$ rpki-client -vvf rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/39C6EF3688BF11EABC04973FC4F9AE02.roa File: 39C6EF3688BF11EABC04973FC4F9AE02.roa (raw, json) Hash identifier: yd71n8eugD8WrOND6JHlcb+DlT4vihP97eJVROksTM0= Subject key identifier: D1:D1:C2:33:EC:6A:92:57:A5:C5:86:36:6A:22:03:D4:45:9D:8C:01 Certificate issuer: /CN=A913C91D/serialNumber=72D65BB3CAD4A098F36F4137594CC7FEC2FA28A3 Certificate serial: 1086 Authority key identifier: 72:D6:5B:B3:CA:D4:A0:98:F3:6F:41:37:59:4C:C7:FE:C2:FA:28:A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/39C6EF3688BF11EABC04973FC4F9AE02.roa Signing time: Tue 08 Jul 2025 17:56:23 +0000 ROA not before: Tue 08 Jul 2025 17:56:23 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 137945 IP address blocks: 203.9.40.0/24 maxlen: 24 203.9.41.0/24 maxlen: 24 203.9.42.0/24 maxlen: 24 203.9.43.0/24 maxlen: 24 203.9.44.0/24 maxlen: 24 203.9.45.0/24 maxlen: 24 203.9.46.0/24 maxlen: 24 203.9.47.0/24 maxlen: 24 2403:20c0:2::/48 maxlen: 48 2403:20c0:3::/48 maxlen: 48 2403:20c0:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 17:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4230 (0x1086) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C91D, serialNumber=72D65BB3CAD4A098F36F4137594CC7FEC2FA28A3 Validity Not Before: Jul 8 17:56:23 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=686d5bc7-b380 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d0:29:17:a2:61:d5:78:fc:ca:b9:a6:ab:d6: 84:9b:03:35:a7:e9:15:5a:dd:c3:c6:14:2d:80:77: cc:33:a6:02:a2:47:cb:06:c2:e0:d9:9f:82:5c:78: 27:9e:10:44:9d:6c:f3:9f:fc:0b:10:e6:2a:a5:53: 58:4f:75:20:82:54:32:39:10:ed:36:2a:d7:c1:c1: e4:b7:e7:f0:b6:9e:da:41:5e:50:f5:cf:d5:0b:22: 1f:69:22:49:8a:bc:86:67:03:0e:9f:fc:5f:ef:fd: fa:a1:46:eb:3d:89:e7:ce:a0:ca:e6:bf:a4:28:94: e7:bb:fb:f1:48:37:b6:58:88:1e:00:fe:92:e3:10: 0f:cf:2e:b4:ba:aa:69:1f:a5:6a:f0:d0:ef:41:75: b4:ea:f1:9e:4f:19:a5:eb:1c:66:2b:07:5b:ae:15: b9:ef:f6:a1:fa:a4:9f:be:98:1e:09:bf:37:16:96: 42:4c:14:5c:a1:30:37:5d:6b:58:85:df:4a:7f:dd: 48:67:0a:a1:cf:95:1b:1d:c0:51:d6:66:24:a1:fd: 41:d7:eb:0f:16:a8:a2:13:3f:90:f2:e4:00:86:8e: d6:0c:bc:31:88:83:59:61:e5:18:17:ec:14:e1:d4: 0e:d8:a8:71:34:85:56:0e:4f:b2:46:7a:15:72:b0: 98:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:D1:C2:33:EC:6A:92:57:A5:C5:86:36:6A:22:03:D4:45:9D:8C:01 X509v3 Authority Key Identifier: keyid:72:D6:5B:B3:CA:D4:A0:98:F3:6F:41:37:59:4C:C7:FE:C2:FA:28:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/39C6EF3688BF11EABC04973FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.9.40.0/21 IPv6: 2403:20c0:2::-2403:20c0:4:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 25:a1:62:ef:49:33:fc:c4:0c:b8:94:c4:16:8f:3e:e9:4b:f9: 25:34:7b:1a:70:e3:93:ad:36:13:c5:fd:3c:c7:00:78:ac:31: ef:73:2d:c3:53:3d:e6:bb:ab:b2:53:4c:02:85:b0:ca:2b:5a: 5d:54:c2:9e:56:af:9c:fb:35:66:ef:ee:9a:e7:9d:00:e2:99: 4a:21:07:5d:55:9b:f5:99:a3:bd:84:76:19:c3:49:16:7b:a7: d7:19:6c:7b:7a:0f:c5:2d:56:f6:49:7b:dc:8c:eb:da:44:ec: 65:62:8a:5a:eb:30:8c:db:9e:9a:0f:01:bc:a8:77:8e:69:f9: a0:d7:2a:c2:32:99:a7:18:8b:1d:47:e9:e4:35:ad:e1:e9:5f: 9d:2e:75:d9:6a:b5:34:02:e6:83:79:22:2f:98:f7:ff:46:22: 07:2b:4e:bd:97:5f:c8:70:24:8a:36:63:98:cb:5f:e9:85:4d: 51:0e:99:4e:ba:e7:0f:f2:20:c3:33:9c:8c:bd:dd:1d:48:65: 84:ef:f2:b9:8f:08:ae:2a:c0:e1:30:90:c5:7a:db:60:75:3b: 74:f0:b7:4b:83:a9:d2:11:59:a0:06:d6:2c:dc:da:80:a1:a5: f3:5a:3d:cf:32:ad:d9:bd:f0:c5:d7:8b:2f:58:92:37:8a:02: 88:49:96:7f -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICEIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0M5MUQxMTAvBgNVBAUTKDcyRDY1QkIzQ0FENEEwOThGMzZGNDEzNzU5NENDN0ZF QzJGQTI4QTMwHhcNMjUwNzA4MTc1NjIzWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZkNWJjNy1iMzgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsdApF6Jh1Xj8yrmmq9aEmwM1p+kVWt3DxhQtgHfMM6YCokfLBsLg2Z+CXHgn nhBEnWzzn/wLEOYqpVNYT3UgglQyORDtNirXwcHkt+fwtp7aQV5Q9c/VCyIfaSJJ iryGZwMOn/xf7/36oUbrPYnnzqDK5r+kKJTnu/vxSDe2WIgeAP6S4xAPzy60uqpp H6Vq8NDvQXW06vGeTxml6xxmKwdbrhW57/ah+qSfvpgeCb83FpZCTBRcoTA3XWtY hd9Kf91IZwqhz5UbHcBR1mYkof1B1+sPFqiiEz+Q8uQAho7WDLwxiINZYeUYF+wU 4dQO2KhxNIVWDk+yRnoVcrCYYwIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFNHRwjPs apJXpcWGNmoiA9RFnYwBMB8GA1UdIwQYMBaAFHLWW7PK1KCY829BN1lMx/7C+iij MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzkxRC9EOTBDRDg3NDM1 ODQxMUU5OUE5OTAyMjhDNEY5QUUwMi9jdFpiczhyVW9KanpiMEUzV1V6SF9zTDZL S00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N0WmJzOHJVb0pqemIwRTNXVXpIX3NMNktLTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0M5MUQvRDkwQ0Q4NzQzNTg0MTFFOTlBOTkwMjI4QzRGOUFFMDIvMzlDNkVGMzY4 OEJGMTFFQUJDMDQ5NzNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOwYIKwYBBQUHAQcBAf8E LDAqMAwEAgABMAYDBAPLCSgwGgQCAAIwFDASAwcBJAMgwAACAwcAJAMgwAAEMA0G CSqGSIb3DQEBCwUAA4IBAQAloWLvSTP8xAy4lMQWjz7pS/klNHsacOOTrTYTxf08 xwB4rDHvcy3DUz3mu6uyU0wChbDKK1pdVMKeVq+c+zVm7+6a550A4plKIQddVZv1 maO9hHYZw0kWe6fXGWx7eg/FLVb2SXvcjOvaROxlYopa6zCM256aDwG8qHeOafmg 1yrCMpmnGIsdR+nkNa3h6V+dLnXZarU0AuaDeSIvmPf/RiIHK069l1/IcCSKNmOY y1/phU1RDplOuucP8iDDM5yMvd0dSGWE7/K5jwiuKsDhMJDFettgdTt08LdLg6nS EVmgBtYs3NqAoaXzWj3PMq3ZvfDF14svWJI3igKISZZ/ -----END CERTIFICATE-----Generated at Sun Jul 20 11:41:57 2025 by rpki-client