$ rpki-client -vvf rpki.apnic.net/member_repository/A9168973/5606AE22EB4411ECADE1ED62C4F9AE02/686A55E2EB4811EC85B4E60EC4F9AE02.roa File: 686A55E2EB4811EC85B4E60EC4F9AE02.roa (raw, json) Hash identifier: fawgiTLHzpx5EX5PXRfNoSCoBTl9+GYe2SP8BVC/WiU= Subject key identifier: 48:98:1F:13:56:FC:27:D2:22:5B:ED:FE:DB:E9:B9:3B:AD:F5:61:EE Certificate issuer: /CN=A9168973/serialNumber=7C8C9F7B16CC9ECB44F0320DC78CB814CD42A7A6 Certificate serial: 02D9 Authority key identifier: 7C:8C:9F:7B:16:CC:9E:CB:44:F0:32:0D:C7:8C:B8:14:CD:42:A7:A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fIyfexbMnstE8DINx4y4FM1Cp6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168973/5606AE22EB4411ECADE1ED62C4F9AE02/686A55E2EB4811EC85B4E60EC4F9AE02.roa Signing time: Thu 05 Jun 2025 01:48:08 +0000 ROA not before: Thu 05 Jun 2025 01:48:08 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 149863 IP address blocks: 103.189.106.0/24 maxlen: 24 103.189.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168973/5606AE22EB4411ECADE1ED62C4F9AE02/fIyfexbMnstE8DINx4y4FM1Cp6Y.crl rsync://rpki.apnic.net/member_repository/A9168973/5606AE22EB4411ECADE1ED62C4F9AE02/fIyfexbMnstE8DINx4y4FM1Cp6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fIyfexbMnstE8DINx4y4FM1Cp6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 01:03:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 729 (0x2d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168973, serialNumber=7C8C9F7B16CC9ECB44F0320DC78CB814CD42A7A6 Validity Not Before: Jun 5 01:48:08 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6840f758-35eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:28:eb:0b:ae:c6:92:f0:f6:1c:30:39:b0:64: 60:0d:ed:af:d6:67:b4:ac:eb:ff:9e:21:d6:e9:e1: 16:4f:3c:cc:39:49:47:48:67:f7:f4:97:82:27:a1: ff:4f:65:8f:ac:ec:33:90:2a:56:7d:fc:7a:1a:26: 63:9b:10:22:98:25:2f:f1:83:c6:9b:ba:1e:3a:43: 5e:98:80:14:81:74:f1:6a:de:9d:19:f7:e9:18:6d: 08:40:5e:b7:44:e1:16:3d:e1:1f:16:34:39:1f:f3: a2:b9:cf:50:82:96:a8:3b:e0:c3:ee:b3:63:b6:61: 7e:cc:7d:ef:36:c2:fe:56:14:08:9e:78:8c:4b:34: 98:d5:85:4e:c4:f5:f1:93:ed:fd:d0:d7:c9:59:45: 04:d8:52:4d:e7:cd:ea:a2:e6:35:c2:50:a2:95:86: 51:33:6f:61:24:02:cd:1a:fd:15:6d:f4:fa:83:34: 62:02:36:a3:a9:29:12:3a:ce:b0:13:e9:47:89:ca: da:fe:cd:e6:a2:a6:86:5d:24:4a:ae:0b:93:c8:54: 84:a4:7b:30:39:06:23:72:b2:e1:97:6e:41:90:c2: bd:ab:40:f3:59:12:01:2a:f5:34:32:4e:cc:36:d2: e0:2f:ca:86:14:b5:6c:c2:3a:17:2e:a2:46:0c:4d: c3:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:98:1F:13:56:FC:27:D2:22:5B:ED:FE:DB:E9:B9:3B:AD:F5:61:EE X509v3 Authority Key Identifier: keyid:7C:8C:9F:7B:16:CC:9E:CB:44:F0:32:0D:C7:8C:B8:14:CD:42:A7:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168973/5606AE22EB4411ECADE1ED62C4F9AE02/fIyfexbMnstE8DINx4y4FM1Cp6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fIyfexbMnstE8DINx4y4FM1Cp6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168973/5606AE22EB4411ECADE1ED62C4F9AE02/686A55E2EB4811EC85B4E60EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.189.106.0/23 Signature Algorithm: sha256WithRSAEncryption 09:18:1b:76:ea:e0:55:ef:14:ba:b8:66:05:5a:e5:7a:9a:44: 44:77:3f:d7:de:71:fc:3d:cc:63:84:81:a5:ed:73:f9:c7:42: 1f:4a:2c:ff:09:3e:bf:ba:e6:47:3e:ea:6d:20:66:a6:b5:18: d1:b2:b9:df:76:69:fe:10:e3:9b:41:c3:fc:62:36:a3:f6:7e: c7:e8:55:b1:e2:3f:87:60:9a:6d:47:38:22:f6:41:db:d6:86: ad:e8:51:38:bd:76:a3:a9:0a:7c:88:41:1e:51:c3:ac:1b:b3: 44:3d:96:e6:01:a3:6b:d1:25:93:98:05:c0:b8:95:5b:ad:90: b0:88:ce:2f:7d:a1:e8:cf:3d:17:7d:9a:8c:05:cd:dd:2c:a0: 62:50:11:f5:8a:f7:b0:50:85:f1:0c:c2:25:88:25:06:b0:14: 5b:dc:ff:ec:0f:10:71:b0:8e:1d:3c:d2:e4:e5:6e:47:7f:57: 77:9d:90:1b:f2:38:8f:71:06:a9:47:74:1b:10:05:9b:0a:c1: f5:76:9a:cb:fd:61:2a:fe:fc:ef:9e:49:3d:b3:a8:67:7b:7b: 2f:ab:62:be:e4:cc:59:78:29:a7:86:1e:f6:32:ea:57:39:10: 2d:50:01:38:97:db:48:48:1b:4c:fa:88:e9:16:09:6a:d6:c1: 26:85:3a:24 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAtkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg5NzMxMTAvBgNVBAUTKDdDOEM5RjdCMTZDQzlFQ0I0NEYwMzIwREM3OENCODE0 Q0Q0MkE3QTYwHhcNMjUwNjA1MDE0ODA4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQwZjc1OC0zNWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtCjrC67GkvD2HDA5sGRgDe2v1me0rOv/niHW6eEWTzzMOUlHSGf39JeCJ6H/ T2WPrOwzkCpWffx6GiZjmxAimCUv8YPGm7oeOkNemIAUgXTxat6dGffpGG0IQF63 ROEWPeEfFjQ5H/Oiuc9QgpaoO+DD7rNjtmF+zH3vNsL+VhQInniMSzSY1YVOxPXx k+390NfJWUUE2FJN583qouY1wlCilYZRM29hJALNGv0VbfT6gzRiAjajqSkSOs6w E+lHicra/s3moqaGXSRKrguTyFSEpHswOQYjcrLhl25BkMK9q0DzWRIBKvU0Mk7M NtLgL8qGFLVswjoXLqJGDE3DXQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEiYHxNW /CfSIlvt/tvpuTut9WHuMB8GA1UdIwQYMBaAFHyMn3sWzJ7LRPAyDceMuBTNQqem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODk3My81NjA2QUUyMkVC NDQxMUVDQURFMUVENjJDNEY5QUUwMi9mSXlmZXhiTW5zdEU4RElOeDR5NEZNMUNw NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZJeWZleGJNbnN0RThESU54NHk0Rk0xQ3A2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njg5NzMvNTYwNkFFMjJFQjQ0MTFFQ0FERTFFRDYyQzRGOUFFMDIvNjg2QTU1RTJF QjQ4MTFFQzg1QjRFNjBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnvWowDQYJKoZIhvcNAQELBQADggEBAAkYG3bq4FXvFLq4 ZgVa5XqaRER3P9fecfw9zGOEgaXtc/nHQh9KLP8JPr+65kc+6m0gZqa1GNGyud92 af4Q45tBw/xiNqP2fsfoVbHiP4dgmm1HOCL2QdvWhq3oUTi9dqOpCnyIQR5Rw6wb s0Q9luYBo2vRJZOYBcC4lVutkLCIzi99oejPPRd9mowFzd0soGJQEfWK97BQhfEM wiWIJQawFFvc/+wPEHGwjh080uTlbkd/V3edkBvyOI9xBqlHdBsQBZsKwfV2msv9 YSr+/O+eST2zqGd7ey+rYr7kzFl4KaeGHvYy6lc5EC1QATiX20hIG0z6iOkWCWrW wSaFOiQ= -----END CERTIFICATE-----Generated at Sun Jun 15 17:40:52 2025 by rpki-client