$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FEFFE8722EE411EBB3A77328C4F9AE02.roa File: FEFFE8722EE411EBB3A77328C4F9AE02.roa (raw, json) Hash identifier: yEOvcLGpJo80Zl45N2/n/TytvR/G4rST1bIliK/S4vI= Subject key identifier: C0:9B:81:0B:FB:FD:AA:36:BF:74:7C:BF:49:8D:50:88:C6:D6:F6:99 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B593 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FEFFE8722EE411EBB3A77328C4F9AE02.roa Signing time: Thu 08 May 2025 16:13:31 +0000 ROA not before: Thu 08 May 2025 16:13:31 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 139533 IP address blocks: 103.147.98.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 11:04:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46483 (0xb593) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:13:31 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd82b-2908 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:fe:01:a5:0e:ed:1c:d5:e8:fd:b6:cd:ea:ea: aa:df:f2:94:9c:56:26:bb:3d:82:e5:8d:94:83:a2: 33:0f:ce:28:7f:d6:77:ca:62:b9:f7:09:f9:ff:ee: 3f:d9:03:41:5e:62:62:de:4c:1e:57:3f:06:f7:31: 5b:1d:8d:1e:4d:d6:f3:da:a7:3f:06:5e:5c:df:28: 83:2d:eb:83:37:0a:b1:26:86:82:18:f8:9a:a0:db: 1a:8c:81:ed:60:59:80:85:b2:f9:94:13:3c:98:0a: 87:3e:e2:d4:bf:2b:4a:42:70:b5:96:8b:f8:42:12: 40:21:b2:ff:a9:3b:ab:d0:c3:57:7e:9b:70:23:c3: 36:09:8e:ef:37:84:70:85:56:79:22:83:af:45:8a: 2c:88:6d:c7:06:6d:5d:96:02:f4:46:b4:1c:4f:c9: 0d:b9:8a:ed:9e:b2:03:85:c2:1f:08:2a:1c:bf:fb: e9:78:6d:6c:0c:a7:97:2d:2b:0d:aa:25:77:ad:7a: fa:64:85:57:00:a6:a5:a4:c1:45:d2:53:8d:1e:0a: 9a:4d:17:d0:e3:59:13:3f:a2:af:65:93:64:04:fe: aa:c3:8a:f5:e6:3b:c3:71:96:2e:e1:57:96:f6:87: 0d:a1:78:84:4a:e2:08:8b:11:8e:55:af:54:6c:21: 32:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:9B:81:0B:FB:FD:AA:36:BF:74:7C:BF:49:8D:50:88:C6:D6:F6:99 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/FEFFE8722EE411EBB3A77328C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.147.98.0/23 Signature Algorithm: sha256WithRSAEncryption 9a:7d:43:4b:d5:8d:08:0e:22:a7:8e:de:48:c9:41:d2:bf:53: ab:5e:b9:c7:a9:1e:8b:83:fb:62:e6:a9:2d:7c:b2:50:52:1e: 11:ab:e9:a9:36:6b:0a:d5:92:4c:06:0f:55:2a:35:c0:b8:e9: 92:cc:3a:76:80:d7:2b:d1:4d:47:68:0b:13:35:8c:86:45:31: 57:2b:1b:45:3d:e5:0e:a6:f5:a8:25:77:33:af:19:a0:90:26: e2:a1:c8:d6:9a:8c:6f:48:3a:65:22:fb:57:3c:82:61:98:79: 19:01:bd:e3:a0:05:7e:17:15:41:1d:2f:ab:83:41:6e:d2:93: 8e:89:89:ac:56:ab:be:f8:19:76:95:f0:93:cf:8b:16:fc:de: 3b:ab:c8:fa:53:7e:25:c6:3f:e9:5d:7f:72:31:00:04:da:fd: 45:13:47:23:3e:d3:c9:3d:c9:f7:f5:1b:31:82:07:42:fa:55: 4b:cf:07:2a:3d:18:c1:78:39:d3:43:d6:24:1b:cc:55:23:dc: 00:d5:73:51:05:6c:83:36:a6:1d:1d:6d:b0:87:51:d2:47:10: aa:66:e2:86:c4:c1:b6:a0:8e:a1:39:bb:4d:43:4c:97:3f:65: f5:e0:f4:af:4f:ff:2d:8e:fc:6c:36:a2:9c:ec:79:5d:ad:90: 22:08:03:dd -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDALWTMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MTMzMVoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q4MmItMjkwODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOn+AaUO7RzV6P22zerqqt/ylJxWJrs9guWNlIOiMw/OKH/Wd8piufcJ+f/u P9kDQV5iYt5MHlc/BvcxWx2NHk3W89qnPwZeXN8ogy3rgzcKsSaGghj4mqDbGoyB 7WBZgIWy+ZQTPJgKhz7i1L8rSkJwtZaL+EISQCGy/6k7q9DDV36bcCPDNgmO7zeE cIVWeSKDr0WKLIhtxwZtXZYC9Ea0HE/JDbmK7Z6yA4XCHwgqHL/76XhtbAynly0r Daold616+mSFVwCmpaTBRdJTjR4Kmk0X0ONZEz+ir2WTZAT+qsOK9eY7w3GWLuFX lvaHDaF4hEriCIsRjlWvVGwhMjMCAwEAAaOCApUwggKRMB0GA1UdDgQWBBTAm4EL +/2qNr90fL9JjVCIxtb2mTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0ZFRkZFODcy MkVFNDExRUJCM0E3NzMyOEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQBZ5NiMA0GCSqGSIb3DQEBCwUAA4IBAQCafUNL1Y0IDiKn jt5IyUHSv1OrXrnHqR6Lg/ti5qktfLJQUh4Rq+mpNmsK1ZJMBg9VKjXAuOmSzDp2 gNcr0U1HaAsTNYyGRTFXKxtFPeUOpvWoJXczrxmgkCbiocjWmoxvSDplIvtXPIJh mHkZAb3joAV+FxVBHS+rg0Fu0pOOiYmsVqu++Bl2lfCTz4sW/N47q8j6U34lxj/p XX9yMQAE2v1FE0cjPtPJPcn39RsxggdC+lVLzwcqPRjBeDnTQ9YkG8xVI9wA1XNR BWyDNqYdHW2wh1HSRxCqZuKGxMG2oI6hObtNQ0yXP2X14PSvT/8tjvxsNqKc7Hld rZAiCAPd -----END CERTIFICATE-----Generated at Thu May 15 18:18:30 2025 by rpki-client