$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/688029EE184B11EA85906435C4F9AE02.roa File: 688029EE184B11EA85906435C4F9AE02.roa (raw, json) Hash identifier: zdOzhV06xHeQZD517F6m54JCnYXis3twPSmHCQb8hto= Subject key identifier: E6:8C:04:17:BA:A4:B6:2A:1C:6E:D3:82:E5:49:93:1B:5A:D1:06:AE Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Certificate serial: 368B Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/688029EE184B11EA85906435C4F9AE02.roa Signing time: Sat 02 Aug 2025 15:52:46 +0000 ROA not before: Sat 02 Aug 2025 15:52:46 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 133823 IP address blocks: 45.116.156.0/24 maxlen: 24 45.116.157.0/24 maxlen: 24 45.116.158.0/24 maxlen: 24 45.116.159.0/24 maxlen: 24 103.54.93.0/24 maxlen: 24 103.54.94.0/24 maxlen: 24 103.54.95.0/24 maxlen: 24 103.104.132.0/24 maxlen: 24 103.104.133.0/24 maxlen: 24 103.104.134.0/24 maxlen: 24 103.104.135.0/24 maxlen: 24 103.111.196.0/24 maxlen: 24 103.111.197.0/24 maxlen: 24 103.111.198.0/24 maxlen: 24 103.111.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13963 (0x368b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214, serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Validity Not Before: Aug 2 15:52:46 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=688e344e-5af4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:0e:ae:2d:06:da:41:fd:d6:d1:c1:5c:d7:95: b1:a0:3c:76:00:c6:27:7f:cd:0c:a7:3c:fb:48:35: 1c:9b:ac:48:f4:c8:ee:68:86:3a:ed:e4:ea:01:a8: b1:5a:1b:34:a0:09:b6:a2:6b:48:c4:93:79:e0:c1: df:e9:dd:06:92:59:0b:97:85:b7:19:02:9b:98:73: 5c:cd:05:22:1a:ec:93:58:fa:15:5f:98:cc:00:ee: 2f:52:4d:28:65:2f:45:5f:6e:e3:b8:b8:1e:9e:e0: 8a:58:0b:e4:71:d6:a1:c0:a3:a5:31:f5:90:ab:aa: 87:9e:2e:da:99:29:9c:81:2e:a4:40:5b:57:21:84: fc:0a:b8:35:7b:b2:31:96:c1:8d:f8:8b:01:86:bd: 98:b1:35:10:33:31:2d:44:a6:90:b2:0a:13:d4:74: 5d:12:3f:cb:62:b1:03:39:c7:72:ce:59:74:a7:cd: 4e:d1:d4:aa:e3:25:d5:eb:2d:80:2f:11:a6:db:c0: 2e:88:0c:85:99:45:65:dd:c2:27:04:b0:b4:68:4e: 17:fb:63:b8:3c:96:aa:2d:15:88:b8:c0:34:74:6b: 19:5b:cd:19:40:14:b5:3f:e6:5f:b5:d5:c2:1c:3a: fd:ab:b6:5c:3b:42:bb:1b:26:8b:89:0b:ed:12:ab: 3d:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:8C:04:17:BA:A4:B6:2A:1C:6E:D3:82:E5:49:93:1B:5A:D1:06:AE X509v3 Authority Key Identifier: keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/688029EE184B11EA85906435C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.116.156.0/22 103.54.93.0-103.54.95.255 103.104.132.0/22 103.111.196.0/22 Signature Algorithm: sha256WithRSAEncryption 4d:1a:fc:21:ae:b4:61:2a:5e:2a:db:04:5e:55:6f:95:e5:5c: d5:ec:8e:29:19:8f:73:c7:39:3e:ce:41:df:70:6e:7b:57:b2: 51:50:4a:91:6e:6e:c3:5f:ed:04:f2:93:05:43:17:a6:86:ed: 76:59:63:42:04:ae:f6:5f:81:3e:c6:13:2a:c7:40:49:39:e7: c4:18:15:c1:4e:40:bf:6c:75:4f:9e:bb:1f:48:99:d1:c1:0c: ca:62:10:88:11:2b:74:43:0b:2a:e9:28:af:55:28:9f:a8:cf: 68:c8:86:19:36:b6:0d:85:27:5d:e8:de:88:66:fb:51:30:16: b0:19:0d:0b:2d:91:34:72:42:f9:c8:fa:14:d6:9f:6e:35:10: 79:8b:cb:88:c9:9c:57:fc:09:19:0d:0a:3b:56:1e:e5:c0:d6: 9f:67:12:2a:49:3c:a0:44:30:d3:eb:14:0d:5a:a8:f5:96:1e: cc:fb:cd:24:b2:65:29:49:97:f5:fa:d4:3e:3c:47:b9:9d:0e: 18:b8:8c:7c:d1:d8:26:da:a6:7b:8d:6a:55:e9:cf:6d:c5:0c: 7b:e5:b6:d1:7d:95:7b:43:4a:71:d3:77:2a:90:96:c7:92:d1: fd:af:ef:2e:3f:b9:61:0c:47:6c:2a:06:55:e6:3f:58:1f:91: 7e:63:0a:5e -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICNoswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKEYzREI5RjE2MjAwOEJENjY2Q0JGOEM5OTYwNzgxNENG QUIyNEQ3RTcwHhcNMjUwODAyMTU1MjQ2WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhlMzQ0ZS01YWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzw6uLQbaQf3W0cFc15WxoDx2AMYnf80Mpzz7SDUcm6xI9MjuaIY67eTqAaix Whs0oAm2omtIxJN54MHf6d0GklkLl4W3GQKbmHNczQUiGuyTWPoVX5jMAO4vUk0o ZS9FX27juLgenuCKWAvkcdahwKOlMfWQq6qHni7amSmcgS6kQFtXIYT8Crg1e7Ix lsGN+IsBhr2YsTUQMzEtRKaQsgoT1HRdEj/LYrEDOcdyzll0p81O0dSq4yXV6y2A LxGm28AuiAyFmUVl3cInBLC0aE4X+2O4PJaqLRWIuMA0dGsZW80ZQBS1P+ZftdXC HDr9q7ZcO0K7GyaLiQvtEqs9DwIDAQABo4ICrzCCAqswHQYDVR0OBBYEFOaMBBe6 pLYqHG7TguVJkxta0QauMB8GA1UdIwQYMBaAFPPbnxYgCL1mbL+MmWB4FM+rJNfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9DNjVENTM2NDMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi84OXVmRmlBSXZXWnN2NHlaWUhnVXo2c2sx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5dWZGaUFJdldac3Y0eVpZSGdVejZzazEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQzY1RDUzNjQzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvNjg4MDI5RUUx ODRCMTFFQTg1OTA2NDM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMCYEAgABMCADBAItdJwwDAMEAGc2XQMEBWc2QAMEAmdohAMEAmdvxDANBgkq hkiG9w0BAQsFAAOCAQEATRr8Ia60YSpeKtsEXlVvleVc1eyOKRmPc8c5Ps5B33Bu e1eyUVBKkW5uw1/tBPKTBUMXpobtdlljQgSu9l+BPsYTKsdASTnnxBgVwU5Av2x1 T567H0iZ0cEMymIQiBErdEMLKukor1Uon6jPaMiGGTa2DYUnXejeiGb7UTAWsBkN Cy2RNHJC+cj6FNafbjUQeYvLiMmcV/wJGQ0KO1Ye5cDWn2cSKkk8oEQw0+sUDVqo 9ZYezPvNJLJlKUmX9frUPjxHuZ0OGLiMfNHYJtqme41qVenPbcUMe+W20X2Ve0NK cdN3KpCWx5LR/a/vLj+5YQxHbCoGVeY/WB+RfmMKXg== -----END CERTIFICATE-----Generated at Sat Aug 9 10:50:37 2025 by rpki-client