$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D6728CE4E93D11EF848B7330C4F9AE02.roa File: D6728CE4E93D11EF848B7330C4F9AE02.roa (raw, json) Hash identifier: DMaGaBn+uR2jHebnIQHsfy+H+jjDjP8s1k4z1qw5C7E= Subject key identifier: BB:7F:B8:6B:FA:DC:86:87:32:36:50:BD:62:6D:2B:3C:64:05:5A:7E Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B4BB Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D6728CE4E93D11EF848B7330C4F9AE02.roa Signing time: Thu 08 May 2025 16:10:16 +0000 ROA not before: Thu 08 May 2025 16:10:16 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 137630 IP address blocks: 103.69.200.0/24 maxlen: 24 103.69.201.0/24 maxlen: 24 2400:d6e0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:54:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46267 (0xb4bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:10:16 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd768-3454 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:3b:cf:62:c1:f2:42:0f:84:3d:af:b9:cd:37: 85:92:49:4b:bc:b0:db:cc:d0:57:8f:7e:7a:d9:03: b4:d4:b9:5d:fe:8b:b6:6e:9d:c0:10:45:1f:97:e5: 26:20:1c:62:6e:a4:a9:56:a6:71:0f:59:d1:49:36: c6:7a:22:66:ca:d2:3e:32:3c:b6:e1:5e:69:0a:cc: 01:ca:19:8d:2b:13:94:f4:06:0b:48:2e:78:1f:42: 6c:9e:d5:38:f1:04:e7:db:39:d2:db:6f:c2:db:e0: ee:c0:08:a0:02:18:18:61:77:a6:3c:1e:15:73:a6: 1a:b5:0d:e2:b2:3a:d7:fb:2b:8f:ea:db:45:25:84: 80:36:f4:78:bb:a5:14:dd:77:2d:c1:76:27:60:a0: 40:a2:16:b7:7a:50:91:15:d2:14:b5:6d:e4:6c:54: da:16:c6:d5:56:2e:af:43:a4:3a:80:32:4c:28:0a: f8:8b:c7:9c:7d:91:0a:47:44:6e:e1:00:33:89:9c: 77:45:4a:ea:77:64:37:bf:95:74:5b:ba:85:40:47: 0f:69:00:bf:c2:59:1c:6b:3c:7b:6a:d6:59:9f:cf: 4d:e0:d1:0c:47:14:25:d2:2e:9c:b7:53:38:2f:2d: 83:f1:e2:69:cb:d4:97:af:90:2d:63:93:c6:75:81: 6c:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:7F:B8:6B:FA:DC:86:87:32:36:50:BD:62:6D:2B:3C:64:05:5A:7E X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/D6728CE4E93D11EF848B7330C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.69.200.0/23 IPv6: 2400:d6e0::/32 Signature Algorithm: sha256WithRSAEncryption 4a:4d:ad:ae:91:51:5e:00:43:35:82:24:4e:65:72:30:62:27: 01:b8:c7:fd:51:a9:0b:f1:9f:41:ad:89:f8:49:fb:bb:5b:ca: ad:a6:2e:71:c9:fe:86:0c:12:ad:17:11:25:76:39:04:2f:83: 35:1a:72:9b:ec:5e:bf:f1:1b:69:da:68:cb:5d:4e:7e:d2:7a: 44:eb:eb:7a:cb:c8:39:e5:2e:17:a7:6d:67:bf:68:44:5d:ad: 0f:f3:af:6f:ff:f6:f5:9c:0e:31:08:52:e2:46:5d:fc:f8:d0: 5e:f8:68:b5:ef:2a:f4:de:62:e8:0d:6a:43:be:6d:c5:99:1e: 57:3e:97:fb:ed:b8:b9:63:f7:02:c8:c1:81:e1:96:e0:c0:5d: 5c:e1:b7:6d:f9:91:e8:b1:1f:b8:2b:70:cd:db:50:e2:d1:1d: 0a:e2:cc:6f:6a:8f:95:e3:a0:0e:76:83:b8:4c:7c:a2:e2:da: 26:77:4b:5b:99:c7:be:e7:6a:f7:66:14:5e:8a:77:05:2f:e5: 01:3c:14:b7:ef:0e:ae:dc:64:7f:31:8f:f3:ce:cc:16:ad:c3: 27:f5:9e:05:a4:00:3f:93:bf:c0:21:9f:50:fb:68:4b:bc:24: 8c:9c:f3:eb:39:04:d0:2b:1b:08:12:f5:1a:8b:f2:7d:6d:5a: 66:bf:8c:19 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIDALS7MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MTAxNloXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q3NjgtMzQ1NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK07z2LB8kIPhD2vuc03hZJJS7yw28zQV49+etkDtNS5Xf6Ltm6dwBBFH5fl JiAcYm6kqVamcQ9Z0Uk2xnoiZsrSPjI8tuFeaQrMAcoZjSsTlPQGC0gueB9CbJ7V OPEE59s50ttvwtvg7sAIoAIYGGF3pjweFXOmGrUN4rI61/srj+rbRSWEgDb0eLul FN13LcF2J2CgQKIWt3pQkRXSFLVt5GxU2hbG1VYur0OkOoAyTCgK+IvHnH2RCkdE buEAM4mcd0VK6ndkN7+VdFu6hUBHD2kAv8JZHGs8e2rWWZ/PTeDRDEcUJdIunLdT OC8tg/HiacvUl6+QLWOTxnWBbBECAwEAAaOCAqQwggKgMB0GA1UdDgQWBBS7f7hr +tyGhzI2UL1ibSs8ZAVafjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0Q2NzI4Q0U0 RTkzRDExRUY4NDhCNzMzMEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMC4GCCsGAQUFBwEHAQH/ BB8wHTAMBAIAATAGAwQBZ0XIMA0EAgACMAcDBQAkANbgMA0GCSqGSIb3DQEBCwUA A4IBAQBKTa2ukVFeAEM1giROZXIwYicBuMf9UakL8Z9BrYn4Sfu7W8qtpi5xyf6G DBKtFxEldjkEL4M1GnKb7F6/8Rtp2mjLXU5+0npE6+t6y8g55S4Xp21nv2hEXa0P 869v//b1nA4xCFLiRl38+NBe+Gi17yr03mLoDWpDvm3FmR5XPpf77bi5Y/cCyMGB 4ZbgwF1c4bdt+ZHosR+4K3DN21Di0R0K4sxvao+V46AOdoO4THyi4tomd0tbmce+ 52r3ZhReincFL+UBPBS37w6u3GR/MY/zzswWrcMn9Z4FpAA/k7/AIZ9Q+2hLvCSM nPPrOQTQKxsIEvUai/J9bVpmv4wZ -----END CERTIFICATE-----Generated at Tue May 13 02:17:20 2025 by rpki-client