$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/35191848D3B611EDA60A2383C4F9AE02.roa File: 35191848D3B611EDA60A2383C4F9AE02.roa (raw, json) Hash identifier: qD9HXjHDrd5p++YKGawsKx5oFOlkgpilgfMKO0wJA9k= Subject key identifier: D9:A5:3D:AD:43:99:A6:EF:9B:95:DB:64:91:7F:8B:55:27:10:87:51 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B8A7 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/35191848D3B611EDA60A2383C4F9AE02.roa Signing time: Thu 08 May 2025 16:25:24 +0000 ROA not before: Thu 08 May 2025 16:25:24 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 150602 IP address blocks: 103.112.40.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 15:42:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47271 (0xb8a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:25:24 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cdaf4-4a04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:84:a6:69:74:a6:83:2b:bf:91:35:7c:91:f4: 69:f1:52:4a:5c:75:55:05:e8:19:8f:31:16:b3:22: b6:e4:96:ab:ab:3a:92:38:cd:b6:96:3c:0b:a7:6a: f4:97:c7:2a:33:29:89:9a:8e:f1:cb:ba:7c:da:03: 19:22:a1:30:41:9c:df:f4:42:1e:40:bc:75:41:62: 1f:c2:53:d3:a3:26:26:46:8d:63:b8:a6:ba:6a:89: 22:ca:a5:6c:2c:9b:c5:04:0d:50:b0:cf:29:66:f7: 30:1b:a4:10:28:7d:38:00:16:8c:96:60:61:11:cc: 3d:91:c8:df:7b:61:cd:98:22:4d:8f:9b:7e:8b:5c: e2:44:4a:09:64:07:bd:2a:4a:a8:3c:f4:7b:8a:ec: 6f:f2:ea:8d:32:83:72:3d:cd:36:aa:39:8e:1a:b8: c4:50:f7:a1:89:e0:5d:ec:24:a6:e2:1d:58:89:b8: 4c:a3:c8:6c:52:55:03:84:87:73:15:80:87:25:8a: 9b:3f:7c:b2:4a:c1:3d:76:90:1b:57:3f:6e:ff:33: 49:f8:0d:84:c5:4c:5d:c8:9a:2b:2d:d3:c2:fc:19: 94:52:45:6f:03:80:2d:61:ec:be:37:c8:45:27:0e: 56:ce:5d:f4:b2:63:a6:17:83:16:7c:16:08:2e:6f: c8:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:A5:3D:AD:43:99:A6:EF:9B:95:DB:64:91:7F:8B:55:27:10:87:51 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/35191848D3B611EDA60A2383C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.112.40.0/23 Signature Algorithm: sha256WithRSAEncryption 29:01:75:e2:a4:53:2a:12:10:34:ba:12:55:8e:b8:a3:d5:a0: ec:b2:b5:32:c0:e7:22:73:02:2b:2c:89:76:63:f8:96:68:21: d7:86:6d:a3:db:b4:cd:da:b1:65:f4:4e:c0:39:1a:13:44:3e: 7e:22:da:e8:75:d0:7a:ae:b3:27:3e:c4:97:c4:a7:a9:e8:fa: c1:b0:df:3d:39:2b:45:24:ba:1f:6c:eb:ef:49:31:59:aa:79: fc:b5:36:cf:b1:1b:e2:00:41:c3:ee:95:12:b2:78:f5:be:b3: 16:1b:ba:4d:57:05:b6:a4:37:1c:7d:99:cf:a1:f2:76:32:e1: d7:ea:18:93:1d:f7:34:4a:16:c8:b0:35:7f:19:fc:cc:0d:ec: b8:45:1f:9c:b9:85:93:32:2c:33:c8:aa:bf:75:48:ad:83:6f: 30:a8:dc:a9:c7:f6:ad:a7:2e:aa:60:c4:5b:eb:a8:b7:5a:f8: f5:bf:7e:ea:6d:fe:61:f7:6c:3c:33:79:fb:ff:c2:e2:89:8a: f6:58:8a:53:03:25:29:e6:4f:ef:31:91:4f:cb:24:17:4f:df: e2:01:66:51:70:ae:6c:b3:00:fd:f6:f2:97:69:82:5d:52:2a: 3d:0e:7c:fc:d0:23:a2:ad:fa:b8:b2:2c:85:44:a8:69:53:a6: ad:10:84:4b -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDALinMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MjUyNFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2RhZjQtNGEwNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOGEpml0poMrv5E1fJH0afFSSlx1VQXoGY8xFrMituSWq6s6kjjNtpY8C6dq 9JfHKjMpiZqO8cu6fNoDGSKhMEGc3/RCHkC8dUFiH8JT06MmJkaNY7imumqJIsql bCybxQQNULDPKWb3MBukECh9OAAWjJZgYRHMPZHI33thzZgiTY+bfotc4kRKCWQH vSpKqDz0e4rsb/LqjTKDcj3NNqo5jhq4xFD3oYngXewkpuIdWIm4TKPIbFJVA4SH cxWAhyWKmz98skrBPXaQG1c/bv8zSfgNhMVMXciaKy3TwvwZlFJFbwOALWHsvjfI RScOVs5d9LJjpheDFnwWCC5vyBsCAwEAAaOCApUwggKRMB0GA1UdDgQWBBTZpT2t Q5mm75uV22SRf4tVJxCHUTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzM1MTkxODQ4 RDNCNjExRURBNjBBMjM4M0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQBZ3AoMA0GCSqGSIb3DQEBCwUAA4IBAQApAXXipFMqEhA0 uhJVjrij1aDssrUywOcicwIrLIl2Y/iWaCHXhm2j27TN2rFl9E7AORoTRD5+Itro ddB6rrMnPsSXxKep6PrBsN89OStFJLofbOvvSTFZqnn8tTbPsRviAEHD7pUSsnj1 vrMWG7pNVwW2pDccfZnPofJ2MuHX6hiTHfc0ShbIsDV/GfzMDey4RR+cuYWTMiwz yKq/dUitg28wqNypx/atpy6qYMRb66i3Wvj1v37qbf5h92w8M3n7/8LiiYr2WIpT AyUp5k/vMZFPyyQXT9/iAWZRcK5sswD99vKXaYJdUio9Dnz80COirfq4siyFRKhp U6atEIRL -----END CERTIFICATE-----Generated at Fri Jun 6 20:08:57 2025 by rpki-client