$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B236F87AFF3511EFB96C0644C4F9AE02.roa File: B236F87AFF3511EFB96C0644C4F9AE02.roa (raw, json) Hash identifier: l4jus6fNN8gJaQeDXC7Kk9NYQcQhumV0pphx/yGgzec= Subject key identifier: FE:1E:8C:B4:2B:8D:9A:85:DB:78:83:D7:0B:9D:08:E3:76:41:4A:E6 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: AAC6 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B236F87AFF3511EFB96C0644C4F9AE02.roa Signing time: Wed 12 Mar 2025 11:32:36 +0000 ROA not before: Wed 12 Mar 2025 11:32:36 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 135219 IP address blocks: 103.66.16.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 15:28:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43718 (0xaac6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: Mar 12 11:32:36 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=67d170d4-c4d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:7a:af:8b:4e:19:a0:56:3e:94:41:4f:f4:77: 36:1f:ee:b0:b1:b0:e3:c9:19:66:00:dd:99:d6:20: 50:81:15:6d:44:f9:47:e5:ba:c5:75:b1:42:b0:ba: 90:4f:47:e7:af:26:3b:79:5b:c2:d4:b0:f1:74:80: 6f:b7:c6:b8:e6:54:f6:19:5c:26:d4:26:3a:7d:7c: ff:e3:fb:ef:73:b4:b4:e8:7b:45:0e:43:03:43:db: e2:25:8e:10:76:dd:da:ac:38:76:9c:34:e8:5a:df: 4b:37:8d:ff:a2:ae:37:bd:84:3f:5d:b3:83:8a:b7: 95:58:7f:a6:8c:e9:d1:d2:6c:89:84:eb:a0:60:f9: a8:2b:31:b1:c2:52:6f:fe:b2:e6:5c:1e:44:b5:9b: 8d:16:7d:b7:22:8f:8f:6e:79:96:54:af:88:af:bb: bd:96:12:0d:5f:29:54:fc:8b:19:ee:c0:38:fc:37: bd:24:8a:78:79:0a:cb:e7:2c:06:59:df:aa:31:2a: f3:0d:3e:e9:30:bb:de:dd:37:eb:87:38:a7:a7:01: d9:ad:fe:4d:66:99:e9:e4:be:93:cb:74:37:37:be: 3f:52:d9:e5:30:d8:43:d3:b6:63:96:c2:2b:e9:0d: 95:d9:71:d2:e8:0d:c0:f9:bb:e3:af:4a:14:07:f2: 07:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:1E:8C:B4:2B:8D:9A:85:DB:78:83:D7:0B:9D:08:E3:76:41:4A:E6 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/B236F87AFF3511EFB96C0644C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.66.16.0/22 Signature Algorithm: sha256WithRSAEncryption b3:53:8a:4f:67:66:f8:98:60:bd:94:1a:46:76:12:16:74:f1: e1:d0:c8:db:d8:d1:45:f0:e9:d9:f8:81:58:59:c7:e2:13:e2: e9:c3:5a:4b:f4:5e:b8:b2:5f:df:ac:44:69:94:29:19:6b:39: 4d:c3:56:2d:ff:25:e0:04:57:6c:48:b0:f3:a6:88:43:f3:b7: 73:e6:5e:4c:6e:cc:6a:aa:34:63:a7:0c:1e:7b:e6:7a:48:ef: 2f:cb:be:28:33:e8:10:4d:61:a8:13:2f:a5:6a:4a:7a:59:16: 0f:a9:1f:30:f0:05:64:77:00:b0:4e:86:b1:86:b1:7e:68:26: f5:d0:f1:28:66:af:91:61:73:9e:70:a9:64:66:46:ad:d3:af: b5:b4:dc:38:0a:0f:3d:b8:ea:51:de:c4:75:fc:fc:e6:11:9e: a0:53:f8:0c:13:9e:5e:4c:2b:8a:48:f3:76:99:b4:a6:25:66: 4c:f5:26:59:30:64:51:52:58:f0:74:99:cc:03:78:f2:62:9c: c4:c5:25:57:97:02:71:53:f8:fd:5c:8f:e8:12:8a:e4:06:f0: de:a7:c0:55:f4:fe:6c:44:69:0a:e8:5c:27:23:48:c3:19:3c: 6b:19:6b:b5:e3:bc:34:85:df:4b:e5:44:1b:60:64:ca:b3:76: 40:07:0d:3e -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDAKrGMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDMxMjExMzIzNloXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjdkMTcwZDQtYzRkMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK56r4tOGaBWPpRBT/R3Nh/usLGw48kZZgDdmdYgUIEVbUT5R+W6xXWxQrC6 kE9H568mO3lbwtSw8XSAb7fGuOZU9hlcJtQmOn18/+P773O0tOh7RQ5DA0Pb4iWO EHbd2qw4dpw06FrfSzeN/6KuN72EP12zg4q3lVh/pozp0dJsiYTroGD5qCsxscJS b/6y5lweRLWbjRZ9tyKPj255llSviK+7vZYSDV8pVPyLGe7AOPw3vSSKeHkKy+cs BlnfqjEq8w0+6TC73t0364c4p6cB2a3+TWaZ6eS+k8t0Nze+P1LZ5TDYQ9O2Y5bC K+kNldlx0ugNwPm7469KFAfyB40CAwEAAaOCApUwggKRMB0GA1UdDgQWBBT+Hoy0 K42ahdt4g9cLnQjjdkFK5jAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0IyMzZGODdB RkYzNTExRUZCOTZDMDY0NEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQCZ0IQMA0GCSqGSIb3DQEBCwUAA4IBAQCzU4pPZ2b4mGC9 lBpGdhIWdPHh0Mjb2NFF8OnZ+IFYWcfiE+Lpw1pL9F64sl/frERplCkZazlNw1Yt /yXgBFdsSLDzpohD87dz5l5MbsxqqjRjpwwee+Z6SO8vy74oM+gQTWGoEy+lakp6 WRYPqR8w8AVkdwCwToaxhrF+aCb10PEoZq+RYXOecKlkZkat06+1tNw4Cg89uOpR 3sR1/PzmEZ6gU/gME55eTCuKSPN2mbSmJWZM9SZZMGRRUljwdJnMA3jyYpzExSVX lwJxU/j9XI/oEorkBvDep8BV9P5sRGkK6FwnI0jDGTxrGWu147w0hd9L5UQbYGTK s3ZABw0+ -----END CERTIFICATE-----Generated at Fri Apr 4 10:51:32 2025 by rpki-client