAaOCArMwggKvMB0GA1UdDgQWBBRw0Ltw aZfDh+FGhw/pQ0nZcd9sgTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0E5Q0Y0OTAw MjgyQzExRUM4NkEzNUIzQ0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMD0GCCsGAQUFBwEHAQH/ BC4wLDASBAIAATAMAwQCZ1rsAwQBZ6pSMBYEAgACMBADBwAgAQ3xKQADBQAkB69A MA0GCSqGSIb3DQEBCwUAA4IBAQB4IvIC7JOJAr3PkqKwkXsDAOzut+Zp7jMAZmfX bTPpFVJCBHT+ACfPp7vXzdvLenoiNNzS1TGBRpxKy4LjXBV71nbktQuAlskvyaFx ZcJ8TQ8Sa+mbleH1T/GIsju9mY+R92QQQdWBktVlEohozwBCrAthXns9i8+qaHeH h1RDlYfbgZseg833AlYYI9AhtSX7LTJeY7FT/r9PARN9rblSn+u0b81ECafUzbhl urqJ0DDHtPXmoBknIQYkWsoP9W3BbB5dlreTBNMmJMkhZAgI6KACK1eJ2LUGil2I wLhW/lESfc3bsYiLyaHfAAf2WxOgHFScA1VQjv6sMxOKBWYy -----END CERTIFICATE-----Generated at Tue May 13 02:02:42 2025 by rpki-client