$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/EA9D97665BD511EC9B98994EC4F9AE02.roa File: EA9D97665BD511EC9B98994EC4F9AE02.roa (raw, json) Hash identifier: tkSe81m0gPPExe6wpZBW9meVOYj9n/rGSICqQ2byCtU= Subject key identifier: 55:1E:41:44:AF:86:A8:7C:77:47:7A:1A:55:32:2D:82:84:09:42:C4 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B770 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/EA9D97665BD511EC9B98994EC4F9AE02.roa Signing time: Thu 08 May 2025 16:20:45 +0000 ROA not before: Thu 08 May 2025 16:20:45 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 147221 IP address blocks: 103.31.40.0/23 maxlen: 24 103.129.100.0/23 maxlen: 24 103.176.134.0/23 maxlen: 24 2001:df3:b1c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 07:03:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46960 (0xb770) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:20:45 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd9dd-a574 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:20:0d:e2:17:d1:5e:54:8c:38:df:3b:1d:92: 60:78:a3:2b:57:36:af:77:78:89:f5:17:34:fb:2b: d6:7b:4b:57:f1:a8:5f:e5:7e:18:d8:75:20:55:95: 3c:18:a7:1b:a4:36:92:ee:b6:38:25:69:5c:38:98: 22:20:73:b8:8f:1e:a0:1a:d9:98:65:2b:fa:e7:dc: 58:2d:92:3a:c7:90:52:62:20:3c:7f:36:82:9e:eb: c5:06:d8:78:b0:cc:84:44:e1:7d:15:22:8c:0d:94: 71:de:ed:9f:34:e8:c4:f3:d0:97:a7:f2:5f:7a:27: e7:6c:aa:60:6e:65:7a:e3:79:90:8d:cd:a0:84:d5: 32:76:06:69:ee:9f:e9:51:7d:57:e1:f5:e1:11:10: 06:5d:da:00:24:05:6a:bb:54:da:a3:15:9a:0a:ab: 86:5d:ef:70:d8:98:5c:3c:41:24:ce:88:ce:27:1b: 05:9f:84:68:b7:e2:89:1a:d3:09:a5:2e:18:07:3b: b8:c0:58:fd:ca:dd:a4:af:81:24:78:e4:12:cb:74: b9:17:5f:63:54:3d:aa:4d:5f:2b:86:7a:96:f7:03: fc:df:74:47:c8:73:00:d6:cc:52:6f:12:b6:7d:b3: 7d:ac:be:09:d6:96:0e:8b:4b:28:b2:3a:9c:c3:79: 37:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:1E:41:44:AF:86:A8:7C:77:47:7A:1A:55:32:2D:82:84:09:42:C4 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/EA9D97665BD511EC9B98994EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.31.40.0/23 103.129.100.0/23 103.176.134.0/23 IPv6: 2001:df3:b1c0::/48 Signature Algorithm: sha256WithRSAEncryption 62:df:f0:b0:78:30:3e:fa:99:67:eb:8c:da:03:eb:51:db:7c: 19:81:6e:f7:79:54:12:49:c5:56:05:55:92:05:56:7c:29:bf: 5b:fa:d3:2f:28:29:38:2b:11:e8:d3:2b:cb:92:53:d6:5e:89: d0:ca:a0:0e:b6:92:61:d5:2f:4d:b4:57:f4:df:e3:9b:f3:e1: 51:ae:6d:55:a5:7e:20:b6:76:85:f0:9f:59:a3:16:ad:7d:6a: bb:8e:e7:91:13:51:82:21:1a:7d:ea:84:28:1d:d1:3b:f5:4e: 7f:2d:fb:e3:5b:c6:dc:32:f1:e8:e2:a7:b2:21:70:c7:a4:2c: 43:8c:73:5c:24:ad:e2:e5:c5:f0:f7:04:8f:59:76:7d:b6:40: b1:4d:9c:7d:68:e6:35:7f:7d:26:12:0d:55:58:55:0c:c2:a8: 45:85:1f:6d:5d:be:d3:94:4a:1a:5f:2d:37:6f:e8:a3:f2:3a: d8:25:49:35:00:3f:77:c0:f8:52:63:29:7c:f4:2a:7e:0b:a8: ed:d9:fd:00:2f:92:63:76:c1:cf:dc:f7:1a:b1:c4:27:7f:08: 25:d8:f5:c9:69:40:2a:44:6f:fc:15:d3:7a:d8:81:67:02:31: d8:f2:65:06:80:5d:55:d8:72:fa:ba:90:4a:d6:f8:34:b5:c1: da:9e:06:ff -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgIDALdwMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MjA0NVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q5ZGQtYTU3NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMYgDeIX0V5UjDjfOx2SYHijK1c2r3d4ifUXNPsr1ntLV/GoX+V+GNh1IFWV PBinG6Q2ku62OCVpXDiYIiBzuI8eoBrZmGUr+ufcWC2SOseQUmIgPH82gp7rxQbY eLDMhEThfRUijA2Ucd7tnzToxPPQl6fyX3on52yqYG5leuN5kI3NoITVMnYGae6f 6VF9V+H14REQBl3aACQFartU2qMVmgqrhl3vcNiYXDxBJM6IzicbBZ+EaLfiiRrT CaUuGAc7uMBY/crdpK+BJHjkEst0uRdfY1Q9qk1fK4Z6lvcD/N90R8hzANbMUm8S tn2zfay+CdaWDotLKLI6nMN5N50CAwEAAaOCArIwggKuMB0GA1UdDgQWBBRVHkFE r4aofHdHehpVMi2ChAlCxDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0VBOUQ5NzY2 NUJENTExRUM5Qjk4OTk0RUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDwGCCsGAQUFBwEHAQH/ BC0wKzAYBAIAATASAwQBZx8oAwQBZ4FkAwQBZ7CGMA8EAgACMAkDBwAgAQ3zscAw DQYJKoZIhvcNAQELBQADggEBAGLf8LB4MD76mWfrjNoD61HbfBmBbvd5VBJJxVYF VZIFVnwpv1v60y8oKTgrEejTK8uSU9ZeidDKoA62kmHVL020V/Tf45vz4VGubVWl fiC2doXwn1mjFq19aruO55ETUYIhGn3qhCgd0Tv1Tn8t++Nbxtwy8ejip7IhcMek LEOMc1wkreLlxfD3BI9Zdn22QLFNnH1o5jV/fSYSDVVYVQzCqEWFH21dvtOUShpf LTdv6KPyOtglSTUAP3fA+FJjKXz0Kn4LqO3Z/QAvkmN2wc/c9xqxxCd/CCXY9clp QCpEb/wV03rYgWcCMdjyZQaAXVXYcvq6kErW+DS1wdqeBv8= -----END CERTIFICATE-----Generated at Wed May 14 11:14:48 2025 by rpki-client