$ rpki-client -vvf rpki.apnic.net/member_repository/A914BAE3/2AEB073E674211EAB01EAC69C4F9AE02/86F9BD94674311EA8AB4D96BC4F9AE02.roa File: 86F9BD94674311EA8AB4D96BC4F9AE02.roa (raw, json) Hash identifier: hMv9fBk1Ra6uR7Y0gqdPJ+C+iXxo/tfwAVFp8JPwJHs= Subject key identifier: D9:29:44:B4:2E:3F:E5:C6:3C:BA:A4:95:B3:36:69:DD:D4:C6:B4:E9 Certificate issuer: /CN=A914BAE3/serialNumber=8F2BEFD558130824E01EBA15AF89ED5DDC9EB61A Certificate serial: 0A59 Authority key identifier: 8F:2B:EF:D5:58:13:08:24:E0:1E:BA:15:AF:89:ED:5D:DC:9E:B6:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jyvv1VgTCCTgHroVr4ntXdyetho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BAE3/2AEB073E674211EAB01EAC69C4F9AE02/86F9BD94674311EA8AB4D96BC4F9AE02.roa Signing time: Wed 04 Jun 2025 20:04:48 +0000 ROA not before: Wed 04 Jun 2025 20:04:48 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 135336 IP address blocks: 103.114.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BAE3/2AEB073E674211EAB01EAC69C4F9AE02/jyvv1VgTCCTgHroVr4ntXdyetho.crl rsync://rpki.apnic.net/member_repository/A914BAE3/2AEB073E674211EAB01EAC69C4F9AE02/jyvv1VgTCCTgHroVr4ntXdyetho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jyvv1VgTCCTgHroVr4ntXdyetho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:38:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2649 (0xa59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BAE3, serialNumber=8F2BEFD558130824E01EBA15AF89ED5DDC9EB61A Validity Not Before: Jun 4 20:04:48 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6840a6e0-0f71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:e9:5d:25:5f:f9:72:f2:25:e1:c4:7c:13:d2: 57:50:b4:2d:c2:aa:09:51:8b:f9:b7:45:dc:ce:48: 55:8b:dc:d2:39:21:93:b9:d3:a6:d0:41:6f:65:8f: f3:e6:b4:d7:8a:c2:af:4d:cf:d7:d0:68:5e:f9:e4: d2:61:e1:56:27:40:1e:a7:04:cd:61:8b:24:60:12: 48:3d:67:a0:0f:e7:41:8e:ae:68:99:f8:0e:1f:36: ab:a5:89:c5:ab:c4:87:ab:1a:9d:60:48:92:cb:f2: fb:c7:c9:69:dd:18:6b:c7:f6:a8:46:5f:a6:94:0d: 69:79:7c:bf:5b:28:ef:c4:f8:73:f8:6a:99:f3:76: 95:3b:7e:d9:3e:1d:9b:72:45:6f:6c:52:5d:fd:18: cb:34:08:ed:50:d2:56:93:04:68:c0:2c:d4:b6:47: d8:38:c0:ff:b7:15:57:93:b2:af:0f:6f:a0:87:4f: 4f:20:f2:dd:25:f1:a0:6c:fd:f7:69:1a:1e:df:0e: bb:24:9e:03:10:c4:16:0e:31:3f:d7:56:3f:aa:5c: 52:67:e3:1f:08:60:62:cd:db:4a:94:79:ee:4d:cd: 93:7b:bd:6c:a8:0d:b6:69:e9:8f:98:67:a9:89:d3: 56:56:83:27:ab:df:a9:d3:a2:a5:99:65:5a:0a:38: 37:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:29:44:B4:2E:3F:E5:C6:3C:BA:A4:95:B3:36:69:DD:D4:C6:B4:E9 X509v3 Authority Key Identifier: keyid:8F:2B:EF:D5:58:13:08:24:E0:1E:BA:15:AF:89:ED:5D:DC:9E:B6:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BAE3/2AEB073E674211EAB01EAC69C4F9AE02/jyvv1VgTCCTgHroVr4ntXdyetho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jyvv1VgTCCTgHroVr4ntXdyetho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BAE3/2AEB073E674211EAB01EAC69C4F9AE02/86F9BD94674311EA8AB4D96BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.114.145.0/24 Signature Algorithm: sha256WithRSAEncryption 96:95:46:59:d9:b5:d0:59:91:20:aa:b8:a3:1a:e1:d8:cc:4c: 1e:50:e0:6d:e4:b4:6e:81:9a:d7:45:be:09:3d:6e:df:9d:5a: 9e:a5:6c:05:62:26:ea:41:ad:ed:cd:53:2e:00:3f:ec:50:09: 82:5c:67:49:a4:46:b6:72:c0:ee:ff:e0:dc:a5:53:e5:3f:a9: 4b:6a:4a:b5:4d:3a:7d:c2:f0:39:e2:4b:43:40:43:0e:6f:79: 29:1e:cf:ba:71:db:60:df:4b:68:78:1b:f9:40:c5:8b:ed:12: 0f:81:74:57:9e:93:5b:f0:a2:be:f6:bb:11:fb:30:54:29:48: 9e:c2:10:4b:3f:90:d2:aa:76:68:c1:17:38:1f:fd:48:98:ad: 45:e2:a4:0c:ce:87:ab:51:0f:4c:13:ee:9e:6b:e7:f6:05:86: 20:ec:8c:28:7b:9e:54:de:f8:38:26:b6:a2:e1:77:1f:97:68: fd:a9:9c:17:d3:70:24:d9:80:a0:21:57:f7:21:b0:b4:43:c2: b0:fe:bc:3a:72:f8:ff:d4:49:41:1a:21:25:23:07:8b:cd:d1: 60:7c:a2:4c:29:58:24:17:5b:96:33:7f:60:48:15:2c:55:51: 3f:97:88:1f:e7:cb:80:51:bc:b4:93:ee:63:c5:c3:49:71:8a: 76:45:cf:5e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICClkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJBRTMxMTAvBgNVBAUTKDhGMkJFRkQ1NTgxMzA4MjRFMDFFQkExNUFGODlFRDVE REM5RUI2MUEwHhcNMjUwNjA0MjAwNDQ4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQwYTZlMC0wZjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqOldJV/5cvIl4cR8E9JXULQtwqoJUYv5t0XczkhVi9zSOSGTudOm0EFvZY/z 5rTXisKvTc/X0Ghe+eTSYeFWJ0AepwTNYYskYBJIPWegD+dBjq5omfgOHzarpYnF q8SHqxqdYEiSy/L7x8lp3Rhrx/aoRl+mlA1peXy/WyjvxPhz+GqZ83aVO37ZPh2b ckVvbFJd/RjLNAjtUNJWkwRowCzUtkfYOMD/txVXk7KvD2+gh09PIPLdJfGgbP33 aRoe3w67JJ4DEMQWDjE/11Y/qlxSZ+MfCGBizdtKlHnuTc2Te71sqA22aemPmGep idNWVoMnq9+p06KlmWVaCjg3DQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNkpRLQu P+XGPLqklbM2ad3UxrTpMB8GA1UdIwQYMBaAFI8r79VYEwgk4B66Fa+J7V3cnrYa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkFFMy8yQUVCMDczRTY3 NDIxMUVBQjAxRUFDNjlDNEY5QUUwMi9qeXZ2MVZnVENDVGdIcm9WcjRudFhkeWV0 aG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2p5dnYxVmdUQ0NUZ0hyb1ZyNG50WGR5ZXRoby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEJBRTMvMkFFQjA3M0U2NzQyMTFFQUIwMUVBQzY5QzRGOUFFMDIvODZGOUJEOTQ2 NzQzMTFFQThBQjREOTZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABncpEwDQYJKoZIhvcNAQELBQADggEBAJaVRlnZtdBZkSCq uKMa4djMTB5Q4G3ktG6BmtdFvgk9bt+dWp6lbAViJupBre3NUy4AP+xQCYJcZ0mk RrZywO7/4NylU+U/qUtqSrVNOn3C8DniS0NAQw5veSkez7px22DfS2h4G/lAxYvt Eg+BdFeek1vwor72uxH7MFQpSJ7CEEs/kNKqdmjBFzgf/UiYrUXipAzOh6tRD0wT 7p5r5/YFhiDsjCh7nlTe+DgmtqLhdx+XaP2pnBfTcCTZgKAhV/chsLRDwrD+vDpy +P/USUEaISUjB4vN0WB8okwpWCQXW5Yzf2BIFSxVUT+XiB/ny4BRvLST7mPFw0lx inZFz14= -----END CERTIFICATE-----Generated at Wed Nov 5 11:56:21 2025 by rpki-client