$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B4048BBE145111EBAE42E981C4F9AE02.roa File: B4048BBE145111EBAE42E981C4F9AE02.roa (raw, json) Hash identifier: p8Ty5IBQ3R6AlQ/aoNjG0WSLbZJOdpyoN12Nly3CzFU= Subject key identifier: 39:79:0D:F7:9B:BC:8E:B7:CD:2F:C4:AC:D3:9F:2C:FC:33:FB:A5:79 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B311 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B4048BBE145111EBAE42E981C4F9AE02.roa Signing time: Thu 08 May 2025 16:03:39 +0000 ROA not before: Thu 08 May 2025 16:03:39 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 135237 IP address blocks: 103.154.206.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 08:51:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45841 (0xb311) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:03:39 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd5da-084e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:05:0d:af:7b:43:e6:b8:20:c2:34:4d:9b:0b: 05:8e:e3:2d:60:eb:14:10:70:01:09:74:65:5f:42: c4:de:ee:60:ad:82:e9:b7:96:94:48:5e:89:b6:f3: 58:37:d0:6f:64:39:a3:d6:f7:a7:40:d2:00:aa:50: 67:9f:c6:08:69:90:88:c6:bd:5f:68:43:fa:d2:c5: be:d6:98:e2:f4:68:24:06:ed:b6:23:aa:ee:3b:2c: e9:c7:bc:2e:82:69:33:eb:c1:4c:43:6d:b2:a8:1d: e4:00:0f:45:5e:9f:81:87:c7:b4:ee:af:11:fb:4d: d7:56:15:38:22:f3:19:8a:f1:1a:fb:03:6d:ab:47: 4f:0c:ff:28:1b:88:a8:93:ac:70:45:8b:2b:9e:48: f1:a2:85:a7:06:5e:87:4a:e5:00:51:5b:73:1a:db: 15:53:7d:94:20:6c:02:e5:2a:5b:e4:36:1c:6c:94: 66:14:76:60:9c:51:aa:f3:dd:b5:ab:0e:5e:a9:df: 49:cf:eb:c9:8e:b4:13:c4:27:29:b8:02:07:f4:f7: 09:31:e4:20:18:ff:cb:5c:b5:5f:c8:b1:de:bf:08: 10:98:01:9b:b5:e8:e6:a5:a8:32:83:a2:bf:69:69: 53:11:ac:81:71:9b:88:00:92:13:d2:3a:93:34:41: 0e:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:79:0D:F7:9B:BC:8E:B7:CD:2F:C4:AC:D3:9F:2C:FC:33:FB:A5:79 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B4048BBE145111EBAE42E981C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.154.206.0/23 Signature Algorithm: sha256WithRSAEncryption 35:4e:89:92:ab:5c:85:c5:0f:29:12:11:50:71:aa:38:14:aa: 34:44:30:68:c1:7d:3e:95:e6:49:8b:39:d4:4b:51:2e:df:4c: 84:67:11:8b:44:66:4b:68:bc:0b:11:1f:ca:18:1b:52:e8:65: ba:42:0b:9c:84:92:fc:5c:59:1d:b5:3b:c3:79:23:9a:38:2e: 11:da:c6:c4:cf:e5:28:7f:8d:22:07:37:78:7d:f8:08:21:6e: 3a:be:67:f3:52:32:70:38:f6:5d:79:d2:43:a1:04:ec:e0:f3: ef:6c:4a:56:a4:6c:69:80:86:af:a6:b3:0e:e9:02:44:ba:8d: 9c:f3:d1:f6:6a:06:a7:98:a5:6f:a7:c6:2f:d9:c5:df:d6:f8: 6c:6b:dd:bb:d1:75:0b:1e:81:bd:6a:d1:75:ae:39:09:2d:3a: 9b:51:b1:7b:9a:ae:99:68:3c:22:bd:1d:f8:cf:0b:e2:43:ae: e3:24:14:33:e6:52:8b:e7:7c:68:a7:07:1d:b5:6e:4f:33:91: 40:00:b9:74:ce:a4:c2:26:8d:60:a9:ea:71:6b:34:13:22:54: ce:2d:18:13:3f:30:0f:8e:aa:10:8e:21:a1:e1:fd:c3:87:9d: 42:9e:48:de:eb:4b:0b:a4:d0:0d:3c:3c:76:fe:9c:16:2a:d0: be:60:6d:c3 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDALMRMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MDMzOVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q1ZGEtMDg0ZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALoFDa97Q+a4IMI0TZsLBY7jLWDrFBBwAQl0ZV9CxN7uYK2C6beWlEheibbz WDfQb2Q5o9b3p0DSAKpQZ5/GCGmQiMa9X2hD+tLFvtaY4vRoJAbttiOq7jss6ce8 LoJpM+vBTENtsqgd5AAPRV6fgYfHtO6vEftN11YVOCLzGYrxGvsDbatHTwz/KBuI qJOscEWLK55I8aKFpwZeh0rlAFFbcxrbFVN9lCBsAuUqW+Q2HGyUZhR2YJxRqvPd tasOXqnfSc/ryY60E8QnKbgCB/T3CTHkIBj/y1y1X8ix3r8IEJgBm7Xo5qWoMoOi v2lpUxGsgXGbiACSE9I6kzRBDtkCAwEAAaOCApUwggKRMB0GA1UdDgQWBBQ5eQ33 m7yOt80vxKzTnyz8M/uleTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0I0MDQ4QkJF MTQ1MTExRUJBRTQyRTk4MUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQBZ5rOMA0GCSqGSIb3DQEBCwUAA4IBAQA1TomSq1yFxQ8p EhFQcao4FKo0RDBowX0+leZJiznUS1Eu30yEZxGLRGZLaLwLER/KGBtS6GW6Qguc hJL8XFkdtTvDeSOaOC4R2sbEz+Uof40iBzd4ffgIIW46vmfzUjJwOPZdedJDoQTs 4PPvbEpWpGxpgIavprMO6QJEuo2c89H2aganmKVvp8Yv2cXf1vhsa9270XULHoG9 atF1rjkJLTqbUbF7mq6ZaDwivR34zwviQ67jJBQz5lKL53xopwcdtW5PM5FAALl0 zqTCJo1gqepxazQTIlTOLRgTPzAPjqoQjiGh4f3Dh51Cnkje60sLpNANPDx2/pwW KtC+YG3D -----END CERTIFICATE-----Generated at Tue May 13 11:52:31 2025 by rpki-client