$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F316CC261CE111EF99AB3C7AC4F9AE02.roa File: F316CC261CE111EF99AB3C7AC4F9AE02.roa (raw, json) Hash identifier: 9hSWqtZBr98jxle6m+UQ6U9q85X7/m6/RXkw2sqFt0E= Subject key identifier: D4:51:C6:B0:A1:57:25:8D:E1:BD:89:7A:13:8D:61:E2:CE:B9:61:E0 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B33F Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F316CC261CE111EF99AB3C7AC4F9AE02.roa Signing time: Thu 08 May 2025 16:04:22 +0000 ROA not before: Thu 08 May 2025 16:04:22 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 135714 IP address blocks: 103.141.168.0/23 maxlen: 24 2001:df0:58c0::/48 maxlen: 48 2407:45c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 18:54:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45887 (0xb33f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:04:22 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd605-20b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:4f:7d:45:1b:ab:c3:c6:cd:92:d5:9a:7a:4d: 46:9c:f5:5e:87:54:b2:cb:39:a4:ee:9e:54:cf:52: 4f:4c:59:76:bc:d3:33:99:2b:77:14:ac:db:db:b7: d5:60:13:55:ec:de:c2:f9:bd:86:d4:b9:82:eb:3f: 17:7e:06:b4:6a:e6:8b:7e:3e:9d:d2:0d:d5:0d:49: ef:88:a0:d6:c5:42:c8:26:25:7a:c8:5c:de:8f:e3: 68:e8:fb:fc:4b:2c:c5:02:05:dc:a2:a9:46:cd:74: a5:66:71:cd:25:21:e7:f5:eb:64:9d:62:44:cb:7d: 22:a7:2c:38:26:56:1e:0e:07:5b:ad:a0:41:c5:41: 4a:24:03:6e:2f:da:a5:09:f6:67:df:ce:a6:31:27: 0d:eb:4e:c0:15:39:b4:23:84:4b:7b:b5:d8:4a:ea: 41:39:ad:00:8c:30:7c:81:65:4a:06:fd:2d:01:2c: 56:ea:3e:49:d1:03:d2:81:86:fe:7f:ff:f1:82:74: 6c:92:bf:be:45:d7:18:7b:8a:70:f6:b5:cd:bf:05: af:c8:d3:23:2b:15:30:32:27:e9:af:88:e2:93:de: f1:64:70:02:aa:fd:57:21:2c:f5:c7:fb:98:cf:28: 75:56:94:20:cc:e7:ef:30:0c:54:b5:3c:53:2f:63: dd:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:51:C6:B0:A1:57:25:8D:E1:BD:89:7A:13:8D:61:E2:CE:B9:61:E0 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F316CC261CE111EF99AB3C7AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.141.168.0/23 IPv6: 2001:df0:58c0::/48 2407:45c0::/32 Signature Algorithm: sha256WithRSAEncryption 3d:be:f8:d5:04:9c:21:f9:86:c1:71:b7:95:ac:19:32:80:f1: 06:ef:1a:b6:3a:5b:f8:17:65:e7:ff:12:d3:0a:a3:fb:68:31: 06:fa:34:a9:9f:a6:8f:c7:4b:7a:b7:bf:dc:bf:01:9d:50:2e: 52:3d:d3:bc:c2:48:29:96:3b:28:71:4e:6a:17:60:f7:f7:62: f5:fa:4b:65:26:35:1f:3b:70:75:dd:5a:0b:3f:19:8f:94:73: 57:f0:20:ea:0b:85:43:08:32:f5:b5:ec:92:80:6a:8d:b9:30: cd:10:40:34:80:31:36:85:f4:6c:c8:e6:f1:45:66:ac:78:4f: 60:66:88:c8:c4:2a:0e:16:9c:cb:fd:2f:7e:43:73:90:28:4b: f1:b6:b9:54:ae:a6:d0:00:23:78:50:26:59:c1:72:73:91:e0: cd:b3:30:e3:d5:a9:16:43:cc:87:85:c1:f9:8b:fc:91:96:8a: 3e:62:69:47:84:c7:f0:a7:c3:c5:54:ac:3f:72:25:a8:9a:d9: 64:e0:bf:04:22:48:f4:e9:c9:2a:cf:61:18:26:10:3c:aa:8b: 13:6f:4d:a3:ee:11:9c:f9:89:ad:27:fa:8a:0f:8d:31:0e:c5: fe:c3:10:32:9c:d7:35:56:d3:e5:96:8f:d8:9d:32:b8:5c:a7: da:a2:4a:ed -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgIDALM/MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MDQyMloXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q2MDUtMjBiNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANpPfUUbq8PGzZLVmnpNRpz1XodUsss5pO6eVM9ST0xZdrzTM5krdxSs29u3 1WATVezewvm9htS5gus/F34GtGrmi34+ndIN1Q1J74ig1sVCyCYleshc3o/jaOj7 /EssxQIF3KKpRs10pWZxzSUh5/XrZJ1iRMt9IqcsOCZWHg4HW62gQcVBSiQDbi/a pQn2Z9/OpjEnDetOwBU5tCOES3u12ErqQTmtAIwwfIFlSgb9LQEsVuo+SdED0oGG /n//8YJ0bJK/vkXXGHuKcPa1zb8Fr8jTIysVMDIn6a+I4pPe8WRwAqr9VyEs9cf7 mM8odVaUIMzn7zAMVLU8Uy9j3RcCAwEAAaOCAq0wggKpMB0GA1UdDgQWBBTUUcaw oVcljeG9iXoTjWHizrlh4DAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0YzMTZDQzI2 MUNFMTExRUY5OUFCM0M3QUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDcGCCsGAQUFBwEHAQH/ BCgwJjAMBAIAATAGAwQBZ42oMBYEAgACMBADBwAgAQ3wWMADBQAkB0XAMA0GCSqG SIb3DQEBCwUAA4IBAQA9vvjVBJwh+YbBcbeVrBkygPEG7xq2Olv4F2Xn/xLTCqP7 aDEG+jSpn6aPx0t6t7/cvwGdUC5SPdO8wkgpljsocU5qF2D392L1+ktlJjUfO3B1 3VoLPxmPlHNX8CDqC4VDCDL1teySgGqNuTDNEEA0gDE2hfRsyObxRWaseE9gZojI xCoOFpzL/S9+Q3OQKEvxtrlUrqbQACN4UCZZwXJzkeDNszDj1akWQ8yHhcH5i/yR loo+YmlHhMfwp8PFVKw/ciWomtlk4L8EIkj06ckqz2EYJhA8qosTb02j7hGc+Ymt J/qKD40xDsX+wxAynNc1VtPllo/YnTK4XKfaokrt -----END CERTIFICATE-----Generated at Mon May 12 23:55:57 2025 by rpki-client