$ rpki-client -vvf rpki.apnic.net/member_repository/A9163998/3A417D7408DC11EDBEDE612BC4F9AE02/85C2FDAA08E011ED9C3DCB7AC4F9AE02.roa File: 85C2FDAA08E011ED9C3DCB7AC4F9AE02.roa (raw, json) Hash identifier: 8rnT1/RYFWPcmBVGumAdOk1rKk2uRHrNY0hy1090ab0= Subject key identifier: 2A:34:DA:CF:2E:03:EB:0A:9F:3A:0F:4B:55:DA:47:27:2A:03:78:87 Certificate issuer: /CN=A9163998/serialNumber=4A993FF84F602903A317E288BD19B9DA2093558A Certificate serial: 02B6 Authority key identifier: 4A:99:3F:F8:4F:60:29:03:A3:17:E2:88:BD:19:B9:DA:20:93:55:8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Spk_-E9gKQOjF-KIvRm52iCTVYo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163998/3A417D7408DC11EDBEDE612BC4F9AE02/85C2FDAA08E011ED9C3DCB7AC4F9AE02.roa Signing time: Thu 19 Jun 2025 01:57:46 +0000 ROA not before: Thu 19 Jun 2025 01:57:46 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 138341 IP address blocks: 103.115.76.0/22 maxlen: 22 103.115.76.0/24 maxlen: 24 103.115.77.0/24 maxlen: 24 103.115.78.0/24 maxlen: 24 202.181.88.0/21 maxlen: 24 2402:e340::/32 maxlen: 32 2402:e340::/48 maxlen: 48 2402:e340::/64 maxlen: 64 2402:e340:0:1::/64 maxlen: 64 2402:e340:1::/48 maxlen: 48 2402:e340:2::/48 maxlen: 48 2402:e340:3::/48 maxlen: 48 2402:e340:4::/48 maxlen: 48 2402:e340:5::/48 maxlen: 48 2402:e340:6::/48 maxlen: 48 2402:e340:7::/48 maxlen: 48 2402:e340:f::/48 maxlen: 48 2402:e340:10::/48 maxlen: 48 2402:e340:11::/48 maxlen: 48 2402:e340:12::/48 maxlen: 48 2402:e340:3004::/48 maxlen: 48 2402:e340:6004::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163998/3A417D7408DC11EDBEDE612BC4F9AE02/Spk_-E9gKQOjF-KIvRm52iCTVYo.crl rsync://rpki.apnic.net/member_repository/A9163998/3A417D7408DC11EDBEDE612BC4F9AE02/Spk_-E9gKQOjF-KIvRm52iCTVYo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Spk_-E9gKQOjF-KIvRm52iCTVYo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 01:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 694 (0x2b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163998, serialNumber=4A993FF84F602903A317E288BD19B9DA2093558A Validity Not Before: Jun 19 01:57:46 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68536e99-5c18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:0f:2f:58:8c:be:5d:ed:cd:c1:bb:7a:fb:2b: d7:df:ce:01:c6:b1:21:35:83:00:c2:a3:c8:28:5a: 28:29:74:f2:b9:59:38:be:b6:3b:a6:65:0c:98:be: ec:2d:c1:bc:cc:89:e6:17:a4:f2:3e:83:7a:78:b0: 3e:bb:53:73:8c:69:85:28:0f:12:f5:7e:0c:c3:72: 93:5b:0c:31:bb:d4:aa:ac:0e:5a:fe:ce:11:d5:a5: e9:f5:82:95:76:1b:6a:ae:c9:3a:91:8d:0f:e3:d3: 15:bb:d2:7d:59:72:c1:b1:dd:38:c5:b8:ea:59:7a: 64:7b:d5:30:b0:b6:65:d5:1d:3b:c9:58:5c:7a:23: bb:d8:47:a7:fe:56:1c:1d:d9:b1:62:06:43:75:30: ab:89:12:c2:53:7c:06:f2:f3:69:6a:89:55:d2:a1: 41:39:ca:ff:b5:51:fd:d7:cc:1e:7a:94:4c:a4:90: 68:44:f1:05:89:02:93:71:44:19:96:45:35:2f:19: e9:b6:f9:fb:c1:44:72:63:a8:d9:e6:f4:be:9a:05: 0c:2c:6a:b2:5f:a2:1c:40:42:26:28:34:30:65:14: 33:40:b9:ea:b8:21:d3:6c:0c:92:26:a8:f4:f7:a9: a3:46:94:36:f7:df:90:f9:50:a5:1b:bf:fb:46:2a: 7c:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:34:DA:CF:2E:03:EB:0A:9F:3A:0F:4B:55:DA:47:27:2A:03:78:87 X509v3 Authority Key Identifier: keyid:4A:99:3F:F8:4F:60:29:03:A3:17:E2:88:BD:19:B9:DA:20:93:55:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163998/3A417D7408DC11EDBEDE612BC4F9AE02/Spk_-E9gKQOjF-KIvRm52iCTVYo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Spk_-E9gKQOjF-KIvRm52iCTVYo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163998/3A417D7408DC11EDBEDE612BC4F9AE02/85C2FDAA08E011ED9C3DCB7AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.115.76.0/22 202.181.88.0/21 IPv6: 2402:e340::/32 Signature Algorithm: sha256WithRSAEncryption 94:7e:1a:a5:d7:55:7e:13:bf:8b:7e:df:c9:0e:a6:35:a8:08: f4:56:83:a8:8d:5e:97:2e:d5:96:fa:bd:48:54:9c:f7:f0:2d: 65:ff:82:2a:ab:69:db:88:58:d5:84:3e:aa:25:87:e6:b9:31: 40:40:53:ff:a3:16:0e:aa:dc:b3:35:36:f3:83:e9:2f:b0:fc: 37:91:19:88:1a:47:01:29:01:9e:c1:db:95:1c:ef:0e:2f:86: 65:11:96:3c:3b:72:e3:4d:10:58:b9:10:07:51:1c:3c:da:26: b6:a4:71:03:a8:14:83:40:22:e4:6b:d1:dc:3f:63:38:d1:da: 4d:a4:fb:f6:8f:6e:59:12:2d:7d:47:45:1c:40:24:11:98:cb: 9b:b1:d9:85:da:0b:07:e8:d9:24:1c:cd:bc:a3:28:57:3e:dc: 4c:0e:ae:bf:08:44:46:15:75:df:91:68:1f:b1:dc:57:80:0d: ad:6a:dd:b7:17:b4:c1:71:56:9c:aa:09:99:06:4b:87:41:98: 5e:32:e9:9f:d0:3f:4f:73:c1:6f:0c:d1:18:b6:09:7d:1f:48: 01:ab:dd:c5:94:10:0e:9f:2e:ef:21:0a:10:f8:9e:70:e7:48: 98:56:da:0e:4b:f2:f2:11:3b:28:d3:fa:a2:fc:76:f4:e5:fe: 72:e1:03:8b -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICArYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM5OTgxMTAvBgNVBAUTKDRBOTkzRkY4NEY2MDI5MDNBMzE3RTI4OEJEMTlCOURB MjA5MzU1OEEwHhcNMjUwNjE5MDE1NzQ2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODUzNmU5OS01YzE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyg8vWIy+Xe3Nwbt6+yvX384BxrEhNYMAwqPIKFooKXTyuVk4vrY7pmUMmL7s LcG8zInmF6TyPoN6eLA+u1NzjGmFKA8S9X4Mw3KTWwwxu9SqrA5a/s4R1aXp9YKV dhtqrsk6kY0P49MVu9J9WXLBsd04xbjqWXpke9UwsLZl1R07yVhceiO72Een/lYc HdmxYgZDdTCriRLCU3wG8vNpaolV0qFBOcr/tVH918weepRMpJBoRPEFiQKTcUQZ lkU1Lxnptvn7wURyY6jZ5vS+mgUMLGqyX6IcQEImKDQwZRQzQLnquCHTbAySJqj0 96mjRpQ299+Q+VClG7/7Rip8jwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFCo02s8u A+sKnzoPS1XaRycqA3iHMB8GA1UdIwQYMBaAFEqZP/hPYCkDoxfiiL0Zudogk1WK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Mzk5OC8zQTQxN0Q3NDA4 REMxMUVEQkVERTYxMkJDNEY5QUUwMi9TcGtfLUU5Z0tRT2pGLUtJdlJtNTJpQ1RW WW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Nwa18tRTlnS1FPakYtS0l2Um01MmlDVFZZby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjM5OTgvM0E0MTdENzQwOERDMTFFREJFREU2MTJCQzRGOUFFMDIvODVDMkZEQUEw OEUwMTFFRDlDM0RDQjdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnc0wDBAPKtVgwDQQCAAIwBwMFACQC40AwDQYJKoZIhvcN AQELBQADggEBAJR+GqXXVX4Tv4t+38kOpjWoCPRWg6iNXpcu1Zb6vUhUnPfwLWX/ giqraduIWNWEPqolh+a5MUBAU/+jFg6q3LM1NvOD6S+w/DeRGYgaRwEpAZ7B25Uc 7w4vhmURljw7cuNNEFi5EAdRHDzaJrakcQOoFINAIuRr0dw/YzjR2k2k+/aPblkS LX1HRRxAJBGYy5ux2YXaCwfo2SQczbyjKFc+3EwOrr8IREYVdd+RaB+x3FeADa1q 3bcXtMFxVpyqCZkGS4dBmF4y6Z/QP09zwW8M0Ri2CX0fSAGr3cWUEA6fLu8hChD4 nnDnSJhW2g5L8vIROyjT+qL8dvTl/nLhA4s= -----END CERTIFICATE-----Generated at Fri Jun 20 12:20:32 2025 by rpki-client