$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/EBD69C88385311EF92B5BA70C4F9AE02.roa File: EBD69C88385311EF92B5BA70C4F9AE02.roa (raw, json) Hash identifier: wtWlNtPT9WsqOTNIil95FDNwELDW5UywNV3LzhwtMwE= Subject key identifier: 65:33:E8:03:AE:B1:95:82:F6:9B:B8:1E:AD:70:26:02:91:30:95:49 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: A39F Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/EBD69C88385311EF92B5BA70C4F9AE02.roa Signing time: Mon 27 Jan 2025 09:56:28 +0000 ROA not before: Mon 27 Jan 2025 09:56:28 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 147195 IP address blocks: 103.38.52.0/23 maxlen: 24 103.174.144.0/23 maxlen: 24 2001:df1:9bc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 07:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41887 (0xa39f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: Jan 27 09:56:28 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6797584c-05b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:70:ba:bf:f9:30:40:06:61:9b:fa:a7:62:28: 4a:b5:4b:84:dd:08:c8:e2:a8:d2:24:c2:47:44:68: 2e:b3:6c:d6:f0:44:86:6e:eb:e3:13:79:6b:e2:95: 67:0f:44:f7:d2:53:aa:73:4d:02:c5:94:3b:c3:ac: ba:52:9d:16:12:3c:0f:02:6e:4f:fa:56:e8:9f:c9: 76:30:8d:a8:69:aa:35:82:41:7c:db:73:89:60:61: 05:15:fe:4f:02:05:4e:e2:7f:d4:4d:15:e4:00:92: 4a:2b:aa:00:08:9c:0e:dd:9d:79:a5:f7:ec:0b:55: 99:21:7f:d4:e1:1a:44:be:69:f3:f6:30:a1:2a:84: 6e:3c:fc:63:3d:87:36:80:5e:ab:fd:39:e2:35:65: 89:07:d0:89:e8:cb:a2:bd:e9:16:5f:db:bb:2d:ba: de:a5:36:1f:77:38:b0:95:0a:3e:29:1a:c7:30:7f: ef:92:c2:33:a0:92:fb:44:02:92:0d:39:2a:ad:ea: 99:bd:1f:02:b1:0a:de:56:ea:3c:5a:89:4e:6d:bd: 1f:ca:88:70:80:01:23:62:eb:d1:26:3a:43:58:fe: 45:3b:93:7f:dd:58:85:44:20:c4:b9:82:e2:4b:87: 94:16:ce:07:9d:47:06:2b:3e:2b:a8:cc:42:ce:f4: ef:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:33:E8:03:AE:B1:95:82:F6:9B:B8:1E:AD:70:26:02:91:30:95:49 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/EBD69C88385311EF92B5BA70C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.38.52.0/23 103.174.144.0/23 IPv6: 2001:df1:9bc0::/48 Signature Algorithm: sha256WithRSAEncryption b9:58:06:31:81:52:84:39:ac:f3:bd:44:2c:27:aa:07:4e:c9: 26:3e:7f:3f:83:22:2e:d8:34:f1:bf:81:d8:e0:c3:24:21:f1: c7:89:38:d3:42:26:17:4a:9d:94:2c:9e:10:05:54:43:ce:fe: da:25:17:32:19:5c:73:d7:0a:3b:19:2a:97:21:dc:28:a6:f0: b8:73:b2:49:0e:d0:23:ec:97:fc:98:31:a4:00:2c:67:b9:20: b9:70:fd:40:da:cc:b5:cd:fa:46:a6:91:b8:5f:0f:86:c0:95: e7:23:f3:91:e0:d9:53:ae:6f:85:e6:6b:36:a7:03:90:b3:48: fc:fa:b5:92:fb:03:d7:13:94:cd:91:30:a3:0e:aa:ae:c7:57: 45:5c:01:8d:5c:23:10:05:bf:df:d0:e7:61:91:b6:95:82:60: 71:24:48:ea:9e:4a:4c:d2:7e:78:37:6c:63:06:e7:47:bb:45: 1a:a1:a5:4f:3e:cf:e0:67:08:70:ce:54:3d:2b:14:5e:ae:76: 09:f0:36:92:03:50:6e:47:3b:24:16:3d:e8:6f:d5:85:6b:d7: e6:6d:bb:c8:10:40:fb:0c:87:ca:07:fa:aa:75:00:3f:b3:72: 58:20:74:83:e9:d1:af:20:9e:e5:a9:5c:4e:26:24:8f:47:ef: 3b:98:dc:7a -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgIDAKOfMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDEyNzA5NTYyOFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjc5NzU4NGMtMDViMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOxwur/5MEAGYZv6p2IoSrVLhN0IyOKo0iTCR0RoLrNs1vBEhm7r4xN5a+KV Zw9E99JTqnNNAsWUO8OsulKdFhI8DwJuT/pW6J/JdjCNqGmqNYJBfNtziWBhBRX+ TwIFTuJ/1E0V5ACSSiuqAAicDt2deaX37AtVmSF/1OEaRL5p8/YwoSqEbjz8Yz2H NoBeq/054jVliQfQiejLor3pFl/buy263qU2H3c4sJUKPikaxzB/75LCM6CS+0QC kg05Kq3qmb0fArEK3lbqPFqJTm29H8qIcIABI2Lr0SY6Q1j+RTuTf91YhUQgxLmC 4kuHlBbOB51HBis+K6jMQs7071ECAwEAAaOCAqwwggKoMB0GA1UdDgQWBBRlM+gD rrGVgvabuB6tcCYCkTCVSTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwL0VCRDY5Qzg4 Mzg1MzExRUY5MkI1QkE3MEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDYGCCsGAQUFBwEHAQH/ BCcwJTASBAIAATAMAwQBZyY0AwQBZ66QMA8EAgACMAkDBwAgAQ3xm8AwDQYJKoZI hvcNAQELBQADggEBALlYBjGBUoQ5rPO9RCwnqgdOySY+fz+DIi7YNPG/gdjgwyQh 8ceJONNCJhdKnZQsnhAFVEPO/tolFzIZXHPXCjsZKpch3Cim8LhzskkO0CPsl/yY MaQALGe5ILlw/UDazLXN+kamkbhfD4bAlecj85Hg2VOub4XmazanA5CzSPz6tZL7 A9cTlM2RMKMOqq7HV0VcAY1cIxAFv9/Q52GRtpWCYHEkSOqeSkzSfng3bGMG50e7 RRqhpU8+z+BnCHDOVD0rFF6udgnwNpIDUG5HOyQWPehv1YVr1+Ztu8gQQPsMh8oH +qp1AD+zclggdIPp0a8gnuWpXE4mJI9H7zuY3Ho= -----END CERTIFICATE-----Generated at Fri Apr 4 10:50:31 2025 by rpki-client