$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C5E7C6EC43A511EB8DC4923AC4F9AE02.roa File: C5E7C6EC43A511EB8DC4923AC4F9AE02.roa (raw, json) Hash identifier: PHf4L6vpm0bDmHgcbPRvkTEYQhqTCVE+X+T9hRpgInU= Subject key identifier: 88:00:08:4D:69:C3:25:D2:6C:73:CF:02:97:6E:5E:83:9A:78:6C:82 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B605 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C5E7C6EC43A511EB8DC4923AC4F9AE02.roa Signing time: Thu 08 May 2025 16:15:16 +0000 ROA not before: Thu 08 May 2025 16:15:16 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141260 IP address blocks: 103.160.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:54:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46597 (0xb605) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:15:16 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd894-e9ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:e6:db:11:c5:e2:c7:fc:6a:94:d2:51:c8:25: 66:cc:17:fd:e3:88:5d:9d:d9:ec:76:f8:39:02:0f: c5:f2:8d:23:03:86:a3:96:c8:7b:1d:2e:ab:90:69: 9b:02:27:9a:fe:d2:dc:a2:dc:74:6c:71:e9:c0:da: b9:30:81:4f:b6:44:24:ab:9d:f0:68:c6:1a:de:0c: 0c:70:2d:96:18:2f:8b:52:d5:9e:88:8f:a6:ad:eb: 22:b4:5a:c5:99:25:5a:63:12:2f:bc:d5:d4:11:f0: a3:ac:9b:63:f6:9c:16:a2:07:a6:39:11:3e:96:2a: 1f:68:ce:a4:16:2a:aa:5b:7c:12:fa:50:ef:42:fd: 7d:3f:51:aa:a3:ff:45:60:db:ac:44:77:22:96:be: 11:25:3a:8c:85:d7:67:54:89:51:fa:1f:85:18:b9: 47:99:0a:f5:08:2e:fb:96:fb:b4:2d:7d:64:ce:4d: e4:ab:f2:2f:5c:51:3f:f2:d8:15:22:e7:3b:da:fb: 68:8a:61:9e:7d:c3:43:73:a2:8d:da:e6:e6:f4:0e: 7a:1f:f4:89:9f:c4:5e:fa:4b:fb:0f:2b:e0:53:14: 57:b4:8b:75:42:63:ba:2d:ef:00:d5:1f:5a:f9:8d: 01:72:76:85:3e:1c:3d:bc:f1:72:9e:6c:b7:3c:96: 8e:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:00:08:4D:69:C3:25:D2:6C:73:CF:02:97:6E:5E:83:9A:78:6C:82 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C5E7C6EC43A511EB8DC4923AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.160.188.0/24 Signature Algorithm: sha256WithRSAEncryption b0:2d:5a:ae:7a:7d:86:36:4d:98:42:76:3e:e7:47:23:b5:d3: b9:bc:c8:21:78:b0:ab:c0:ca:3b:25:ef:ac:24:da:35:2c:6e: 5f:aa:8c:1b:b4:30:86:e4:08:35:d4:8f:96:54:3a:5d:23:b5: 13:51:a8:e7:cf:09:71:b5:a3:4a:cd:a2:88:c9:50:ed:19:e8: c3:0f:60:ae:b4:e3:cb:0e:1b:96:f7:61:3f:15:21:1d:51:77: 32:43:5d:3f:47:28:02:c8:44:a2:fc:62:c5:30:8a:13:f7:53: af:8d:64:0b:2a:e1:b3:65:58:80:36:36:34:fc:2b:cd:0f:f4: 92:26:76:2a:25:b2:fd:8c:87:9e:1f:09:da:40:06:ef:97:ac: 2c:c9:b3:be:a4:91:db:5e:53:ef:83:a7:a2:1d:0e:15:c8:e6: a7:7e:b1:43:d6:b3:87:51:c5:17:87:f5:14:d1:d4:6e:b7:e6: 5f:65:a7:bd:9f:b7:ba:4c:f0:48:c7:4e:9a:22:b8:71:da:20: 72:68:73:41:ce:3f:a0:fb:30:f3:97:0d:f1:b6:e2:f2:33:e9: 55:03:9b:84:87:1f:0c:97:a3:59:5c:04:7c:18:52:b3:49:5f: 15:a6:83:93:de:ec:70:dc:bf:61:a7:66:62:e5:9b:e9:5a:90: c4:59:d7:f3 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDALYFMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MTUxNloXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q4OTQtZTlhZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMzm2xHF4sf8apTSUcglZswX/eOIXZ3Z7Hb4OQIPxfKNIwOGo5bIex0uq5Bp mwInmv7S3KLcdGxx6cDauTCBT7ZEJKud8GjGGt4MDHAtlhgvi1LVnoiPpq3rIrRa xZklWmMSL7zV1BHwo6ybY/acFqIHpjkRPpYqH2jOpBYqqlt8EvpQ70L9fT9RqqP/ RWDbrER3Ipa+ESU6jIXXZ1SJUfofhRi5R5kK9Qgu+5b7tC19ZM5N5KvyL1xRP/LY FSLnO9r7aIphnn3DQ3Oijdrm5vQOeh/0iZ/EXvpL+w8r4FMUV7SLdUJjui3vANUf WvmNAXJ2hT4cPbzxcp5stzyWjpUCAwEAAaOCApUwggKRMB0GA1UdDgQWBBSIAAhN acMl0mxzzwKXbl6DmnhsgjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0M1RTdDNkVD NDNBNTExRUI4REM0OTIzQUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQAZ6C8MA0GCSqGSIb3DQEBCwUAA4IBAQCwLVquen2GNk2Y QnY+50cjtdO5vMgheLCrwMo7Je+sJNo1LG5fqowbtDCG5Ag11I+WVDpdI7UTUajn zwlxtaNKzaKIyVDtGejDD2CutOPLDhuW92E/FSEdUXcyQ10/RygCyESi/GLFMIoT 91OvjWQLKuGzZViANjY0/CvND/SSJnYqJbL9jIeeHwnaQAbvl6wsybO+pJHbXlPv g6eiHQ4VyOanfrFD1rOHUcUXh/UU0dRut+ZfZae9n7e6TPBIx06aIrhx2iByaHNB zj+g+zDzlw3xtuLyM+lVA5uEhx8Ml6NZXAR8GFKzSV8VpoOT3uxw3L9hp2Zi5Zvp WpDEWdfz -----END CERTIFICATE-----Generated at Mon May 12 23:44:18 2025 by rpki-client