$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/00C137A2BE7911E990831772C4F9AE02.roa File: 00C137A2BE7911E990831772C4F9AE02.roa (raw, json) Hash identifier: dxqhgFOkVg19VyFR/RlWVHzPJ9+/kUuSTtI1l72Qn18= Subject key identifier: 59:DF:AF:D1:09:AF:DD:1D:B3:02:09:8F:94:D3:0A:5D:19:51:1D:3E Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Certificate serial: 3690 Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/00C137A2BE7911E990831772C4F9AE02.roa Signing time: Sat 02 Aug 2025 15:52:51 +0000 ROA not before: Sat 02 Aug 2025 15:52:51 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 136079 IP address blocks: 103.86.100.0/23 maxlen: 24 2405:2cc0::/32 maxlen: 32 2405:2cc0:600d::/48 maxlen: 48 2405:2cc0:600e::/48 maxlen: 48 2405:2cc0:600f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 15:38:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13968 (0x3690) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214, serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Validity Not Before: Aug 2 15:52:51 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=688e3453-8f7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:89:b2:48:a4:03:15:a4:3a:75:f9:30:06:c5: 7c:10:28:ce:2f:4c:bb:81:40:fd:54:97:69:f0:f2: ec:b6:9d:1b:b9:09:c4:49:d5:71:5a:74:1a:c0:75: 1d:d4:08:e4:1a:df:41:a0:8e:d2:bf:2e:09:46:a1: 86:25:4a:92:46:f8:47:5e:89:d6:68:56:44:da:cb: 50:06:d5:48:84:a3:00:0c:3d:eb:48:58:83:be:ba: 93:56:a0:80:a7:78:10:c6:2e:b4:3c:15:79:82:de: d1:b5:3e:3a:84:bc:c3:57:b5:56:58:7b:04:99:3a: 45:f9:7e:a0:f6:1a:08:0e:e0:10:47:a8:e8:fc:ce: f3:34:43:56:2a:57:4e:7c:99:f0:ad:b6:64:fd:7f: ee:8b:e6:c4:5d:04:fa:e2:38:1f:fc:a9:92:3c:10: 89:51:c2:3b:98:a5:ca:70:b3:79:82:24:49:2a:9a: f0:57:0f:f9:01:0c:c4:2a:32:b4:1e:39:38:33:2f: 51:32:08:6f:64:e6:d9:c8:8f:a6:57:c1:18:82:e8: 0c:d9:3a:c9:6b:e1:41:f7:48:49:75:34:a1:06:71: 71:84:62:9a:f5:df:18:97:3d:63:b2:3a:ff:ad:de: a7:55:b5:f7:7a:91:4f:59:12:d1:de:b2:d2:84:00: f5:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:DF:AF:D1:09:AF:DD:1D:B3:02:09:8F:94:D3:0A:5D:19:51:1D:3E X509v3 Authority Key Identifier: keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/00C137A2BE7911E990831772C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.86.100.0/23 IPv6: 2405:2cc0::/32 Signature Algorithm: sha256WithRSAEncryption 86:18:16:d7:86:4b:3d:76:8c:4a:fe:a8:45:47:fe:6c:e5:09: 52:69:62:fc:c7:0e:fd:ab:a7:be:d0:f1:0d:38:98:8a:ce:52: 84:c6:d6:d6:34:f1:4d:fe:62:99:83:5f:47:4d:3b:e3:02:8b: 13:0a:70:48:d4:09:d0:4a:91:69:8f:c3:a1:c5:02:81:b9:b2: de:3a:c2:ec:73:74:fc:47:63:4a:94:42:9d:7c:8e:3e:55:b1: b0:dd:2b:e9:d3:25:46:99:65:81:f0:14:d5:58:9f:ef:1f:27: c8:c1:09:3b:52:cc:75:80:c2:b6:8b:af:f3:93:6e:54:94:e0: 7a:c5:e1:8d:0b:f9:06:65:96:9e:53:02:f6:0f:6c:73:f5:a3: 7f:4b:f6:72:5f:de:a2:c1:47:c2:8a:88:41:93:be:5a:9d:c0: fd:32:50:0d:e2:9f:62:08:bd:62:5f:f3:87:9d:a0:2d:fa:6c: 6b:eb:99:da:bc:6c:f2:85:12:51:43:75:2c:2a:53:3a:90:88: 74:87:ce:06:41:ab:68:15:e8:1e:6a:1a:19:e9:ae:d4:c7:7a: c8:9f:0b:73:41:30:8c:da:b6:7c:ba:2a:6e:5c:1f:36:37:94: ae:92:4e:b6:4d:ce:1c:42:fc:c1:51:d2:d1:2d:f6:4f:91:b0: 3c:47:f6:13 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICNpAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKEYzREI5RjE2MjAwOEJENjY2Q0JGOEM5OTYwNzgxNENG QUIyNEQ3RTcwHhcNMjUwODAyMTU1MjUxWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhlMzQ1My04ZjdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApYmySKQDFaQ6dfkwBsV8ECjOL0y7gUD9VJdp8PLstp0buQnESdVxWnQawHUd 1AjkGt9BoI7Svy4JRqGGJUqSRvhHXonWaFZE2stQBtVIhKMADD3rSFiDvrqTVqCA p3gQxi60PBV5gt7RtT46hLzDV7VWWHsEmTpF+X6g9hoIDuAQR6jo/M7zNENWKldO fJnwrbZk/X/ui+bEXQT64jgf/KmSPBCJUcI7mKXKcLN5giRJKprwVw/5AQzEKjK0 Hjk4My9RMghvZObZyI+mV8EYgugM2TrJa+FB90hJdTShBnFxhGKa9d8Ylz1jsjr/ rd6nVbX3epFPWRLR3rLShAD1nQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFFnfr9EJ r90dswIJj5TTCl0ZUR0+MB8GA1UdIwQYMBaAFPPbnxYgCL1mbL+MmWB4FM+rJNfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9DNjVENTM2NDMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi84OXVmRmlBSXZXWnN2NHlaWUhnVXo2c2sx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5dWZGaUFJdldac3Y0eVpZSGdVejZzazEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQzY1RDUzNjQzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvMDBDMTM3QTJC RTc5MTFFOTkwODMxNzcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnVmQwDQQCAAIwBwMFACQFLMAwDQYJKoZIhvcNAQELBQAD ggEBAIYYFteGSz12jEr+qEVH/mzlCVJpYvzHDv2rp77Q8Q04mIrOUoTG1tY08U3+ YpmDX0dNO+MCixMKcEjUCdBKkWmPw6HFAoG5st46wuxzdPxHY0qUQp18jj5VsbDd K+nTJUaZZYHwFNVYn+8fJ8jBCTtSzHWAwraLr/OTblSU4HrF4Y0L+QZllp5TAvYP bHP1o39L9nJf3qLBR8KKiEGTvlqdwP0yUA3in2IIvWJf84edoC36bGvrmdq8bPKF ElFDdSwqUzqQiHSHzgZBq2gV6B5qGhnprtTHesifC3NBMIzatny6Km5cHzY3lK6S TrZNzhxC/MFR0tEt9k+RsDxH9hM= -----END CERTIFICATE-----Generated at Fri Aug 8 00:47:20 2025 by rpki-client