$ rpki-client -vvf rpki.apnic.net/member_repository/A9146B71/F5407D1CCAB811EC87893C56C4F9AE02/8719518C26AD11EDA881874BC4F9AE02.roa File: 8719518C26AD11EDA881874BC4F9AE02.roa (raw, json) Hash identifier: bs5+XFoKF15//AFAKd1GGD7hmAgwTgeLUC9v0U9PGwQ= Subject key identifier: EB:93:DA:29:68:B4:E3:74:C0:25:2E:DD:AC:29:C8:A7:F1:AF:14:82 Certificate issuer: /CN=A9146B71/serialNumber=4639D290986F4F0054FDC059014441621D3ABBFF Certificate serial: 0333 Authority key identifier: 46:39:D2:90:98:6F:4F:00:54:FD:C0:59:01:44:41:62:1D:3A:BB:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RjnSkJhvTwBU_cBZAURBYh06u_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146B71/F5407D1CCAB811EC87893C56C4F9AE02/8719518C26AD11EDA881874BC4F9AE02.roa Signing time: Sun 01 Jun 2025 01:55:09 +0000 ROA not before: Sun 01 Jun 2025 01:55:09 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 149810 IP address blocks: 103.186.240.0/23 maxlen: 23 103.186.240.0/24 maxlen: 24 103.186.241.0/24 maxlen: 24 2400:7620::/32 maxlen: 32 2400:7620::/35 maxlen: 35 2400:7620:2000::/35 maxlen: 35 2400:7620:4000::/35 maxlen: 35 2400:7620:6000::/35 maxlen: 35 2400:7620:8000::/35 maxlen: 35 2400:7620:a000::/35 maxlen: 35 2400:7620:c000::/35 maxlen: 35 2400:7620:e000::/35 maxlen: 35 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146B71/F5407D1CCAB811EC87893C56C4F9AE02/RjnSkJhvTwBU_cBZAURBYh06u_8.crl rsync://rpki.apnic.net/member_repository/A9146B71/F5407D1CCAB811EC87893C56C4F9AE02/RjnSkJhvTwBU_cBZAURBYh06u_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RjnSkJhvTwBU_cBZAURBYh06u_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 00:56:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 819 (0x333) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146B71, serialNumber=4639D290986F4F0054FDC059014441621D3ABBFF Validity Not Before: Jun 1 01:55:09 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683bb2fd-fd57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:21:da:99:a8:6e:07:fa:31:4b:b6:93:cf:e4: 95:0f:38:cd:d3:10:67:94:a6:e9:03:d4:46:9a:ee: b2:d7:a3:b5:3d:b7:88:ad:86:bf:3b:41:95:5c:96: 08:bd:a5:bd:9c:21:e8:ef:a9:d9:ce:e6:98:d2:a8: 4e:40:c4:ba:2d:bf:c2:71:3a:12:7b:93:6e:77:69: 7d:ee:a7:f1:33:1a:11:ed:46:17:aa:ea:b8:c5:8e: 44:f5:ef:7d:cc:ca:59:ed:dd:9a:b3:f2:2d:a6:36: b1:6a:24:c2:58:9f:d8:5e:4f:8f:c5:74:bd:2b:1f: b3:81:05:b8:b5:c0:58:61:3d:e3:cb:5c:cd:02:1e: 2a:f4:c5:3b:ae:e9:83:b5:4a:8d:59:b0:13:71:ef: bc:b7:be:5c:54:f7:13:22:a0:71:53:bd:2f:8f:73: 9d:c8:8c:2d:ed:c3:5b:3e:bc:5c:bc:db:c3:32:7e: 91:88:a3:b9:56:90:bc:85:ca:ae:97:ed:e1:ba:35: c7:31:14:16:b9:b3:88:b3:7c:ca:29:83:ef:a5:dd: e3:12:ba:dd:c5:ae:41:b9:2c:e8:ef:4c:f5:13:27: 60:06:2c:b9:59:bc:2d:c4:9e:6a:6d:ce:f0:4d:e1: 04:e8:31:98:b6:50:c4:71:48:8a:c6:a2:64:94:02: ad:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:93:DA:29:68:B4:E3:74:C0:25:2E:DD:AC:29:C8:A7:F1:AF:14:82 X509v3 Authority Key Identifier: keyid:46:39:D2:90:98:6F:4F:00:54:FD:C0:59:01:44:41:62:1D:3A:BB:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146B71/F5407D1CCAB811EC87893C56C4F9AE02/RjnSkJhvTwBU_cBZAURBYh06u_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RjnSkJhvTwBU_cBZAURBYh06u_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146B71/F5407D1CCAB811EC87893C56C4F9AE02/8719518C26AD11EDA881874BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.186.240.0/23 IPv6: 2400:7620::/32 Signature Algorithm: sha256WithRSAEncryption ab:cc:30:73:6b:e2:4f:e1:1a:a6:86:c6:fe:2c:a1:5e:81:8a: a5:7d:30:b8:80:e0:f4:d3:d4:b6:35:f6:e0:ea:06:3a:80:60: 86:b4:45:c9:d6:e0:83:94:27:29:aa:fd:62:8a:ae:0f:55:b8: fb:e5:1f:65:05:d9:29:eb:1b:ca:6b:82:78:72:d8:59:52:47: 8a:9b:0a:68:48:c6:2b:d5:56:0d:7e:7a:fd:3f:44:e3:b2:af: 5c:52:74:0b:de:4e:86:7b:af:da:5f:64:9f:14:11:ba:ec:c0: 9b:48:c9:8d:a7:df:00:9e:cb:88:a9:6e:4a:2f:85:ad:ef:e8: 51:51:73:5d:18:16:48:1f:03:3e:c8:ef:99:d5:b4:a3:2a:66: 18:39:2f:96:18:3d:d5:95:d3:0f:5e:54:fa:b8:d3:f5:0c:c3: 5c:36:90:32:4e:24:6e:37:a1:71:93:e2:fb:78:aa:fb:4b:bf: 81:7c:ce:d4:68:dd:5f:00:02:d3:4b:08:3c:bb:2e:7d:5f:11: 9f:fa:e0:dc:b8:09:78:b7:eb:46:8f:7c:dd:31:ec:5e:fd:f4: 4a:23:e2:12:f3:f8:46:5b:9f:5b:57:5a:b9:12:b2:df:fb:34: d3:67:03:7f:76:b9:ee:ca:ed:1a:9c:b0:34:7e:04:c8:db:de: 43:c5:0c:39 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZCNzExMTAvBgNVBAUTKDQ2MzlEMjkwOTg2RjRGMDA1NEZEQzA1OTAxNDQ0MTYy MUQzQUJCRkYwHhcNMjUwNjAxMDE1NTA5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNiYjJmZC1mZDU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAryHamahuB/oxS7aTz+SVDzjN0xBnlKbpA9RGmu6y16O1PbeIrYa/O0GVXJYI vaW9nCHo76nZzuaY0qhOQMS6Lb/CcToSe5Nud2l97qfxMxoR7UYXquq4xY5E9e99 zMpZ7d2as/ItpjaxaiTCWJ/YXk+PxXS9Kx+zgQW4tcBYYT3jy1zNAh4q9MU7rumD tUqNWbATce+8t75cVPcTIqBxU70vj3OdyIwt7cNbPrxcvNvDMn6RiKO5VpC8hcqu l+3hujXHMRQWubOIs3zKKYPvpd3jErrdxa5BuSzo70z1EydgBiy5WbwtxJ5qbc7w TeEE6DGYtlDEcUiKxqJklAKtnwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFOuT2ilo tON0wCUu3awpyKfxrxSCMB8GA1UdIwQYMBaAFEY50pCYb08AVP3AWQFEQWIdOrv/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkI3MS9GNTQwN0QxQ0NB QjgxMUVDODc4OTNDNTZDNEY5QUUwMi9Sam5Ta0podlR3QlVfY0JaQVVSQlloMDZ1 XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JqblNrSmh2VHdCVV9jQlpBVVJCWWgwNnVfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDZCNzEvRjU0MDdEMUNDQUI4MTFFQzg3ODkzQzU2QzRGOUFFMDIvODcxOTUxOEMy NkFEMTFFREE4ODE4NzRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnuvAwDQQCAAIwBwMFACQAdiAwDQYJKoZIhvcNAQELBQAD ggEBAKvMMHNr4k/hGqaGxv4soV6BiqV9MLiA4PTT1LY19uDqBjqAYIa0RcnW4IOU Jymq/WKKrg9VuPvlH2UF2SnrG8prgnhy2FlSR4qbCmhIxivVVg1+ev0/ROOyr1xS dAveToZ7r9pfZJ8UEbrswJtIyY2n3wCey4ipbkovha3v6FFRc10YFkgfAz7I75nV tKMqZhg5L5YYPdWV0w9eVPq40/UMw1w2kDJOJG43oXGT4vt4qvtLv4F8ztRo3V8A AtNLCDy7Ln1fEZ/64Ny4CXi360aPfN0x7F799Eoj4hLz+EZbn1tXWrkSst/7NNNn A392ue7K7RqcsDR+BMjb3kPFDDk= -----END CERTIFICATE-----Generated at Thu Jun 19 18:20:39 2025 by rpki-client