$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/45440202145811F0A9CD1C52C4F9AE02.roa File: 45440202145811F0A9CD1C52C4F9AE02.roa (raw, json) Hash identifier: YijBoNivglb80cxaclwhDm8U1xmES/r5g1v+uUe2cWo= Subject key identifier: E5:F7:72:57:0B:3A:5E:74:48:46:18:9A:77:7F:91:34:17:E8:7E:39 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: AECE Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/45440202145811F0A9CD1C52C4F9AE02.roa Signing time: Thu 17 Apr 2025 12:15:49 +0000 ROA not before: Thu 17 Apr 2025 12:15:49 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 149781 IP address blocks: 103.98.192.0/24 maxlen: 24 103.179.41.0/24 maxlen: 24 103.184.106.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44750 (0xaece) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Apr 17 12:15:49 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6800f0f5-8857 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ab:74:33:89:b5:4b:b3:df:30:20:4b:ae:fa: 66:e9:7e:24:6f:b8:84:d2:d7:ac:5a:96:f2:c0:16: 73:75:7b:c1:ce:90:f7:fa:c3:d1:60:2e:2f:00:5d: c7:6a:07:17:c0:48:a2:32:52:d6:99:06:7b:8b:39: 96:98:9f:d5:8f:ad:e7:53:09:75:2f:8b:c6:18:ae: 7f:87:67:13:d6:5d:3a:e8:b3:61:f5:4c:fd:8b:3d: a3:41:91:d1:a6:8e:4b:0f:7b:36:bb:cd:a2:35:84: 56:53:15:22:56:45:3b:11:72:41:48:62:bd:46:ef: 41:87:8a:0d:0f:69:36:48:b1:c3:f7:36:c0:c9:2f: 82:f4:0a:e9:05:a0:c4:f6:da:c8:6d:c5:c2:94:a3: d0:89:94:3b:da:dd:c5:85:21:fa:91:fc:69:dc:bc: 04:75:ff:26:c1:4a:65:2e:39:00:bc:8a:2c:ed:73: de:29:40:3d:e7:e2:6a:49:d5:c3:79:30:39:4b:1a: df:a2:68:09:6a:d5:1c:be:34:0a:e6:ae:e4:84:81: c6:f6:7d:a2:73:b3:64:92:03:75:10:23:08:73:31: 8e:9e:d1:52:30:95:4b:ec:0e:09:cb:d7:4d:bb:d2: d4:ca:de:8e:de:f0:7f:59:cb:9b:6a:a2:fa:43:f5: 56:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:F7:72:57:0B:3A:5E:74:48:46:18:9A:77:7F:91:34:17:E8:7E:39 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/45440202145811F0A9CD1C52C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.98.192.0/24 103.179.41.0/24 103.184.106.0/23 Signature Algorithm: sha256WithRSAEncryption 43:e6:de:a9:db:68:03:ed:8d:cb:ad:be:95:12:82:82:ae:83: a9:4c:f1:22:e6:76:ab:f3:f1:09:5c:25:da:73:7e:0d:b1:73: 9a:c5:ab:6a:4f:13:a4:03:ba:23:0d:03:8f:67:44:35:c6:9a: 5a:15:fe:25:6a:72:2c:f7:d6:2c:b5:3f:a4:73:d2:3a:c9:0f: b6:69:ff:ff:da:72:6a:a2:be:af:a7:75:8f:00:58:34:7b:69: ae:df:f2:fb:f9:c4:cc:bf:08:55:a0:b6:cf:39:6c:33:82:e6: 1b:62:03:ba:0b:6e:50:62:59:4b:ba:6a:4a:a3:a8:51:e9:cc: 9e:db:de:e8:6c:b4:ec:ae:0c:0e:e8:4d:26:a4:29:ef:e1:af: 7d:4e:c3:df:bf:45:02:de:bd:91:ed:5f:17:63:7c:c1:4c:e4: cd:da:97:22:40:8f:69:7c:25:b0:9c:ed:cb:56:35:f5:14:a6: 1d:01:5a:90:2b:c9:56:48:ce:b6:47:c1:0f:82:ab:09:fa:01: 99:29:b8:b5:5a:01:8c:02:14:79:bb:da:5b:cf:af:9d:3c:0f: 9d:f8:49:e5:c8:4a:b7:74:f5:8c:3b:96:65:a0:01:b7:28:1d: c4:38:d1:69:49:52:9f:8b:e2:6f:f0:56:27:0f:d0:6c:8d:bd: ef:02:fa:9a -----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgIDAK7OMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDQxNzEyMTU0OVoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgwMGYwZjUtODg1NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK2rdDOJtUuz3zAgS676Zul+JG+4hNLXrFqW8sAWc3V7wc6Q9/rD0WAuLwBd x2oHF8BIojJS1pkGe4s5lpif1Y+t51MJdS+Lxhiuf4dnE9ZdOuizYfVM/Ys9o0GR 0aaOSw97NrvNojWEVlMVIlZFOxFyQUhivUbvQYeKDQ9pNkixw/c2wMkvgvQK6QWg xPbayG3FwpSj0ImUO9rdxYUh+pH8ady8BHX/JsFKZS45ALyKLO1z3ilAPefiaknV w3kwOUsa36JoCWrVHL40Cuau5ISBxvZ9onOzZJIDdRAjCHMxjp7RUjCVS+wOCcvX TbvS1Mrejt7wf1nLm2qi+kP1Vm8CAwEAAaOCAqEwggKdMB0GA1UdDgQWBBTl93JX CzpedEhGGJp3f5E0F+h+OTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzQ1NDQwMjAy MTQ1ODExRjBBOUNEMUM1MkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCsGCCsGAQUFBwEHAQH/ BBwwGjAYBAIAATASAwQAZ2LAAwQAZ7MpAwQBZ7hqMA0GCSqGSIb3DQEBCwUAA4IB AQBD5t6p22gD7Y3Lrb6VEoKCroOpTPEi5nar8/EJXCXac34NsXOaxatqTxOkA7oj DQOPZ0Q1xppaFf4lanIs99YstT+kc9I6yQ+2af//2nJqor6vp3WPAFg0e2mu3/L7 +cTMvwhVoLbPOWwzguYbYgO6C25QYllLumpKo6hR6cye297obLTsrgwO6E0mpCnv 4a99TsPfv0UC3r2R7V8XY3zBTOTN2pciQI9pfCWwnO3LVjX1FKYdAVqQK8lWSM62 R8EPgqsJ+gGZKbi1WgGMAhR5u9pbz6+dPA+d+EnlyEq3dPWMO5ZloAG3KB3EONFp SVKfi+Jv8FYnD9Bsjb3vAvqa -----END CERTIFICATE-----Generated at Sat Apr 26 12:37:49 2025 by rpki-client