$ rpki-client -vvf rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/86A2CEB60F3E11EEA4C55465C4F9AE02.roa File: 86A2CEB60F3E11EEA4C55465C4F9AE02.roa (raw, json) Hash identifier: feRFh9Ht2rEY2jS2ePhZA2T4F0vbXp37hvleoPM6Wus= Subject key identifier: B4:A4:19:24:02:E4:DA:7E:0F:E8:3B:EF:45:C2:1B:45:08:59:BD:48 Certificate issuer: /CN=A911B4ED/serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Certificate serial: 0185 Authority key identifier: 90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/86A2CEB60F3E11EEA4C55465C4F9AE02.roa Signing time: Wed 09 Jul 2025 04:40:11 +0000 ROA not before: Wed 09 Jul 2025 04:40:11 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 141765 IP address blocks: 103.79.178.0/23 maxlen: 23 103.79.178.0/24 maxlen: 24 103.79.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 03:46:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 389 (0x185) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B4ED, serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Validity Not Before: Jul 9 04:40:11 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=686df2aa-4e03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:16:f6:79:a5:a1:e9:1a:10:fe:43:71:dd:82: c9:ec:24:d5:f0:63:45:64:ce:23:5a:9d:41:1b:f1: 4d:58:f9:61:e9:cf:74:52:3b:82:2d:58:f6:d5:76: 12:e9:53:89:9c:fb:06:07:c9:d7:e6:59:a9:97:ca: bb:e6:8b:22:4d:10:3f:84:4f:fa:45:6c:ea:a4:2c: dd:69:0b:05:da:24:41:5d:89:fd:59:ce:16:41:73: 4e:9e:32:94:ef:fe:7b:e5:95:7a:87:aa:80:40:27: 3b:7d:5c:4a:3b:f9:55:63:d3:43:04:4b:e2:ac:ce: fd:0e:5f:fa:b9:dd:e6:02:e7:22:6b:02:c0:ca:cd: db:ef:5b:d5:4a:75:ba:0c:bb:7f:9c:f4:22:31:93: 25:56:f1:f6:f9:5b:99:a2:bc:6c:f0:e9:84:1e:29: e4:7c:a8:93:78:c9:38:b9:da:d7:1b:1b:e6:58:b5: 0e:b7:b8:57:8e:f6:95:97:56:3a:c7:b3:72:8f:a7: c1:d2:70:1b:35:45:47:5f:96:05:76:ee:4b:7e:a8: 5e:8d:7a:5f:af:07:58:ab:85:11:bb:ac:55:4b:c2: 5a:84:00:3d:bc:1d:15:a1:29:d4:1f:d8:7b:23:3b: 1a:c0:b7:29:12:e4:ce:e3:6f:f7:e8:29:5f:02:8a: c3:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:A4:19:24:02:E4:DA:7E:0F:E8:3B:EF:45:C2:1B:45:08:59:BD:48 X509v3 Authority Key Identifier: keyid:90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/86A2CEB60F3E11EEA4C55465C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.79.178.0/23 Signature Algorithm: sha256WithRSAEncryption c7:a7:4f:ab:09:2c:d5:7a:bb:b6:e8:1d:f1:71:c7:f4:7b:44: 7b:ae:a4:95:6c:de:1a:6b:88:a6:c1:03:61:1c:dc:38:36:94: 91:e6:ea:06:61:d9:91:9d:55:08:7a:a2:a3:34:2c:2f:bb:13: ab:f7:68:61:c8:ef:45:21:af:9d:55:eb:ec:78:a0:58:58:c8: 0f:19:8e:27:42:f2:8a:75:0a:5f:4e:29:7b:5f:7b:3b:1c:5f: a0:10:58:24:6e:55:ee:9c:a6:b9:8a:8b:9c:52:cf:e7:75:c3: 21:d7:dc:b5:a8:10:c6:c2:0b:e5:ca:bd:2f:06:70:6b:c5:a3: ad:a9:96:41:73:c9:4b:91:f4:68:7e:0b:a2:09:86:bd:88:db: 9e:0a:9a:86:1f:14:1f:c2:f2:75:01:5c:7d:cb:63:a6:7a:12: 4e:0e:43:c0:4f:6d:15:39:d4:91:c6:3f:75:85:46:b0:96:65: bf:bd:fa:c5:84:4f:e1:b9:47:18:46:6a:7a:1b:85:c8:b2:6f: 64:6d:c1:39:36:8d:15:b3:26:f5:17:7b:82:17:c3:11:77:e0: 18:97:bb:cd:4e:6a:3e:cc:66:28:41:ba:9c:51:18:09:5e:af: e0:1e:c0:e8:57:42:b0:ba:54:91:7e:97:20:03:29:ef:4e:20: a9:ba:83:07 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0RUQxMTAvBgNVBAUTKDkwOEU3ODkwMzRGMTg0MTVEODc1OUMyNkEzNDZFQjgx MEVGNUE0MTUwHhcNMjUwNzA5MDQ0MDExWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZkZjJhYS00ZTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2hb2eaWh6RoQ/kNx3YLJ7CTV8GNFZM4jWp1BG/FNWPlh6c90UjuCLVj21XYS 6VOJnPsGB8nX5lmpl8q75osiTRA/hE/6RWzqpCzdaQsF2iRBXYn9Wc4WQXNOnjKU 7/575ZV6h6qAQCc7fVxKO/lVY9NDBEvirM79Dl/6ud3mAuciawLAys3b71vVSnW6 DLt/nPQiMZMlVvH2+VuZorxs8OmEHinkfKiTeMk4udrXGxvmWLUOt7hXjvaVl1Y6 x7Nyj6fB0nAbNUVHX5YFdu5LfqhejXpfrwdYq4URu6xVS8JahAA9vB0VoSnUH9h7 IzsawLcpEuTO42/36ClfAorDpwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLSkGSQC 5Np+D+g770XCG0UIWb1IMB8GA1UdIwQYMBaAFJCOeJA08YQV2HWcJqNG64EO9aQV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjRFRC9GQTRCMEFDNDBG MzcxMUVFQUI5RDk0NjhDNEY5QUUwMi9rSTU0a0RUeGhCWFlkWndtbzBicmdRNzFw QlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJNTRrRFR4aEJYWWRad21vMGJyZ1E3MXBCVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0RUQvRkE0QjBBQzQwRjM3MTFFRUFCOUQ5NDY4QzRGOUFFMDIvODZBMkNFQjYw RjNFMTFFRUE0QzU1NDY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnT7IwDQYJKoZIhvcNAQELBQADggEBAMenT6sJLNV6u7bo HfFxx/R7RHuupJVs3hpriKbBA2Ec3Dg2lJHm6gZh2ZGdVQh6oqM0LC+7E6v3aGHI 70Uhr51V6+x4oFhYyA8ZjidC8op1Cl9OKXtfezscX6AQWCRuVe6cprmKi5xSz+d1 wyHX3LWoEMbCC+XKvS8GcGvFo62plkFzyUuR9Gh+C6IJhr2I254KmoYfFB/C8nUB XH3LY6Z6Ek4OQ8BPbRU51JHGP3WFRrCWZb+9+sWET+G5RxhGanobhciyb2RtwTk2 jRWzJvUXe4IXwxF34BiXu81Oaj7MZihBupxRGAler+AewOhXQrC6VJF+lyADKe9O IKm6gwc= -----END CERTIFICATE-----Generated at Sun Jul 20 03:41:16 2025 by rpki-client