$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/EA9D97665BD511EC9B98994EC4F9AE02.roa File: EA9D97665BD511EC9B98994EC4F9AE02.roa (raw, json) Hash identifier: hF9GGB+4fzJx6R9KkCJfIw/DIJHg0MsDPB66fohbfVk= Subject key identifier: 9E:D4:48:B9:0B:0F:B6:42:41:A9:81:23:D3:92:D8:F6:66:52:55:24 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: A6ED Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/EA9D97665BD511EC9B98994EC4F9AE02.roa Signing time: Thu 20 Feb 2025 06:09:55 +0000 ROA not before: Thu 20 Feb 2025 06:09:55 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 147221 IP address blocks: 103.31.40.0/23 maxlen: 24 103.129.100.0/23 maxlen: 24 103.176.134.0/23 maxlen: 24 2001:df3:b1c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 07:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42733 (0xa6ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: Feb 20 06:09:55 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=67b6c733-b191 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:21:e3:00:ce:a2:fb:60:b4:22:6f:d0:d4:e5: 79:5d:3c:fa:53:40:83:41:13:ef:be:a4:eb:5a:f9: 36:2d:a4:36:17:3f:ab:2a:97:d1:27:97:fa:3f:45: a2:84:30:7b:92:85:65:d9:8d:da:fb:77:40:3d:b6: 15:9e:a6:6a:cb:cb:ed:1d:9b:de:6e:57:40:54:3d: a9:0e:a5:f4:88:6a:1d:8a:dd:3d:16:3a:0b:c4:db: ec:3e:0e:1e:73:5b:95:9c:00:9a:b1:a5:bf:2e:1a: 96:b4:9d:13:e8:f4:d8:ce:3b:dc:99:ce:7a:cd:5d: 68:64:13:9a:9c:cc:bb:d0:24:3b:44:7e:45:a1:de: 8b:f0:88:ca:66:b7:cb:f3:a0:82:d4:cb:8f:50:4e: 5a:55:06:f0:3d:66:51:da:1b:e9:1f:ab:a0:f5:87: 02:4c:57:e5:27:bd:64:21:d7:14:99:b6:9f:9a:a0: 7a:6c:08:01:df:10:a7:88:eb:4a:62:ee:30:76:43: 28:7b:2c:92:44:88:66:06:cb:77:3c:13:2b:95:0f: d5:50:36:0b:70:e1:ea:bd:57:33:1a:d1:0c:b9:cd: 85:0b:37:b7:02:b9:e9:85:76:2e:7d:e6:3e:e5:ff: 37:74:b9:57:aa:1b:52:cd:de:f3:f0:1f:a7:8e:eb: d6:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:D4:48:B9:0B:0F:B6:42:41:A9:81:23:D3:92:D8:F6:66:52:55:24 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/EA9D97665BD511EC9B98994EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.31.40.0/23 103.129.100.0/23 103.176.134.0/23 IPv6: 2001:df3:b1c0::/48 Signature Algorithm: sha256WithRSAEncryption 4e:74:55:73:b1:aa:a7:d3:9b:a0:cd:6d:06:79:fb:87:2a:04: 25:57:a2:c1:15:66:89:b6:d3:73:67:07:81:75:f9:46:72:de: fc:ed:8b:8e:04:f0:b6:e4:5e:96:ab:24:c8:eb:c9:3a:d0:d2: ff:09:be:63:a5:c6:76:93:c5:44:55:c3:19:e4:cc:be:44:bb: c9:13:55:22:19:36:b0:8e:11:62:1e:74:39:03:7e:ab:36:9a: 45:c2:f8:e6:91:1b:ec:f8:ac:6f:3d:11:eb:60:a6:28:d0:12: d4:95:42:64:c6:5e:6d:ed:6f:ea:4d:1c:40:d7:25:1f:c0:e7: 26:83:53:63:91:e1:31:8e:bc:77:ce:66:55:97:0f:a0:eb:70: b7:cf:11:75:96:fd:05:d5:b1:7a:ba:ca:57:16:93:e8:af:98: 5c:8c:b4:8e:9e:7b:19:4a:f3:04:70:45:e8:5d:8b:93:6a:d3: f5:dc:c9:1d:9b:c3:f7:23:40:b8:40:ab:d1:94:ed:23:a0:06: 98:0e:0f:2d:c2:df:c2:fc:41:6f:78:b9:a9:92:93:fd:e9:11: 56:71:47:94:7d:aa:87:bc:69:c8:0f:8b:59:41:a6:04:71:11: 37:ac:78:3d:9b:74:6c:86:55:26:25:e8:c9:34:09:e6:a5:be: 13:6b:a1:a3 -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgIDAKbtMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDIyMDA2MDk1NVoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjdiNmM3MzMtYjE5MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMIh4wDOovtgtCJv0NTleV08+lNAg0ET776k61r5Ni2kNhc/qyqX0SeX+j9F ooQwe5KFZdmN2vt3QD22FZ6masvL7R2b3m5XQFQ9qQ6l9IhqHYrdPRY6C8Tb7D4O HnNblZwAmrGlvy4alrSdE+j02M473JnOes1daGQTmpzMu9AkO0R+RaHei/CIyma3 y/OggtTLj1BOWlUG8D1mUdob6R+roPWHAkxX5Se9ZCHXFJm2n5qgemwIAd8Qp4jr SmLuMHZDKHsskkSIZgbLdzwTK5UP1VA2C3Dh6r1XMxrRDLnNhQs3twK56YV2Ln3m PuX/N3S5V6obUs3e8/Afp47r1okCAwEAAaOCArIwggKuMB0GA1UdDgQWBBSe1Ei5 Cw+2QkGpgSPTktj2ZlJVJDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0VBOUQ5NzY2 NUJENTExRUM5Qjk4OTk0RUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDwGCCsGAQUFBwEHAQH/ BC0wKzAYBAIAATASAwQBZx8oAwQBZ4FkAwQBZ7CGMA8EAgACMAkDBwAgAQ3zscAw DQYJKoZIhvcNAQELBQADggEBAE50VXOxqqfTm6DNbQZ5+4cqBCVXosEVZom203Nn B4F1+UZy3vzti44E8LbkXparJMjryTrQ0v8JvmOlxnaTxURVwxnkzL5Eu8kTVSIZ NrCOEWIedDkDfqs2mkXC+OaRG+z4rG89EetgpijQEtSVQmTGXm3tb+pNHEDXJR/A 5yaDU2OR4TGOvHfOZlWXD6DrcLfPEXWW/QXVsXq6ylcWk+ivmFyMtI6eexlK8wRw Rehdi5Nq0/XcyR2bw/cjQLhAq9GU7SOgBpgODy3C38L8QW94uamSk/3pEVZxR5R9 qoe8acgPi1lBpgRxETeseD2bdGyGVSYl6Mk0CealvhNroaM= -----END CERTIFICATE-----Generated at Fri Apr 4 11:20:15 2025 by rpki-client