$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C7D0A6A83B1111ED8383933FC4F9AE02.roa File: C7D0A6A83B1111ED8383933FC4F9AE02.roa (raw, json) Hash identifier: 9xCl+La45zOv38/zzC2yvL1MIuUoI8/YeuJJShKaGyA= Subject key identifier: B3:32:5F:99:27:BA:B5:0D:D6:2B:3E:3B:1E:25:CE:8C:9E:28:63:71 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: A496 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C7D0A6A83B1111ED8383933FC4F9AE02.roa Signing time: Mon 03 Feb 2025 11:04:44 +0000 ROA not before: Mon 03 Feb 2025 11:04:44 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 150040 IP address blocks: 103.67.97.0/24 maxlen: 24 103.176.116.0/24 maxlen: 24 103.176.117.0/24 maxlen: 24 2001:df1:67c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 15:26:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42134 (0xa496) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: Feb 3 11:04:44 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=67a0a2cc-c825 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:e9:e3:35:3b:93:a3:72:f2:4d:af:d2:1f:96: 61:98:5f:87:07:a9:34:6c:d1:be:6f:ba:b4:75:9d: 8e:02:47:41:cb:84:0d:ec:23:59:b4:05:23:3c:2a: e9:65:22:a3:31:27:c5:29:dc:3f:e2:c8:38:4c:c3: 5c:af:34:a7:58:df:04:3b:f7:cb:9e:08:c9:f5:15: 15:65:6e:e9:f5:57:73:2a:9e:f2:53:e9:0e:b9:06: 9e:7e:7e:c0:79:a2:06:4b:f3:e3:4d:50:16:9f:1a: 63:db:b6:cc:90:e9:66:92:8a:19:1e:ff:f9:6a:2b: 08:4c:fc:96:c9:3a:01:7f:6d:ee:0c:d4:f8:17:dd: b0:96:e1:f5:c7:56:37:fe:69:e6:47:72:b9:f6:d6: b0:3e:4f:bf:aa:f6:22:39:fb:1a:7b:86:fc:32:4c: f8:82:96:f5:81:34:1b:86:fe:65:b4:e4:ee:40:70: 69:57:7c:2b:50:f7:b0:ba:90:01:4f:24:9f:db:6c: 56:c2:0b:34:3b:21:5f:6e:ef:80:da:3b:7e:d4:fe: 5e:8c:fe:ad:d2:19:87:d2:45:13:b3:51:3c:00:52: 87:5a:6e:46:4f:0a:9f:dc:60:1c:2e:4c:b0:16:50: 6c:f0:87:2c:f8:84:8f:89:25:5f:36:07:17:19:1e: 80:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:32:5F:99:27:BA:B5:0D:D6:2B:3E:3B:1E:25:CE:8C:9E:28:63:71 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/C7D0A6A83B1111ED8383933FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.67.97.0/24 103.176.116.0/23 IPv6: 2001:df1:67c0::/48 Signature Algorithm: sha256WithRSAEncryption 32:c5:b3:58:29:0b:68:4f:0d:34:c1:39:f6:3b:1a:90:72:64: b2:45:36:66:87:85:29:0d:45:83:18:42:ba:ce:d4:43:66:40: d6:8e:10:78:a7:37:f0:5b:02:3e:41:94:87:62:b0:19:42:f7: 4f:bc:d8:d1:35:a8:d1:3f:f6:f9:05:73:ed:78:5d:10:df:a1: ce:44:1a:45:67:14:d3:36:b5:c2:fe:fa:6d:d0:44:b6:92:40: f8:ee:f7:de:3e:61:4d:dd:87:71:83:5d:27:33:cd:15:a6:61: 2f:e0:26:44:a8:80:7c:e7:38:5e:7a:88:c2:12:c8:b9:3f:51: 40:86:db:51:08:8a:e0:32:b0:35:8a:07:95:a9:f7:6d:06:95: 8e:94:58:01:1e:96:7b:97:35:f8:02:26:b2:ef:59:5c:fd:55: 61:d2:81:ab:3e:2a:f3:7b:d4:82:28:f3:86:53:de:ea:9f:f8: ea:d3:99:8a:b7:11:88:cf:6d:88:a5:74:27:73:98:4f:00:3c: 3e:ac:12:0b:cd:fd:dc:52:15:e2:78:3e:a4:0e:b5:fd:4c:f8: ac:85:6e:3b:73:8f:2d:0e:49:5e:26:2c:7b:d3:f0:71:c7:9e: 1e:ee:45:43:cf:3e:83:1b:f6:ce:75:ed:aa:ec:99:ca:a8:86: 24:04:e3:5e -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgIDAKSWMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDIwMzExMDQ0NFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjdhMGEyY2MtYzgyNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANzp4zU7k6Ny8k2v0h+WYZhfhwepNGzRvm+6tHWdjgJHQcuEDewjWbQFIzwq 6WUiozEnxSncP+LIOEzDXK80p1jfBDv3y54IyfUVFWVu6fVXcyqe8lPpDrkGnn5+ wHmiBkvz401QFp8aY9u2zJDpZpKKGR7/+WorCEz8lsk6AX9t7gzU+BfdsJbh9cdW N/5p5kdyufbWsD5Pv6r2Ijn7GnuG/DJM+IKW9YE0G4b+ZbTk7kBwaVd8K1D3sLqQ AU8kn9tsVsILNDshX27vgNo7ftT+Xoz+rdIZh9JFE7NRPABSh1puRk8Kn9xgHC5M sBZQbPCHLPiEj4klXzYHFxkegDUCAwEAAaOCAqwwggKoMB0GA1UdDgQWBBSzMl+Z J7q1DdYrPjseJc6MnihjcTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0M3RDBBNkE4 M0IxMTExRUQ4MzgzOTMzRkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDYGCCsGAQUFBwEHAQH/ BCcwJTASBAIAATAMAwQAZ0NhAwQBZ7B0MA8EAgACMAkDBwAgAQ3xZ8AwDQYJKoZI hvcNAQELBQADggEBADLFs1gpC2hPDTTBOfY7GpByZLJFNmaHhSkNRYMYQrrO1ENm QNaOEHinN/BbAj5BlIdisBlC90+82NE1qNE/9vkFc+14XRDfoc5EGkVnFNM2tcL+ +m3QRLaSQPju994+YU3dh3GDXSczzRWmYS/gJkSogHznOF56iMISyLk/UUCG21EI iuAysDWKB5Wp920GlY6UWAEelnuXNfgCJrLvWVz9VWHSgas+KvN71IIo84ZT3uqf +OrTmYq3EYjPbYildCdzmE8APD6sEgvN/dxSFeJ4PqQOtf1M+KyFbjtzjy0OSV4m LHvT8HHHnh7uRUPPPoMb9s517arsmcqohiQE414= -----END CERTIFICATE-----Generated at Sat Apr 5 01:52:38 2025 by rpki-client