$ rpki-client -vvf rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/1AF42E76BBAC11EC8A07FE72C4F9AE02.roa File: 1AF42E76BBAC11EC8A07FE72C4F9AE02.roa (raw, json) Hash identifier: tS4gG0LjmBm3ltjMZ5kv+K9nl4H0wVgEe2zGi8+aIMI= Subject key identifier: 20:09:28:D7:1E:D2:13:14:47:12:6D:C9:4D:10:DE:04:8E:54:46:6F Certificate issuer: /CN=A914711C/serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Certificate serial: 0344 Authority key identifier: FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/1AF42E76BBAC11EC8A07FE72C4F9AE02.roa Signing time: Sat 17 May 2025 01:37:22 +0000 ROA not before: Sat 17 May 2025 01:37:22 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 58580 IP address blocks: 103.186.82.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:43:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 836 (0x344) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914711C, serialNumber=FA26F34A8339B1DF36DC9C11912057C3A583F673 Validity Not Before: May 17 01:37:22 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6827e852-6182 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:7c:2b:b1:ae:7b:cc:27:a8:1e:63:13:77:06: d1:68:1b:6c:09:30:b6:4b:34:d2:85:e5:a9:50:f2: fe:ca:1a:6e:79:25:57:4a:e8:50:3b:62:89:f3:45: 4c:ab:cc:ef:eb:e9:8c:79:b7:f8:f0:06:9b:31:ab: 18:1c:ad:2c:04:dd:16:5a:6f:bb:a0:f6:be:07:1a: e4:43:f0:cc:9c:ab:9f:38:23:32:b8:12:bb:c4:61: ab:67:aa:12:2a:a9:c1:a8:be:bc:ff:55:5d:04:f7: 8c:7e:fd:8e:38:df:c7:f7:8e:d2:75:29:cf:b9:bc: b5:00:4b:ff:b3:79:c3:a7:8a:0a:fd:21:68:4a:ac: 63:fb:bb:e9:0d:9e:85:df:e9:f7:98:a1:90:76:d9: 15:47:f4:17:41:a9:32:d3:a0:8b:98:2f:d7:75:fa: 17:eb:c3:2f:28:7a:16:16:8e:56:45:22:6a:62:b2: 3f:5d:8a:ec:62:34:ca:64:db:ec:f1:fb:00:7f:06: 59:76:53:44:9c:75:d9:0b:eb:e1:4a:08:1e:15:ee: 3a:97:9e:df:44:fe:8f:cb:7c:24:31:b0:c5:66:39: 2d:b7:42:7c:01:d8:23:06:77:52:27:29:40:47:c8: 30:50:bc:1d:4f:44:c8:bd:cb:73:5e:9e:d8:20:2f: 4c:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:09:28:D7:1E:D2:13:14:47:12:6D:C9:4D:10:DE:04:8E:54:46:6F X509v3 Authority Key Identifier: keyid:FA:26:F3:4A:83:39:B1:DF:36:DC:9C:11:91:20:57:C3:A5:83:F6:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/-ibzSoM5sd823JwRkSBXw6WD9nM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-ibzSoM5sd823JwRkSBXw6WD9nM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914711C/A8AC7250BBA711EC8FCD4422C4F9AE02/1AF42E76BBAC11EC8A07FE72C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.186.82.0/23 Signature Algorithm: sha256WithRSAEncryption 38:65:c1:f9:8a:db:dc:16:28:4f:d0:ed:0f:18:59:46:de:a1: 14:5a:e4:55:a4:44:eb:c1:ef:5c:be:b8:bc:57:08:7e:03:d2: 53:cd:f0:5a:e3:d3:03:6d:8e:63:82:71:23:d3:36:82:ee:4e: 92:5e:1a:a0:77:c4:6e:b5:75:3e:00:d7:ea:5b:ae:8d:ac:92: 9e:1f:67:ff:8a:dc:fc:e1:a6:08:f0:61:f0:09:af:6c:ee:2e: 25:69:0b:9a:75:ae:96:71:c7:6e:7d:59:2b:56:ca:a9:45:d4: 5a:09:aa:4a:d9:5e:ee:bd:d3:aa:8d:b8:8a:69:0d:fb:b1:51: e0:51:99:f1:35:c9:4d:0c:2b:f2:31:23:9d:a2:66:9e:63:56: 31:82:4b:75:b8:b2:88:d4:2a:8a:0b:55:8c:f3:b9:23:ba:07: e3:f4:90:13:e9:68:cd:00:45:03:18:e6:17:d9:52:d8:ae:01: 6a:b3:df:9e:95:33:2b:13:bc:78:c0:56:17:ae:e6:f6:0d:bf: e1:f1:84:0c:70:be:8d:ee:e7:37:d9:72:28:a7:2e:6d:79:80: 9d:6d:c3:dd:a3:ec:9b:f7:c2:40:05:62:98:45:34:90:a6:04: af:b7:6a:ca:fa:63:b0:60:46:9c:ab:32:51:6a:8a:4f:18:51: e6:cd:a4:75 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA0QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcxMUMxMTAvBgNVBAUTKEZBMjZGMzRBODMzOUIxREYzNkRDOUMxMTkxMjA1N0Mz QTU4M0Y2NzMwHhcNMjUwNTE3MDEzNzIyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI3ZTg1Mi02MTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA03wrsa57zCeoHmMTdwbRaBtsCTC2SzTSheWpUPL+yhpueSVXSuhQO2KJ80VM q8zv6+mMebf48AabMasYHK0sBN0WWm+7oPa+BxrkQ/DMnKufOCMyuBK7xGGrZ6oS KqnBqL68/1VdBPeMfv2OON/H947SdSnPuby1AEv/s3nDp4oK/SFoSqxj+7vpDZ6F 3+n3mKGQdtkVR/QXQaky06CLmC/XdfoX68MvKHoWFo5WRSJqYrI/XYrsYjTKZNvs 8fsAfwZZdlNEnHXZC+vhSggeFe46l57fRP6Py3wkMbDFZjktt0J8AdgjBndSJylA R8gwULwdT0TIvctzXp7YIC9M3wIDAQABo4IClTCCApEwHQYDVR0OBBYEFCAJKNce 0hMURxJtyU0Q3gSOVEZvMB8GA1UdIwQYMBaAFPom80qDObHfNtycEZEgV8Olg/Zz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzExQy9BOEFDNzI1MEJC QTcxMUVDOEZDRDQ0MjJDNEY5QUUwMi8taWJ6U29NNXNkODIzSndSa1NCWHc2V0Q5 bk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1pYnpTb001c2Q4MjNKd1JrU0JYdzZXRDluTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDcxMUMvQThBQzcyNTBCQkE3MTFFQzhGQ0Q0NDIyQzRGOUFFMDIvMUFGNDJFNzZC QkFDMTFFQzhBMDdGRTcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnulIwDQYJKoZIhvcNAQELBQADggEBADhlwfmK29wWKE/Q 7Q8YWUbeoRRa5FWkROvB71y+uLxXCH4D0lPN8Frj0wNtjmOCcSPTNoLuTpJeGqB3 xG61dT4A1+pbro2skp4fZ/+K3PzhpgjwYfAJr2zuLiVpC5p1rpZxx259WStWyqlF 1FoJqkrZXu6906qNuIppDfuxUeBRmfE1yU0MK/IxI52iZp5jVjGCS3W4sojUKooL VYzzuSO6B+P0kBPpaM0ARQMY5hfZUtiuAWqz356VMysTvHjAVheu5vYNv+HxhAxw vo3u5zfZciinLm15gJ1tw92j7Jv3wkAFYphFNJCmBK+3asr6Y7BgRpyrMlFqik8Y UebNpHU= -----END CERTIFICATE-----Generated at Wed Nov 5 01:35:34 2025 by rpki-client