$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/AFBB5F10989811ED8477E218C4F9AE02.roa File: AFBB5F10989811ED8477E218C4F9AE02.roa (raw, json) Hash identifier: zMVkrn2IYWerQKU46Cr/y31fhTj3WvOWIGaPSvtcxSs= Subject key identifier: 96:5A:39:0F:D9:C7:69:5A:FD:33:CE:1A:60:5C:18:0C:66:8A:29:CD Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B8B9 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/AFBB5F10989811ED8477E218C4F9AE02.roa Signing time: Thu 08 May 2025 16:25:40 +0000 ROA not before: Thu 08 May 2025 16:25:40 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 150622 IP address blocks: 103.187.200.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 08:51:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47289 (0xb8b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:25:40 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cdb04-b1a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:01:b5:79:fb:37:ff:da:ee:c9:ff:80:f5:c9: 63:54:9d:c8:87:13:04:cb:e2:f9:3d:86:96:19:67: 24:0a:12:d7:98:a1:e4:0b:83:9b:09:06:2e:62:21: 23:49:f3:fd:20:2e:21:13:63:1a:f8:75:ed:10:65: 5b:88:46:9d:c3:3b:7e:3d:9f:ba:7e:14:1d:a5:e2: dd:fc:aa:db:86:d1:70:72:5d:89:d1:b3:df:46:17: cd:f8:92:17:ae:39:ed:ee:49:76:08:4b:35:13:7d: 78:be:82:51:c9:2d:e1:4f:5c:35:ea:47:99:71:51: be:cf:89:e4:f1:8c:5a:b5:34:0f:45:03:fc:4c:d5: 7b:d9:69:59:92:07:79:ac:5d:0c:53:6d:ed:24:3e: f9:8b:3a:11:a0:58:6e:4d:eb:b2:26:c0:d1:05:2c: d8:5e:3f:5a:44:90:d3:e5:c8:1f:a8:a7:16:41:b3: 94:03:24:50:6c:0f:e0:29:66:d1:8e:a8:b8:44:c9: e4:16:64:14:f2:9d:dc:87:ef:e6:e4:8a:aa:06:a1: c6:e5:77:7b:29:8e:c6:b5:0d:01:56:9c:da:6f:cc: 7f:ec:f1:ec:4f:00:1e:38:c2:84:df:0a:75:3a:90: ee:63:02:06:ba:dd:c7:b7:09:ed:d9:27:76:92:84: da:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:5A:39:0F:D9:C7:69:5A:FD:33:CE:1A:60:5C:18:0C:66:8A:29:CD X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/AFBB5F10989811ED8477E218C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.187.200.0/23 Signature Algorithm: sha256WithRSAEncryption 99:45:86:d9:a9:4a:e7:99:46:dc:86:6a:57:d5:13:f8:18:f7: 94:1f:84:2c:e4:2e:c6:55:b1:4e:31:a4:21:c5:89:21:ba:25: 41:65:89:e2:66:91:53:d0:84:66:75:cf:71:b8:d2:ca:69:dd: 20:e1:15:dd:8f:b2:83:71:16:2e:d4:ee:3e:83:66:62:db:dc: 28:c9:07:bb:45:a6:a8:ce:b5:83:f5:de:f5:7f:f0:93:11:02: e1:a2:e6:7e:75:f0:96:da:10:eb:59:4d:93:46:cc:5f:a6:dd: 59:33:68:66:29:82:43:63:86:6a:c5:38:8f:7c:d6:31:5f:56: 38:f3:b0:31:d6:cf:ff:10:ef:07:9e:d4:65:18:f9:a8:b7:cf: 90:8a:2d:94:87:f6:f2:51:ea:66:a3:e5:b8:49:5c:d2:bc:3a: fd:ea:e5:95:1b:8f:3e:7b:90:25:e2:93:0f:65:00:2a:41:8d: 05:a9:32:d7:94:e9:3b:33:9c:88:76:5d:90:7c:a2:2c:67:2f: 18:df:d3:4b:42:e0:eb:ab:1f:07:b6:c9:d3:67:c4:d2:23:98: c9:b9:a0:ee:c6:9d:b0:73:d4:af:2c:04:34:90:a7:d0:a2:98: 4e:9b:ee:51:49:44:86:89:e5:20:52:99:b8:59:c7:f9:ab:4d: e7:19:d2:da -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDALi5MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MjU0MFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2RiMDQtYjFhOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKQBtXn7N//a7sn/gPXJY1SdyIcTBMvi+T2GlhlnJAoS15ih5AuDmwkGLmIh I0nz/SAuIRNjGvh17RBlW4hGncM7fj2fun4UHaXi3fyq24bRcHJdidGz30YXzfiS F6457e5JdghLNRN9eL6CUckt4U9cNepHmXFRvs+J5PGMWrU0D0UD/EzVe9lpWZIH eaxdDFNt7SQ++Ys6EaBYbk3rsibA0QUs2F4/WkSQ0+XIH6inFkGzlAMkUGwP4Clm 0Y6ouETJ5BZkFPKd3Ifv5uSKqgahxuV3eymOxrUNAVac2m/Mf+zx7E8AHjjChN8K dTqQ7mMCBrrdx7cJ7dkndpKE2vECAwEAAaOCApUwggKRMB0GA1UdDgQWBBSWWjkP 2cdpWv0zzhpgXBgMZoopzTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0FGQkI1RjEw OTg5ODExRUQ4NDc3RTIxOEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQBZ7vIMA0GCSqGSIb3DQEBCwUAA4IBAQCZRYbZqUrnmUbc hmpX1RP4GPeUH4Qs5C7GVbFOMaQhxYkhuiVBZYniZpFT0IRmdc9xuNLKad0g4RXd j7KDcRYu1O4+g2Zi29woyQe7RaaozrWD9d71f/CTEQLhouZ+dfCW2hDrWU2TRsxf pt1ZM2hmKYJDY4ZqxTiPfNYxX1Y487Ax1s//EO8HntRlGPmot8+Qii2Uh/byUepm o+W4SVzSvDr96uWVG48+e5Al4pMPZQAqQY0FqTLXlOk7M5yIdl2QfKIsZy8Y39NL QuDrqx8HtsnTZ8TSI5jJuaDuxp2wc9SvLAQ0kKfQophOm+5RSUSGieUgUpm4Wcf5 q03nGdLa -----END CERTIFICATE-----Generated at Tue May 13 11:26:46 2025 by rpki-client