$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C9E7C3D802F911F09303E51BC4F9AE02.roa File: C9E7C3D802F911F09303E51BC4F9AE02.roa (raw, json) Hash identifier: nnG3i1PHZNsVV/e48t6EHIxG8JDW22b8XqgnIrOTIkc= Subject key identifier: 5E:D2:96:EF:45:C1:7E:29:65:7A:F0:3D:4C:B4:8B:E8:FE:56:01:09 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: AF65 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C9E7C3D802F911F09303E51BC4F9AE02.roa Signing time: Wed 23 Apr 2025 06:21:23 +0000 ROA not before: Wed 23 Apr 2025 06:21:23 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 141856 IP address blocks: 103.168.94.0/23 maxlen: 24 163.223.132.0/24 maxlen: 24 163.223.133.0/24 maxlen: 24 2001:df6:d780::/48 maxlen: 53 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44901 (0xaf65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Apr 23 06:21:23 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=680886e2-ef48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:da:11:78:5e:7b:25:ed:30:08:60:5a:53:bc: c8:f5:b2:96:57:8b:36:55:3c:4d:8c:34:bc:cb:04: 8f:39:f9:60:6c:9b:42:c6:2d:e8:dc:fd:b5:6f:22: 25:f6:2d:e7:20:b5:f9:3c:29:c1:46:6f:a7:36:f8: f9:63:04:15:21:56:79:ff:a6:f6:26:f8:34:09:f7: d8:9e:4a:1d:a2:4c:3a:d5:87:d5:fa:39:19:97:dd: e6:c4:6c:32:16:06:9c:07:70:dc:07:9c:af:73:9c: 7b:94:e7:dc:8f:b9:4a:a1:59:b2:ef:74:0a:8a:32: f4:56:36:20:47:ef:43:47:0a:3a:ed:63:28:ed:28: c0:e2:90:8d:02:3a:4c:ae:9b:e3:0e:ea:86:21:5c: db:5e:7d:b8:32:a1:c8:43:f3:0e:e1:2c:85:bb:39: 66:1a:6d:73:78:2a:86:b7:4f:41:f9:d4:4b:7f:1b: 87:ab:52:92:c5:fd:f9:f7:54:95:e9:6c:9a:d5:bc: 33:2a:32:f8:5c:75:06:03:71:e4:4c:f6:43:df:d9: 37:9e:c2:4d:57:75:28:6e:a3:2d:9a:e4:5a:26:53: 5b:5f:d3:c2:cc:be:1b:67:aa:32:9a:34:46:bb:e2: 58:73:c5:d0:43:92:1c:30:fc:35:34:4e:ef:fd:7c: d0:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:D2:96:EF:45:C1:7E:29:65:7A:F0:3D:4C:B4:8B:E8:FE:56:01:09 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C9E7C3D802F911F09303E51BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.168.94.0/23 163.223.132.0/23 IPv6: 2001:df6:d780::/48 Signature Algorithm: sha256WithRSAEncryption 32:61:3c:ec:97:a8:36:29:c2:60:a4:b0:e8:a8:74:9c:ac:3c: 97:8d:6a:49:53:d0:11:32:1e:45:6c:15:35:75:90:8d:47:73: 53:4d:2f:97:42:c1:8b:66:36:d4:98:e6:f6:b1:11:a8:0a:f5: 43:d8:45:3b:f6:28:3e:19:2e:1d:b9:f2:e5:1f:0a:22:08:a4: 06:1a:d4:10:d0:ab:a4:93:bf:b3:8e:5d:ce:09:a2:c1:da:61: 8a:69:46:25:aa:58:70:52:e3:ee:92:fd:0c:31:e6:31:93:3b: 69:48:ad:86:99:36:4c:57:28:9e:8b:d5:e1:c9:04:45:cf:14: bd:c7:e6:24:ce:d9:9a:2f:2c:45:ec:ec:f4:17:da:e4:a8:8a: 36:4a:73:f3:62:d7:1a:94:45:88:5a:69:a5:6c:5c:1b:05:6f: ca:95:09:c9:96:41:d1:26:6d:03:dc:00:05:91:4f:ad:bc:f6: 6b:79:f8:c4:6a:13:f1:f3:80:a7:06:e6:7c:a6:c1:12:ae:25: 18:8e:76:7a:22:cc:2b:9e:4b:2f:b0:88:2a:ff:60:bd:9a:b9: 21:1b:94:e4:64:f9:3f:fd:71:62:60:43:97:3b:af:f8:86:79: f2:1a:57:b3:e2:80:c6:6f:4c:b7:33:36:fc:8e:ed:0c:be:64: f6:23:88:36 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgIDAK9lMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDQyMzA2MjEyM1oXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgwODg2ZTItZWY0ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMnaEXheeyXtMAhgWlO8yPWylleLNlU8TYw0vMsEjzn5YGybQsYt6Nz9tW8i JfYt5yC1+TwpwUZvpzb4+WMEFSFWef+m9ib4NAn32J5KHaJMOtWH1fo5GZfd5sRs MhYGnAdw3Aecr3Oce5Tn3I+5SqFZsu90Cooy9FY2IEfvQ0cKOu1jKO0owOKQjQI6 TK6b4w7qhiFc2159uDKhyEPzDuEshbs5Zhptc3gqhrdPQfnUS38bh6tSksX9+fdU lelsmtW8Myoy+Fx1BgNx5Ez2Q9/ZN57CTVd1KG6jLZrkWiZTW1/Twsy+G2eqMpo0 RrviWHPF0EOSHDD8NTRO7/180OMCAwEAAaOCAqwwggKoMB0GA1UdDgQWBBRe0pbv RcF+KWV68D1MtIvo/lYBCTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0M5RTdDM0Q4 MDJGOTExRjA5MzAzRTUxQkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDYGCCsGAQUFBwEHAQH/ BCcwJTASBAIAATAMAwQBZ6heAwQBo9+EMA8EAgACMAkDBwAgAQ3214AwDQYJKoZI hvcNAQELBQADggEBADJhPOyXqDYpwmCksOiodJysPJeNaklT0BEyHkVsFTV1kI1H c1NNL5dCwYtmNtSY5vaxEagK9UPYRTv2KD4ZLh258uUfCiIIpAYa1BDQq6STv7OO Xc4JosHaYYppRiWqWHBS4+6S/Qwx5jGTO2lIrYaZNkxXKJ6L1eHJBEXPFL3H5iTO 2ZovLEXs7PQX2uSoijZKc/Ni1xqURYhaaaVsXBsFb8qVCcmWQdEmbQPcAAWRT628 9mt5+MRqE/HzgKcG5nymwRKuJRiOdnoizCueSy+wiCr/YL2auSEblORk+T/9cWJg Q5c7r/iGefIaV7PigMZvTLczNvyO7Qy+ZPYjiDY= -----END CERTIFICATE-----Generated at Sat Apr 26 14:08:32 2025 by rpki-client