$ rpki-client -vvf rpki.apnic.net/member_repository/A9186392/19FD4CC2D90211ED87844959C4F9AE02/3CF4087AD90611ED890F5D5FC4F9AE02.roa File: 3CF4087AD90611ED890F5D5FC4F9AE02.roa (raw, json) Hash identifier: c52+qULtQI4nUSwyiYqI9B7pVL/XEZ9W/nL53Dz6dtI= Subject key identifier: 8C:92:77:CA:A3:96:18:5C:43:F4:22:BA:CF:B2:20:83:73:81:88:72 Certificate issuer: /CN=A9186392/serialNumber=6D694327A78B0F5E7C2D0C746377481DEDDDA002 Certificate serial: 0199 Authority key identifier: 6D:69:43:27:A7:8B:0F:5E:7C:2D:0C:74:63:77:48:1D:ED:DD:A0:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bWlDJ6eLD158LQx0Y3dIHe3doAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186392/19FD4CC2D90211ED87844959C4F9AE02/3CF4087AD90611ED890F5D5FC4F9AE02.roa Signing time: Sun 25 May 2025 03:22:01 +0000 ROA not before: Sun 25 May 2025 03:22:01 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 151184 IP address blocks: 103.131.58.0/23 maxlen: 23 103.131.58.0/24 maxlen: 24 103.131.59.0/24 maxlen: 24 2001:df2:4140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186392/19FD4CC2D90211ED87844959C4F9AE02/bWlDJ6eLD158LQx0Y3dIHe3doAI.crl rsync://rpki.apnic.net/member_repository/A9186392/19FD4CC2D90211ED87844959C4F9AE02/bWlDJ6eLD158LQx0Y3dIHe3doAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bWlDJ6eLD158LQx0Y3dIHe3doAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 03:35:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 409 (0x199) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186392, serialNumber=6D694327A78B0F5E7C2D0C746377481DEDDDA002 Validity Not Before: May 25 03:22:01 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68328cd9-9e2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:95:1c:c2:ab:83:fd:a6:6d:9c:40:0b:28:b1: cc:e3:05:ed:f7:c4:0a:83:1c:2d:33:3e:ce:1f:7e: 24:96:8c:0e:74:6d:ce:e1:b2:03:12:90:cd:3a:f6: 8a:84:b7:89:97:3f:39:cd:ef:0d:f2:86:c4:cc:84: 4e:86:e5:13:b2:74:24:11:63:a8:f0:dd:57:94:02: f4:ac:4c:3a:00:3e:f2:b3:71:8c:53:3a:af:51:62: 4a:0d:77:6b:a3:db:41:32:f6:e6:7b:0a:5f:59:cf: cd:7a:f2:a0:e1:45:1e:dd:e7:c5:67:b6:d8:e9:c6: 0e:5b:9a:7b:f1:d8:f9:b4:b7:2b:de:19:b3:95:b3: ba:24:66:63:30:e9:40:31:55:68:3c:4e:00:65:34: 41:80:2c:db:e3:e9:a8:9b:a8:0f:b1:a9:b3:96:f7: f6:4f:c2:4d:93:6d:72:88:c7:38:4a:b7:c4:1d:5c: a4:76:07:11:1b:13:e8:c7:d2:14:7e:35:75:51:91: c3:8a:0a:d0:84:13:9e:b7:26:98:16:2a:97:f8:96: 8b:1b:b3:88:b0:bb:09:33:8e:ae:ff:1a:65:6e:79: 5f:f8:8b:3d:1b:ec:f4:43:0b:b3:0b:e1:74:59:a8: 60:88:5f:27:b4:75:02:66:e5:65:ef:61:02:b3:08: 61:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:92:77:CA:A3:96:18:5C:43:F4:22:BA:CF:B2:20:83:73:81:88:72 X509v3 Authority Key Identifier: keyid:6D:69:43:27:A7:8B:0F:5E:7C:2D:0C:74:63:77:48:1D:ED:DD:A0:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186392/19FD4CC2D90211ED87844959C4F9AE02/bWlDJ6eLD158LQx0Y3dIHe3doAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bWlDJ6eLD158LQx0Y3dIHe3doAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186392/19FD4CC2D90211ED87844959C4F9AE02/3CF4087AD90611ED890F5D5FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.131.58.0/23 IPv6: 2001:df2:4140::/48 Signature Algorithm: sha256WithRSAEncryption 82:cc:0d:10:dc:8d:91:98:42:0c:be:2a:00:d4:64:e0:98:26: 28:53:b2:47:92:48:d4:b9:3c:3f:53:f8:bb:35:91:30:ec:57: 8d:a1:29:96:5a:97:51:16:7c:93:14:8c:04:39:20:7c:69:68: 57:87:65:d9:0b:a6:48:f4:85:70:72:f4:63:a8:0d:d9:27:97: 0a:fb:8a:05:98:f6:00:77:42:ac:c8:4c:ed:89:6f:c8:6d:e8: ae:5e:04:d6:be:7a:76:f8:e1:80:54:82:22:14:20:8a:76:4c: ba:2d:c4:0f:be:2e:bb:a2:de:e8:fb:28:63:6e:2a:b3:53:09: 4b:3d:3e:97:e7:d7:90:4c:4c:45:6c:2c:53:f1:7d:69:2e:e1: 20:52:66:d8:bb:63:c8:08:cb:4d:50:36:7f:7e:6b:3b:30:fc: d6:61:3a:6b:e7:fa:e0:b2:70:bf:e7:cc:fc:92:ad:b3:16:c5: 24:9f:ae:ff:db:2f:49:42:db:68:82:c0:06:d2:09:78:2e:e7: 6a:8d:fb:62:0b:31:2e:72:be:e5:a0:ad:85:a4:45:25:d9:3c: db:96:5d:9d:65:da:15:d5:32:9f:34:7a:a3:7b:dc:08:08:b4: 57:75:62:22:af:91:6d:9c:1c:86:aa:07:5c:c1:f3:8c:a5:3f: f7:28:84:e3 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYzOTIxMTAvBgNVBAUTKDZENjk0MzI3QTc4QjBGNUU3QzJEMEM3NDYzNzc0ODFE RUREREEwMDIwHhcNMjUwNTI1MDMyMjAxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODMyOGNkOS05ZTJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtJUcwquD/aZtnEALKLHM4wXt98QKgxwtMz7OH34klowOdG3O4bIDEpDNOvaK hLeJlz85ze8N8obEzIROhuUTsnQkEWOo8N1XlAL0rEw6AD7ys3GMUzqvUWJKDXdr o9tBMvbmewpfWc/NevKg4UUe3efFZ7bY6cYOW5p78dj5tLcr3hmzlbO6JGZjMOlA MVVoPE4AZTRBgCzb4+mom6gPsamzlvf2T8JNk21yiMc4SrfEHVykdgcRGxPox9IU fjV1UZHDigrQhBOetyaYFiqX+JaLG7OIsLsJM46u/xplbnlf+Is9G+z0QwuzC+F0 WahgiF8ntHUCZuVl72ECswhh3QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFIySd8qj lhhcQ/Qius+yIINzgYhyMB8GA1UdIwQYMBaAFG1pQyeniw9efC0MdGN3SB3t3aAC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjM5Mi8xOUZENENDMkQ5 MDIxMUVEODc4NDQ5NTlDNEY5QUUwMi9iV2xESjZlTEQxNThMUXgwWTNkSUhlM2Rv QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JXbERKNmVMRDE1OExReDBZM2RJSGUzZG9BSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYzOTIvMTlGRDRDQzJEOTAyMTFFRDg3ODQ0OTU5QzRGOUFFMDIvM0NGNDA4N0FE OTA2MTFFRDg5MEY1RDVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFngzowDwQCAAIwCQMHACABDfJBQDANBgkqhkiG9w0BAQsF AAOCAQEAgswNENyNkZhCDL4qANRk4JgmKFOyR5JI1Lk8P1P4uzWRMOxXjaEpllqX URZ8kxSMBDkgfGloV4dl2QumSPSFcHL0Y6gN2SeXCvuKBZj2AHdCrMhM7YlvyG3o rl4E1r56dvjhgFSCIhQginZMui3ED74uu6Le6PsoY24qs1MJSz0+l+fXkExMRWws U/F9aS7hIFJm2LtjyAjLTVA2f35rOzD81mE6a+f64LJwv+fM/JKtsxbFJJ+u/9sv SULbaILABtIJeC7nao37YgsxLnK+5aCthaRFJdk825ZdnWXaFdUynzR6o3vcCAi0 V3ViIq+RbZwchqoHXMHzjKU/9yiE4w== -----END CERTIFICATE-----Generated at Fri Aug 8 21:00:53 2025 by rpki-client