$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FB50BD8E453311ED805FAB4CC4F9AE02.roa File: FB50BD8E453311ED805FAB4CC4F9AE02.roa (raw, json) Hash identifier: 6zvjKtBdMEAG/lNfA/sw5YkSgBq4CuJwBBNP8WmfR7Q= Subject key identifier: 46:17:7C:63:F2:71:F2:84:35:DD:5C:86:25:00:6A:49:0A:9B:8B:4B Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B3F4 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FB50BD8E453311ED805FAB4CC4F9AE02.roa Signing time: Thu 08 May 2025 16:07:12 +0000 ROA not before: Thu 08 May 2025 16:07:12 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136366 IP address blocks: 103.89.252.0/23 maxlen: 24 103.89.254.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 11:04:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46068 (0xb3f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:07:12 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd6b0-dc53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:74:38:0b:41:ae:12:76:88:38:bc:26:fe:22: a6:c3:ff:ae:63:4c:05:96:7c:14:c7:d3:d6:6f:2a: 3b:7e:d6:d9:04:0c:fc:5d:41:48:06:45:9f:fb:5b: 6d:68:84:ab:f0:14:4e:20:be:d7:3f:1c:25:25:70: 70:79:94:17:07:0a:b2:58:06:a2:25:7a:05:67:4e: d5:2d:fb:94:62:86:26:bf:ef:29:86:bf:72:75:ef: 73:1c:3a:8e:68:61:38:17:a0:69:a0:b6:74:77:6c: ed:1b:69:18:c2:c1:20:41:b5:6b:f4:03:57:26:97: bd:a5:24:b2:a3:65:c0:a2:82:de:91:80:b1:03:44: 6e:a0:8a:84:68:7c:d5:0e:02:60:17:10:15:db:39: 78:09:04:1b:ea:49:00:c4:dd:bd:16:2b:95:b2:4c: 0d:ff:5d:0c:94:f6:de:c6:d0:34:91:a7:67:d9:3c: ed:84:90:69:a0:af:37:8f:10:e7:c4:7f:96:68:b0: 5b:c5:2f:3e:97:af:d6:a6:e2:cf:26:b2:35:90:7e: c0:2c:f2:70:db:fe:82:ba:98:41:76:67:e4:41:d1: 1a:2b:f6:20:fa:7b:b3:b9:9e:1f:a8:c6:04:4d:34: 30:b5:d5:9e:26:b5:08:de:7c:b3:1b:7a:15:8c:ef: 2b:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:17:7C:63:F2:71:F2:84:35:DD:5C:86:25:00:6A:49:0A:9B:8B:4B X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FB50BD8E453311ED805FAB4CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.89.252.0/22 Signature Algorithm: sha256WithRSAEncryption 71:bb:a6:4f:2c:90:33:7b:71:7e:2c:9a:40:10:f7:f5:55:4d: c5:e1:9a:01:01:40:32:34:45:14:a5:64:60:11:a2:b6:1e:c9: bd:8c:f8:84:39:37:fd:22:21:80:22:5d:1a:64:80:a9:7d:51: a3:a1:ce:5f:a9:98:b5:8d:9b:cc:2b:54:36:ee:a7:42:0d:68: a2:ff:27:d1:61:12:bf:7a:75:6f:21:66:30:11:bc:07:5d:62: ae:20:56:11:88:79:91:6a:b1:28:3e:ea:b5:2b:af:95:c3:c0: e1:30:61:65:74:2e:3a:af:96:e9:c5:2f:65:4c:5d:32:1f:b2: 3e:38:1b:c4:ec:70:7d:7e:47:64:cb:2d:1b:de:77:8b:e6:85: 89:c6:5e:96:66:45:92:9f:5f:62:27:31:a2:70:69:ef:d8:6c: ef:ab:2c:7c:73:69:07:fa:55:07:0f:16:c1:48:92:88:20:43: d4:df:10:3c:85:4e:90:78:19:be:73:80:97:cd:1f:f3:a7:b8: ab:2f:fd:10:a3:20:1c:e2:bf:8a:45:19:b1:23:c6:6c:6d:35: bd:38:a1:93:eb:19:97:57:77:a5:8e:cd:c2:90:0f:3f:5a:bf: 5b:82:19:24:c1:97:ff:c5:b6:26:f2:51:b7:d6:aa:3e:fd:41: 51:91:43:68 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDALP0MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MDcxMloXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q2YjAtZGM1MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMB0OAtBrhJ2iDi8Jv4ipsP/rmNMBZZ8FMfT1m8qO37W2QQM/F1BSAZFn/tb bWiEq/AUTiC+1z8cJSVwcHmUFwcKslgGoiV6BWdO1S37lGKGJr/vKYa/cnXvcxw6 jmhhOBegaaC2dHds7RtpGMLBIEG1a/QDVyaXvaUksqNlwKKC3pGAsQNEbqCKhGh8 1Q4CYBcQFds5eAkEG+pJAMTdvRYrlbJMDf9dDJT23sbQNJGnZ9k87YSQaaCvN48Q 58R/lmiwW8UvPpev1qbizyayNZB+wCzycNv+grqYQXZn5EHRGiv2IPp7s7meH6jG BE00MLXVnia1CN58sxt6FYzvK4ECAwEAAaOCApUwggKRMB0GA1UdDgQWBBRGF3xj 8nHyhDXdXIYlAGpJCpuLSzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0ZCNTBCRDhF NDUzMzExRUQ4MDVGQUI0Q0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQCZ1n8MA0GCSqGSIb3DQEBCwUAA4IBAQBxu6ZPLJAze3F+ LJpAEPf1VU3F4ZoBAUAyNEUUpWRgEaK2Hsm9jPiEOTf9IiGAIl0aZICpfVGjoc5f qZi1jZvMK1Q27qdCDWii/yfRYRK/enVvIWYwEbwHXWKuIFYRiHmRarEoPuq1K6+V w8DhMGFldC46r5bpxS9lTF0yH7I+OBvE7HB9fkdkyy0b3neL5oWJxl6WZkWSn19i JzGicGnv2Gzvqyx8c2kH+lUHDxbBSJKIIEPU3xA8hU6QeBm+c4CXzR/zp7irL/0Q oyAc4r+KRRmxI8ZsbTW9OKGT6xmXV3eljs3CkA8/Wr9bghkkwZf/xbYm8lG31qo+ /UFRkUNo -----END CERTIFICATE-----Generated at Thu May 15 13:19:05 2025 by rpki-client