$ rpki-client -vvf rpki.apnic.net/member_repository/A918769B/B0935D54CC6311EC9B8E962BC4F9AE02/D8D89576CF2F11EC8378951DC4F9AE02.roa File: D8D89576CF2F11EC8378951DC4F9AE02.roa (raw, json) Hash identifier: hLXl6/Z8LuNjbKfmjM+o1Rss4EPhppx+VpRuw3V1cZQ= Subject key identifier: 1C:8E:54:93:38:0C:92:E3:C5:31:AB:DF:3E:EE:D3:50:FE:B4:80:B7 Certificate issuer: /CN=A918769B/serialNumber=24CCE80DF0D48A6D0C391A3AF0DD644DDBFB75AB Certificate serial: 032B Authority key identifier: 24:CC:E8:0D:F0:D4:8A:6D:0C:39:1A:3A:F0:DD:64:4D:DB:FB:75:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JMzoDfDUim0MORo68N1kTdv7das.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918769B/B0935D54CC6311EC9B8E962BC4F9AE02/D8D89576CF2F11EC8378951DC4F9AE02.roa Signing time: Tue 03 Jun 2025 01:55:31 +0000 ROA not before: Tue 03 Jun 2025 01:55:31 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 149811 IP address blocks: 103.186.242.0/24 maxlen: 24 103.186.243.0/24 maxlen: 24 2400:7660:ffff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918769B/B0935D54CC6311EC9B8E962BC4F9AE02/JMzoDfDUim0MORo68N1kTdv7das.crl rsync://rpki.apnic.net/member_repository/A918769B/B0935D54CC6311EC9B8E962BC4F9AE02/JMzoDfDUim0MORo68N1kTdv7das.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JMzoDfDUim0MORo68N1kTdv7das.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 00:57:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 811 (0x32b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918769B, serialNumber=24CCE80DF0D48A6D0C391A3AF0DD644DDBFB75AB Validity Not Before: Jun 3 01:55:31 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683e5612-9eeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:64:93:6b:db:3f:68:a5:4d:52:cf:9d:83:14: 0c:bd:fd:9b:a8:45:df:98:a2:18:77:95:92:4a:13: cc:e9:18:65:33:13:f1:3d:74:16:67:84:4a:5f:f2: 9e:68:7d:2a:4e:54:8e:63:ca:ff:d6:87:6c:7a:7d: 18:26:64:55:5b:de:78:6c:cf:1e:2c:ed:4a:28:3f: 55:5f:a8:b0:dc:41:ed:d2:5c:a1:25:fc:de:70:4c: ce:22:6b:ef:6a:80:e7:de:dd:42:66:f7:68:23:a4: 05:bb:01:12:b4:da:5f:93:a5:04:89:31:99:d0:69: e1:a2:38:37:dc:e4:6c:49:3e:9b:e1:85:fa:21:c9: b2:fc:bc:eb:66:44:2a:6d:ec:ec:27:fe:a0:65:4d: 21:85:2b:8d:cc:1e:9f:8a:6a:f6:35:e1:36:23:54: b6:2d:b0:11:a1:39:9a:0c:83:60:98:bc:7f:33:11: 16:2d:e8:84:24:02:dd:20:4f:09:0a:91:dd:33:16: 60:6d:15:0b:34:ff:95:26:23:63:ad:0b:a2:38:39: d8:ed:9b:4d:12:c7:4c:40:bb:4b:20:58:c6:47:47: 23:7e:bd:e5:1e:77:a7:bd:9e:40:56:45:dc:f5:5e: f0:c4:d3:18:ba:15:d1:0b:96:a4:64:1f:ae:50:f9: 5b:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:8E:54:93:38:0C:92:E3:C5:31:AB:DF:3E:EE:D3:50:FE:B4:80:B7 X509v3 Authority Key Identifier: keyid:24:CC:E8:0D:F0:D4:8A:6D:0C:39:1A:3A:F0:DD:64:4D:DB:FB:75:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918769B/B0935D54CC6311EC9B8E962BC4F9AE02/JMzoDfDUim0MORo68N1kTdv7das.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JMzoDfDUim0MORo68N1kTdv7das.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918769B/B0935D54CC6311EC9B8E962BC4F9AE02/D8D89576CF2F11EC8378951DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.186.242.0/23 IPv6: 2400:7660:ffff::/48 Signature Algorithm: sha256WithRSAEncryption a2:3e:23:e9:c9:8e:21:d0:a1:8b:e0:11:4e:72:7c:48:06:77: d0:df:1c:42:b3:55:18:f1:14:8f:df:a7:65:15:57:17:27:de: 17:96:1a:5d:5e:0d:44:09:e4:0e:42:a1:56:2a:70:28:92:6b: b3:f1:14:08:6d:40:da:db:26:64:ba:3b:82:ef:de:13:e8:22: cf:9d:d8:b1:07:7c:b8:77:fd:04:d9:f4:a2:95:96:2c:55:a8: 40:8c:38:89:58:73:a5:58:5f:3c:c8:2c:45:42:e0:67:81:a4: 8d:3d:11:b0:a9:7f:99:2f:de:0d:78:cf:bd:a4:09:b8:19:f3: 15:52:26:c9:93:0f:70:16:91:29:65:d3:b4:b2:d7:65:55:ee: 11:7c:f1:22:d4:85:bd:bf:9d:c0:1a:02:ce:b6:98:6b:c3:48: 76:fc:1c:77:15:5c:52:20:75:d9:9c:28:93:28:ed:d4:5b:38: a3:39:77:af:d7:f3:b8:c3:5e:73:51:3e:66:10:80:73:7c:c3: aa:42:7d:5e:b9:e0:c8:5a:9f:f4:c3:83:30:13:2c:cc:60:fd: 76:b9:70:32:1e:6e:54:be:43:b8:10:30:7b:9c:b1:50:0b:e1: 82:bb:17:83:ac:91:3c:8b:8c:54:a0:46:fe:5c:cd:63:7b:72: 38:3d:61:89 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAyswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc2OUIxMTAvBgNVBAUTKDI0Q0NFODBERjBENDhBNkQwQzM5MUEzQUYwREQ2NDRE REJGQjc1QUIwHhcNMjUwNjAzMDE1NTMxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNlNTYxMi05ZWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoGSTa9s/aKVNUs+dgxQMvf2bqEXfmKIYd5WSShPM6RhlMxPxPXQWZ4RKX/Ke aH0qTlSOY8r/1odsen0YJmRVW954bM8eLO1KKD9VX6iw3EHt0lyhJfzecEzOImvv aoDn3t1CZvdoI6QFuwEStNpfk6UEiTGZ0Gnhojg33ORsST6b4YX6Icmy/LzrZkQq bezsJ/6gZU0hhSuNzB6fimr2NeE2I1S2LbARoTmaDINgmLx/MxEWLeiEJALdIE8J CpHdMxZgbRULNP+VJiNjrQuiODnY7ZtNEsdMQLtLIFjGR0cjfr3lHnenvZ5AVkXc 9V7wxNMYuhXRC5akZB+uUPlbqwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFByOVJM4 DJLjxTGr3z7u01D+tIC3MB8GA1UdIwQYMBaAFCTM6A3w1IptDDkaOvDdZE3b+3Wr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzY5Qi9CMDkzNUQ1NEND NjMxMUVDOUI4RTk2MkJDNEY5QUUwMi9KTXpvRGZEVWltME1PUm82OE4xa1Rkdjdk YXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pNem9EZkRVaW0wTU9SbzY4TjFrVGR2N2Rhcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODc2OUIvQjA5MzVENTRDQzYzMTFFQzlCOEU5NjJCQzRGOUFFMDIvRDhEODk1NzZD RjJGMTFFQzgzNzg5NTFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnuvIwDwQCAAIwCQMHACQAdmD//zANBgkqhkiG9w0BAQsF AAOCAQEAoj4j6cmOIdChi+ARTnJ8SAZ30N8cQrNVGPEUj9+nZRVXFyfeF5YaXV4N RAnkDkKhVipwKJJrs/EUCG1A2tsmZLo7gu/eE+giz53YsQd8uHf9BNn0opWWLFWo QIw4iVhzpVhfPMgsRULgZ4GkjT0RsKl/mS/eDXjPvaQJuBnzFVImyZMPcBaRKWXT tLLXZVXuEXzxItSFvb+dwBoCzraYa8NIdvwcdxVcUiB12Zwokyjt1Fs4ozl3r9fz uMNec1E+ZhCAc3zDqkJ9XrngyFqf9MODMBMszGD9drlwMh5uVL5DuBAwe5yxUAvh grsXg6yRPIuMVKBG/lzNY3tyOD1hiQ== -----END CERTIFICATE-----Generated at Fri Jun 20 16:29:44 2025 by rpki-client