$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1DBA318CE4E111ED90315A7AC4F9AE02.roa File: 1DBA318CE4E111ED90315A7AC4F9AE02.roa (raw, json) Hash identifier: 9w6Es4INfiEzOmhNPR5B6tYfxiVrMR8NJ2LCqrd4vXQ= Subject key identifier: B7:1B:73:B7:CC:2E:7B:22:CF:0E:16:8C:3A:CE:4A:9C:E2:43:CC:28 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B53C Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1DBA318CE4E111ED90315A7AC4F9AE02.roa Signing time: Thu 08 May 2025 16:12:13 +0000 ROA not before: Thu 08 May 2025 16:12:13 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 138743 IP address blocks: 103.137.36.0/24 maxlen: 24 2001:df3:c4c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 15:42:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46396 (0xb53c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:12:13 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd7dd-88fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a8:b7:10:76:f4:b0:3b:92:a7:6d:4e:d0:e6: 56:b2:94:62:a1:97:dc:85:6d:75:2e:44:b7:ae:bf: b6:07:c0:72:0f:06:f1:8f:1a:76:9a:4a:3d:15:8b: 04:22:06:bd:0a:a3:9b:33:89:37:c1:58:a3:a0:fe: 06:e1:33:a2:fc:c8:db:2c:bf:3f:dc:4a:30:e2:bd: bc:be:79:d7:19:36:34:2e:ba:8f:14:a8:10:d3:b3: 61:96:95:e8:0d:af:46:17:b7:e5:db:3c:a7:25:27: 11:e4:54:86:fc:85:31:48:8a:f1:56:cb:87:60:dd: a7:c0:86:22:72:79:40:d1:c8:71:f6:27:b1:31:63: 43:5f:ca:a7:7b:08:9d:3c:14:b9:3c:e1:64:f1:98: 78:c0:60:04:36:e7:23:ca:82:14:e1:f6:74:39:e7: 9f:3b:c9:e0:74:d8:f6:f7:d4:4b:26:e0:f8:d0:e7: 41:49:7c:6a:b7:8b:6c:10:4e:59:3e:e5:fa:55:dd: 3d:43:46:88:7d:6a:ea:45:dd:21:bf:4e:d0:9e:68: 03:7c:53:a0:8b:bf:c6:86:11:7f:bb:ef:65:43:0a: 30:ea:b5:c2:5c:ec:ad:03:7f:63:fd:f5:07:5e:15: 8c:2d:7e:43:49:99:47:4d:1f:98:7f:2a:93:30:c7: 9e:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:1B:73:B7:CC:2E:7B:22:CF:0E:16:8C:3A:CE:4A:9C:E2:43:CC:28 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/1DBA318CE4E111ED90315A7AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.137.36.0/24 IPv6: 2001:df3:c4c0::/48 Signature Algorithm: sha256WithRSAEncryption 73:00:c2:b6:9b:2d:9b:b3:d7:c3:cf:3d:30:f2:9c:91:0e:49: 23:13:2f:87:d0:67:78:7f:e7:11:2b:53:f0:25:d9:5c:d5:fa: 72:6a:48:e0:86:20:dc:46:70:e3:ec:36:28:69:57:6d:bd:ac: 43:23:e9:a9:2f:16:10:4b:13:e6:49:9e:0a:c1:fb:c0:e7:97: f8:a7:08:3f:82:79:c1:90:42:e1:fb:e5:90:02:14:27:19:20: 7f:17:87:cb:d3:fc:c1:6f:3e:fb:3e:af:7c:5b:f8:9e:7a:df: 97:db:52:98:34:f9:32:08:1d:59:97:4d:f3:0a:41:da:23:b8: f2:b0:bf:32:06:12:7c:8d:34:41:e0:cf:19:31:c5:83:49:e9: 91:15:36:56:e1:dc:1b:0e:59:eb:0b:e2:da:21:8e:ec:0f:8b: e0:a2:58:e3:7d:32:d1:05:bd:f3:64:c7:f2:a9:37:35:dd:fd: 66:39:28:44:09:37:99:8f:b2:29:53:7e:31:97:a4:6e:8c:9e: 3e:dd:39:f6:d8:1c:06:80:a8:ac:1c:f1:96:80:f2:7d:1e:07: a5:db:ec:04:f8:d5:7a:96:fd:49:08:17:cb:c6:54:70:34:6c: 3f:27:cb:ce:42:55:76:c3:03:07:29:b1:42:f3:9e:67:38:01: a3:3b:99:58 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIDALU8MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MTIxM1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q3ZGQtODhmYTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMKotxB29LA7kqdtTtDmVrKUYqGX3IVtdS5Et66/tgfAcg8G8Y8adppKPRWL BCIGvQqjmzOJN8FYo6D+BuEzovzI2yy/P9xKMOK9vL551xk2NC66jxSoENOzYZaV 6A2vRhe35ds8pyUnEeRUhvyFMUiK8VbLh2Ddp8CGInJ5QNHIcfYnsTFjQ1/Kp3sI nTwUuTzhZPGYeMBgBDbnI8qCFOH2dDnnnzvJ4HTY9vfUSybg+NDnQUl8areLbBBO WT7l+lXdPUNGiH1q6kXdIb9O0J5oA3xToIu/xoYRf7vvZUMKMOq1wlzsrQN/Y/31 B14VjC1+Q0mZR00fmH8qkzDHnskCAwEAAaOCAqYwggKiMB0GA1UdDgQWBBS3G3O3 zC57Is8OFow6zkqc4kPMKDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzFEQkEzMThD RTRFMTExRUQ5MDMxNUE3QUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDAGCCsGAQUFBwEHAQH/ BCEwHzAMBAIAATAGAwQAZ4kkMA8EAgACMAkDBwAgAQ3zxMAwDQYJKoZIhvcNAQEL BQADggEBAHMAwrabLZuz18PPPTDynJEOSSMTL4fQZ3h/5xErU/Al2VzV+nJqSOCG INxGcOPsNihpV229rEMj6akvFhBLE+ZJngrB+8Dnl/inCD+CecGQQuH75ZACFCcZ IH8Xh8vT/MFvPvs+r3xb+J5635fbUpg0+TIIHVmXTfMKQdojuPKwvzIGEnyNNEHg zxkxxYNJ6ZEVNlbh3BsOWesL4tohjuwPi+CiWON9MtEFvfNkx/KpNzXd/WY5KEQJ N5mPsilTfjGXpG6Mnj7dOfbYHAaAqKwc8ZaA8n0eB6Xb7AT41XqW/UkIF8vGVHA0 bD8ny85CVXbDAwcpsULznmc4AaM7mVg= -----END CERTIFICATE-----Generated at Sat Jun 7 06:39:29 2025 by rpki-client