$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B75C7B8E688111EC89ED595FC4F9AE02.roa File: B75C7B8E688111EC89ED595FC4F9AE02.roa (raw, json) Hash identifier: Us+IWHncCcxViCupChaS0YhxE8OjfsC+Nh4KV+2P2pI= Subject key identifier: E4:31:CA:2A:AC:66:30:67:F5:2E:73:D9:07:07:3F:4A:5E:84:9C:15 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B7AE Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B75C7B8E688111EC89ED595FC4F9AE02.roa Signing time: Thu 08 May 2025 16:21:39 +0000 ROA not before: Thu 08 May 2025 16:21:39 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 149187 IP address blocks: 103.175.174.0/23 maxlen: 24 103.177.12.0/23 maxlen: 24 103.178.114.0/24 maxlen: 24 103.178.115.0/24 maxlen: 24 103.179.194.0/23 maxlen: 24 2400:4620::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:54:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47022 (0xb7ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:21:39 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cda13-6914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:b5:68:90:ab:33:a6:9d:0c:b8:08:ef:bb:aa: b5:04:aa:d3:fa:fe:0e:03:62:a3:a7:96:bd:f0:0d: bf:d2:55:18:76:69:b5:70:e3:93:5b:e3:41:bd:dd: 66:25:b1:57:a0:60:30:b1:cf:f8:b2:eb:d5:cf:69: 81:a4:b0:d3:3d:45:85:18:65:b0:a4:9b:e6:a2:2c: 11:aa:24:37:3d:d4:e3:77:13:66:6c:b5:c9:e3:5d: bc:7e:84:20:bb:65:b9:fa:47:c7:4c:75:8c:7d:3a: 16:0a:ea:6c:3c:03:86:76:6b:e4:7b:52:2e:4a:d2: 7d:9f:ac:e3:b1:8d:64:ab:93:75:0c:5d:7d:6a:d9: c2:0a:44:31:a7:e3:e1:01:b4:d4:c0:72:c3:50:ce: ed:49:22:a3:e3:f7:d9:a4:fd:ab:39:94:47:bb:38: 8b:2d:ae:b2:50:7b:07:3b:fb:34:61:66:de:f4:6c: 40:29:39:45:30:88:f8:05:5c:f0:cd:7d:50:a6:bd: 84:3e:d3:d7:c3:ee:eb:cd:ea:f7:b3:ee:54:1d:5e: 5a:bc:67:e1:47:fe:a2:0a:4a:b2:31:54:c9:a7:4c: 10:75:48:a2:1e:80:d1:31:ec:6e:d0:52:25:38:9c: d8:e8:91:fa:24:fc:01:22:be:ea:56:68:4f:0d:27: 10:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:31:CA:2A:AC:66:30:67:F5:2E:73:D9:07:07:3F:4A:5E:84:9C:15 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B75C7B8E688111EC89ED595FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.175.174.0/23 103.177.12.0/23 103.178.114.0/23 103.179.194.0/23 IPv6: 2400:4620::/32 Signature Algorithm: sha256WithRSAEncryption 52:53:59:ec:e0:6d:86:c4:70:46:f6:fa:00:17:7d:41:98:db: 91:7f:a0:09:ed:e6:bf:31:ed:5f:d9:af:73:2a:14:9e:49:fe: 86:8a:c2:5f:55:61:60:af:3a:69:32:db:cc:e6:b5:a7:51:28: 83:2d:27:4f:2c:bb:8c:0e:33:67:18:26:62:76:13:24:99:5d: 70:b5:b5:bb:4d:ba:4b:c1:bd:f2:ad:29:1e:52:c4:59:ea:1d: 9d:c6:99:31:09:d6:ac:36:4e:54:b5:07:71:93:7c:bd:59:b2: 42:cf:54:ef:a2:ff:91:92:fb:05:79:c5:94:79:29:c7:c5:79: 26:c0:42:b3:1f:0e:52:31:c0:59:0d:ad:84:65:7a:e8:e5:79: 7f:48:2d:b1:30:f9:b7:2f:52:ab:d8:d6:40:de:82:9b:96:e2: b4:3d:3d:6c:d6:54:45:dd:2e:a2:c8:80:03:21:51:9a:c3:10: 56:3d:a5:46:e3:5e:d8:ad:a3:7b:a0:f7:46:8e:db:de:87:4b: 9d:84:25:e4:d8:81:86:a6:44:42:4b:79:76:22:ed:b1:c1:30: 43:8c:a4:05:e1:5b:59:32:73:97:54:67:ea:42:d1:91:2c:8f: 0d:75:da:6e:04:a7:53:b8:6f:54:62:ca:9e:44:64:17:2c:f4: b3:39:6e:3f -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgIDALeuMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MjEzOVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2RhMTMtNjkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOO1aJCrM6adDLgI77uqtQSq0/r+DgNio6eWvfANv9JVGHZptXDjk1vjQb3d ZiWxV6BgMLHP+LLr1c9pgaSw0z1FhRhlsKSb5qIsEaokNz3U43cTZmy1yeNdvH6E ILtlufpHx0x1jH06FgrqbDwDhnZr5HtSLkrSfZ+s47GNZKuTdQxdfWrZwgpEMafj 4QG01MByw1DO7Ukio+P32aT9qzmUR7s4iy2uslB7Bzv7NGFm3vRsQCk5RTCI+AVc 8M19UKa9hD7T18Pu683q97PuVB1eWrxn4Uf+ogpKsjFUyadMEHVIoh6A0THsbtBS JTic2OiR+iT8ASK+6lZoTw0nECUCAwEAAaOCArYwggKyMB0GA1UdDgQWBBTkMcoq rGYwZ/Uuc9kHBz9KXoScFTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0I3NUM3QjhF Njg4MTExRUM4OUVENTk1RkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMEAGCCsGAQUFBwEHAQH/ BDEwLzAeBAIAATAYAwQBZ6+uAwQBZ7EMAwQBZ7JyAwQBZ7PCMA0EAgACMAcDBQAk AEYgMA0GCSqGSIb3DQEBCwUAA4IBAQBSU1ns4G2GxHBG9voAF31BmNuRf6AJ7ea/ Me1f2a9zKhSeSf6GisJfVWFgrzppMtvM5rWnUSiDLSdPLLuMDjNnGCZidhMkmV1w tbW7TbpLwb3yrSkeUsRZ6h2dxpkxCdasNk5UtQdxk3y9WbJCz1Tvov+RkvsFecWU eSnHxXkmwEKzHw5SMcBZDa2EZXro5Xl/SC2xMPm3L1Kr2NZA3oKbluK0PT1s1lRF 3S6iyIADIVGawxBWPaVG417YraN7oPdGjtveh0udhCXk2IGGpkRCS3l2Iu2xwTBD jKQF4VtZMnOXVGfqQtGRLI8NddpuBKdTuG9UYsqeRGQXLPSzOW4/ -----END CERTIFICATE-----Generated at Tue May 13 02:14:37 2025 by rpki-client