$ rpki-client -vvf rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/5B639C667CEB11EDA3D10364C4F9AE02.roa File: 5B639C667CEB11EDA3D10364C4F9AE02.roa (raw, json) Hash identifier: /k7UGLxYpMRjSXOkhilDp1PbyHK35jDBnjLpEab1SqY= Subject key identifier: B6:D2:34:66:55:5C:58:FC:E1:BF:27:59:5F:06:16:31:82:CA:29:65 Certificate issuer: /CN=A912859A/serialNumber=68060AEFBBFCC07D73DB5D7278BC8F249C57F515 Certificate serial: 0385 Authority key identifier: 68:06:0A:EF:BB:FC:C0:7D:73:DB:5D:72:78:BC:8F:24:9C:57:F5:15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aAYK77v8wH1z211yeLyPJJxX9RU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/5B639C667CEB11EDA3D10364C4F9AE02.roa Signing time: Sat 05 Apr 2025 01:06:20 +0000 ROA not before: Sat 05 Apr 2025 01:06:20 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 136970 IP address blocks: 103.146.158.0/23 maxlen: 23 103.146.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.crl rsync://rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aAYK77v8wH1z211yeLyPJJxX9RU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:36:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 901 (0x385) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912859A, serialNumber=68060AEFBBFCC07D73DB5D7278BC8F249C57F515 Validity Not Before: Apr 5 01:06:20 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67f0820c-4049 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:78:cf:de:d7:6d:00:59:f0:14:1b:6b:3a:1b: 75:06:7e:83:97:b8:e3:b7:6b:3a:c6:d1:41:5d:ee: 9d:59:99:db:09:d9:c0:5d:8b:30:14:ef:c2:54:32: de:53:cd:8f:86:b5:0c:b0:c2:39:49:b9:82:9a:9c: 07:75:54:d1:75:92:5d:34:fb:bf:f3:be:00:40:48: 3d:f9:5d:d9:2c:bc:80:3f:7b:be:78:14:ba:cd:40: 19:d1:28:dd:2c:d0:fb:b5:9c:0d:8e:c2:5e:f5:4b: 9f:04:94:86:6b:af:94:bc:52:a0:ab:bb:0f:48:b3: 94:4e:d2:c5:c9:33:d7:37:3e:5c:94:55:3a:b9:8a: bd:df:92:6b:92:d9:c8:f2:85:d4:cb:c3:b9:3c:0f: cb:3b:51:a7:bd:21:98:53:96:c3:cb:c8:9a:e2:6d: c9:a4:4a:96:55:13:30:14:e6:e2:cb:9a:b6:74:27: ae:b3:20:24:f0:94:83:b4:2d:ac:26:0e:76:0a:d0: 4b:a2:c6:fb:6c:8d:29:6d:5c:0e:a1:59:60:c6:14: 60:61:e0:3f:8e:ef:bb:07:65:3c:a9:e6:1a:9f:b1: 6d:3d:17:02:a8:d0:bb:96:a7:93:78:1c:bb:a1:ec: d9:5e:86:8e:63:9e:12:aa:86:15:31:37:b9:95:11: d6:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:D2:34:66:55:5C:58:FC:E1:BF:27:59:5F:06:16:31:82:CA:29:65 X509v3 Authority Key Identifier: keyid:68:06:0A:EF:BB:FC:C0:7D:73:DB:5D:72:78:BC:8F:24:9C:57:F5:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/aAYK77v8wH1z211yeLyPJJxX9RU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aAYK77v8wH1z211yeLyPJJxX9RU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912859A/BACAB7EC9DFE11ECB87F5147C4F9AE02/5B639C667CEB11EDA3D10364C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.146.158.0/23 Signature Algorithm: sha256WithRSAEncryption a3:59:77:9b:6f:cf:f4:77:97:0e:cd:0a:12:21:08:bc:bd:08: 3e:75:ce:84:83:7a:aa:80:5d:68:8b:d2:db:c5:2c:fa:77:d2: 0b:2e:c2:31:b9:39:06:16:9a:16:85:0b:2a:a2:96:7a:85:f3: 6a:63:9e:b5:11:75:c6:f9:37:3c:37:bd:32:8f:10:71:53:5e: d0:d9:d5:02:fc:bd:27:1c:dd:62:ac:e2:d5:da:1d:3f:05:c9: cc:fa:ca:94:4f:60:9d:38:f4:8f:ca:29:b0:2d:e4:b6:dc:8d: 27:fe:d1:ae:b0:6d:d5:ae:94:ab:67:01:77:1a:0c:5b:eb:fa: 59:e1:3e:b3:a1:77:c2:17:23:f3:18:ad:7f:55:fd:28:61:4e: ca:1c:7b:91:57:e8:af:0c:2c:b9:6f:50:a2:01:fe:f3:fe:d2: 2b:e1:e3:91:4d:0e:b8:5c:46:31:f0:62:ba:81:cb:df:c1:3c: 37:7c:7d:b1:cd:0f:62:e4:26:01:20:72:29:c6:58:a8:f7:90: 48:7c:69:33:f3:f7:db:93:c2:fc:b6:12:4c:06:12:e6:e0:fe: 3a:54:60:49:2c:fc:1c:20:af:cf:81:ec:1b:50:d5:a1:68:5b: 7e:7a:b2:fb:50:30:d7:db:a7:e8:3c:7d:7c:7c:22:06:3b:80: b4:f7:a9:db -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA4UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg1OUExMTAvBgNVBAUTKDY4MDYwQUVGQkJGQ0MwN0Q3M0RCNUQ3Mjc4QkM4RjI0 OUM1N0Y1MTUwHhcNMjUwNDA1MDEwNjIwWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2YwODIwYy00MDQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnXjP3tdtAFnwFBtrOht1Bn6Dl7jjt2s6xtFBXe6dWZnbCdnAXYswFO/CVDLe U82PhrUMsMI5SbmCmpwHdVTRdZJdNPu/874AQEg9+V3ZLLyAP3u+eBS6zUAZ0Sjd LND7tZwNjsJe9UufBJSGa6+UvFKgq7sPSLOUTtLFyTPXNz5clFU6uYq935JrktnI 8oXUy8O5PA/LO1GnvSGYU5bDy8ia4m3JpEqWVRMwFObiy5q2dCeusyAk8JSDtC2s Jg52CtBLosb7bI0pbVwOoVlgxhRgYeA/ju+7B2U8qeYan7FtPRcCqNC7lqeTeBy7 oezZXoaOY54SqoYVMTe5lRHW6wIDAQABo4IClTCCApEwHQYDVR0OBBYEFLbSNGZV XFj84b8nWV8GFjGCyillMB8GA1UdIwQYMBaAFGgGCu+7/MB9c9tdcni8jyScV/UV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODU5QS9CQUNBQjdFQzlE RkUxMUVDQjg3RjUxNDdDNEY5QUUwMi9hQVlLNzd2OHdIMXoyMTF5ZUx5UEpKeFg5 UlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FBWUs3N3Y4d0gxejIxMXllTHlQSkp4WDlSVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjg1OUEvQkFDQUI3RUM5REZFMTFFQ0I4N0Y1MTQ3QzRGOUFFMDIvNUI2MzlDNjY3 Q0VCMTFFREEzRDEwMzY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnkp4wDQYJKoZIhvcNAQELBQADggEBAKNZd5tvz/R3lw7N ChIhCLy9CD51zoSDeqqAXWiL0tvFLPp30gsuwjG5OQYWmhaFCyqilnqF82pjnrUR dcb5Nzw3vTKPEHFTXtDZ1QL8vScc3WKs4tXaHT8Fycz6ypRPYJ049I/KKbAt5Lbc jSf+0a6wbdWulKtnAXcaDFvr+lnhPrOhd8IXI/MYrX9V/ShhTsoce5FX6K8MLLlv UKIB/vP+0ivh45FNDrhcRjHwYrqBy9/BPDd8fbHND2LkJgEgcinGWKj3kEh8aTPz 99uTwvy2EkwGEubg/jpUYEks/Bwgr8+B7BtQ1aFoW356svtQMNfbp+g8fXx8IgY7 gLT3qds= -----END CERTIFICATE-----Generated at Sat Apr 26 14:07:57 2025 by rpki-client