$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/18DC638A976111EBB8326784C4F9AE02.roa File: 18DC638A976111EBB8326784C4F9AE02.roa (raw, json) Hash identifier: AoyzNuNoAeymEMVYLWFZ++qfvKIgVVZg49G4ZZ4/gPM= Subject key identifier: CD:BF:1A:D5:72:95:5C:A9:A7:DE:92:EC:4C:C5:3F:4A:1B:03:CD:12 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B693 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/18DC638A976111EBB8326784C4F9AE02.roa Signing time: Thu 08 May 2025 16:17:26 +0000 ROA not before: Thu 08 May 2025 16:17:26 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141791 IP address blocks: 103.165.2.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 12:12:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46739 (0xb693) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:17:26 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd916-21aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:10:00:5b:df:65:c0:d0:23:fd:ae:c2:05:45: 33:a1:c0:1d:11:f4:e1:c2:a9:50:bc:0b:dc:e9:20: 82:a1:8d:86:49:14:ea:c0:e8:0b:cc:da:23:82:31: ed:ed:a4:1a:8a:7f:43:56:da:65:25:3a:49:df:91: 0c:52:44:9b:f5:c7:7a:77:b3:ff:2b:b6:44:5d:c7: 5b:2e:e9:17:d4:a8:0e:1e:a0:24:d4:9d:66:e1:98: 44:b0:ba:d0:16:56:e3:57:d1:f7:80:ba:3a:fc:c5: 6c:db:09:0a:e4:e0:21:30:25:1a:a3:8c:af:78:1e: 2f:fc:6f:1b:e3:bb:8c:dc:9b:62:a2:37:80:c5:4e: 68:cf:02:2b:f6:ca:de:c5:1f:85:f5:dd:1a:1e:92: d9:8e:ef:f3:be:df:2a:83:08:6c:88:ac:74:d4:ff: 80:61:62:a0:d0:d7:49:07:bd:d5:07:34:79:0c:21: 23:71:7d:35:ea:09:8a:5d:f9:4d:3b:9a:ff:d4:36: d3:d8:1e:7e:ef:1c:88:eb:02:27:5f:31:83:2d:4b: 3e:af:42:cc:03:f2:66:ee:d4:a6:d0:71:46:c5:4c: a7:12:b9:1e:d3:72:04:15:24:47:80:4e:31:c0:5b: b9:57:f9:f3:ca:bd:49:84:90:c3:0b:bf:fe:10:a5: b4:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:BF:1A:D5:72:95:5C:A9:A7:DE:92:EC:4C:C5:3F:4A:1B:03:CD:12 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/18DC638A976111EBB8326784C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.165.2.0/23 Signature Algorithm: sha256WithRSAEncryption 98:5e:b8:63:cc:19:dc:f0:8f:dd:e8:c3:0f:e0:1b:af:44:42: ca:f9:d6:08:a0:ec:49:cd:b7:38:16:20:6b:1e:94:cd:77:eb: 53:08:03:32:43:4d:35:9c:e3:74:b1:38:2b:cd:a3:6c:cf:2f: 95:3e:05:2e:9d:9e:99:64:33:72:e6:fe:ce:5b:dc:74:f7:0d: 95:6b:99:60:5f:e2:5c:d8:3d:17:87:aa:fd:0a:03:69:b5:81: 2d:b8:fb:96:53:6b:a2:a1:84:c2:43:fe:55:59:01:51:da:12: 9e:fb:64:fc:17:27:9b:05:51:ae:39:27:dc:2b:fc:e1:b3:ad: 89:ca:bc:64:93:08:6f:c2:e2:6b:7a:f9:c4:0f:33:cf:f7:b0: 66:8d:2c:4e:7d:e0:06:48:22:31:1d:85:e0:f7:85:56:11:9f: 26:e1:cf:51:a4:89:7a:e4:26:f4:37:99:93:e4:26:8f:f8:50: 5b:cf:8e:ee:23:4e:3b:00:b8:e9:aa:c4:37:5e:c6:24:34:f9: 7f:18:bc:4a:5c:02:d3:42:7a:1e:0f:ba:d9:22:83:05:a4:c5: 90:75:01:41:3e:86:7b:fc:62:f9:44:80:b9:04:55:79:3e:b9: bf:f3:27:96:c4:f2:60:7b:ad:93:12:3c:1e:ae:d0:1c:56:69: bc:9f:23:d7 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDALaTMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MTcyNloXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q5MTYtMjFhYTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALIQAFvfZcDQI/2uwgVFM6HAHRH04cKpULwL3OkggqGNhkkU6sDoC8zaI4Ix 7e2kGop/Q1baZSU6Sd+RDFJEm/XHenez/yu2RF3HWy7pF9SoDh6gJNSdZuGYRLC6 0BZW41fR94C6OvzFbNsJCuTgITAlGqOMr3geL/xvG+O7jNybYqI3gMVOaM8CK/bK 3sUfhfXdGh6S2Y7v877fKoMIbIisdNT/gGFioNDXSQe91Qc0eQwhI3F9NeoJil35 TTua/9Q209gefu8ciOsCJ18xgy1LPq9CzAPyZu7UptBxRsVMpxK5HtNyBBUkR4BO McBbuVf588q9SYSQwwu//hCltOECAwEAAaOCApUwggKRMB0GA1UdDgQWBBTNvxrV cpVcqafekuxMxT9KGwPNEjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzE4REM2MzhB OTc2MTExRUJCODMyNjc4NEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQBZ6UCMA0GCSqGSIb3DQEBCwUAA4IBAQCYXrhjzBnc8I/d 6MMP4BuvRELK+dYIoOxJzbc4FiBrHpTNd+tTCAMyQ001nON0sTgrzaNszy+VPgUu nZ6ZZDNy5v7OW9x09w2Va5lgX+Jc2D0Xh6r9CgNptYEtuPuWU2uioYTCQ/5VWQFR 2hKe+2T8FyebBVGuOSfcK/zhs62JyrxkkwhvwuJrevnEDzPP97BmjSxOfeAGSCIx HYXg94VWEZ8m4c9RpIl65Cb0N5mT5CaP+FBbz47uI047ALjpqsQ3XsYkNPl/GLxK XALTQnoeD7rZIoMFpMWQdQFBPoZ7/GL5RIC5BFV5Prm/8yeWxPJge62TEjwertAc Vmm8nyPX -----END CERTIFICATE-----Generated at Fri Jun 6 07:11:47 2025 by rpki-client