$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/44A5FD101F4711F090F69656C4F9AE02.roa File: 44A5FD101F4711F090F69656C4F9AE02.roa (raw, json) Hash identifier: AN40Av6bdQtCO8S63kltee7p87finpvqkF0z62soxvM= Subject key identifier: C9:68:FB:80:D3:74:F1:74:9E:52:3E:6A:30:19:C9:C5:3B:70:BA:3E Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: AF30 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/44A5FD101F4711F090F69656C4F9AE02.roa Signing time: Tue 22 Apr 2025 06:59:00 +0000 ROA not before: Tue 22 Apr 2025 06:59:00 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 141014 IP address blocks: 103.175.186.0/23 maxlen: 24 103.244.224.0/23 maxlen: 24 2001:df2:c140::/48 maxlen: 48 2400:1ca0::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44848 (0xaf30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Apr 22 06:59:00 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=68073e34-58bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:3c:26:4d:81:c3:f7:e3:94:16:7a:86:2d:0b: 66:43:a1:cb:fb:c9:e2:28:b7:ee:a7:c7:30:17:7e: bf:c0:45:88:f3:81:9b:17:68:e3:31:e1:0e:07:5d: 37:5f:93:37:22:e6:c4:2b:e5:76:88:8c:d7:8b:d7: e8:8f:43:7d:37:65:40:86:df:42:db:09:e7:23:1d: 07:aa:e8:0b:f0:19:a0:23:18:bb:15:b0:ed:41:6b: f5:57:88:06:c9:f9:d9:26:09:f7:56:18:ba:17:5a: 33:f5:e9:d0:9d:b5:44:51:35:6e:22:5c:85:78:2b: 63:ca:b6:d2:43:ea:f4:b4:fd:73:fb:23:91:7a:09: 30:4d:e8:0b:2a:9c:99:fe:66:56:cc:cd:51:cb:d9: a3:d3:e7:2c:b4:50:c2:84:86:6e:59:aa:16:7e:dc: 4f:b1:2c:53:2f:6a:0b:5a:a1:7c:b0:79:fe:ee:89: 6d:c0:ac:4f:4f:ec:2f:93:5c:d2:fc:3d:8f:46:7e: d4:ae:15:6b:4b:24:8e:7c:c5:fc:58:18:f2:af:ed: 50:15:19:ed:3b:b7:1d:77:22:bb:76:68:9b:fe:d8: ef:19:b1:3b:54:69:11:55:e4:5f:df:98:7a:59:4c: 56:32:37:85:99:cc:f4:4a:0a:c6:20:f5:b6:f3:3f: 13:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:68:FB:80:D3:74:F1:74:9E:52:3E:6A:30:19:C9:C5:3B:70:BA:3E X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/44A5FD101F4711F090F69656C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.175.186.0/23 103.244.224.0/23 IPv6: 2001:df2:c140::/48 2400:1ca0::/32 Signature Algorithm: sha256WithRSAEncryption 98:4a:c5:d8:bb:bc:d3:8e:39:60:48:5f:b1:0f:78:86:ab:de: 18:77:8e:e2:3b:eb:ec:e4:19:52:cb:7a:7f:84:d2:a9:06:52: c2:e2:ea:44:2b:6a:fa:63:b8:93:25:a2:27:c7:31:e1:73:e6: d3:6f:cf:54:a5:1c:f3:48:57:f3:e0:5c:cc:79:fe:20:90:cd: 0e:3d:a2:e3:d0:b8:ff:27:36:92:4f:5b:f3:91:69:46:5d:ec: cf:60:18:6d:d4:93:9b:74:fa:6b:a9:ad:9c:06:50:df:f5:4d: 3d:f1:d7:87:93:9f:e1:d5:e1:21:fa:47:e5:9e:e0:39:dd:02: 73:de:be:33:37:62:3d:46:7c:6f:af:29:1c:0d:82:98:6f:5f: ee:1f:90:81:92:b0:1f:a7:5b:40:f4:a4:b2:7d:03:c6:17:7a: 3f:b5:3e:e4:c5:9c:ba:b6:1d:be:e9:6f:a9:31:69:ad:68:71: f4:1e:d8:aa:aa:5f:9a:a9:2e:ee:3e:90:49:25:b0:9c:49:97: c2:cc:05:87:6f:0e:15:40:98:ff:b1:61:93:cc:88:67:55:c1: 9f:2b:c2:3c:d8:ce:23:38:e9:e7:d7:df:73:79:29:cc:d5:71: cb:75:cf:76:61:32:87:81:7f:24:3a:13:88:dd:3e:dc:07:70: f4:eb:60:13 -----BEGIN CERTIFICATE----- MIIFkDCCBHigAwIBAgIDAK8wMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDQyMjA2NTkwMFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgwNzNlMzQtNThiZjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKM8Jk2Bw/fjlBZ6hi0LZkOhy/vJ4ii37qfHMBd+v8BFiPOBmxdo4zHhDgdd N1+TNyLmxCvldoiM14vX6I9DfTdlQIbfQtsJ5yMdB6roC/AZoCMYuxWw7UFr9VeI Bsn52SYJ91YYuhdaM/Xp0J21RFE1biJchXgrY8q20kPq9LT9c/sjkXoJME3oCyqc mf5mVszNUcvZo9PnLLRQwoSGblmqFn7cT7EsUy9qC1qhfLB5/u6JbcCsT0/sL5Nc 0vw9j0Z+1K4Va0skjnzF/FgY8q/tUBUZ7Tu3HXciu3Zom/7Y7xmxO1RpEVXkX9+Y ellMVjI3hZnM9EoKxiD1tvM/E80CAwEAAaOCArMwggKvMB0GA1UdDgQWBBTJaPuA 03TxdJ5SPmowGcnFO3C6PjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzQ0QTVGRDEw MUY0NzExRjA5MEY2OTY1NkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMD0GCCsGAQUFBwEHAQH/ BC4wLDASBAIAATAMAwQBZ6+6AwQBZ/TgMBYEAgACMBADBwAgAQ3ywUADBQAkAByg MA0GCSqGSIb3DQEBCwUAA4IBAQCYSsXYu7zTjjlgSF+xD3iGq94Yd47iO+vs5BlS y3p/hNKpBlLC4upEK2r6Y7iTJaInxzHhc+bTb89UpRzzSFfz4FzMef4gkM0OPaLj 0Lj/JzaST1vzkWlGXezPYBht1JObdPprqa2cBlDf9U098deHk5/h1eEh+kflnuA5 3QJz3r4zN2I9RnxvrykcDYKYb1/uH5CBkrAfp1tA9KSyfQPGF3o/tT7kxZy6th2+ 6W+pMWmtaHH0Htiqql+aqS7uPpBJJbCcSZfCzAWHbw4VQJj/sWGTzIhnVcGfK8I8 2M4jOOnn199zeSnM1XHLdc92YTKHgX8kOhOI3T7cB3D062AT -----END CERTIFICATE-----Generated at Sat Apr 26 14:01:41 2025 by rpki-client