$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/379568CE112611F096F9CF4CC4F9AE02.roa File: 379568CE112611F096F9CF4CC4F9AE02.roa (raw, json) Hash identifier: 1vbA4j5L2nt04QtRImDIYj/evPkBiVdzlb6qiPn71LQ= Subject key identifier: FA:88:59:16:FC:03:60:4D:61:11:BE:DC:50:A3:C1:C7:D0:44:1C:2B Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: ADA7 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/379568CE112611F096F9CF4CC4F9AE02.roa Signing time: Fri 04 Apr 2025 07:42:56 +0000 ROA not before: Fri 04 Apr 2025 07:42:56 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 153759 IP address blocks: 103.83.70.0/24 maxlen: 24 2400:d180:74::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44455 (0xada7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Apr 4 07:42:56 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=67ef8d80-06fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:ee:b3:44:51:c1:75:13:b8:68:16:38:26:3a: 0b:a3:8c:46:91:c6:c5:48:9a:0a:eb:4e:38:36:9c: 0c:6f:67:ed:b2:b4:e6:d6:09:68:6a:ff:2f:0d:2f: 97:0d:c8:d0:44:20:4a:7b:b2:2b:a9:65:ed:17:c4: 7d:f2:57:b8:55:3d:53:d8:0e:2d:d5:75:be:ba:11: 95:30:f4:af:71:16:b1:50:98:2c:d2:bf:f3:69:67: d4:d7:70:a5:6e:c2:18:fe:f7:5c:4c:1d:6d:c2:67: b3:54:14:dd:6b:e4:7d:f1:ab:7a:a4:c8:ec:49:c1: 66:b8:13:31:1f:db:ab:47:fb:e5:bb:7e:db:02:54: 65:bb:1b:a4:ff:75:46:6e:2d:f3:d1:96:7f:15:3f: e7:70:b5:60:59:04:38:f2:60:16:98:6d:14:65:49: a7:09:15:ef:2c:6c:7f:09:86:cb:89:da:07:30:f3: b8:9d:72:e6:e9:60:f7:67:27:2a:8e:c4:22:47:a5: 8c:bf:a2:d3:15:4a:67:c8:10:5c:fb:07:6b:53:2c: 6b:b0:be:c1:4c:f1:ca:fe:71:8c:57:9b:06:7d:69: dc:36:1c:d4:27:5d:3e:5f:ca:1c:4c:13:ab:81:b0: 5d:c9:cc:f8:e3:ae:d3:be:f4:a7:ea:4d:96:fe:6c: 1f:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:88:59:16:FC:03:60:4D:61:11:BE:DC:50:A3:C1:C7:D0:44:1C:2B X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/379568CE112611F096F9CF4CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.83.70.0/24 IPv6: 2400:d180:74::/64 Signature Algorithm: sha256WithRSAEncryption 27:9f:e4:d3:d3:a8:65:47:62:22:32:63:9a:f5:c4:73:c0:7b: 76:75:40:e9:77:8f:f6:25:2a:ec:64:c3:2a:59:2f:e5:76:69: 16:a8:fb:8d:35:19:9b:44:f9:0f:07:51:62:3d:11:10:61:1e: 04:91:14:02:98:d2:aa:b9:5a:b8:bd:83:70:a5:ff:cc:b8:ad: 06:7b:fe:94:fb:60:af:98:ae:36:d8:e2:37:db:6b:da:d8:53: 73:6d:c4:bc:b8:89:b6:d4:d7:b6:99:23:76:c2:7c:60:0f:44: f3:b2:9a:b2:45:57:08:24:cf:02:97:70:5d:1b:3d:aa:3d:d1: 2a:83:96:e1:64:7d:de:2b:a9:2e:be:46:e8:87:89:a5:ca:49: 5b:ec:a7:7a:35:13:c4:a5:b4:af:30:a1:ca:42:f1:f4:fb:9e: 26:80:27:67:eb:ea:b5:b4:31:01:d3:d9:15:d2:0c:b5:00:f4: 6f:ef:c7:bf:6e:3b:29:e7:b7:68:26:cd:8e:28:41:bb:05:1e: d7:77:39:7e:2c:a5:ae:89:e9:d8:ce:b4:77:38:70:cf:a3:15: b0:b2:c0:56:73:a9:fb:f9:11:90:7c:91:a3:00:33:d1:90:2b: a1:9f:52:35:bd:f6:9d:1e:51:30:8e:b0:b6:ce:5d:75:0b:b4: 45:09:56:b4 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgIDAK2nMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDQwNDA3NDI1NloXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjdlZjhkODAtMDZmYzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJnus0RRwXUTuGgWOCY6C6OMRpHGxUiaCutOODacDG9n7bK05tYJaGr/Lw0v lw3I0EQgSnuyK6ll7RfEffJXuFU9U9gOLdV1vroRlTD0r3EWsVCYLNK/82ln1Ndw pW7CGP73XEwdbcJns1QU3WvkffGreqTI7EnBZrgTMR/bq0f75bt+2wJUZbsbpP91 Rm4t89GWfxU/53C1YFkEOPJgFphtFGVJpwkV7yxsfwmGy4naBzDzuJ1y5ulg92cn Ko7EIkeljL+i0xVKZ8gQXPsHa1Msa7C+wUzxyv5xjFebBn1p3DYc1CddPl/KHEwT q4GwXcnM+OOu0770p+pNlv5sH6kCAwEAAaOCAqgwggKkMB0GA1UdDgQWBBT6iFkW /ANgTWERvtxQo8HH0EQcKzAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzM3OTU2OENF MTEyNjExRjA5NkY5Q0Y0Q0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDIGCCsGAQUFBwEHAQH/ BCMwITAMBAIAATAGAwQAZ1NGMBEEAgACMAsDCQAkANGAAHQAADANBgkqhkiG9w0B AQsFAAOCAQEAJ5/k09OoZUdiIjJjmvXEc8B7dnVA6XeP9iUq7GTDKlkv5XZpFqj7 jTUZm0T5DwdRYj0REGEeBJEUApjSqrlauL2DcKX/zLitBnv+lPtgr5iuNtjiN9tr 2thTc23EvLiJttTXtpkjdsJ8YA9E87KaskVXCCTPApdwXRs9qj3RKoOW4WR93iup Lr5G6IeJpcpJW+ynejUTxKW0rzChykLx9PueJoAnZ+vqtbQxAdPZFdIMtQD0b+/H v247Kee3aCbNjihBuwUe13c5fiylronp2M60dzhwz6MVsLLAVnOp+/kRkHyRowAz 0ZAroZ9SNb32nR5RMI6wts5ddQu0RQlWtA== -----END CERTIFICATE-----Generated at Sat Apr 26 13:36:37 2025 by rpki-client