$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E42B4D28BDD011EA9702FC12C4F9AE02.roa File: E42B4D28BDD011EA9702FC12C4F9AE02.roa (raw, json) Hash identifier: k3kQv3Fx40TS4SDWrB6ns/40DX8bnjni6yhiBXxMqnI= Subject key identifier: B9:D0:08:92:91:A1:7A:C2:E7:B1:5F:1B:48:21:CC:D0:86:19:7D:14 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B5A2 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E42B4D28BDD011EA9702FC12C4F9AE02.roa Signing time: Thu 08 May 2025 16:13:43 +0000 ROA not before: Thu 08 May 2025 16:13:43 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 139557 IP address blocks: 103.147.176.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 13:22:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46498 (0xb5a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:13:43 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd837-5990 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:b4:3e:84:ae:6e:b6:e7:d5:13:8d:63:77:bf: cc:1e:a5:9e:3a:47:cc:84:b4:70:d1:8d:c3:f6:b2: 3e:80:ca:09:02:c0:4d:e5:26:ad:ed:27:25:90:10: d7:0d:ce:eb:02:4b:01:71:69:b6:32:91:54:fa:79: d4:5b:11:30:56:f9:aa:46:87:da:46:cb:aa:56:e7: eb:80:ab:ec:8a:7b:09:c4:a9:35:b5:06:8c:9e:0a: 07:33:dc:57:6c:a8:02:cb:62:11:18:83:bf:9c:3d: e2:7c:42:d8:19:35:65:10:04:a5:d7:8d:17:f3:37: 86:f4:b1:41:4e:05:19:c8:88:da:c5:34:13:b0:c4: 79:2f:f8:19:74:2a:26:84:0e:36:30:56:9c:0a:07: 4a:c1:1b:b2:0a:d1:0a:0b:01:a1:4d:c7:40:d7:ce: dd:4e:e3:c4:6e:93:71:e6:87:3a:41:1d:ef:c0:3c: f5:63:04:b9:a2:07:3a:5c:f7:f9:7e:93:30:80:6e: be:e8:24:1b:59:a9:ae:f2:c2:a3:24:92:d1:eb:d2: a2:22:3c:e9:92:a4:b6:ae:e7:f4:dd:57:83:3e:06: d5:ff:5a:81:e2:8a:64:75:1b:af:9c:04:6b:8f:67: c8:dd:da:33:2e:b2:92:16:49:76:43:56:95:fa:90: 19:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:D0:08:92:91:A1:7A:C2:E7:B1:5F:1B:48:21:CC:D0:86:19:7D:14 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E42B4D28BDD011EA9702FC12C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.147.176.0/23 Signature Algorithm: sha256WithRSAEncryption ad:27:70:fc:a0:10:93:17:91:cb:c7:46:e8:e2:0d:26:a8:dc: 45:66:74:01:9b:36:a8:1a:10:4d:98:56:f2:79:68:22:6c:3a: 35:58:a3:73:5e:f5:dd:87:dd:30:3e:e3:c0:87:50:05:e7:b4: c1:11:e4:ee:0e:6a:53:40:99:04:ea:1e:02:84:de:de:3b:7e: 20:8b:d7:c5:96:74:d4:94:49:d2:99:6b:9d:7b:4a:7b:fb:b9: 30:51:2d:94:fc:71:3f:90:d5:58:f9:97:ce:67:5f:02:43:9e: cd:9a:8f:d8:3d:77:c6:1d:ef:cb:d0:99:5a:ca:82:d6:c9:7e: 7a:bf:27:00:d7:dd:45:55:26:5e:d0:4e:89:b8:9c:2c:ff:34: f5:14:1a:3d:27:bd:f8:38:c9:fa:ee:39:ae:6b:8b:4e:f3:f4: 24:d1:a9:f5:56:28:ad:dd:f3:6e:51:a1:74:ab:16:a1:c1:e8: 51:e6:54:57:3b:70:46:25:a7:18:54:83:a5:16:71:30:e3:94: 35:31:0b:85:fd:1e:6a:59:f4:9c:ef:a1:32:12:b4:4f:0a:68: df:7b:60:d7:ad:11:de:c0:b0:47:96:c9:fb:c9:86:78:d0:69: 60:d9:a0:e1:ee:b6:7e:24:b1:a6:b8:48:63:84:40:88:d0:2e: 61:87:11:8a -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDALWiMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MTM0M1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q4MzctNTk5MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK60PoSubrbn1RONY3e/zB6lnjpHzIS0cNGNw/ayPoDKCQLATeUmre0nJZAQ 1w3O6wJLAXFptjKRVPp51FsRMFb5qkaH2kbLqlbn64Cr7Ip7CcSpNbUGjJ4KBzPc V2yoAstiERiDv5w94nxC2Bk1ZRAEpdeNF/M3hvSxQU4FGciI2sU0E7DEeS/4GXQq JoQONjBWnAoHSsEbsgrRCgsBoU3HQNfO3U7jxG6TceaHOkEd78A89WMEuaIHOlz3 +X6TMIBuvugkG1mprvLCoySS0evSoiI86ZKktq7n9N1Xgz4G1f9ageKKZHUbr5wE a49nyN3aMy6ykhZJdkNWlfqQGUcCAwEAAaOCApUwggKRMB0GA1UdDgQWBBS50AiS kaF6wuexXxtIIczQhhl9FDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0U0MkI0RDI4 QkREMDExRUE5NzAyRkMxMkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQBZ5OwMA0GCSqGSIb3DQEBCwUAA4IBAQCtJ3D8oBCTF5HL x0bo4g0mqNxFZnQBmzaoGhBNmFbyeWgibDo1WKNzXvXdh90wPuPAh1AF57TBEeTu DmpTQJkE6h4ChN7eO34gi9fFlnTUlEnSmWude0p7+7kwUS2U/HE/kNVY+ZfOZ18C Q57Nmo/YPXfGHe/L0JlayoLWyX56vycA191FVSZe0E6JuJws/zT1FBo9J734OMn6 7jmua4tO8/Qk0an1Viit3fNuUaF0qxahwehR5lRXO3BGJacYVIOlFnEw45Q1MQuF /R5qWfSc76EyErRPCmjfe2DXrRHewLBHlsn7yYZ40Glg2aDh7rZ+JLGmuEhjhECI 0C5hhxGK -----END CERTIFICATE-----Generated at Wed May 14 04:38:06 2025 by rpki-client