$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/56844100E2EC11EF8BD5A167C4F9AE02.roa File: 56844100E2EC11EF8BD5A167C4F9AE02.roa (raw, json) Hash identifier: DOFOIHAPJd6DNKXuvfpjiYh9fJi2Ho687Kx/v3ySLEo= Subject key identifier: 14:61:10:77:7E:63:3D:FA:14:88:CB:AB:BB:3D:9F:EB:D0:7D:44:5A Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: A5C4 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/56844100E2EC11EF8BD5A167C4F9AE02.roa Signing time: Tue 11 Feb 2025 06:34:25 +0000 ROA not before: Tue 11 Feb 2025 06:34:25 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 153275 IP address blocks: 103.78.148.0/22 maxlen: 24 163.61.4.0/23 maxlen: 24 2401:eae0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 15:28:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42436 (0xa5c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: Feb 11 06:34:25 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=67aaef71-fa4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:8c:4d:63:59:c6:9a:d9:9c:0c:95:96:2f:9c: ee:ff:01:29:f0:5f:2f:ad:67:51:98:79:d6:1d:bb: 20:b3:c7:ea:8c:61:d1:61:3f:c7:ed:13:23:2b:39: 21:0a:fd:cd:71:a2:b5:35:b1:2e:c6:bf:3a:7f:a4: b0:f8:15:03:46:72:37:99:5a:fd:01:44:f3:a6:7e: 46:d7:07:b2:d8:52:50:a4:ac:01:c2:de:7b:e5:70: 67:1e:a6:da:0f:d6:19:2c:00:52:7b:90:d7:d2:b7: 1e:bf:48:13:98:1d:93:1d:d4:94:26:fc:60:e1:0b: c5:cd:5d:d6:3e:41:62:8e:5e:2f:68:b5:92:c5:7e: 0f:07:a1:d2:87:4e:68:c3:a4:89:46:8e:09:e7:42: 19:c1:e2:f6:81:95:d2:6d:01:84:28:26:56:a0:6f: 73:50:29:f5:1b:97:e5:d6:2e:08:33:ef:0c:46:d8: 92:56:bb:fe:01:84:a5:77:f4:b3:f4:04:75:1b:fa: 2b:82:d3:76:7d:f2:4c:9c:dc:9a:78:b4:1a:b7:94: de:4c:09:2e:f2:8b:c2:1d:db:84:c1:b1:13:ae:13: 26:32:92:05:01:75:b8:cf:64:e0:e4:32:f7:6f:7a: 7e:14:86:8a:b4:92:f9:b3:d5:39:c3:f0:26:ed:bd: 03:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:61:10:77:7E:63:3D:FA:14:88:CB:AB:BB:3D:9F:EB:D0:7D:44:5A X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/56844100E2EC11EF8BD5A167C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.78.148.0/22 163.61.4.0/23 IPv6: 2401:eae0::/32 Signature Algorithm: sha256WithRSAEncryption 26:ae:31:66:e2:e6:91:ea:a0:63:b9:bf:99:2f:16:79:9f:78: 54:8e:14:7f:e4:fd:08:7d:27:1d:da:31:c6:08:a1:ba:d6:51: 46:27:79:d7:e5:be:e6:c6:c0:92:3e:15:16:20:d5:4d:3e:62: 13:44:b0:d3:1c:6f:e3:f7:04:06:e1:58:53:ce:02:cb:5c:dd: c3:09:7f:73:b8:10:cf:3f:16:bf:a8:b4:d5:02:e4:76:aa:6e: 46:b0:3c:5b:ae:29:7b:38:bc:03:35:1c:a6:42:7a:5f:89:fd: 64:80:d7:47:80:e2:39:32:cf:3c:35:37:c8:3a:0b:41:20:5c: 01:1f:7b:ce:58:75:c2:af:c4:42:16:57:8c:c1:34:be:19:ba: 37:4a:45:f0:78:da:a3:60:ab:e7:47:7f:ca:e4:de:d9:22:53: 1f:f7:7e:32:e4:00:9c:7d:f7:9d:dd:f7:d6:e6:db:d6:52:9e: 3c:a8:f5:94:c2:ce:db:8a:44:2d:3b:4b:bd:99:3c:62:ed:d7: a5:cf:10:e1:62:6b:de:14:88:7d:56:a7:c4:47:dc:40:29:75: 9d:2e:a6:e1:40:28:e4:0c:30:2f:c6:57:0e:a9:d1:cb:9c:d4: 2f:6b:1e:02:e9:b6:96:11:fe:83:f6:23:c4:07:4a:68:9d:b0: 00:03:f5:bf -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgIDAKXEMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDIxMTA2MzQyNVoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjdhYWVmNzEtZmE0YTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKWMTWNZxprZnAyVli+c7v8BKfBfL61nUZh51h27ILPH6oxh0WE/x+0TIys5 IQr9zXGitTWxLsa/On+ksPgVA0ZyN5la/QFE86Z+RtcHsthSUKSsAcLee+VwZx6m 2g/WGSwAUnuQ19K3Hr9IE5gdkx3UlCb8YOELxc1d1j5BYo5eL2i1ksV+Dweh0odO aMOkiUaOCedCGcHi9oGV0m0BhCgmVqBvc1Ap9RuX5dYuCDPvDEbYkla7/gGEpXf0 s/QEdRv6K4LTdn3yTJzcmni0GreU3kwJLvKLwh3bhMGxE64TJjKSBQF1uM9k4OQy 9296fhSGirSS+bPVOcPwJu29A68CAwEAAaOCAqowggKmMB0GA1UdDgQWBBQUYRB3 fmM9+hSIy6u7PZ/r0H1EWjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzU2ODQ0MTAw RTJFQzExRUY4QkQ1QTE2N0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDQGCCsGAQUFBwEHAQH/ BCUwIzASBAIAATAMAwQCZ06UAwQBoz0EMA0EAgACMAcDBQAkAergMA0GCSqGSIb3 DQEBCwUAA4IBAQAmrjFm4uaR6qBjub+ZLxZ5n3hUjhR/5P0IfScd2jHGCKG61lFG J3nX5b7mxsCSPhUWINVNPmITRLDTHG/j9wQG4VhTzgLLXN3DCX9zuBDPPxa/qLTV AuR2qm5GsDxbril7OLwDNRymQnpfif1kgNdHgOI5Ms88NTfIOgtBIFwBH3vOWHXC r8RCFleMwTS+Gbo3SkXweNqjYKvnR3/K5N7ZIlMf934y5ACcffed3ffW5tvWUp48 qPWUws7bikQtO0u9mTxi7delzxDhYmveFIh9VqfER9xAKXWdLqbhQCjkDDAvxlcO qdHLnNQvax4C6baWEf6D9iPEB0ponbAAA/W/ -----END CERTIFICATE-----Generated at Fri Apr 4 10:58:40 2025 by rpki-client