$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/52CBFE6E203011F0AB440319C4F9AE02.roa File: 52CBFE6E203011F0AB440319C4F9AE02.roa (raw, json) Hash identifier: EqoDZsm0joO7j9KV5zJEJ1443ogXr7l/6/ZNSRaIUWc= Subject key identifier: 55:09:DE:4A:36:07:0F:58:84:9A:BA:3E:7B:2B:A0:EE:A1:B4:0B:46 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: AF6F Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/52CBFE6E203011F0AB440319C4F9AE02.roa Signing time: Wed 23 Apr 2025 10:47:17 +0000 ROA not before: Wed 23 Apr 2025 10:47:17 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 140148 IP address blocks: 103.155.54.0/24 maxlen: 24 103.159.90.0/24 maxlen: 24 2001:df2:3240::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44911 (0xaf6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Apr 23 10:47:17 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6808c535-d5d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:9e:ba:7c:b1:4a:c6:45:4d:52:40:e0:f4:35: 90:37:58:e3:fd:e9:6b:92:9a:05:cc:7a:5e:ad:02: 02:cb:0e:b3:44:3b:f5:6b:65:ef:fd:6d:a5:a7:99: a6:72:de:65:e0:b6:b1:06:e3:43:c3:f3:a0:34:ab: d8:0e:56:38:e5:9c:55:72:75:a2:82:00:28:0a:4f: 3a:cf:71:a8:35:4e:8b:12:14:31:51:9e:ee:5b:47: 1a:1a:c5:47:d5:2e:4f:55:be:23:16:04:04:3f:a6: 3e:f4:b0:2b:1a:4a:f3:16:ee:42:74:bd:bf:86:3c: 70:63:e4:f2:f5:f3:4d:f2:a3:69:84:66:2b:e0:65: 0c:5a:4c:46:41:7c:32:7f:0f:04:35:42:73:c1:54: 54:ee:3c:28:8a:b5:90:7f:df:b0:8c:b3:fb:76:c1: 76:7f:63:54:97:35:b2:66:e3:d7:19:c7:86:87:e6: ac:97:dc:f0:e0:58:11:21:b8:16:82:50:2f:26:7f: c3:8e:66:59:ec:4d:db:74:8e:1d:9a:8e:5b:ec:27: e7:d9:e9:7d:a0:70:4f:2d:a2:28:1a:09:31:f0:5d: a2:8f:bc:d1:83:59:08:91:45:f7:85:a4:03:9b:62: 4f:69:2d:bd:75:bc:5a:48:27:7a:d2:28:3d:b3:c7: 86:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:09:DE:4A:36:07:0F:58:84:9A:BA:3E:7B:2B:A0:EE:A1:B4:0B:46 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/52CBFE6E203011F0AB440319C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.155.54.0/24 103.159.90.0/24 IPv6: 2001:df2:3240::/48 Signature Algorithm: sha256WithRSAEncryption 65:1d:e8:76:b1:9a:fd:da:79:84:50:60:05:89:65:f5:ab:37: 77:d9:d8:a0:82:fa:f8:27:28:cc:1f:68:be:ae:75:f3:d6:6f: fc:94:33:4e:e9:db:4a:3e:ba:93:c6:a0:cf:8b:2b:d3:ee:43: 82:84:2d:de:a8:e7:07:95:49:08:ea:79:c6:72:be:f5:01:cb: f2:2f:26:4a:ef:e8:1e:53:2b:f2:d3:dd:98:91:5b:54:9c:37: 6d:db:fd:a3:20:a1:33:5f:0b:7d:8a:68:ea:17:71:4e:59:20: 86:12:41:18:a7:44:26:d7:99:7e:76:bd:ce:96:82:4c:98:20: 60:5f:bb:18:38:3f:27:2d:2d:67:1f:93:30:fc:bb:f8:f6:d5: bf:f9:a2:70:db:83:0e:33:20:23:b8:ca:65:b7:2f:b3:f9:c3: 37:50:e5:cc:af:8a:72:42:f5:2b:a7:c3:6a:c4:c6:30:91:74: dc:72:9a:2c:45:d4:27:e9:46:26:cc:a5:ff:ee:87:41:b3:ba: cb:01:cd:5d:7d:13:b3:bb:70:f5:78:1f:a8:87:2b:ad:11:4e: 3f:6a:b4:cf:27:24:ee:d6:93:49:eb:67:f3:51:fb:fb:52:53: 8a:0c:aa:5e:c1:03:a2:38:10:ed:e5:70:40:99:73:e9:e1:54: a3:48:e0:e2 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgIDAK9vMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDQyMzEwNDcxN1oXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgwOGM1MzUtZDVkNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMCeunyxSsZFTVJA4PQ1kDdY4/3pa5KaBcx6Xq0CAssOs0Q79Wtl7/1tpaeZ pnLeZeC2sQbjQ8PzoDSr2A5WOOWcVXJ1ooIAKApPOs9xqDVOixIUMVGe7ltHGhrF R9UuT1W+IxYEBD+mPvSwKxpK8xbuQnS9v4Y8cGPk8vXzTfKjaYRmK+BlDFpMRkF8 Mn8PBDVCc8FUVO48KIq1kH/fsIyz+3bBdn9jVJc1smbj1xnHhofmrJfc8OBYESG4 FoJQLyZ/w45mWexN23SOHZqOW+wn59npfaBwTy2iKBoJMfBdoo+80YNZCJFF94Wk A5tiT2ktvXW8WkgnetIoPbPHhnMCAwEAAaOCAqwwggKoMB0GA1UdDgQWBBRVCd5K NgcPWISauj57K6DuobQLRjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzUyQ0JGRTZF MjAzMDExRjBBQjQ0MDMxOUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDYGCCsGAQUFBwEHAQH/ BCcwJTASBAIAATAMAwQAZ5s2AwQAZ59aMA8EAgACMAkDBwAgAQ3yMkAwDQYJKoZI hvcNAQELBQADggEBAGUd6Haxmv3aeYRQYAWJZfWrN3fZ2KCC+vgnKMwfaL6udfPW b/yUM07p20o+upPGoM+LK9PuQ4KELd6o5weVSQjqecZyvvUBy/IvJkrv6B5TK/LT 3ZiRW1ScN23b/aMgoTNfC32KaOoXcU5ZIIYSQRinRCbXmX52vc6WgkyYIGBfuxg4 PyctLWcfkzD8u/j21b/5onDbgw4zICO4ymW3L7P5wzdQ5cyvinJC9Sunw2rExjCR dNxymixF1CfpRibMpf/uh0GzussBzV19E7O7cPV4H6iHK60RTj9qtM8nJO7Wk0nr Z/NR+/tSU4oMql7BA6I4EO3lcECZc+nhVKNI4OI= -----END CERTIFICATE-----Generated at Sat Apr 26 12:31:59 2025 by rpki-client