$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/38FFAC50884411EDA212BC24C4F9AE02.roa File: 38FFAC50884411EDA212BC24C4F9AE02.roa (raw, json) Hash identifier: ckq5cjCEQ/2WL7JkGpSyoM0Cdw/OAtqMQAwrig1lc1c= Subject key identifier: 67:13:BC:63:FE:67:B1:27:A7:21:BD:10:B8:ED:CE:98:43:96:9D:8D Certificate issuer: /CN=A918D0DE/serialNumber=933C4CD6D8435C0F8BE2F5234726D6610F7EDA3A Certificate serial: 0C05 Authority key identifier: 93:3C:4C:D6:D8:43:5C:0F:8B:E2:F5:23:47:26:D6:61:0F:7E:DA:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/38FFAC50884411EDA212BC24C4F9AE02.roa Signing time: Tue 20 May 2025 19:14:15 +0000 ROA not before: Tue 20 May 2025 19:14:15 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 139052 IP address blocks: 103.139.18.0/23 maxlen: 24 2400:cd60::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.crl rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 18:54:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3077 (0xc05) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0DE, serialNumber=933C4CD6D8435C0F8BE2F5234726D6610F7EDA3A Validity Not Before: May 20 19:14:15 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682cd487-2daa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:57:1d:97:5a:21:14:42:80:d9:44:e6:8b:c1: ca:fb:4a:12:c3:8d:13:c3:f2:85:75:ed:c8:b7:f7: 6a:a0:41:d6:8d:51:f2:55:cd:34:ae:64:8a:1e:35: 69:d9:99:25:b4:77:59:d2:d6:78:b1:cb:e9:dd:92: b1:c3:1f:e7:1c:1d:3e:39:5d:35:58:b4:55:53:ce: 83:b0:aa:3b:9e:ae:c9:79:12:e8:cb:aa:14:aa:e9: b7:8b:9b:d3:ff:ce:c4:77:84:e7:09:7a:11:f8:54: 32:62:23:16:7a:f4:93:5b:62:6d:43:34:a0:8d:e7: 67:c9:97:9d:69:3b:6e:68:37:2f:a0:e6:ac:b2:c5: 32:bc:a3:88:a2:95:9f:c1:9a:94:72:68:c9:3a:68: a1:6c:39:05:48:3a:29:41:c5:b1:97:06:8c:8f:dd: 61:9a:ff:ea:49:62:e3:25:dc:bc:24:81:0f:c3:86: c4:3c:ec:97:3c:c3:1d:eb:7e:52:d9:54:d5:21:db: a1:11:dc:23:f9:3a:0a:ca:ba:99:8e:6e:81:f4:6a: 5b:57:33:ca:88:6b:a4:f1:3a:55:92:70:ec:0c:2c: 0d:d1:22:21:0f:7c:76:42:5a:f7:c6:ec:af:1e:ff: 03:ca:b7:60:03:44:c5:bd:2e:d7:ef:46:b3:b5:a0: 55:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:13:BC:63:FE:67:B1:27:A7:21:BD:10:B8:ED:CE:98:43:96:9D:8D X509v3 Authority Key Identifier: keyid:93:3C:4C:D6:D8:43:5C:0F:8B:E2:F5:23:47:26:D6:61:0F:7E:DA:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/kzxM1thDXA-L4vUjRybWYQ9-2jo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzxM1thDXA-L4vUjRybWYQ9-2jo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0DE/DA45D430152511EA80DBF009C4F9AE02/38FFAC50884411EDA212BC24C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.139.18.0/23 IPv6: 2400:cd60::/32 Signature Algorithm: sha256WithRSAEncryption 6f:ec:77:4a:6b:43:98:8f:53:b2:1e:33:93:ff:a5:23:ad:09: c2:b5:84:87:4d:18:8e:cb:1a:37:b2:c7:4a:74:a7:5e:e0:e8: 06:d2:39:f9:6a:05:bf:90:89:93:2a:65:89:9f:13:2b:88:6d: aa:c2:43:51:d6:35:0d:bf:5e:58:f0:81:c8:49:bf:fc:82:79: d1:a5:b6:68:c8:79:0c:ba:8f:9f:ff:6b:54:2a:cb:c8:89:23: 8c:b8:15:b9:61:09:34:c2:0f:36:12:17:8e:51:89:9f:8c:7c: 17:ca:2c:0b:46:3e:f7:39:0b:fd:72:24:21:ee:ac:1d:cf:13: 6b:03:08:9d:9e:dc:fe:33:18:bc:6d:75:6c:b8:c0:72:ab:c6: 14:fe:df:dc:d9:f7:a9:a3:0f:b4:c5:ec:04:29:1a:62:5a:47: b4:3d:32:ff:84:ca:27:9d:7a:4d:ab:06:33:19:bf:71:bc:7b: 98:fa:36:01:e4:19:63:98:a2:a5:ae:45:77:cf:51:e0:e7:a7: 60:1e:f8:50:a0:81:fc:f3:95:e5:0b:e9:1c:36:d7:9c:e5:18: 2e:13:a5:16:79:1e:1a:78:4c:19:c0:35:f4:d7:57:c2:a3:a6: 1c:ab:c5:47:27:f2:9f:51:3c:65:e7:3d:18:27:2a:99:bc:c8: 7f:28:0e:0a -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDAUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwREUxMTAvBgNVBAUTKDkzM0M0Q0Q2RDg0MzVDMEY4QkUyRjUyMzQ3MjZENjYx MEY3RURBM0EwHhcNMjUwNTIwMTkxNDE1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJjZDQ4Ny0yZGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Vcdl1ohFEKA2UTmi8HK+0oSw40Tw/KFde3It/dqoEHWjVHyVc00rmSKHjVp 2ZkltHdZ0tZ4scvp3ZKxwx/nHB0+OV01WLRVU86DsKo7nq7JeRLoy6oUqum3i5vT /87Ed4TnCXoR+FQyYiMWevSTW2JtQzSgjednyZedaTtuaDcvoOasssUyvKOIopWf wZqUcmjJOmihbDkFSDopQcWxlwaMj91hmv/qSWLjJdy8JIEPw4bEPOyXPMMd635S 2VTVIduhEdwj+ToKyrqZjm6B9GpbVzPKiGuk8TpVknDsDCwN0SIhD3x2Qlr3xuyv Hv8DyrdgA0TFvS7X70aztaBVzQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFGcTvGP+ Z7EnpyG9ELjtzphDlp2NMB8GA1UdIwQYMBaAFJM8TNbYQ1wPi+L1I0cm1mEPfto6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBERS9EQTQ1RDQzMDE1 MjUxMUVBODBEQkYwMDlDNEY5QUUwMi9renhNMXRoRFhBLUw0dlVqUnliV1lROS0y am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t6eE0xdGhEWEEtTDR2VWpSeWJXWVE5LTJqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEQwREUvREE0NUQ0MzAxNTI1MTFFQTgwREJGMDA5QzRGOUFFMDIvMzhGRkFDNTA4 ODQ0MTFFREEyMTJCQzI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnixIwDQQCAAIwBwMFACQAzWAwDQYJKoZIhvcNAQELBQAD ggEBAG/sd0prQ5iPU7IeM5P/pSOtCcK1hIdNGI7LGjeyx0p0p17g6AbSOflqBb+Q iZMqZYmfEyuIbarCQ1HWNQ2/XljwgchJv/yCedGltmjIeQy6j5//a1Qqy8iJI4y4 FblhCTTCDzYSF45RiZ+MfBfKLAtGPvc5C/1yJCHurB3PE2sDCJ2e3P4zGLxtdWy4 wHKrxhT+39zZ96mjD7TF7AQpGmJaR7Q9Mv+Eyiedek2rBjMZv3G8e5j6NgHkGWOY oqWuRXfPUeDnp2Ae+FCggfzzleUL6Rw215zlGC4TpRZ5Hhp4TBnANfTXV8Kjphyr xUcn8p9RPGXnPRgnKpm8yH8oDgo= -----END CERTIFICATE-----Generated at Wed Jun 4 00:16:29 2025 by rpki-client