$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B2583A5C747811EDA48E0D52C4F9AE02.roa File: B2583A5C747811EDA48E0D52C4F9AE02.roa (raw, json) Hash identifier: 5YXXPYlpvALeM3tEBLd+cQulwgzJkm5n2BVnhChl9cI= Subject key identifier: A9:0C:54:F1:83:BF:BC:CC:D3:F3:AB:92:21:6C:9E:A9:3C:5A:A0:BC Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: A9F2 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B2583A5C747811EDA48E0D52C4F9AE02.roa Signing time: Tue 11 Mar 2025 04:57:06 +0000 ROA not before: Tue 11 Mar 2025 04:57:06 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 146902 IP address blocks: 103.13.42.0/24 maxlen: 24 103.13.43.0/24 maxlen: 24 103.14.50.0/23 maxlen: 24 103.164.196.0/23 maxlen: 24 103.173.136.0/23 maxlen: 24 103.182.220.0/24 maxlen: 24 103.182.221.0/24 maxlen: 24 103.204.92.0/23 maxlen: 24 163.223.64.0/23 maxlen: 24 2001:df7:9e80::/48 maxlen: 48 2400:f2a0::/40 maxlen: 48 2401:79a0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43506 (0xa9f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Mar 11 04:57:06 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=67cfc2a1-1683 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ff:f3:5d:f9:bc:ab:18:98:d1:bb:0c:2e:f7: 0c:8f:a5:1f:70:64:94:f1:54:7d:d5:b3:e0:10:3e: 72:20:6b:9d:7c:af:4e:b9:9c:9d:12:11:8f:80:0f: 9c:5f:fd:f9:ac:fb:94:33:30:bf:87:0f:0e:71:f2: 9a:0e:03:43:99:65:27:3b:2d:10:24:4b:7c:aa:e2: 38:9c:c4:8d:9b:4d:92:7d:92:b5:b2:13:ec:80:ec: 24:22:19:48:55:dd:8e:6c:d3:ab:88:3b:a6:64:7c: 4d:54:62:d3:cf:d0:2d:e9:d9:ae:0d:84:2d:c6:d7: 91:29:10:2e:70:f4:82:46:5e:5a:c9:56:84:62:c2: 5c:87:da:a1:ac:d0:1e:d5:06:00:20:c8:89:ab:8b: fd:c5:1f:e9:f0:8f:7e:bd:fa:8d:21:fa:7e:58:1e: 6f:0f:10:70:ed:39:2e:f8:de:e4:23:6d:a0:e2:51: 25:8a:31:7f:93:1d:98:9d:f6:cb:30:3e:eb:7e:af: 60:7e:cc:7d:35:6d:56:3b:38:ed:b4:15:8b:40:0f: 3e:68:18:da:af:6e:b7:1b:15:b2:11:62:5f:b0:fb: e6:4d:fc:a8:25:7e:47:51:9a:45:44:ca:af:c2:fd: a9:02:6f:1d:9d:c9:51:f8:68:25:9b:70:fb:5c:fa: bc:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:0C:54:F1:83:BF:BC:CC:D3:F3:AB:92:21:6C:9E:A9:3C:5A:A0:BC X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B2583A5C747811EDA48E0D52C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.13.42.0/23 103.14.50.0/23 103.164.196.0/23 103.173.136.0/23 103.182.220.0/23 103.204.92.0/23 163.223.64.0/23 IPv6: 2001:df7:9e80::/48 2400:f2a0::/40 2401:79a0::/32 Signature Algorithm: sha256WithRSAEncryption b9:f5:61:59:75:b5:ac:ce:bc:5f:91:60:be:59:5a:7d:34:57: 7b:68:63:f0:8b:20:05:58:60:f1:be:d9:24:d6:d8:ad:e1:83: db:a5:22:2f:70:08:37:92:07:14:2e:b9:7a:50:9e:db:5d:5c: fe:72:2f:4d:1d:0c:3f:f0:3c:80:a2:bc:30:17:ae:a2:d0:be: b2:08:18:0a:4b:7a:36:ef:94:40:e7:3b:ef:ae:3a:ef:53:32: 79:25:78:66:35:ac:30:ae:f8:5a:32:6d:11:4c:40:14:41:48: 96:36:18:b2:89:49:57:e8:2e:13:62:21:cb:ba:cd:7d:58:00: 8e:a7:1d:86:3d:1e:7f:b2:0e:89:c2:76:0d:bd:c3:83:26:da: 59:06:fd:1d:29:18:6f:ca:d8:ea:e6:bb:7d:82:38:79:3c:19: 4c:cb:33:1c:5e:e0:33:64:f8:11:0b:75:8e:81:14:f4:6e:c8: e0:be:17:af:31:32:db:c2:65:6b:19:fd:16:cf:6b:94:1e:50: 7a:4f:9e:e3:fd:9b:22:8f:17:6c:47:72:ec:f4:c3:91:81:15: 79:ea:30:2b:04:c3:46:e9:a9:fb:64:57:f7:73:ab:01:a2:45: 0a:71:8d:31:38:ab:e0:93:c5:c9:e2:f0:b7:49:5a:12:e5:3f: b0:cc:1e:2d -----BEGIN CERTIFICATE----- MIIFtjCCBJ6gAwIBAgIDAKnyMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDMxMTA0NTcwNloXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjdjZmMyYTEtMTY4MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM3/8135vKsYmNG7DC73DI+lH3BklPFUfdWz4BA+ciBrnXyvTrmcnRIRj4AP nF/9+az7lDMwv4cPDnHymg4DQ5llJzstECRLfKriOJzEjZtNkn2StbIT7IDsJCIZ SFXdjmzTq4g7pmR8TVRi08/QLenZrg2ELcbXkSkQLnD0gkZeWslWhGLCXIfaoazQ HtUGACDIiauL/cUf6fCPfr36jSH6flgebw8QcO05Lvje5CNtoOJRJYoxf5MdmJ32 yzA+636vYH7MfTVtVjs47bQVi0APPmgY2q9utxsVshFiX7D75k38qCV+R1GaRUTK r8L9qQJvHZ3JUfhoJZtw+1z6vLsCAwEAAaOCAtkwggLVMB0GA1UdDgQWBBSpDFTx g7+8zNPzq5IhbJ6pPFqgvDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0IyNTgzQTVD NzQ3ODExRURBNDhFMEQ1MkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMGMGCCsGAQUFBwEHAQH/ BFQwUjAwBAIAATAqAwQBZw0qAwQBZw4yAwQBZ6TEAwQBZ62IAwQBZ7bcAwQBZ8xc AwQBo99AMB4EAgACMBgDBwAgAQ33noADBgAkAPKgAAMFACQBeaAwDQYJKoZIhvcN AQELBQADggEBALn1YVl1tazOvF+RYL5ZWn00V3toY/CLIAVYYPG+2STW2K3hg9ul Ii9wCDeSBxQuuXpQnttdXP5yL00dDD/wPICivDAXrqLQvrIIGApLejbvlEDnO++u Ou9TMnkleGY1rDCu+FoybRFMQBRBSJY2GLKJSVfoLhNiIcu6zX1YAI6nHYY9Hn+y DonCdg29w4Mm2lkG/R0pGG/K2Ormu32COHk8GUzLMxxe4DNk+BELdY6BFPRuyOC+ F68xMtvCZWsZ/RbPa5QeUHpPnuP9myKPF2xHcuz0w5GBFXnqMCsEw0bpqftkV/dz qwGiRQpxjTE4q+CTxcni8LdJWhLlP7DMHi0= -----END CERTIFICATE-----Generated at Sat Apr 26 12:37:58 2025 by rpki-client