$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E8EB581C150511EBB0AA9A0DC4F9AE02.roa File: E8EB581C150511EBB0AA9A0DC4F9AE02.roa (raw, json) Hash identifier: aiLjZXUVGQUIyUEo6gLHm8WSQB5TYoGAOewXOSEyRuk= Subject key identifier: 07:E7:58:0D:66:50:DB:DE:16:48:90:43:A3:59:35:5F:01:06:3F:79 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B50C Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E8EB581C150511EBB0AA9A0DC4F9AE02.roa Signing time: Thu 08 May 2025 16:11:29 +0000 ROA not before: Thu 08 May 2025 16:11:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 138280 IP address blocks: 103.88.84.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:54:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46348 (0xb50c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:11:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd7b1-5a6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:56:95:a7:1e:c1:5d:c5:63:28:69:9c:b0:b3: 81:72:1c:95:70:0b:95:cd:cd:d6:67:65:9d:ed:c8: 71:97:08:00:c5:b5:3e:d9:cf:2a:a0:0e:54:0c:3f: 2f:c9:ca:b0:16:0e:fd:de:4d:36:17:bc:3a:8a:43: 30:d5:d9:47:8c:01:57:45:e3:04:04:39:92:85:b8: 63:ad:8f:33:fb:84:2e:64:d4:14:d5:75:14:13:da: 23:1f:f3:33:06:73:66:59:4b:ff:40:60:6f:1b:96: 49:e4:c3:fb:5e:76:7c:6e:ab:a5:41:61:54:8d:f2: 38:21:ff:8d:87:7c:54:e8:4a:22:2e:17:b9:77:d1: 5d:73:12:b2:e1:e4:b6:ac:cc:c7:d7:d4:23:b4:34: 0b:86:60:54:c2:48:89:a8:2f:90:9e:98:31:2a:48: d0:f0:8a:53:ae:de:e2:77:8b:3f:7c:07:9d:25:d4: 6d:b0:1d:10:8f:0f:8b:0f:c8:d6:67:bb:dc:c1:71: a0:fb:93:a3:21:8b:9a:9f:ba:94:c8:bd:93:11:44: 5f:78:ab:7d:78:36:4e:5e:4d:10:57:14:bd:b0:9e: ce:2f:9d:2f:5b:f3:68:87:fc:f3:27:c0:a3:8c:f6: c1:f3:f8:33:d0:9f:69:14:1e:4c:eb:a5:e4:a4:ec: e5:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:E7:58:0D:66:50:DB:DE:16:48:90:43:A3:59:35:5F:01:06:3F:79 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/E8EB581C150511EBB0AA9A0DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.88.84.0/22 Signature Algorithm: sha256WithRSAEncryption ab:0e:2e:60:e4:13:51:65:29:ff:95:be:b5:3d:b5:04:1f:ca: f6:c1:86:ae:42:e9:13:33:4a:af:4b:b1:b7:97:50:60:12:83: ca:00:9a:d9:28:f2:1a:34:4b:12:dc:2d:52:29:85:18:5a:cb: f4:22:2d:5c:cf:a1:d3:4a:c3:09:a7:70:6d:e4:94:c3:41:4e: d0:0c:26:18:95:0d:2e:ac:48:ce:42:49:79:a2:7b:98:81:a4: 8c:83:65:87:03:37:64:d8:8c:a3:0f:ee:e4:61:c3:e7:47:89: 14:c9:d9:35:8b:e8:de:70:da:5b:b9:e1:68:7f:38:e2:f1:72: 9b:32:f9:38:da:7f:24:cb:73:fc:a3:02:3b:2a:75:13:e9:47: 6e:32:49:fa:e7:ce:bf:b7:b6:e5:ea:9c:ad:34:48:f4:59:79: f2:ef:3c:ba:94:8a:46:02:df:33:ed:e5:a5:fe:5f:b1:8c:9e: 1b:d0:90:16:90:43:bd:f7:b3:66:aa:bd:40:44:e1:d6:e8:15: 92:ca:ac:2b:78:da:46:00:ce:56:9b:20:ed:04:f7:87:9a:d4: e0:ca:05:20:be:2d:ac:30:90:f2:cd:af:1c:48:b1:5e:94:50: 3c:50:7f:94:d0:1c:fe:95:1b:12:60:2b:4e:e0:8e:77:da:b2: eb:eb:a8:9a -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDALUMMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MTEyOVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q3YjEtNWE2ZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALRWlacewV3FYyhpnLCzgXIclXALlc3N1mdlne3IcZcIAMW1PtnPKqAOVAw/ L8nKsBYO/d5NNhe8OopDMNXZR4wBV0XjBAQ5koW4Y62PM/uELmTUFNV1FBPaIx/z MwZzZllL/0BgbxuWSeTD+152fG6rpUFhVI3yOCH/jYd8VOhKIi4XuXfRXXMSsuHk tqzMx9fUI7Q0C4ZgVMJIiagvkJ6YMSpI0PCKU67e4neLP3wHnSXUbbAdEI8Piw/I 1me73MFxoPuToyGLmp+6lMi9kxFEX3irfXg2Tl5NEFcUvbCezi+dL1vzaIf88yfA o4z2wfP4M9CfaRQeTOul5KTs5XUCAwEAAaOCApUwggKRMB0GA1UdDgQWBBQH51gN ZlDb3hZIkEOjWTVfAQY/eTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0U4RUI1ODFD MTUwNTExRUJCMEFBOUEwREM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQCZ1hUMA0GCSqGSIb3DQEBCwUAA4IBAQCrDi5g5BNRZSn/ lb61PbUEH8r2wYauQukTM0qvS7G3l1BgEoPKAJrZKPIaNEsS3C1SKYUYWsv0Ii1c z6HTSsMJp3Bt5JTDQU7QDCYYlQ0urEjOQkl5onuYgaSMg2WHAzdk2IyjD+7kYcPn R4kUydk1i+jecNpbueFofzji8XKbMvk42n8ky3P8owI7KnUT6UduMkn6586/t7bl 6pytNEj0WXny7zy6lIpGAt8z7eWl/l+xjJ4b0JAWkEO997Nmqr1AROHW6BWSyqwr eNpGAM5WmyDtBPeHmtTgygUgvi2sMJDyza8cSLFelFA8UH+U0Bz+lRsSYCtO4I53 2rLr66ia -----END CERTIFICATE-----Generated at Tue May 13 00:11:24 2025 by rpki-client