$ rpki-client -vvf rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/80DE56F2355D11F0A8C7F559C4F9AE02.roa File: 80DE56F2355D11F0A8C7F559C4F9AE02.roa (raw, json) Hash identifier: Aj0XMuYXgKOkJrvVAWJwZ355fHJjhadv4AzfTIK8zF0= Subject key identifier: F4:82:F4:D4:74:07:37:0A:D0:BF:3A:47:E6:6B:8E:7B:E5:E7:A4:B7 Certificate issuer: /CN=A918BB4D/serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Certificate serial: 06C5 Authority key identifier: EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/80DE56F2355D11F0A8C7F559C4F9AE02.roa Signing time: Tue 20 May 2025 09:33:36 +0000 ROA not before: Tue 20 May 2025 09:33:36 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 134130 IP address blocks: 43.254.216.0/22 maxlen: 22 103.238.224.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 22:23:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1733 (0x6c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BB4D, serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Validity Not Before: May 20 09:33:36 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=682c4c70-d526 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:48:aa:79:37:a2:4b:8e:b3:43:67:87:1b:59: ad:fe:4a:f0:43:51:c5:f5:8f:f4:58:8e:28:df:c6: 06:a1:65:8e:22:7d:07:af:38:97:a6:a2:98:ce:3d: 82:a1:63:eb:cd:b4:fb:1f:7f:2c:db:b4:58:bc:7a: 7f:a5:3f:fb:8c:15:e4:a6:ef:02:77:3d:26:7c:e5: 9a:af:6d:b3:20:8f:3c:aa:f6:b9:c9:78:85:e1:53: c0:80:79:c5:dc:6d:9d:6a:99:f9:7c:68:3b:83:bd: 80:33:97:d8:a9:93:04:c5:b9:1b:26:e2:14:6a:68: 86:1f:df:6b:88:fb:5c:45:53:9d:06:57:52:72:3d: b8:9a:00:e0:1a:2b:1a:49:94:d8:4d:9f:2b:ea:83: e6:ba:f7:16:7c:58:fa:08:1a:47:ea:6d:fe:7f:6e: c4:7d:12:83:6b:2e:b6:a5:f6:fc:dd:7a:3c:98:c1: 58:ff:a2:56:2f:fd:b9:cd:4b:ba:31:6d:34:fb:66: 99:0b:d8:1c:81:c2:ec:35:77:ad:91:e7:de:91:9b: 7b:09:9e:b8:1d:12:f2:73:7e:9f:bc:bc:2f:dc:d8: f8:86:54:dd:ca:df:b4:fc:ef:a6:bc:a5:60:36:aa: 8f:3b:b2:aa:2c:6d:e0:f3:92:7c:b4:e6:0a:25:2c: b1:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:82:F4:D4:74:07:37:0A:D0:BF:3A:47:E6:6B:8E:7B:E5:E7:A4:B7 X509v3 Authority Key Identifier: keyid:EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/80DE56F2355D11F0A8C7F559C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.254.216.0/22 103.238.224.0/22 Signature Algorithm: sha256WithRSAEncryption 61:d8:f7:2d:26:ea:56:de:f7:f2:9a:02:4e:ef:d3:33:82:09: 36:e3:30:b4:14:db:9f:1c:86:69:d5:76:6b:4d:92:96:61:fd: c9:e1:2f:5f:81:d8:03:3c:99:de:4b:18:6e:bc:ee:89:46:bd: 1a:48:c6:41:8e:14:df:b3:1d:e5:ea:bc:24:7c:a4:67:dc:a4: 87:49:78:39:8d:36:23:34:c0:a6:c9:60:6c:04:35:07:3e:ca: ea:6d:96:e1:43:b7:a4:b1:23:c3:14:1e:3a:d9:74:27:5b:f6: 8d:29:1a:64:47:46:2d:04:0f:1c:5f:18:5e:1d:7e:1f:05:65: 4f:24:bb:e7:a0:8c:d6:24:c9:de:04:ba:48:bb:3a:04:f6:be: 18:02:d1:9c:b6:7e:42:31:9c:01:3c:6b:3a:28:c6:46:5f:25: 26:43:a9:22:b9:90:51:13:ef:52:9b:fd:4b:49:61:96:83:86: d2:ce:bf:fd:70:a4:35:e1:40:a5:85:e7:eb:de:68:29:8b:85: 60:c4:2d:87:bb:98:09:ed:ad:27:04:c4:71:28:6e:8c:77:6a: 5a:04:7d:6e:21:f2:4e:cd:03:61:2d:75:eb:75:02:80:a9:8e: b4:f6:0b:1b:c9:df:60:69:04:6f:5e:fe:44:a6:b8:f2:cd:31: 61:36:a1:f4 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBsUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJCNEQxMTAvBgNVBAUTKEVGNDAzNjQzRUE5ODIwQUU2RDlENjIyRjlBRUZEN0E0 QzkxNTRGMjQwHhcNMjUwNTIwMDkzMzM2WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJjNGM3MC1kNTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuUiqeTeiS46zQ2eHG1mt/krwQ1HF9Y/0WI4o38YGoWWOIn0HrziXpqKYzj2C oWPrzbT7H38s27RYvHp/pT/7jBXkpu8Cdz0mfOWar22zII88qva5yXiF4VPAgHnF 3G2dapn5fGg7g72AM5fYqZMExbkbJuIUamiGH99riPtcRVOdBldScj24mgDgGisa SZTYTZ8r6oPmuvcWfFj6CBpH6m3+f27EfRKDay62pfb83Xo8mMFY/6JWL/25zUu6 MW00+2aZC9gcgcLsNXetkefekZt7CZ64HRLyc36fvLwv3Nj4hlTdyt+0/O+mvKVg NqqPO7KqLG3g85J8tOYKJSyx9wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPSC9NR0 BzcK0L86R+Zrjnvl56S3MB8GA1UdIwQYMBaAFO9ANkPqmCCubZ1iL5rv16TJFU8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkI0RC9DQTU2M0JFODY1 MjIxMUVCODBGNkU5NEJDNEY5QUUwMi83MEEyUS1xWUlLNXRuV0l2bXVfWHBNa1ZU eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcwQTJRLXFZSUs1dG5XSXZtdV9YcE1rVlR5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEJCNEQvQ0E1NjNCRTg2NTIyMTFFQjgwRjZFOTRCQzRGOUFFMDIvODBERTU2RjIz NTVEMTFGMEE4QzdGNTU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr/tgDBAJn7uAwDQYJKoZIhvcNAQELBQADggEBAGHY9y0m 6lbe9/KaAk7v0zOCCTbjMLQU258chmnVdmtNkpZh/cnhL1+B2AM8md5LGG687olG vRpIxkGOFN+zHeXqvCR8pGfcpIdJeDmNNiM0wKbJYGwENQc+yuptluFDt6SxI8MU HjrZdCdb9o0pGmRHRi0EDxxfGF4dfh8FZU8ku+egjNYkyd4Euki7OgT2vhgC0Zy2 fkIxnAE8azooxkZfJSZDqSK5kFET71Kb/UtJYZaDhtLOv/1wpDXhQKWF5+veaCmL hWDELYe7mAntrScExHEobox3aloEfW4h8k7NA2Etdet1AoCpjrT2CxvJ32BpBG9e /kSmuPLNMWE2ofQ= -----END CERTIFICATE-----Generated at Tue Jun 3 23:52:37 2025 by rpki-client