$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F5CDB600F5BC11EF8965AD38C4F9AE02.roa File: F5CDB600F5BC11EF8965AD38C4F9AE02.roa (raw, json) Hash identifier: MnIyNebkNkb3Tbh/eRafGP/y0jbHIe0tnBYqVNIti6c= Subject key identifier: 55:87:C3:94:AD:05:4E:02:90:22:26:70:66:69:4F:A7:DB:62:7A:C0 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B586 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F5CDB600F5BC11EF8965AD38C4F9AE02.roa Signing time: Thu 08 May 2025 16:13:21 +0000 ROA not before: Thu 08 May 2025 16:13:21 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 139517 IP address blocks: 103.143.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 08:51:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46470 (0xb586) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:13:21 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd820-7250 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:6e:18:77:91:39:d1:35:69:59:da:87:4c:00: 07:5e:94:5b:c8:38:56:97:ee:28:5d:31:5c:e3:a3: ef:2a:b5:b5:49:6d:b6:b5:14:3c:d5:54:9d:30:cc: 80:2d:f1:61:bf:68:0c:3e:64:33:e0:d4:31:c9:2e: f6:f1:d0:87:69:54:82:b0:eb:7b:3a:4c:18:cc:27: 55:7d:f7:ca:92:e2:e4:90:90:3b:1c:ad:9f:ce:63: 07:a7:9f:2d:d7:84:0c:9c:02:71:dd:b9:cf:74:42: 46:a8:7c:0b:07:a0:7a:87:e9:3a:09:f4:80:42:cd: 7f:4e:e5:50:08:15:99:ea:d3:72:b4:7a:a6:48:b4: 05:23:86:a6:aa:5b:cf:59:cc:5f:1a:57:67:03:a8: 33:5d:36:10:c6:6e:98:9d:59:b1:02:a4:01:cb:ad: 5e:98:81:67:5b:0e:6a:fa:76:4c:c8:ae:5e:95:7f: 6b:04:d8:8c:d1:ce:cc:ca:41:22:76:8f:44:05:6c: d1:16:17:54:05:de:79:9e:2d:31:9b:5f:7b:0d:ea: 4b:7b:88:04:6e:bb:b8:57:57:32:70:95:da:a8:f7: 80:b6:10:31:8d:69:23:6a:a5:58:b3:76:29:b4:46: f3:e9:97:4b:78:ba:6d:b1:fa:31:15:93:49:bb:d2: c7:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:87:C3:94:AD:05:4E:02:90:22:26:70:66:69:4F:A7:DB:62:7A:C0 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/F5CDB600F5BC11EF8965AD38C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.143.109.0/24 Signature Algorithm: sha256WithRSAEncryption 01:5b:0d:95:64:cb:6f:ae:9e:a2:24:70:bc:56:38:14:e4:b7: 2a:80:fd:5e:a8:30:ed:a2:15:6e:80:b4:27:92:0a:2c:8d:2c: 0e:98:36:53:3d:7d:21:62:c5:8b:4c:25:fe:c5:65:3a:64:c9: 11:62:58:42:0a:15:4e:90:84:ae:65:86:2d:32:3b:a5:03:d3: 01:f0:e3:fe:66:3e:84:1f:46:0b:d6:c5:53:14:83:ea:45:a4: 20:d7:35:a5:94:e2:92:18:69:2f:d1:82:08:8b:df:12:a7:41: 5c:7e:4b:bf:8b:d3:3c:44:44:90:b3:66:b0:cb:e3:0f:76:69: 36:c7:ff:14:c5:d2:53:5e:08:9e:57:0a:09:e5:87:1f:4e:22: eb:ab:c3:d5:8b:8b:43:1e:6d:26:a6:95:0d:b5:88:54:35:68: d2:ec:d2:7a:68:d3:c2:47:2f:dc:cc:05:a9:7d:80:fe:8b:28: 01:ac:d2:b4:3b:12:a8:34:f9:f0:26:2a:c6:07:54:ae:c4:42: 1c:31:51:39:6c:c6:6d:b5:7e:82:44:3c:32:7d:b8:8b:72:88: 4a:ee:ab:f1:2d:ed:5e:d5:02:85:96:e7:74:11:48:e7:cf:6b: 20:cf:ba:fe:8a:5b:fc:ec:c0:21:f6:bf:f0:05:7f:c6:11:c4: 32:25:61:66 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDALWGMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MTMyMVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q4MjAtNzI1MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKBuGHeROdE1aVnah0wAB16UW8g4VpfuKF0xXOOj7yq1tUlttrUUPNVUnTDM gC3xYb9oDD5kM+DUMcku9vHQh2lUgrDrezpMGMwnVX33ypLi5JCQOxytn85jB6ef LdeEDJwCcd25z3RCRqh8CwegeofpOgn0gELNf07lUAgVmerTcrR6pki0BSOGpqpb z1nMXxpXZwOoM102EMZumJ1ZsQKkAcutXpiBZ1sOavp2TMiuXpV/awTYjNHOzMpB InaPRAVs0RYXVAXeeZ4tMZtfew3qS3uIBG67uFdXMnCV2qj3gLYQMY1pI2qlWLN2 KbRG8+mXS3i6bbH6MRWTSbvSx5cCAwEAAaOCApUwggKRMB0GA1UdDgQWBBRVh8OU rQVOApAiJnBmaU+n22J6wDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0Y1Q0RCNjAw RjVCQzExRUY4OTY1QUQzOEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQAZ49tMA0GCSqGSIb3DQEBCwUAA4IBAQABWw2VZMtvrp6i JHC8VjgU5LcqgP1eqDDtohVugLQnkgosjSwOmDZTPX0hYsWLTCX+xWU6ZMkRYlhC ChVOkISuZYYtMjulA9MB8OP+Zj6EH0YL1sVTFIPqRaQg1zWllOKSGGkv0YIIi98S p0Fcfku/i9M8RESQs2awy+MPdmk2x/8UxdJTXgieVwoJ5YcfTiLrq8PVi4tDHm0m ppUNtYhUNWjS7NJ6aNPCRy/czAWpfYD+iygBrNK0OxKoNPnwJirGB1SuxEIcMVE5 bMZttX6CRDwyfbiLcohK7qvxLe1e1QKFlud0EUjnz2sgz7r+ilv87MAh9r/wBX/G EcQyJWFm -----END CERTIFICATE-----Generated at Tue May 13 12:39:27 2025 by rpki-client