$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/EC2535AACF1B11EF84067167C4F9AE02.roa File: EC2535AACF1B11EF84067167C4F9AE02.roa (raw, json) Hash identifier: /rSDVJ6peFq+ZpfSaVM7JgV7JPQfvNMzMDDQszMeEmg= Subject key identifier: C4:79:DB:10:09:96:EC:8D:A2:BF:10:89:D5:FA:A5:7C:BE:BB:6F:25 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B70F Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/EC2535AACF1B11EF84067167C4F9AE02.roa Signing time: Thu 08 May 2025 16:19:18 +0000 ROA not before: Thu 08 May 2025 16:19:18 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 142527 IP address blocks: 103.161.10.0/23 maxlen: 24 103.171.46.0/23 maxlen: 24 103.203.208.0/23 maxlen: 24 103.203.210.0/23 maxlen: 24 2400:b560::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 15:25:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46863 (0xb70f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:19:18 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd986-e93f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:b7:cc:f5:71:3e:46:e6:f3:e1:49:9e:33:9b: 6d:8a:53:88:df:a6:8f:5d:0d:ba:cd:0e:fb:a2:3a: 65:ec:91:06:fa:68:fa:08:ee:f2:b0:09:63:fc:1b: 7e:12:e7:a6:2d:0a:8a:78:6e:fa:bc:83:96:41:34: 34:40:66:6b:49:75:b1:5d:84:ea:f4:3e:74:9a:ae: e8:ab:eb:21:2b:0f:87:6f:5e:ac:8c:02:6b:eb:dc: ec:97:4c:41:38:99:46:5e:62:7b:db:8b:7d:75:fb: 42:ea:27:5f:c9:60:4a:ec:70:55:b8:2f:b6:47:c9: 1c:fb:a4:66:d9:a9:1b:60:ec:e0:9d:be:eb:1e:97: f8:86:89:1f:a0:ed:c7:46:13:8a:16:55:1a:65:2e: 97:e2:e2:0b:d0:f8:57:29:cd:0f:b0:de:71:36:9b: 26:52:82:90:94:b9:fb:1d:d0:d5:bf:68:7b:bf:49: 39:d2:e3:ea:0b:c2:4e:9b:a8:59:f9:23:ce:64:56: b2:23:0f:e0:ab:b2:b1:a5:06:35:45:07:ac:9a:eb: d5:43:34:9f:58:a9:2d:42:81:db:53:48:f0:f9:4b: 3d:a0:97:6e:b2:40:2f:14:ed:6c:1b:8a:4e:f0:b9: 19:a1:e5:e4:fd:10:ef:59:b3:b7:46:67:87:ed:fe: c6:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:79:DB:10:09:96:EC:8D:A2:BF:10:89:D5:FA:A5:7C:BE:BB:6F:25 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/EC2535AACF1B11EF84067167C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.161.10.0/23 103.171.46.0/23 103.203.208.0/22 IPv6: 2400:b560::/32 Signature Algorithm: sha256WithRSAEncryption 06:77:f8:88:e7:5b:49:4c:1f:0d:d4:9a:b2:87:82:04:9e:3f: 0b:61:e2:01:8f:6a:2d:03:48:80:7d:87:c1:6f:ac:77:3a:85: 8b:72:e7:0e:cd:8c:1a:b6:1a:b3:3c:97:83:8c:8c:ea:5a:d8: c2:c8:88:9a:c1:70:aa:ed:59:4f:3c:32:2d:e9:2d:a7:1e:6b: e6:25:28:d6:f7:a0:2f:92:9d:f4:ee:68:a0:8c:88:ce:5b:59: 89:92:40:17:b4:c8:73:d2:be:d8:85:19:29:40:aa:d6:70:3c: d8:d9:e3:21:57:ce:b7:c7:16:e2:58:f2:57:71:1c:25:c5:90: 39:ad:e3:cf:32:fb:27:4b:dc:74:3c:ec:dd:38:49:c2:45:c2: f9:da:ad:3e:a7:9e:f5:b9:52:2f:03:e3:0d:fa:61:b0:bf:36: ce:c9:7d:75:6e:1b:49:64:8b:98:1f:c9:43:d5:53:f6:4c:c3: c2:19:6f:e8:7a:c5:74:0a:a1:d3:46:95:97:e6:6f:c9:b4:6f: 4f:ba:c9:78:f7:ea:c0:cc:04:87:a3:64:60:28:85:01:9c:14: 93:92:cc:65:0d:c4:12:d4:d0:b4:ff:17:a7:69:b1:1a:b1:a7: 7c:46:dd:a1:0a:f9:ee:92:c3:f2:4c:57:2e:8c:fc:a0:dd:40: 5d:0c:e3:ff -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgIDALcPMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MTkxOFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q5ODYtZTkzZjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOa3zPVxPkbm8+FJnjObbYpTiN+mj10Nus0O+6I6ZeyRBvpo+gju8rAJY/wb fhLnpi0Kinhu+ryDlkE0NEBma0l1sV2E6vQ+dJqu6KvrISsPh29erIwCa+vc7JdM QTiZRl5ie9uLfXX7QuonX8lgSuxwVbgvtkfJHPukZtmpG2Ds4J2+6x6X+IaJH6Dt x0YTihZVGmUul+LiC9D4VynND7DecTabJlKCkJS5+x3Q1b9oe79JOdLj6gvCTpuo WfkjzmRWsiMP4KuysaUGNUUHrJrr1UM0n1ipLUKB21NI8PlLPaCXbrJALxTtbBuK TvC5GaHl5P0Q71mzt0Znh+3+xi8CAwEAAaOCArAwggKsMB0GA1UdDgQWBBTEedsQ CZbsjaK/EInV+qV8vrtvJTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0VDMjUzNUFB Q0YxQjExRUY4NDA2NzE2N0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDoGCCsGAQUFBwEHAQH/ BCswKTAYBAIAATASAwQBZ6EKAwQBZ6suAwQCZ8vQMA0EAgACMAcDBQAkALVgMA0G CSqGSIb3DQEBCwUAA4IBAQAGd/iI51tJTB8N1Jqyh4IEnj8LYeIBj2otA0iAfYfB b6x3OoWLcucOzYwathqzPJeDjIzqWtjCyIiawXCq7VlPPDIt6S2nHmvmJSjW96Av kp307migjIjOW1mJkkAXtMhz0r7YhRkpQKrWcDzY2eMhV863xxbiWPJXcRwlxZA5 rePPMvsnS9x0POzdOEnCRcL52q0+p571uVIvA+MN+mGwvzbOyX11bhtJZIuYH8lD 1VP2TMPCGW/oesV0CqHTRpWX5m/JtG9Pusl49+rAzASHo2RgKIUBnBSTksxlDcQS 1NC0/xenabEasad8Rt2hCvnuksPyTFcujPyg3UBdDOP/ -----END CERTIFICATE-----Generated at Wed May 14 19:42:17 2025 by rpki-client