$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C5AC0D44CF3511EF96E3AA27C4F9AE02.roa File: C5AC0D44CF3511EF96E3AA27C4F9AE02.roa (raw, json) Hash identifier: xkHY1VVGE8MID2D6pTMIc4PMD86azmzEu9TjMt9gKWw= Subject key identifier: C3:8F:BF:35:AD:DB:86:D9:C2:5C:E2:4B:C0:C2:19:2A:4F:83:EC:59 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: A453 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C5AC0D44CF3511EF96E3AA27C4F9AE02.roa Signing time: Fri 31 Jan 2025 07:05:19 +0000 ROA not before: Fri 31 Jan 2025 07:05:19 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 138244 IP address blocks: 103.94.27.0/24 maxlen: 24 103.191.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 15:28:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42067 (0xa453) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: Jan 31 07:05:19 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=679c762f-62a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fe:16:03:d0:ee:01:c4:0f:5d:54:5d:c7:d7:bf: c7:38:1f:74:8e:1c:b9:7d:3d:51:d2:e1:6e:b5:c4: ee:4e:b9:8a:bb:5c:b8:7e:1c:1d:38:cc:ab:09:68: 66:aa:44:60:2f:3a:20:5c:94:30:ec:9e:9b:b9:e2: 19:d7:4b:a2:db:bd:23:57:38:2f:fc:8e:80:10:25: 42:49:3a:e1:c0:45:22:8a:ce:eb:55:f0:d0:fa:23: 37:d4:42:49:61:9b:f7:b6:7d:40:74:e3:4c:1f:db: 5e:71:d0:7f:d5:37:82:5e:83:ed:ed:54:72:16:5a: d7:a7:0f:d8:ad:69:7c:28:f3:c4:39:5e:f4:58:64: c4:36:75:e7:be:1e:6f:78:6f:c8:06:86:9e:90:1a: 7e:3a:d7:e7:c4:d3:e1:b4:50:86:6a:c1:7c:4a:11: fd:8a:fb:b9:d4:92:12:e5:d4:5b:8a:c7:62:24:3e: 33:d5:c3:62:b5:30:a0:c5:0d:14:8b:b1:26:81:e3: 30:b4:1b:d1:35:7e:a5:84:ec:0c:bb:68:5a:69:bd: cd:55:b2:ff:08:c8:fe:0a:27:5c:66:b0:fb:1e:23: 98:04:21:3c:4d:d2:34:84:65:dd:c2:00:8c:db:45: c2:78:25:fe:f8:e3:6d:a7:52:e4:f5:31:ba:3f:17: 98:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:8F:BF:35:AD:DB:86:D9:C2:5C:E2:4B:C0:C2:19:2A:4F:83:EC:59 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C5AC0D44CF3511EF96E3AA27C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.94.27.0/24 103.191.132.0/24 Signature Algorithm: sha256WithRSAEncryption a8:92:d2:cb:db:9c:25:65:bb:30:0e:6f:49:54:94:29:df:ad: 80:35:d5:3e:c5:f8:93:73:8a:a1:38:ba:55:fe:b5:a8:92:e0: 26:ce:bd:9f:20:f9:9e:98:7b:9d:7e:3f:04:63:c2:61:a6:68: a8:7b:58:76:36:14:9c:51:17:a8:ba:25:bb:b9:5a:3a:fc:48: 23:8c:54:d1:73:6b:fc:97:2c:c0:3a:4f:a9:c6:70:85:d5:17: f4:fd:ae:b0:14:e5:56:18:e1:05:e7:a8:d9:8c:b8:42:c7:26: ff:ab:c4:d9:33:e3:f4:fb:3e:78:5b:1e:41:0f:85:7d:2b:bc: fa:83:66:57:3c:d4:a5:97:17:7f:95:44:9a:45:90:bd:79:a1: 10:df:79:ff:c7:9b:c0:70:88:d1:b6:f5:c3:4c:fc:ea:08:a9: 12:25:51:ee:ef:80:67:2a:73:1d:5d:e9:a3:2a:db:d2:b0:41: 3f:d5:d5:d9:7d:b6:10:7f:24:00:8a:de:69:0c:28:2c:15:00: 27:d5:c1:74:1b:b9:31:d2:52:d5:01:df:33:93:6a:7f:e2:34: d7:dd:2b:bd:59:6e:fc:03:55:eb:66:ac:90:f8:c0:c4:9e:34: a9:36:97:b3:1f:ec:c9:6f:9b:74:4f:36:7b:53:23:18:92:06: 82:45:d3:f6 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIDAKRTMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDEzMTA3MDUxOVoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjc5Yzc2MmYtNjJhNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAP4WA9DuAcQPXVRdx9e/xzgfdI4cuX09UdLhbrXE7k65irtcuH4cHTjMqwlo ZqpEYC86IFyUMOyem7niGddLotu9I1c4L/yOgBAlQkk64cBFIorO61Xw0PojN9RC SWGb97Z9QHTjTB/bXnHQf9U3gl6D7e1UchZa16cP2K1pfCjzxDle9FhkxDZ1574e b3hvyAaGnpAafjrX58TT4bRQhmrBfEoR/Yr7udSSEuXUW4rHYiQ+M9XDYrUwoMUN FIuxJoHjMLQb0TV+pYTsDLtoWmm9zVWy/wjI/gonXGaw+x4jmAQhPE3SNIRl3cIA jNtFwngl/vjjbadS5PUxuj8XmPsCAwEAAaOCApswggKXMB0GA1UdDgQWBBTDj781 rduG2cJc4kvAwhkqT4PsWTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0M1QUMwRDQ0 Q0YzNTExRUY5NkUzQUEyN0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCUGCCsGAQUFBwEHAQH/ BBYwFDASBAIAATAMAwQAZ14bAwQAZ7+EMA0GCSqGSIb3DQEBCwUAA4IBAQCoktLL 25wlZbswDm9JVJQp362ANdU+xfiTc4qhOLpV/rWokuAmzr2fIPmemHudfj8EY8Jh pmioe1h2NhScUReouiW7uVo6/EgjjFTRc2v8lyzAOk+pxnCF1Rf0/a6wFOVWGOEF 56jZjLhCxyb/q8TZM+P0+z54Wx5BD4V9K7z6g2ZXPNSllxd/lUSaRZC9eaEQ33n/ x5vAcIjRtvXDTPzqCKkSJVHu74BnKnMdXemjKtvSsEE/1dXZfbYQfyQAit5pDCgs FQAn1cF0G7kx0lLVAd8zk2p/4jTX3Su9WW78A1XrZqyQ+MDEnjSpNpezH+zJb5t0 TzZ7UyMYkgaCRdP2 -----END CERTIFICATE-----Generated at Fri Apr 4 10:54:43 2025 by rpki-client