$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5E5C351ECC5A11EC8162C282C4F9AE02.roa File: 5E5C351ECC5A11EC8162C282C4F9AE02.roa (raw, json) Hash identifier: iz9H7bGN9XkHET8rN7/XmL/qacB/KwK8bnU9entwiQ0= Subject key identifier: 29:65:47:32:BC:70:5A:60:3C:0F:06:6F:45:11:18:F3:C4:6B:C1:E2 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B2A5 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5E5C351ECC5A11EC8162C282C4F9AE02.roa Signing time: Thu 08 May 2025 16:01:58 +0000 ROA not before: Thu 08 May 2025 16:01:57 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 134867 IP address blocks: 103.183.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 15:42:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45733 (0xb2a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:01:57 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd575-0c6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:e5:de:ad:a8:67:9b:56:00:ae:d5:dc:7b:05: 2f:d7:73:36:a4:22:a5:b4:10:45:ad:b3:4f:49:57: 2d:bf:b1:ca:a7:69:06:6e:81:e5:36:30:c3:41:b1: 1f:bf:d2:e3:72:fa:c2:5c:5f:03:8b:36:ad:11:be: 28:24:f7:a2:f9:99:43:dd:e5:37:89:d5:50:d3:03: 2b:5a:ab:30:07:a4:02:c1:89:a8:cc:08:48:ce:58: 67:0f:41:00:27:4a:46:6c:9a:e7:7b:df:1f:65:63: 90:50:b9:af:fa:25:02:1c:43:3e:13:40:07:1e:4d: e6:fd:34:e4:a0:73:7d:7f:86:1b:9e:c4:87:dd:2f: 94:9c:5c:cc:c9:6a:50:76:6d:e1:8c:30:22:1a:76: 8d:0a:56:a8:f0:79:a5:cf:e7:5e:fa:00:44:8b:42: d7:0a:ef:69:db:d5:8b:ed:c1:f0:f8:64:d6:64:bb: 26:fb:31:ed:e1:7a:25:3f:54:a8:43:07:ac:43:e1: c7:3e:9d:6f:08:28:79:dc:a5:a0:46:12:00:99:80: 37:b1:ad:80:cc:10:bf:7f:4c:90:4f:0b:f2:ed:95: 58:30:a4:41:f4:b5:be:5c:4c:43:a7:1c:d7:c8:c0: 24:7f:02:05:bd:4e:55:1d:23:31:ee:40:04:3b:f1: 84:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:65:47:32:BC:70:5A:60:3C:0F:06:6F:45:11:18:F3:C4:6B:C1:E2 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/5E5C351ECC5A11EC8162C282C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.183.233.0/24 Signature Algorithm: sha256WithRSAEncryption 49:7d:e2:02:c9:db:03:d1:97:8b:50:0a:b1:aa:54:2b:3b:4f: 78:4a:29:0e:27:43:36:00:e6:ec:98:a7:29:ba:e3:58:46:e1: ed:fc:8d:ea:a3:e7:7d:e9:3d:6e:43:e5:3c:99:3c:be:60:03: 77:87:df:ae:4c:20:01:59:16:39:45:91:80:3c:72:41:aa:3a: ec:87:c2:e6:62:ad:8e:a3:38:f3:f6:96:b8:16:4f:d3:44:77: ac:2a:4c:1d:5a:97:00:fa:23:87:f7:44:24:d1:2d:0e:cc:f9: e0:72:41:c7:d8:ab:5c:02:22:e9:3f:57:40:f7:4c:82:b9:de: c9:1b:06:d6:cf:d5:c3:dc:d5:f5:0e:46:4d:a9:2f:27:1e:3b: 9f:d9:de:81:31:b4:93:7d:3e:db:ac:f8:da:29:06:9e:2b:9a: 51:b6:1f:4c:7d:3e:09:2d:f6:a8:d0:3e:e5:a8:12:6e:a8:2a: f5:3d:e8:d1:60:65:6e:a9:be:f8:f7:5e:75:60:4a:68:6c:66: 1d:28:4b:a7:b4:81:ba:a3:97:0d:0a:b3:66:2c:e6:85:15:a7: f5:f0:eb:46:6e:c0:ba:31:27:44:42:a7:78:4e:af:dd:2d:25: 2a:48:a0:dd:a7:1f:af:83:c7:8a:a5:c2:7d:09:ef:10:cc:71: 63:35:6c:fc -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDALKlMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MDE1N1oXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q1NzUtMGM2ZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOjl3q2oZ5tWAK7V3HsFL9dzNqQipbQQRa2zT0lXLb+xyqdpBm6B5TYww0Gx H7/S43L6wlxfA4s2rRG+KCT3ovmZQ93lN4nVUNMDK1qrMAekAsGJqMwISM5YZw9B ACdKRmya53vfH2VjkFC5r/olAhxDPhNABx5N5v005KBzfX+GG57Eh90vlJxczMlq UHZt4YwwIhp2jQpWqPB5pc/nXvoARItC1wrvadvVi+3B8Phk1mS7Jvsx7eF6JT9U qEMHrEPhxz6dbwgoedyloEYSAJmAN7GtgMwQv39MkE8L8u2VWDCkQfS1vlxMQ6cc 18jAJH8CBb1OVR0jMe5ABDvxhF8CAwEAAaOCApUwggKRMB0GA1UdDgQWBBQpZUcy vHBaYDwPBm9FERjzxGvB4jAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzVFNUMzNTFF Q0M1QTExRUM4MTYyQzI4MkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQAZ7fpMA0GCSqGSIb3DQEBCwUAA4IBAQBJfeICydsD0ZeL UAqxqlQrO094SikOJ0M2AObsmKcpuuNYRuHt/I3qo+d96T1uQ+U8mTy+YAN3h9+u TCABWRY5RZGAPHJBqjrsh8LmYq2Oozjz9pa4Fk/TRHesKkwdWpcA+iOH90Qk0S0O zPngckHH2KtcAiLpP1dA90yCud7JGwbWz9XD3NX1DkZNqS8nHjuf2d6BMbSTfT7b rPjaKQaeK5pRth9MfT4JLfao0D7lqBJuqCr1PejRYGVuqb749151YEpobGYdKEun tIG6o5cNCrNmLOaFFaf18OtGbsC6MSdEQqd4Tq/dLSUqSKDdpx+vg8eKpcJ9Ce8Q zHFjNWz8 -----END CERTIFICATE-----Generated at Fri Jun 6 19:36:29 2025 by rpki-client