$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/86ACA946EDE311EB957B541FC4F9AE02.roa File: 86ACA946EDE311EB957B541FC4F9AE02.roa (raw, json) Hash identifier: KX8LfaBfKRtT7c6Qrvt7wVU5iFKlVw8UAxelI6E9YMw= Subject key identifier: E8:37:A0:AC:8C:50:43:B0:7E:7F:47:98:61:4E:E6:B5:D1:51:35:26 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: AC65 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/86ACA946EDE311EB957B541FC4F9AE02.roa Signing time: Tue 25 Mar 2025 11:11:10 +0000 ROA not before: Tue 25 Mar 2025 11:11:10 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 55410 IP address blocks: 103.143.3.0/24 maxlen: 24 103.163.177.0/24 maxlen: 24 2001:df3:75c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 15:25:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44133 (0xac65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: Mar 25 11:11:10 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=67e28f4e-6609 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d1:d9:15:dc:ac:b6:9b:fd:57:e8:50:38:2b: d7:ff:9c:6c:9a:d0:36:59:ae:7e:97:a3:51:ef:bf: 53:8f:1b:9e:e0:8f:a3:69:5e:b0:08:29:f8:bc:9c: 91:93:a8:8c:75:c3:32:39:08:fa:87:68:02:12:32: e4:7a:09:aa:a3:62:15:02:4b:ae:6f:39:7d:12:fe: ec:19:10:a4:f2:6f:4c:25:d2:6d:e7:d9:29:37:01: a0:d5:a7:20:66:d6:56:05:69:5d:71:62:b1:c5:65: 9a:e3:08:91:2a:c9:65:35:81:16:3b:26:6c:ec:3c: d6:23:61:dc:fb:45:c5:48:56:98:cc:68:b2:9e:3d: c2:8a:8f:08:1e:c0:8d:6b:28:19:03:cb:62:2a:ce: 2a:c4:e9:ee:bb:8c:97:d7:0f:3d:ea:c5:f3:36:c3: af:ce:1f:7c:f0:0f:96:8b:40:4b:b2:86:52:df:ea: 68:da:39:ef:d7:3d:c5:24:eb:78:ba:75:7d:cd:f7: 65:4f:cd:7c:61:91:78:91:ae:16:b0:57:44:2e:f7: dd:85:72:5b:5a:38:eb:60:dd:03:b1:c3:eb:75:a7: aa:92:57:60:60:4a:6f:14:2f:60:b1:36:a2:b2:55: 25:06:f2:52:37:66:93:17:36:3a:7a:4d:24:4a:8a: aa:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:37:A0:AC:8C:50:43:B0:7E:7F:47:98:61:4E:E6:B5:D1:51:35:26 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/86ACA946EDE311EB957B541FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.143.3.0/24 103.163.177.0/24 IPv6: 2001:df3:75c0::/48 Signature Algorithm: sha256WithRSAEncryption 36:18:71:33:89:a0:d6:6e:e4:a2:e3:7f:67:05:79:26:d1:50: 30:07:fe:17:aa:6e:e1:1a:c8:37:3f:d6:82:3e:3b:4c:f7:16: 2a:85:ef:fc:a3:a9:b7:6d:5f:00:06:15:45:2d:e3:10:bc:be: 5f:5c:af:0a:7b:61:95:a2:0c:84:9c:f3:0a:89:3f:00:c0:33: d7:05:4c:68:d2:ea:fc:75:45:d6:75:39:3f:e5:97:86:00:87: 7a:29:59:b5:42:bb:23:4c:57:e3:7a:9e:98:58:5b:e6:43:8c: 96:30:ab:9a:97:e2:a1:46:03:38:ba:a1:46:a0:37:77:97:6c: bc:ab:56:2c:b6:1f:f8:b5:11:23:53:3d:24:4e:d5:60:4a:6e: 60:e8:bf:03:27:66:fe:40:ec:46:7b:97:88:6f:25:93:ac:b6: eb:61:44:ec:85:44:b0:7c:83:e8:5f:88:e5:71:ff:e7:f6:25: 2e:e9:53:f3:38:c0:98:ff:cd:3b:4a:4c:95:7b:dd:ce:a8:bd: a6:74:fc:26:05:3b:bc:c6:d1:3e:5a:ab:d7:30:13:77:19:98: bd:2d:11:a6:af:f8:0f:b8:1d:f3:a6:d7:8a:ae:70:0f:fe:48: 6c:20:34:ac:d5:99:28:b6:d1:db:99:9d:00:ed:de:a2:0e:04: 85:57:a3:01 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgIDAKxlMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDMyNTExMTExMFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjdlMjhmNGUtNjYwOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANnR2RXcrLab/VfoUDgr1/+cbJrQNlmufpejUe+/U48bnuCPo2lesAgp+Lyc kZOojHXDMjkI+odoAhIy5HoJqqNiFQJLrm85fRL+7BkQpPJvTCXSbefZKTcBoNWn IGbWVgVpXXFiscVlmuMIkSrJZTWBFjsmbOw81iNh3PtFxUhWmMxosp49woqPCB7A jWsoGQPLYirOKsTp7ruMl9cPPerF8zbDr84ffPAPlotAS7KGUt/qaNo579c9xSTr eLp1fc33ZU/NfGGReJGuFrBXRC733YVyW1o462DdA7HD63WnqpJXYGBKbxQvYLE2 orJVJQbyUjdmkxc2OnpNJEqKqqECAwEAAaOCAqwwggKoMB0GA1UdDgQWBBToN6Cs jFBDsH5/R5hhTua10VE1JjAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzg2QUNBOTQ2 RURFMzExRUI5NTdCNTQxRkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDYGCCsGAQUFBwEHAQH/ BCcwJTASBAIAATAMAwQAZ48DAwQAZ6OxMA8EAgACMAkDBwAgAQ3zdcAwDQYJKoZI hvcNAQELBQADggEBADYYcTOJoNZu5KLjf2cFeSbRUDAH/heqbuEayDc/1oI+O0z3 FiqF7/yjqbdtXwAGFUUt4xC8vl9crwp7YZWiDISc8wqJPwDAM9cFTGjS6vx1RdZ1 OT/ll4YAh3opWbVCuyNMV+N6nphYW+ZDjJYwq5qX4qFGAzi6oUagN3eXbLyrViy2 H/i1ESNTPSRO1WBKbmDovwMnZv5A7EZ7l4hvJZOstuthROyFRLB8g+hfiOVx/+f2 JS7pU/M4wJj/zTtKTJV73c6ovaZ0/CYFO7zG0T5aq9cwE3cZmL0tEaav+A+4HfOm 14qucA/+SGwgNKzVmSi20duZnQDt3qIOBIVXowE= -----END CERTIFICATE-----Generated at Thu Apr 17 09:35:50 2025 by rpki-client