$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/99170A903E2511EBB1B0E431C4F9AE02.roa File: 99170A903E2511EBB1B0E431C4F9AE02.roa (raw, json) Hash identifier: KymJDZyotGJ8HLpdWf2GBiDAOVzkxe/zd9Va1heN1y0= Subject key identifier: A0:1D:01:6A:26:98:AA:DA:EB:82:9D:EC:59:B1:61:2A:E6:B7:0C:58 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: B61E Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/99170A903E2511EBB1B0E431C4F9AE02.roa Signing time: Thu 08 May 2025 16:15:38 +0000 ROA not before: Thu 08 May 2025 16:15:38 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141295 IP address blocks: 103.160.49.0/24 maxlen: 24 2001:df5:9880::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 15:42:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46622 (0xb61e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Validity Not Before: May 8 16:15:38 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681cd8aa-c869 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:a7:9f:0d:1c:f2:04:40:a7:f3:e9:e4:74:9e: d0:9c:d3:f5:f8:ae:9d:5b:c0:d8:27:2f:1a:a4:45: f8:f7:3b:19:78:ba:4e:b1:4a:9b:52:fc:f2:bd:7c: 96:91:ae:85:eb:1b:22:d7:5f:b1:a5:5e:c9:6d:b5: 1b:2f:e9:02:f6:b9:61:73:3a:60:37:b2:e3:05:78: 7d:82:56:45:5b:6a:db:d9:92:3a:3a:9d:d9:73:20: b6:12:eb:82:42:e1:03:ba:f6:ab:4d:f6:7f:9c:88: b3:20:cd:57:4f:70:a4:a4:94:7d:e6:2d:b9:a8:a7: ac:4a:76:04:61:eb:24:97:03:41:6f:12:1b:e8:4c: 29:ac:c1:bf:e4:94:3c:bb:b8:e7:82:bf:49:91:a8: c7:ba:3e:78:f6:db:95:38:b1:c7:06:6e:b3:a5:74: 16:fc:fc:b8:fb:f6:fe:36:a2:71:4c:7e:46:b5:4c: c4:24:da:20:e7:c1:fd:c0:e5:ab:02:9e:87:4b:b5: 1d:95:36:63:c6:8b:a1:46:86:e4:9e:ee:35:44:6f: 1d:57:4d:b8:3b:06:12:fc:4e:41:01:c0:cd:2a:0e: 3c:36:49:d2:5f:50:9c:19:e4:d1:4c:02:74:a0:fa: 21:75:f9:4a:43:fa:e3:c5:18:8f:74:77:b1:99:f5: bf:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:1D:01:6A:26:98:AA:DA:EB:82:9D:EC:59:B1:61:2A:E6:B7:0C:58 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/99170A903E2511EBB1B0E431C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.160.49.0/24 IPv6: 2001:df5:9880::/48 Signature Algorithm: sha256WithRSAEncryption 9d:4f:f0:c8:51:0d:56:76:9b:3d:4e:ec:c9:b9:0b:49:13:4f: 60:c1:70:9a:28:26:c9:be:51:21:4d:b4:1f:e3:37:58:f3:ef: aa:bc:58:6d:a3:6e:c8:c1:3e:fb:b1:57:f1:32:83:fd:ba:30: e6:d1:61:b4:1b:26:38:df:dc:b3:8c:a3:93:7c:f9:b5:ef:a4: b4:50:6c:f1:09:35:d2:37:77:c9:ef:07:c5:f8:d3:fc:20:db: 4f:62:34:a1:41:ed:f5:20:4d:1b:17:92:56:35:45:c2:5f:41: b3:6d:84:e7:bf:c0:84:9c:7a:ce:fc:dc:d8:b3:8c:94:a7:1c: e2:69:58:08:a4:66:a3:64:3e:53:2f:21:fb:66:ad:0b:a3:56: 91:59:0c:4c:9e:fe:54:24:6e:b3:74:2a:82:38:a8:21:df:65: c1:71:6d:86:d4:ee:43:8e:c7:32:3a:a6:dc:02:ac:a5:53:0c: 36:ce:13:70:c9:e5:a6:82:af:65:9e:cc:4d:08:40:ad:5e:23: 86:27:1b:de:35:ba:4c:ba:97:c1:cf:62:00:d7:5f:04:6d:bc: 84:06:ed:e7:49:74:23:24:a3:f7:21:f0:0f:5f:da:fd:08:41: b7:bb:4b:23:2f:26:02:9b:e2:d8:24:0d:38:3f:24:93:38:ce: 52:fa:69:d7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIDALYeMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDUwODE2MTUzOFoXDTI2MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjgxY2Q4YWEtYzg2OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKunnw0c8gRAp/Pp5HSe0JzT9fiunVvA2CcvGqRF+Pc7GXi6TrFKm1L88r18 lpGuhesbItdfsaVeyW21Gy/pAva5YXM6YDey4wV4fYJWRVtq29mSOjqd2XMgthLr gkLhA7r2q032f5yIsyDNV09wpKSUfeYtuainrEp2BGHrJJcDQW8SG+hMKazBv+SU PLu454K/SZGox7o+ePbblTixxwZus6V0Fvz8uPv2/jaicUx+RrVMxCTaIOfB/cDl qwKeh0u1HZU2Y8aLoUaG5J7uNURvHVdNuDsGEvxOQQHAzSoOPDZJ0l9QnBnk0UwC dKD6IXX5SkP648UYj3R3sZn1vzUCAwEAAaOCAqYwggKiMB0GA1UdDgQWBBSgHQFq Jpiq2uuCnexZsWEq5rcMWDAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzk5MTcwQTkw M0UyNTExRUJCMUIwRTQzMUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMDAGCCsGAQUFBwEHAQH/ BCEwHzAMBAIAATAGAwQAZ6AxMA8EAgACMAkDBwAgAQ31mIAwDQYJKoZIhvcNAQEL BQADggEBAJ1P8MhRDVZ2mz1O7Mm5C0kTT2DBcJooJsm+USFNtB/jN1jz76q8WG2j bsjBPvuxV/Eyg/26MObRYbQbJjjf3LOMo5N8+bXvpLRQbPEJNdI3d8nvB8X40/wg 209iNKFB7fUgTRsXklY1RcJfQbNthOe/wISces783NizjJSnHOJpWAikZqNkPlMv IftmrQujVpFZDEye/lQkbrN0KoI4qCHfZcFxbYbU7kOOxzI6ptwCrKVTDDbOE3DJ 5aaCr2WezE0IQK1eI4YnG941uky6l8HPYgDXXwRtvIQG7edJdCMko/ch8A9f2v0I Qbe7SyMvJgKb4tgkDTg/JJM4zlL6adc= -----END CERTIFICATE-----Generated at Fri Jun 6 20:21:49 2025 by rpki-client