$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A1A07318DD5411EF8C0F574DC4F9AE02.roa File: A1A07318DD5411EF8C0F574DC4F9AE02.roa (raw, json) Hash identifier: HIlnuNNvCfDhGHMvN2HcL5C3xlIdwA/76WHriemwXyU= Subject key identifier: D6:44:77:B2:A0:2E:E9:3F:95:0D:DF:BD:C2:62:20:1B:F5:68:05:EA Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: A3C9 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A1A07318DD5411EF8C0F574DC4F9AE02.roa Signing time: Tue 28 Jan 2025 08:48:23 +0000 ROA not before: Tue 28 Jan 2025 08:48:23 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 136358 IP address blocks: 103.101.68.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 15:21:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41929 (0xa3c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Jan 28 08:48:23 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=679899d7-f18a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:6f:97:18:ae:7e:29:5a:25:1a:9c:60:ec:28: f8:ed:3b:e8:d7:28:20:1c:35:b1:c5:4c:a0:aa:dd: 15:80:7a:65:a9:da:2e:02:63:18:60:75:39:14:17: 75:00:68:f3:53:d2:9d:4f:05:b4:35:91:8f:e1:13: 29:01:a1:07:28:5b:09:4e:49:68:57:6f:42:cd:60: 84:53:dc:5f:15:54:42:45:a4:1e:6c:3a:3e:14:a4: ff:fe:e9:28:ba:3e:77:e4:d1:87:95:38:ed:4c:22: 4a:77:2f:73:03:b4:8e:98:99:9e:3d:f7:32:56:d8: e4:56:e1:c1:b0:7c:21:00:77:dc:30:5d:a4:65:29: 2a:2a:03:de:80:9a:49:01:d8:ef:10:2c:ff:e8:3a: bf:71:f7:49:85:67:ad:c3:d7:cc:e8:e5:ab:2e:18: e3:72:4b:03:50:55:23:f9:27:01:23:eb:fb:a9:93: c3:98:67:17:71:d5:8c:25:23:26:3f:d2:bb:34:e7: f7:cb:73:21:1c:62:5c:1b:26:f4:dd:ce:fe:37:04: b4:16:28:1e:db:7e:a4:63:eb:17:5a:6f:d5:a8:2c: 95:32:09:b6:1d:aa:ed:2c:11:34:ed:28:49:04:5b: 24:ad:7c:04:d6:1d:77:bb:19:80:4d:68:90:06:0f: fd:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:44:77:B2:A0:2E:E9:3F:95:0D:DF:BD:C2:62:20:1B:F5:68:05:EA X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/A1A07318DD5411EF8C0F574DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.101.68.0/22 Signature Algorithm: sha256WithRSAEncryption 35:e4:e3:85:af:94:69:32:24:f5:d0:61:99:5b:24:64:cf:fc: 40:ba:22:01:f6:2d:15:31:24:d8:24:65:70:68:4f:90:c9:1d: c4:ec:3a:79:2e:a7:17:6a:06:45:1f:0b:3e:37:16:8b:ec:ea: 02:c4:c6:fb:c9:77:46:e4:b4:0c:18:f4:a3:d1:b2:c9:c5:86: 5c:7d:47:9f:f1:aa:53:f7:49:9e:f8:fc:47:a4:10:d2:c8:54: 67:75:f9:0f:f3:aa:7f:c3:00:9e:5b:bf:15:0d:c6:e2:55:db: 12:f2:39:b1:d4:d1:84:0c:ca:41:53:35:75:33:8f:5e:d2:ca: 7e:76:cc:8e:ec:b9:63:87:43:73:a3:82:52:b5:55:1d:f5:a9: 19:3a:13:b5:54:44:9e:91:a1:9d:8b:6e:e0:07:6c:1a:48:01: 42:dc:37:cd:36:4a:f7:6b:65:69:06:4e:2a:4f:7c:ff:9c:88: ae:23:2b:61:f8:1e:7d:96:76:bb:b3:39:bc:4d:31:6f:c5:b0: 2c:55:01:4c:45:83:5f:b5:6e:e4:5c:99:bb:9b:7e:8e:bc:bc: f6:62:c4:ea:6e:c2:0c:ac:64:73:3d:32:18:70:d2:03:2c:c7: fe:ec:d7:6c:15:3c:90:17:e9:ff:6c:bf:e2:3e:76:92:29:92: 9d:f6:ac:e4 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDAKPJMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDEyODA4NDgyM1oXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjc5ODk5ZDctZjE4YTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANJvlxiufilaJRqcYOwo+O076NcoIBw1scVMoKrdFYB6ZanaLgJjGGB1ORQX dQBo81PSnU8FtDWRj+ETKQGhByhbCU5JaFdvQs1ghFPcXxVUQkWkHmw6PhSk//7p KLo+d+TRh5U47UwiSncvcwO0jpiZnj33MlbY5FbhwbB8IQB33DBdpGUpKioD3oCa SQHY7xAs/+g6v3H3SYVnrcPXzOjlqy4Y43JLA1BVI/knASPr+6mTw5hnF3HVjCUj Jj/SuzTn98tzIRxiXBsm9N3O/jcEtBYoHtt+pGPrF1pv1agslTIJth2q7SwRNO0o SQRbJK18BNYdd7sZgE1okAYP/fMCAwEAAaOCApUwggKRMB0GA1UdDgQWBBTWRHey oC7pP5UN373CYiAb9WgF6jAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0ExQTA3MzE4 REQ1NDExRUY4QzBGNTc0REM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQCZ2VEMA0GCSqGSIb3DQEBCwUAA4IBAQA15OOFr5RpMiT1 0GGZWyRkz/xAuiIB9i0VMSTYJGVwaE+QyR3E7Dp5LqcXagZFHws+NxaL7OoCxMb7 yXdG5LQMGPSj0bLJxYZcfUef8apT90me+PxHpBDSyFRndfkP86p/wwCeW78VDcbi VdsS8jmx1NGEDMpBUzV1M49e0sp+dsyO7Lljh0Nzo4JStVUd9akZOhO1VESekaGd i27gB2waSAFC3DfNNkr3a2VpBk4qT3z/nIiuIyth+B59lna7szm8TTFvxbAsVQFM RYNftW7kXJm7m36OvLz2YsTqbsIMrGRzPTIYcNIDLMf+7NdsFTyQF+n/bL/iPnaS KZKd9qzk -----END CERTIFICATE-----Generated at Sat Apr 26 18:14:06 2025 by rpki-client