$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/EDEBEC04C1CD11EFBD28AB27C4F9AE02.roa File: EDEBEC04C1CD11EFBD28AB27C4F9AE02.roa (raw, json) Hash identifier: m+K/pEWQtVUuT9zcvsxanhdCNFEI8Sgkn2KdOgVRvT0= Subject key identifier: 55:1E:2F:7A:27:47:7B:8A:20:B5:CB:1A:DD:BF:8A:50:AA:1D:6A:EE Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B402 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/EDEBEC04C1CD11EFBD28AB27C4F9AE02.roa Signing time: Thu 08 May 2025 16:07:25 +0000 ROA not before: Thu 08 May 2025 16:07:25 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136629 IP address blocks: 103.99.200.0/22 maxlen: 22 103.99.200.0/24 maxlen: 24 103.99.201.0/24 maxlen: 24 103.99.202.0/24 maxlen: 24 103.99.203.0/24 maxlen: 24 103.177.2.0/23 maxlen: 24 2406:ffc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:54:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46082 (0xb402) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:07:25 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd6bd-69d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a2:c8:cf:fa:b0:49:b3:8e:d8:a8:a2:48:a3: 51:ca:b1:18:13:1c:bc:51:a9:df:b1:6c:51:01:da: b9:0d:3f:c0:03:fd:ae:58:4c:42:75:99:54:d4:bc: 03:a1:23:20:df:50:9a:29:aa:89:87:5c:2b:18:bd: b3:4a:70:c3:a2:70:b3:63:c2:15:43:da:82:17:7e: 39:22:e7:b6:2d:6f:3c:d8:f9:63:01:e6:83:d4:49: ca:1c:b4:94:de:11:b9:7c:04:d0:7b:db:8a:31:30: 07:bf:40:83:2d:d8:8e:0f:94:f9:b3:b0:3e:87:e7: 31:cb:7a:b0:1b:d4:68:db:e2:80:7e:ce:04:69:65: d4:8a:2b:b6:5f:6e:38:85:0d:bf:c7:1b:ee:63:b3: 84:50:d2:ad:98:ac:d6:ea:43:9b:85:7e:4d:f5:a4: 9f:92:a4:88:41:05:60:3f:9f:b9:f5:ce:dd:bd:a3: bf:ed:4b:71:d9:3e:af:6e:8d:a5:ff:50:27:30:c1: b1:a7:c5:4e:ca:61:b0:73:90:6f:ee:07:c3:d8:e7: 21:58:03:1c:34:68:8d:4f:eb:be:ef:87:88:cb:51: af:87:3b:b9:ed:39:ea:a4:64:96:59:2d:b4:52:49: 55:92:d3:ae:fa:c7:90:8b:87:86:f5:b5:48:64:02: 2a:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:1E:2F:7A:27:47:7B:8A:20:B5:CB:1A:DD:BF:8A:50:AA:1D:6A:EE X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/EDEBEC04C1CD11EFBD28AB27C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.200.0/22 103.177.2.0/23 IPv6: 2406:ffc0::/32 Signature Algorithm: sha256WithRSAEncryption 89:5d:40:08:b0:62:47:a0:eb:84:ab:ad:91:6e:b0:84:3e:b9: 4e:3f:9d:d1:1f:9d:0c:77:97:8e:f1:5c:c2:7c:66:ed:3b:28: 0b:a3:f6:a9:a9:15:d8:21:1e:9b:88:09:1b:a5:d8:3c:b2:ba: bf:e4:0e:90:fa:b8:08:a5:0e:88:cf:cb:dd:28:ee:bc:2c:00: 03:75:53:dd:cd:bf:1f:08:b3:63:da:75:17:bb:9d:21:bc:4d: e0:33:eb:f1:f2:bd:8d:05:70:05:06:7a:f2:56:44:24:23:9d: 13:c8:26:ab:82:14:4c:60:0d:dc:37:9e:2b:89:02:65:57:9b: b4:5c:9d:ce:c0:ad:2d:95:8e:b9:aa:5b:91:38:10:47:ed:30: be:73:95:27:b3:45:89:23:92:15:65:70:ef:77:01:8a:76:9d: d2:be:9f:85:97:9f:cc:56:5a:93:20:7b:12:93:11:79:7f:c9: af:6a:5b:e0:1e:ee:4b:a6:82:d8:59:17:c1:c8:c4:55:86:ab: 2f:c7:7b:6e:23:b4:0c:8c:ba:f2:43:9f:e4:a3:ca:ef:6b:70: 86:12:60:41:47:52:3e:d2:ac:27:e0:62:7c:13:63:38:05:0d: 5a:78:24:55:a0:fb:e8:55:2b:8a:80:e1:c4:2f:c1:7b:71:7c: 15:fb:b1:d5 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgIDALQCMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MDcyNVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q2YmQtNjlkMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALWiyM/6sEmzjtiookijUcqxGBMcvFGp37FsUQHauQ0/wAP9rlhMQnWZVNS8 A6EjIN9QmimqiYdcKxi9s0pww6Jws2PCFUPaghd+OSLnti1vPNj5YwHmg9RJyhy0 lN4RuXwE0HvbijEwB79Agy3Yjg+U+bOwPofnMct6sBvUaNvigH7OBGll1Iortl9u OIUNv8cb7mOzhFDSrZis1upDm4V+TfWkn5KkiEEFYD+fufXO3b2jv+1Lcdk+r26N pf9QJzDBsafFTsphsHOQb+4Hw9jnIVgDHDRojU/rvu+HiMtRr4c7ue056qRkllkt tFJJVZLTrvrHkIuHhvW1SGQCKlUCAwEAAaOCAqowggKmMB0GA1UdDgQWBBRVHi96 J0d7iiC1yxrdv4pQqh1q7jAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0VERUJFQzA0 QzFDRDExRUZCRDI4QUIyN0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDQGCCsGAQUFBwEHAQH/ BCUwIzASBAIAATAMAwQCZ2PIAwQBZ7ECMA0EAgACMAcDBQAkBv/AMA0GCSqGSIb3 DQEBCwUAA4IBAQCJXUAIsGJHoOuEq62RbrCEPrlOP53RH50Md5eO8VzCfGbtOygL o/apqRXYIR6biAkbpdg8srq/5A6Q+rgIpQ6Iz8vdKO68LAADdVPdzb8fCLNj2nUX u50hvE3gM+vx8r2NBXAFBnryVkQkI50TyCarghRMYA3cN54riQJlV5u0XJ3OwK0t lY65qluROBBH7TC+c5Uns0WJI5IVZXDvdwGKdp3Svp+Fl5/MVlqTIHsSkxF5f8mv alvgHu5LpoLYWRfByMRVhqsvx3tuI7QMjLryQ5/ko8rva3CGEmBBR1I+0qwn4GJ8 E2M4BQ1aeCRVoPvoVSuKgOHEL8F7cXwV+7HV -----END CERTIFICATE-----Generated at Tue May 13 01:08:32 2025 by rpki-client