$ rpki-client -vvf rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/7E7B632E8D6611EDB7F20B1FC4F9AE02.roa File: 7E7B632E8D6611EDB7F20B1FC4F9AE02.roa (raw, json) Hash identifier: kCFs9nmPiAnIcv8oJpJvtJLqB5yozfBXxDX1yoHDz3Q= Subject key identifier: E9:F8:17:77:5F:0E:8A:46:4A:08:1F:E8:4B:C4:E6:85:FE:B8:45:41 Certificate issuer: /CN=A911C621/serialNumber=87A47F27E75E7C2839C133351DA2511482C6F9B4 Certificate serial: 01DC Authority key identifier: 87:A4:7F:27:E7:5E:7C:28:39:C1:33:35:1D:A2:51:14:82:C6:F9:B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h6R_J-defCg5wTM1HaJRFILG-bQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/7E7B632E8D6611EDB7F20B1FC4F9AE02.roa Signing time: Tue 01 Apr 2025 02:58:29 +0000 ROA not before: Tue 01 Apr 2025 02:58:29 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 138687 IP address blocks: 103.86.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/h6R_J-defCg5wTM1HaJRFILG-bQ.crl rsync://rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/h6R_J-defCg5wTM1HaJRFILG-bQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h6R_J-defCg5wTM1HaJRFILG-bQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:12:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 476 (0x1dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C621, serialNumber=87A47F27E75E7C2839C133351DA2511482C6F9B4 Validity Not Before: Apr 1 02:58:29 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67eb5655-df0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:f2:13:95:72:6f:68:4e:14:55:74:8d:de:17: c9:90:81:36:2a:da:2b:27:50:4d:1e:07:c2:4f:1b: 21:d4:e3:65:34:f8:c7:9d:66:f4:22:d9:ed:98:30: 97:9f:15:6a:5f:7e:48:cf:a2:67:81:ad:40:04:bb: 4c:e5:08:a6:c5:b7:85:8e:15:e2:1e:54:b6:dc:23: b1:7e:7b:e2:d5:eb:33:e1:1f:41:d8:04:aa:b6:e1: 72:b6:b1:c8:05:b0:f8:f1:e8:a9:11:d6:16:3b:2c: 71:33:36:99:a1:2b:ee:b5:6f:22:44:62:17:57:7f: 00:db:14:b3:cb:5a:79:ad:88:a0:aa:f3:1f:92:b3: ee:a7:a8:d5:c5:f7:6e:e5:c0:c1:63:04:dd:7e:9e: ec:d0:bb:fb:f1:f1:29:0f:b3:43:e6:66:e1:81:ab: fa:61:ff:10:39:09:e4:f3:a8:d6:0a:be:74:1a:29: e4:7c:9f:ed:86:3c:27:ae:ac:0f:51:2b:7a:b3:1c: 70:d7:bd:d3:34:df:97:50:53:78:ce:fd:c9:fd:81: 5d:d8:6c:81:e7:09:1a:b8:66:27:8a:a8:b9:27:70: 43:59:e8:de:9f:83:2b:5d:28:8f:9e:1c:22:da:e8: fe:bb:36:f9:8d:a9:1d:ce:ed:97:ad:66:52:d1:42: 52:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:F8:17:77:5F:0E:8A:46:4A:08:1F:E8:4B:C4:E6:85:FE:B8:45:41 X509v3 Authority Key Identifier: keyid:87:A4:7F:27:E7:5E:7C:28:39:C1:33:35:1D:A2:51:14:82:C6:F9:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/h6R_J-defCg5wTM1HaJRFILG-bQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h6R_J-defCg5wTM1HaJRFILG-bQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/7E7B632E8D6611EDB7F20B1FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.86.123.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:12:52:c8:14:0b:60:a5:3f:44:d4:fb:65:dc:43:e7:d7:8f: 73:78:87:92:d3:61:77:b0:c0:a1:15:15:7c:88:c6:e6:7a:71: 0c:16:4e:56:f8:3d:b9:4e:f3:99:da:da:94:ed:0f:58:74:4e: c8:dd:3f:73:d4:0f:5a:19:2f:1f:d0:08:80:76:32:9b:60:bd: a1:6f:3b:bc:ca:fd:86:85:7d:49:aa:5f:9a:3f:aa:3e:7c:fb: 7d:5d:5e:76:55:d0:56:7f:b5:87:d7:26:ef:db:c4:de:5a:d9: 8d:d2:3b:89:d5:60:eb:60:c7:1e:5a:b7:70:c5:4a:1e:27:43: 2f:a9:72:2b:41:6a:ae:72:2c:35:21:48:cb:a6:70:6e:e5:f7: f7:49:e1:9c:18:97:b0:10:5a:02:52:a1:5d:98:d3:a9:51:19: 4d:08:52:7b:35:2c:28:64:45:1f:e4:c7:cc:b6:a7:1c:b3:3f: a8:d3:77:12:2f:50:40:37:d7:cd:05:45:2e:ac:e1:e0:60:0e: a8:73:c6:55:20:76:56:a4:f1:77:14:d0:c9:ad:20:32:88:36: b7:e3:84:02:d1:e2:2d:55:f0:bf:3c:72:09:d9:06:59:b5:f5: 73:d3:34:f0:04:41:fe:40:e6:4f:dd:2b:7c:ad:1a:3e:39:0d: eb:8f:64:f4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAdwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM2MjExMTAvBgNVBAUTKDg3QTQ3RjI3RTc1RTdDMjgzOUMxMzMzNTFEQTI1MTE0 ODJDNkY5QjQwHhcNMjUwNDAxMDI1ODI5WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2ViNTY1NS1kZjBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2fITlXJvaE4UVXSN3hfJkIE2KtorJ1BNHgfCTxsh1ONlNPjHnWb0ItntmDCX nxVqX35Iz6Jnga1ABLtM5QimxbeFjhXiHlS23COxfnvi1esz4R9B2ASqtuFytrHI BbD48eipEdYWOyxxMzaZoSvutW8iRGIXV38A2xSzy1p5rYigqvMfkrPup6jVxfdu 5cDBYwTdfp7s0Lv78fEpD7ND5mbhgav6Yf8QOQnk86jWCr50GinkfJ/thjwnrqwP USt6sxxw173TNN+XUFN4zv3J/YFd2GyB5wkauGYniqi5J3BDWejen4MrXSiPnhwi 2uj+uzb5jakdzu2XrWZS0UJSpwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOn4F3df DopGSggf6EvE5oX+uEVBMB8GA1UdIwQYMBaAFIekfyfnXnwoOcEzNR2iURSCxvm0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzYyMS9GN0QwMEJFRTc0 MzkxMUVEOTg2RDczODVDNEY5QUUwMi9oNlJfSi1kZWZDZzV3VE0xSGFKUkZJTEct YlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g2Ul9KLWRlZkNnNXdUTTFIYUpSRklMRy1iUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUM2MjEvRjdEMDBCRUU3NDM5MTFFRDk4NkQ3Mzg1QzRGOUFFMDIvN0U3QjYzMkU4 RDY2MTFFREI3RjIwQjFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnVnswDQYJKoZIhvcNAQELBQADggEBAFwSUsgUC2ClP0TU +2XcQ+fXj3N4h5LTYXewwKEVFXyIxuZ6cQwWTlb4PblO85na2pTtD1h0TsjdP3PU D1oZLx/QCIB2MptgvaFvO7zK/YaFfUmqX5o/qj58+31dXnZV0FZ/tYfXJu/bxN5a 2Y3SO4nVYOtgxx5at3DFSh4nQy+pcitBaq5yLDUhSMumcG7l9/dJ4ZwYl7AQWgJS oV2Y06lRGU0IUns1LChkRR/kx8y2pxyzP6jTdxIvUEA3180FRS6s4eBgDqhzxlUg dlak8XcU0MmtIDKINrfjhALR4i1V8L88cgnZBlm19XPTNPAEQf5A5k/dK3ytGj45 DeuPZPQ= -----END CERTIFICATE-----Generated at Sat Apr 26 13:05:41 2025 by rpki-client