$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6916D8FCD18311EFA0665D52C4F9AE02.roa File: 6916D8FCD18311EFA0665D52C4F9AE02.roa (raw, json) Hash identifier: Bk42qGOPNKuXGc+VeCH9irWZ6OEBXqr5i1WM9uuUKdw= Subject key identifier: F2:E2:71:6C:C4:D8:E1:CB:1C:F4:3B:42:E8:D5:E2:6D:7B:D3:00:E9 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: A27B Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6916D8FCD18311EFA0665D52C4F9AE02.roa Signing time: Mon 13 Jan 2025 07:57:09 +0000 ROA not before: Mon 13 Jan 2025 07:57:09 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 135780 IP address blocks: 103.82.208.0/22 maxlen: 24 103.122.14.0/23 maxlen: 24 103.141.166.0/23 maxlen: 24 103.176.166.0/23 maxlen: 24 2404:8ec0::/32 maxlen: 32 2404:8ec0::/34 maxlen: 34 2404:8ec0::/41 maxlen: 48 2404:8ec0:4000::/34 maxlen: 34 2404:8ec0:8000::/34 maxlen: 34 2404:8ec0:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 07:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41595 (0xa27b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: Jan 13 07:57:09 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6784c755-e1e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:33:2d:d8:ac:5c:34:bc:ff:aa:08:f6:cb:e1: 14:1c:75:1b:a6:1b:74:61:bd:11:30:b3:e6:41:2c: 83:43:23:a9:e0:86:ec:78:58:9e:b9:dd:e9:8a:d2: 1f:8a:0d:20:9c:9c:e6:88:e0:cd:58:4c:2e:2d:32: ab:ab:2c:e8:a5:89:29:ed:0b:cd:58:82:2b:71:97: 60:c9:c4:83:f5:ae:15:d9:09:05:ab:c7:ca:1e:6d: 27:60:b9:50:62:40:4a:55:a1:71:66:b3:c5:23:01: 95:dc:34:ee:dc:c2:99:d7:3a:c4:72:94:e9:c7:d2: 74:90:9b:f3:0e:af:d6:2c:a1:c3:9a:2b:d0:71:18: 44:2d:22:1d:bf:b6:57:97:08:35:1d:b4:d9:67:52: d0:eb:6c:10:84:ed:7b:4d:73:53:7f:87:1d:8d:f4: 73:1c:70:c1:1e:1a:95:c6:72:ce:35:c9:e1:36:f3: 95:b3:12:dc:19:a3:97:be:f5:49:f4:c5:15:19:f4: 59:3f:69:a7:2c:15:21:01:a6:6b:5a:3b:21:25:ba: 37:e1:67:3f:04:60:5c:e5:ab:fb:57:b6:ae:0b:81: 29:06:6a:41:b4:d9:af:e8:53:65:0c:f0:b6:c2:3c: 10:46:89:2a:85:b4:68:d6:01:89:99:3f:6e:b6:16: f6:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:E2:71:6C:C4:D8:E1:CB:1C:F4:3B:42:E8:D5:E2:6D:7B:D3:00:E9 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/6916D8FCD18311EFA0665D52C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.82.208.0/22 103.122.14.0/23 103.141.166.0/23 103.176.166.0/23 IPv6: 2404:8ec0::/32 Signature Algorithm: sha256WithRSAEncryption 37:e8:18:14:3c:b3:48:3d:9b:f9:e6:1b:87:42:f0:0a:3f:08: 42:b1:d6:f4:fc:4f:f9:f2:cc:9f:43:a3:ee:d1:be:2a:fd:11: 52:b2:ea:8a:d5:8a:4d:a2:29:a3:8e:48:33:5e:e8:ad:08:88: 79:5d:5c:a1:f9:ff:c9:5e:a6:43:7a:9f:59:84:12:e6:4b:08: 4b:c4:f8:1b:f4:9b:20:bc:62:c8:03:89:e1:b0:fd:d8:5e:80: 9a:8b:de:d3:ff:87:11:e8:6c:77:37:d4:94:0d:7d:87:c8:78: d3:d1:80:5e:51:9c:a8:23:5e:6f:e5:85:d4:79:7d:02:78:db: 66:c0:6b:d6:09:27:59:ec:ea:b3:78:57:6b:4b:5e:54:f4:88: c5:71:e4:4f:82:fa:87:a0:74:a8:d1:3b:af:b8:e8:f4:1f:41: fa:11:9a:df:5b:be:1a:2e:3c:47:21:86:36:fd:b8:18:3b:d3: de:3b:d3:6c:db:05:e7:af:93:3c:c1:e5:cc:f2:33:2c:4d:5b: 6c:e7:92:92:2e:43:9e:0a:60:cb:6f:07:eb:98:c0:e9:05:c6: 04:2e:f5:b7:82:36:d6:86:97:65:8a:e6:70:02:de:c8:d0:90: a3:5c:92:c3:52:33:f4:32:80:33:58:8c:e8:f6:73:a7:35:4d: 9d:8e:92:c1 -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgIDAKJ7MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDExMzA3NTcwOVoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjc4NGM3NTUtZTFlMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALYzLdisXDS8/6oI9svhFBx1G6YbdGG9ETCz5kEsg0MjqeCG7HhYnrnd6YrS H4oNIJyc5ojgzVhMLi0yq6ss6KWJKe0LzViCK3GXYMnEg/WuFdkJBavHyh5tJ2C5 UGJASlWhcWazxSMBldw07tzCmdc6xHKU6cfSdJCb8w6v1iyhw5or0HEYRC0iHb+2 V5cINR202WdS0OtsEITte01zU3+HHY30cxxwwR4alcZyzjXJ4TbzlbMS3Bmjl771 SfTFFRn0WT9ppywVIQGma1o7ISW6N+FnPwRgXOWr+1e2rguBKQZqQbTZr+hTZQzw tsI8EEaJKoW0aNYBiZk/brYW9qsCAwEAAaOCArYwggKyMB0GA1UdDgQWBBTy4nFs xNjhyxz0O0Lo1eJte9MA6TAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzY5MTZEOEZD RDE4MzExRUZBMDY2NUQ1MkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMEAGCCsGAQUFBwEHAQH/ BDEwLzAeBAIAATAYAwQCZ1LQAwQBZ3oOAwQBZ42mAwQBZ7CmMA0EAgACMAcDBQAk BI7AMA0GCSqGSIb3DQEBCwUAA4IBAQA36BgUPLNIPZv55huHQvAKPwhCsdb0/E/5 8syfQ6Pu0b4q/RFSsuqK1YpNoimjjkgzXuitCIh5XVyh+f/JXqZDep9ZhBLmSwhL xPgb9JsgvGLIA4nhsP3YXoCai97T/4cR6Gx3N9SUDX2HyHjT0YBeUZyoI15v5YXU eX0CeNtmwGvWCSdZ7OqzeFdrS15U9IjFceRPgvqHoHSo0TuvuOj0H0H6EZrfW74a LjxHIYY2/bgYO9PeO9Ns2wXnr5M8weXM8jMsTVts55KSLkOeCmDLbwfrmMDpBcYE LvW3gjbWhpdliuZwAt7I0JCjXJLDUjP0MoAzWIzo9nOnNU2djpLB -----END CERTIFICATE-----Generated at Fri Apr 4 10:58:05 2025 by rpki-client