$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DC248D34159011F0AC9EA965C4F9AE02.roa File: DC248D34159011F0AC9EA965C4F9AE02.roa (raw, json) Hash identifier: hWNN4FtleoO4JKuSNgAu9uQdzoaVFM9oXwWmJFoz3pA= Subject key identifier: 82:5F:AE:9B:3B:D0:FA:58:EB:F0:73:CE:C4:BE:41:AB:51:EF:B8:21 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: AE35 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DC248D34159011F0AC9EA965C4F9AE02.roa Signing time: Wed 09 Apr 2025 22:20:36 +0000 ROA not before: Wed 09 Apr 2025 22:20:36 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 138716 IP address blocks: 103.160.132.0/23 maxlen: 24 103.161.26.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44597 (0xae35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Apr 9 22:20:36 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=67f6f2b4-78f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:63:7f:35:7a:d9:1b:f1:e0:c3:de:08:5d:ff: 48:10:e3:6e:d5:63:f1:c7:65:43:50:37:f7:5e:5d: e2:42:28:dc:03:1c:a9:96:d6:8b:8e:e5:e7:be:02: d7:44:f8:99:02:e6:4f:83:46:c2:3e:9f:da:98:50: 2c:52:72:11:46:c2:e4:3f:c9:47:18:5d:b3:73:2c: 8e:65:f3:ce:81:fb:ce:f5:06:22:1c:b2:fd:8b:03: 45:ea:02:a0:0f:b2:18:cb:26:89:d2:50:79:41:32: ef:be:3d:28:44:1d:f7:b8:a1:74:1f:76:57:a0:d0: 1d:64:2d:d7:88:3f:38:1f:75:c5:f3:12:20:a7:c4: 79:08:a3:df:83:90:20:bd:f8:8d:d7:13:6d:3a:e9: 53:44:31:28:f4:8d:73:3e:f2:7c:7e:4d:36:f4:5e: 8b:b9:2c:64:c5:bb:9d:71:5b:41:e1:21:f7:4d:15: 94:b4:14:72:64:ab:d2:b3:49:68:c0:cf:16:35:f6: 1c:83:e1:73:11:4d:da:de:61:86:0a:17:12:7f:ad: c3:8e:9a:35:af:36:bf:72:a0:8b:ad:a3:d4:da:31: 30:5a:80:93:bd:94:b4:7a:35:27:23:4c:fc:88:c1: 22:5c:9a:5e:44:91:bc:3c:f3:a8:a4:17:1e:55:1f: 49:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:5F:AE:9B:3B:D0:FA:58:EB:F0:73:CE:C4:BE:41:AB:51:EF:B8:21 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/DC248D34159011F0AC9EA965C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.160.132.0/23 103.161.26.0/23 Signature Algorithm: sha256WithRSAEncryption 96:fb:5b:3d:dd:74:3f:11:4b:48:a9:b9:02:8d:b3:eb:53:87: 4d:82:bc:2a:44:64:87:3b:79:4d:69:77:20:e7:ac:4f:76:00: 3b:11:be:b7:af:00:db:ab:82:df:50:9a:74:56:c0:73:58:fa: b2:13:4a:2f:1d:3b:7f:8c:ab:fc:c5:f5:64:17:4a:0d:2f:e8: 04:b3:7f:fa:9b:8a:6c:33:a9:27:c1:83:7c:f8:bc:95:7b:de: b7:72:be:d5:5e:4c:5e:5b:78:6c:22:da:de:3c:72:07:62:82: db:1d:d1:36:4b:77:86:cb:71:aa:6b:31:9e:9a:a8:13:b0:58: f8:41:40:30:f9:82:43:e3:45:a7:5e:d4:63:8c:78:91:4b:e9: 59:ad:ac:db:d2:fe:ce:c9:18:dc:73:81:96:56:81:a0:3c:7e: c5:85:30:8a:88:2c:02:62:ee:d0:54:49:fa:46:66:e3:c2:15: fa:33:0c:10:6f:88:76:50:54:48:c1:4c:aa:b6:76:49:47:6e: 82:e0:4d:8a:7d:d7:ba:02:7a:a2:75:ec:46:dd:ed:4f:be:ce: 27:76:a3:10:33:00:29:52:a6:80:b3:6f:ee:b7:01:5a:f5:44: 2e:cb:50:79:4f:16:99:73:44:41:f5:71:83:65:19:33:14:3d: a9:7e:db:ac -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIDAK41MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDQwOTIyMjAzNloXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjdmNmYyYjQtNzhmODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ5jfzV62Rvx4MPeCF3/SBDjbtVj8cdlQ1A3915d4kIo3AMcqZbWi47l574C 10T4mQLmT4NGwj6f2phQLFJyEUbC5D/JRxhds3MsjmXzzoH7zvUGIhyy/YsDReoC oA+yGMsmidJQeUEy7749KEQd97ihdB92V6DQHWQt14g/OB91xfMSIKfEeQij34OQ IL34jdcTbTrpU0QxKPSNcz7yfH5NNvRei7ksZMW7nXFbQeEh900VlLQUcmSr0rNJ aMDPFjX2HIPhcxFN2t5hhgoXEn+tw46aNa82v3Kgi62j1NoxMFqAk72UtHo1JyNM /IjBIlyaXkSRvDzzqKQXHlUfSecCAwEAAaOCApswggKXMB0GA1UdDgQWBBSCX66b O9D6WOvwc87EvkGrUe+4ITAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0RDMjQ4RDM0 MTU5MDExRjBBQzlFQTk2NUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCUGCCsGAQUFBwEHAQH/ BBYwFDASBAIAATAMAwQBZ6CEAwQBZ6EaMA0GCSqGSIb3DQEBCwUAA4IBAQCW+1s9 3XQ/EUtIqbkCjbPrU4dNgrwqRGSHO3lNaXcg56xPdgA7Eb63rwDbq4LfUJp0VsBz WPqyE0ovHTt/jKv8xfVkF0oNL+gEs3/6m4psM6knwYN8+LyVe963cr7VXkxeW3hs ItrePHIHYoLbHdE2S3eGy3GqazGemqgTsFj4QUAw+YJD40WnXtRjjHiRS+lZrazb 0v7OyRjcc4GWVoGgPH7FhTCKiCwCYu7QVEn6RmbjwhX6MwwQb4h2UFRIwUyqtnZJ R26C4E2Kfde6AnqidexG3e1Pvs4ndqMQMwApUqaAs2/utwFa9UQuy1B5TxaZc0RB 9XGDZRkzFD2pftus -----END CERTIFICATE-----Generated at Sat Apr 26 13:36:41 2025 by rpki-client