$ rpki-client -vvf rpki.apnic.net/member_repository/A91775D8/51C9F6AE705F11EB997BBB16C4F9AE02/18D9E13C5CE611EC80EC7E76C4F9AE02.roa File: 18D9E13C5CE611EC80EC7E76C4F9AE02.roa (raw, json) Hash identifier: FREW3BYIhAyr82gwSpG+aXABGrdd/q2DunYmdFOCRY4= Subject key identifier: 7A:C5:84:F6:65:32:26:D5:10:1F:62:D8:CC:67:EC:2F:83:F2:A5:F7 Certificate issuer: /CN=A91775D8/serialNumber=C439BCD74D64052BB203531C46049AD403588FC7 Certificate serial: 0681 Authority key identifier: C4:39:BC:D7:4D:64:05:2B:B2:03:53:1C:46:04:9A:D4:03:58:8F:C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xDm8101kBSuyA1McRgSa1ANYj8c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91775D8/51C9F6AE705F11EB997BBB16C4F9AE02/18D9E13C5CE611EC80EC7E76C4F9AE02.roa Signing time: Sun 06 Apr 2025 22:03:19 +0000 ROA not before: Sun 06 Apr 2025 22:03:19 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 138452 IP address blocks: 103.161.152.0/24 maxlen: 24 103.161.152.0/25 maxlen: 25 103.161.152.128/25 maxlen: 25 103.161.153.0/24 maxlen: 24 103.161.153.0/25 maxlen: 25 103.161.153.128/25 maxlen: 25 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91775D8/51C9F6AE705F11EB997BBB16C4F9AE02/xDm8101kBSuyA1McRgSa1ANYj8c.crl rsync://rpki.apnic.net/member_repository/A91775D8/51C9F6AE705F11EB997BBB16C4F9AE02/xDm8101kBSuyA1McRgSa1ANYj8c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xDm8101kBSuyA1McRgSa1ANYj8c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:05:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1665 (0x681) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91775D8, serialNumber=C439BCD74D64052BB203531C46049AD403588FC7 Validity Not Before: Apr 6 22:03:19 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67f2fa26-229c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:34:22:44:ee:45:50:57:96:f5:4d:24:a1:2d: 16:a6:8f:12:01:d6:48:5a:20:c6:9f:83:a6:da:41: 59:40:67:77:f8:51:c5:6c:0b:4b:8d:00:da:9a:59: 5d:9a:5a:31:5b:fe:92:9f:e5:a8:b1:90:3f:d9:a0: 02:7d:92:b4:fe:82:3b:1b:a2:0f:70:48:26:58:5e: af:4b:a4:77:79:09:e2:07:26:9c:5f:4d:58:5e:06: 87:b4:7c:36:dd:a6:74:36:3d:2d:6c:c1:90:07:b2: 7e:27:7d:0f:0b:ab:b6:a7:c7:55:43:d0:e7:54:79: 3d:76:5c:43:ad:c5:ca:d6:30:78:60:a9:72:00:b6: a8:4f:3a:19:17:80:d9:2d:40:8f:49:e7:bf:8a:26: bc:f3:5c:26:03:2c:a0:69:d2:18:99:25:d2:38:21: 37:70:92:91:36:c4:a7:c4:37:dc:cf:b3:58:53:f0: 28:cf:8d:34:ab:16:5b:52:da:9a:bd:dc:db:a1:2e: 61:e7:80:96:90:66:e9:47:71:ec:a0:77:99:18:b8: f5:40:52:e8:07:fe:48:de:e5:12:b5:71:23:81:4a: fc:12:12:42:53:07:8c:ed:c3:04:7a:c7:27:f8:2e: 97:3f:24:bf:03:20:9c:41:af:b8:4c:b2:fb:f5:80: 56:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:C5:84:F6:65:32:26:D5:10:1F:62:D8:CC:67:EC:2F:83:F2:A5:F7 X509v3 Authority Key Identifier: keyid:C4:39:BC:D7:4D:64:05:2B:B2:03:53:1C:46:04:9A:D4:03:58:8F:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91775D8/51C9F6AE705F11EB997BBB16C4F9AE02/xDm8101kBSuyA1McRgSa1ANYj8c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xDm8101kBSuyA1McRgSa1ANYj8c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91775D8/51C9F6AE705F11EB997BBB16C4F9AE02/18D9E13C5CE611EC80EC7E76C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.161.152.0/23 Signature Algorithm: sha256WithRSAEncryption c1:fa:10:47:f9:9c:10:f3:aa:5a:3e:1a:0a:1b:0e:dd:33:bb: f6:3e:2c:99:ea:80:52:d0:c3:e4:12:8d:bb:4d:51:e1:ed:7e: 17:bd:9a:b0:6a:14:a3:44:05:ce:27:4e:13:9c:27:9f:e3:9c: 5d:0b:09:9f:c3:63:1c:9f:c4:ae:ed:28:94:6f:fe:36:de:8b: e1:09:2a:1c:76:40:9e:cb:cf:76:17:8e:30:f0:b0:ba:9d:75: 52:ca:52:88:92:e4:55:66:c7:07:96:e3:47:56:f2:bd:43:a5: 57:38:23:42:16:75:aa:dd:38:3b:12:ff:23:59:20:2d:52:24: 2c:07:b5:1c:21:58:0e:70:2d:5b:40:eb:6e:8c:ad:2f:f2:18: 65:0c:0e:ce:84:36:a6:06:b4:6b:27:1f:04:9b:78:2a:f8:56: a7:e8:7b:51:0c:55:c7:52:7a:8d:93:bf:73:a7:18:44:f5:1f: 92:96:d5:3b:62:7d:9d:d2:e4:c6:6b:63:f8:6c:5d:f0:fe:82: 84:0a:47:0c:91:3c:d5:1a:24:17:d5:47:8a:60:db:b7:55:d7: e5:f8:1c:23:61:f7:b2:f4:33:31:ad:2f:ae:5a:de:7b:9a:70: 61:b2:3d:6d:72:41:12:29:02:88:28:15:3a:cc:57:d6:f6:72: 7b:3a:35:de -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc1RDgxMTAvBgNVBAUTKEM0MzlCQ0Q3NEQ2NDA1MkJCMjAzNTMxQzQ2MDQ5QUQ0 MDM1ODhGQzcwHhcNMjUwNDA2MjIwMzE5WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2YyZmEyNi0yMjljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyzQiRO5FUFeW9U0koS0Wpo8SAdZIWiDGn4Om2kFZQGd3+FHFbAtLjQDamlld mloxW/6Sn+WosZA/2aACfZK0/oI7G6IPcEgmWF6vS6R3eQniByacX01YXgaHtHw2 3aZ0Nj0tbMGQB7J+J30PC6u2p8dVQ9DnVHk9dlxDrcXK1jB4YKlyALaoTzoZF4DZ LUCPSee/iia881wmAyygadIYmSXSOCE3cJKRNsSnxDfcz7NYU/Aoz400qxZbUtqa vdzboS5h54CWkGbpR3HsoHeZGLj1QFLoB/5I3uUStXEjgUr8EhJCUweM7cMEescn +C6XPyS/AyCcQa+4TLL79YBWGwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHrFhPZl MibVEB9i2Mxn7C+D8qX3MB8GA1UdIwQYMBaAFMQ5vNdNZAUrsgNTHEYEmtQDWI/H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzVEOC81MUM5RjZBRTcw NUYxMUVCOTk3QkJCMTZDNEY5QUUwMi94RG04MTAxa0JTdXlBMU1jUmdTYTFBTllq OGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hEbTgxMDFrQlN1eUExTWNSZ1NhMUFOWWo4Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Nzc1RDgvNTFDOUY2QUU3MDVGMTFFQjk5N0JCQjE2QzRGOUFFMDIvMThEOUUxM0M1 Q0U2MTFFQzgwRUM3RTc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnoZgwDQYJKoZIhvcNAQELBQADggEBAMH6EEf5nBDzqlo+ GgobDt0zu/Y+LJnqgFLQw+QSjbtNUeHtfhe9mrBqFKNEBc4nThOcJ5/jnF0LCZ/D YxyfxK7tKJRv/jbei+EJKhx2QJ7Lz3YXjjDwsLqddVLKUoiS5FVmxweW40dW8r1D pVc4I0IWdardODsS/yNZIC1SJCwHtRwhWA5wLVtA626MrS/yGGUMDs6ENqYGtGsn HwSbeCr4Vqfoe1EMVcdSeo2Tv3OnGET1H5KW1TtifZ3S5MZrY/hsXfD+goQKRwyR PNUaJBfVR4pg27dV1+X4HCNh97L0MzGtL65a3nuacGGyPW1yQRIpAogoFTrMV9b2 cns6Nd4= -----END CERTIFICATE-----Generated at Sat Apr 26 05:45:16 2025 by rpki-client