$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7412D892977011EB891B1662C4F9AE02.roa File: 7412D892977011EB891B1662C4F9AE02.roa (raw, json) Hash identifier: DaUzpPoALs8g6at7nbHrGo8+//2OieTlPtaT8QAeUss= Subject key identifier: D1:F5:A5:C8:66:B6:1C:B9:A0:4B:71:37:B7:91:67:70:14:8E:FC:D6 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: AFBC Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7412D892977011EB891B1662C4F9AE02.roa Signing time: Fri 25 Apr 2025 11:28:15 +0000 ROA not before: Fri 25 Apr 2025 11:28:15 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 141804 IP address blocks: 103.159.162.0/24 maxlen: 24 103.165.168.0/23 maxlen: 24 103.171.4.0/23 maxlen: 24 103.182.10.0/23 maxlen: 24 2001:df7:2f80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 03:41:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44988 (0xafbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Apr 25 11:28:15 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=680b71ce-0d98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:0b:43:09:22:21:c5:90:a5:c5:10:08:9f:9e: b2:24:b6:cd:fc:aa:ec:3b:1a:8a:ad:79:12:51:2c: 99:76:31:50:37:8c:29:20:ec:af:0a:7e:c1:73:d4: 4b:d6:9e:db:62:ad:7b:38:89:d7:98:0e:22:20:c3: fe:5f:95:9b:f9:4c:d3:45:cb:bd:cf:e5:72:28:5e: 50:74:86:e7:bb:bf:4e:d3:21:7c:2f:27:c4:ea:a6: 5c:18:da:43:dd:71:39:33:73:c9:36:43:e4:52:27: d5:28:5b:ed:04:05:bc:99:db:3f:9b:37:5a:b9:88: 47:5c:01:2b:94:2d:c9:8b:03:f7:14:96:76:ae:b1: 8e:38:77:27:70:24:77:14:e5:b1:6e:00:b8:f0:1f: 4e:c3:da:cf:5d:7d:4e:e4:e0:8c:1a:75:34:44:1b: 53:93:9f:60:de:e5:5e:41:7e:bf:53:75:77:55:60: df:2d:90:cb:ba:4b:f0:63:28:68:f4:11:f8:46:a6: ee:57:a7:4c:ef:da:b3:b5:44:a3:8c:28:89:3c:c7: 59:62:84:bb:1d:16:c9:4c:c6:93:14:8f:b5:04:14: c7:0e:3a:2c:3d:d2:ce:76:87:02:0c:d1:68:62:b2: 21:22:e9:70:18:15:25:73:37:07:70:a3:6d:a6:fa: 92:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:F5:A5:C8:66:B6:1C:B9:A0:4B:71:37:B7:91:67:70:14:8E:FC:D6 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/7412D892977011EB891B1662C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.162.0/24 103.165.168.0/23 103.171.4.0/23 103.182.10.0/23 IPv6: 2001:df7:2f80::/48 Signature Algorithm: sha256WithRSAEncryption a5:30:39:be:5a:c8:8b:d7:02:36:67:cb:45:90:93:7d:cb:f8: c3:0d:2c:04:f5:0f:79:7b:e4:76:c0:80:36:27:ef:af:e3:c7: e3:1c:1b:7e:e5:2e:67:ec:1f:38:fa:cf:d3:54:61:18:d9:3e: 93:a6:65:85:d7:5e:81:91:ab:8f:49:2a:00:40:9c:99:6e:6d: ff:f0:31:82:01:f7:21:35:98:fa:18:97:72:51:2e:a1:42:a5: 19:23:5c:a9:39:7c:20:20:54:6c:6e:2e:e0:d0:97:99:c2:db: 2f:35:cb:23:8d:f9:7c:ca:3a:76:a8:34:d5:f2:63:d0:7c:2e: 85:83:cd:d6:49:29:42:6c:01:9f:3b:11:fd:40:33:b2:34:0d: 56:ad:ca:cb:00:f7:0a:49:82:b8:39:43:8a:4e:d4:33:3b:5d: 73:b8:56:f8:65:6b:5a:b0:48:88:66:77:c8:ec:89:7a:1c:97: 02:f7:47:69:46:d3:9c:7b:52:c1:a8:6d:01:ad:3f:75:0e:fd: 2b:0d:24:4a:1b:a0:11:e1:9c:b5:91:98:57:08:39:20:15:3c: 17:70:58:24:55:54:91:ae:2a:be:4f:83:7d:f8:df:99:33:ee: a7:05:5a:96:28:c3:8d:09:41:5c:b5:69:52:d3:a8:5e:b4:73: e5:cb:35:7f -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgIDAK+8MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDQyNTExMjgxNVoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgwYjcxY2UtMGQ5ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALYLQwkiIcWQpcUQCJ+esiS2zfyq7Dsaiq15ElEsmXYxUDeMKSDsrwp+wXPU S9ae22KteziJ15gOIiDD/l+Vm/lM00XLvc/lciheUHSG57u/TtMhfC8nxOqmXBja Q91xOTNzyTZD5FIn1Shb7QQFvJnbP5s3WrmIR1wBK5QtyYsD9xSWdq6xjjh3J3Ak dxTlsW4AuPAfTsPaz119TuTgjBp1NEQbU5OfYN7lXkF+v1N1d1Vg3y2Qy7pL8GMo aPQR+Eam7lenTO/as7VEo4woiTzHWWKEux0WyUzGkxSPtQQUxw46LD3SznaHAgzR aGKyISLpcBgVJXM3B3Cjbab6kncCAwEAAaOCArgwggK0MB0GA1UdDgQWBBTR9aXI ZrYcuaBLcTe3kWdwFI781jAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzc0MTJEODky OTc3MDExRUI4OTFCMTY2MkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMEIGCCsGAQUFBwEHAQH/ BDMwMTAeBAIAATAYAwQAZ5+iAwQBZ6WoAwQBZ6sEAwQBZ7YKMA8EAgACMAkDBwAg AQ33L4AwDQYJKoZIhvcNAQELBQADggEBAKUwOb5ayIvXAjZny0WQk33L+MMNLAT1 D3l75HbAgDYn76/jx+McG37lLmfsHzj6z9NUYRjZPpOmZYXXXoGRq49JKgBAnJlu bf/wMYIB9yE1mPoYl3JRLqFCpRkjXKk5fCAgVGxuLuDQl5nC2y81yyON+XzKOnao NNXyY9B8LoWDzdZJKUJsAZ87Ef1AM7I0DVatyssA9wpJgrg5Q4pO1DM7XXO4Vvhl a1qwSIhmd8jsiXoclwL3R2lG05x7UsGobQGtP3UO/SsNJEoboBHhnLWRmFcIOSAV PBdwWCRVVJGuKr5Pg33435kz7qcFWpYow40JQVy1aVLTqF60c+XLNX8= -----END CERTIFICATE-----Generated at Sat Apr 26 15:07:42 2025 by rpki-client