$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C118B562483711EC8AA7367DC4F9AE02.roa File: C118B562483711EC8AA7367DC4F9AE02.roa (raw, json) Hash identifier: QE63ZAByug3PbH+NTSADv3+ha9HGZRVYNnCJ0Hp1hLk= Subject key identifier: EB:82:E0:57:7B:E3:1D:60:55:A6:4A:B7:0C:3F:2E:AE:3F:FE:DC:25 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B2B1 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C118B562483711EC8AA7367DC4F9AE02.roa Signing time: Thu 08 May 2025 16:02:10 +0000 ROA not before: Thu 08 May 2025 16:02:10 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 134883 IP address blocks: 103.120.208.0/22 maxlen: 24 2403:5cc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:54:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45745 (0xb2b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:02:10 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd582-38c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:cd:bd:34:98:12:6a:f6:6e:d9:99:17:8d:2f: 9f:c2:7c:fd:8e:33:2f:f7:82:d3:f8:70:46:37:a1: 50:6f:9a:79:cd:d4:9a:1f:16:54:58:ad:b0:da:79: 57:a2:a8:c1:e3:48:87:f5:85:4f:af:fc:2e:c7:c9: e6:f0:b2:dd:7a:de:95:6d:76:00:63:12:09:f8:66: 42:40:77:2d:93:8d:31:a3:2f:3a:db:cd:da:7d:2c: d8:f6:33:07:52:26:dd:d1:3f:d3:47:61:93:9c:fd: a3:b2:29:f1:0f:15:c6:90:de:12:99:e3:ec:f3:5d: e7:01:df:9d:64:7e:c7:40:78:bb:5b:16:e3:b4:57: 7a:0d:d3:97:d6:0b:36:81:32:31:02:75:27:14:29: 59:20:31:5e:83:e7:60:07:7c:4a:b3:c3:cf:da:e0: 98:51:8c:7d:3d:9a:0d:aa:8d:3a:75:c8:4d:1f:cc: fe:dc:5f:93:2a:03:70:3e:fb:0e:27:21:b2:87:a1: ed:04:c5:0c:35:01:76:6e:7c:b7:3b:82:0a:9e:a4: 18:1a:5e:e1:12:08:bb:ae:e3:64:fa:cb:6f:10:32: c2:15:fe:a5:2e:cd:e9:70:f0:65:be:59:10:43:55: 08:d4:ff:58:2c:7a:4f:5f:25:b6:4b:d4:18:26:7d: d7:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:82:E0:57:7B:E3:1D:60:55:A6:4A:B7:0C:3F:2E:AE:3F:FE:DC:25 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C118B562483711EC8AA7367DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.208.0/22 IPv6: 2403:5cc0::/48 Signature Algorithm: sha256WithRSAEncryption 49:0d:b3:94:ae:43:fc:d0:bc:45:1d:a0:10:f4:cd:0f:35:fc: f1:45:12:55:47:d9:27:f2:b7:ce:43:32:b8:73:83:50:76:1c: 24:46:2c:14:58:41:17:c0:68:25:e8:f0:3c:02:e9:a0:94:b9: b6:51:3e:c8:17:5b:75:fc:c0:e8:57:89:0a:6a:04:7b:e3:55: b5:32:b1:03:4f:f4:9f:a8:59:58:0c:c6:d1:11:00:c7:08:a6: 95:63:72:f5:bc:49:9e:ca:8c:1c:da:d0:ab:84:58:19:c2:19: 50:4b:bd:b8:a4:02:ae:51:16:ed:69:e5:3f:f5:a7:f5:3f:84: 41:05:3c:f0:cc:29:a9:f8:ce:67:4c:60:6c:46:d8:5a:1c:e2: 34:de:97:56:b1:02:95:a4:49:c0:35:94:81:80:24:ef:ec:d2: 8b:78:1c:ae:d3:57:8b:af:57:f7:95:f5:fc:bf:77:0e:92:e2: 70:3e:99:0e:5d:07:82:0b:7e:62:54:8c:14:8a:be:78:c3:3d: c9:b3:b8:7a:64:86:35:9c:5b:bc:01:cd:53:be:63:b3:25:74: ad:57:c8:32:61:76:ad:f5:b2:03:eb:4a:49:64:ff:92:ed:34: 30:a1:7a:a7:4f:a1:47:fd:09:54:f6:6e:6d:55:d9:57:0b:b5: 4d:78:76:20 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIDALKxMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MDIxMFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q1ODItMzhjNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMTNvTSYEmr2btmZF40vn8J8/Y4zL/eC0/hwRjehUG+aec3Umh8WVFitsNp5 V6KoweNIh/WFT6/8LsfJ5vCy3XrelW12AGMSCfhmQkB3LZONMaMvOtvN2n0s2PYz B1Im3dE/00dhk5z9o7Ip8Q8VxpDeEpnj7PNd5wHfnWR+x0B4u1sW47RXeg3Tl9YL NoEyMQJ1JxQpWSAxXoPnYAd8SrPDz9rgmFGMfT2aDaqNOnXITR/M/txfkyoDcD77 Dichsoeh7QTFDDUBdm58tzuCCp6kGBpe4RIIu67jZPrLbxAywhX+pS7N6XDwZb5Z EENVCNT/WCx6T18ltkvUGCZ91/8CAwEAAaOCAqYwggKiMB0GA1UdDgQWBBTrguBX e+MdYFWmSrcMPy6uP/7cJTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0MxMThCNTYy NDgzNzExRUM4QUE3MzY3REM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDAGCCsGAQUFBwEHAQH/ BCEwHzAMBAIAATAGAwQCZ3jQMA8EAgACMAkDBwAkA1zAAAAwDQYJKoZIhvcNAQEL BQADggEBAEkNs5SuQ/zQvEUdoBD0zQ81/PFFElVH2Sfyt85DMrhzg1B2HCRGLBRY QRfAaCXo8DwC6aCUubZRPsgXW3X8wOhXiQpqBHvjVbUysQNP9J+oWVgMxtERAMcI ppVjcvW8SZ7KjBza0KuEWBnCGVBLvbikAq5RFu1p5T/1p/U/hEEFPPDMKan4zmdM YGxG2Foc4jTel1axApWkScA1lIGAJO/s0ot4HK7TV4uvV/eV9fy/dw6S4nA+mQ5d B4ILfmJUjBSKvnjDPcmzuHpkhjWcW7wBzVO+Y7MldK1XyDJhdq31sgPrSklk/5Lt NDCheqdPoUf9CVT2bm1V2VcLtU14diA= -----END CERTIFICATE-----Generated at Tue May 13 00:57:52 2025 by rpki-client