$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0BB8ABE2F26F11EF9376B112C4F9AE02.roa File: 0BB8ABE2F26F11EF9376B112C4F9AE02.roa (raw, json) Hash identifier: J55r6C+Efg/LRmlx8gDYi9CQP1sGOFULmto7djvBZno= Subject key identifier: E9:A2:AF:06:D7:44:F4:2D:E8:E8:04:4F:24:17:83:7D:02:F7:1E:D1 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: A761 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0BB8ABE2F26F11EF9376B112C4F9AE02.roa Signing time: Mon 24 Feb 2025 05:20:23 +0000 ROA not before: Mon 24 Feb 2025 05:20:23 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 141842 IP address blocks: 103.168.75.0/24 maxlen: 24 103.172.48.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 15:28:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42849 (0xa761) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: Feb 24 05:20:23 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=67bc0196-9093 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:29:94:33:d8:3a:32:f1:c4:75:eb:ad:83:b4: c7:e1:ef:04:ec:0b:7f:7b:7c:32:fd:19:cd:36:26: 48:95:b2:52:76:45:27:3e:36:06:95:b0:03:d9:0d: 63:10:05:6d:30:df:19:9b:a1:aa:8b:f7:6d:f5:5d: 27:f7:f8:8f:9e:2b:01:4b:1b:17:b1:ca:01:f3:ca: 52:07:13:d1:54:48:1b:e9:3b:c7:89:e7:b9:c9:ef: 7b:26:11:3b:fe:ba:68:2a:cd:03:18:ef:1c:f7:94: de:8c:6b:28:be:9a:03:23:db:c9:b1:c3:44:27:1a: 30:7c:b3:c5:01:7e:d0:18:5b:ba:5e:7f:76:60:d8: 96:5a:3f:19:da:82:5a:a7:fb:2f:f9:8c:97:46:6b: f7:be:f2:ac:11:58:54:6f:c5:9c:fb:d4:9c:f5:19: 3e:71:8a:e2:7d:b2:5d:99:60:39:8f:71:63:de:07: f6:32:80:62:88:23:b3:e0:d4:ac:a3:79:a4:56:6d: b4:c8:bb:4a:1e:dd:02:ef:1c:36:8b:63:d6:b5:d2: 4c:c7:e1:c5:ea:59:f8:d0:20:f6:2a:f0:6b:09:a6: 5e:a9:ec:a3:68:16:ae:4b:a8:a3:a9:1d:58:77:f7: 32:f7:e9:61:b7:51:2e:fc:a2:1f:0f:19:4b:c8:6c: 85:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:A2:AF:06:D7:44:F4:2D:E8:E8:04:4F:24:17:83:7D:02:F7:1E:D1 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/0BB8ABE2F26F11EF9376B112C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.168.75.0/24 103.172.48.0/23 Signature Algorithm: sha256WithRSAEncryption 7e:03:3d:87:90:82:a9:a3:06:2b:a8:0c:94:ae:e0:35:33:dc: 2e:fb:d1:a4:21:c8:08:da:f0:83:99:93:4d:b5:e2:8a:f9:2c: c6:59:65:f6:b2:64:9f:75:5a:0c:3c:a9:92:74:7e:68:03:5b: 8c:86:8f:5b:ba:9b:61:31:2d:8c:8a:82:c9:aa:9f:a0:db:c6: 57:8d:57:57:4b:17:9b:aa:4f:a8:49:7b:39:aa:7c:3a:3a:fa: 93:e8:4c:88:6c:0c:b5:cf:07:5b:db:89:96:4e:97:7d:9e:8c: f6:c4:47:d5:85:40:f5:dc:cd:ac:d3:e2:b8:ea:ab:09:fa:58: 28:db:12:3d:4f:b3:e4:a2:8e:27:4b:cc:b0:0c:60:ff:47:3d: 1a:6c:d0:99:16:61:9a:cf:fc:72:45:ae:85:11:d8:2d:13:e3: 19:f4:09:66:03:f2:a4:50:7d:32:24:75:ba:7e:7c:eb:8d:c1: 01:80:10:c9:69:4e:b7:ca:af:e4:ba:cf:47:b8:ed:e5:4f:31: 74:a2:c8:a8:fa:1f:d0:27:96:52:62:89:c4:10:a5:29:32:d1: 0c:69:fe:96:18:c1:06:6a:98:05:aa:87:00:99:40:54:86:ba: c5:80:eb:62:3d:5e:d6:c2:d1:88:2e:a6:2b:da:92:8b:68:62: 9d:32:43:59 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIDAKdhMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDIyNDA1MjAyM1oXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjdiYzAxOTYtOTA5MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALQplDPYOjLxxHXrrYO0x+HvBOwLf3t8Mv0ZzTYmSJWyUnZFJz42BpWwA9kN YxAFbTDfGZuhqov3bfVdJ/f4j54rAUsbF7HKAfPKUgcT0VRIG+k7x4nnucnveyYR O/66aCrNAxjvHPeU3oxrKL6aAyPbybHDRCcaMHyzxQF+0Bhbul5/dmDYllo/GdqC Wqf7L/mMl0Zr977yrBFYVG/FnPvUnPUZPnGK4n2yXZlgOY9xY94H9jKAYogjs+DU rKN5pFZttMi7Sh7dAu8cNotj1rXSTMfhxepZ+NAg9irwawmmXqnso2gWrkuoo6kd WHf3MvfpYbdRLvyiHw8ZS8hshZMCAwEAAaOCApswggKXMB0GA1UdDgQWBBTpoq8G 10T0LejoBE8kF4N9Avce0TAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzBCQjhBQkUy RjI2RjExRUY5Mzc2QjExMkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCUGCCsGAQUFBwEHAQH/ BBYwFDASBAIAATAMAwQAZ6hLAwQBZ6wwMA0GCSqGSIb3DQEBCwUAA4IBAQB+Az2H kIKpowYrqAyUruA1M9wu+9GkIcgI2vCDmZNNteKK+SzGWWX2smSfdVoMPKmSdH5o A1uMho9bupthMS2MioLJqp+g28ZXjVdXSxebqk+oSXs5qnw6OvqT6EyIbAy1zwdb 24mWTpd9noz2xEfVhUD13M2s0+K46qsJ+lgo2xI9T7Pkoo4nS8ywDGD/Rz0abNCZ FmGaz/xyRa6FEdgtE+MZ9AlmA/KkUH0yJHW6fnzrjcEBgBDJaU63yq/kus9HuO3l TzF0osio+h/QJ5ZSYonEEKUpMtEMaf6WGMEGapgFqocAmUBUhrrFgOtiPV7WwtGI LqYr2pKLaGKdMkNZ -----END CERTIFICATE-----Generated at Fri Apr 4 01:51:50 2025 by rpki-client