$ rpki-client -vvf rpki.apnic.net/member_repository/A913B5C2/779D04A0364111EB8499D219C4F9AE02/5010A55A8C6411EE9E586967C4F9AE02.roa File: 5010A55A8C6411EE9E586967C4F9AE02.roa (raw, json) Hash identifier: 4WaxcSOypw5MR8KdXAghCvA+v2O7hVTdBBBYUHYD0cA= Subject key identifier: 8E:3D:F1:4F:24:57:EB:71:41:21:CC:BB:07:C9:FE:0E:BB:F2:C2:7B Certificate issuer: /CN=A913B5C2/serialNumber=1EED263F0428D84E3FBE51753D16D4B3D62797C4 Certificate serial: 073D Authority key identifier: 1E:ED:26:3F:04:28:D8:4E:3F:BE:51:75:3D:16:D4:B3:D6:27:97:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hu0mPwQo2E4_vlF1PRbUs9Ynl8Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B5C2/779D04A0364111EB8499D219C4F9AE02/5010A55A8C6411EE9E586967C4F9AE02.roa Signing time: Fri 16 May 2025 22:10:12 +0000 ROA not before: Fri 16 May 2025 22:10:12 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 136416 IP address blocks: 103.86.200.0/22 maxlen: 24 2400:c740::/32 maxlen: 32 2400:c740::/36 maxlen: 36 2400:c740:1000::/36 maxlen: 36 2400:c740:2000::/36 maxlen: 36 2400:c740:3000::/36 maxlen: 36 2400:c740:4000::/36 maxlen: 36 2400:c740:5000::/36 maxlen: 36 2400:c740:6000::/36 maxlen: 36 2400:c740:7000::/36 maxlen: 36 2400:c740:8000::/36 maxlen: 36 2400:c740:9000::/36 maxlen: 36 2400:c740:a000::/36 maxlen: 36 2400:c740:b000::/36 maxlen: 36 2400:c740:c000::/36 maxlen: 36 2400:c740:d000::/36 maxlen: 36 2400:c740:e000::/36 maxlen: 36 2400:c740:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B5C2/779D04A0364111EB8499D219C4F9AE02/Hu0mPwQo2E4_vlF1PRbUs9Ynl8Q.crl rsync://rpki.apnic.net/member_repository/A913B5C2/779D04A0364111EB8499D219C4F9AE02/Hu0mPwQo2E4_vlF1PRbUs9Ynl8Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hu0mPwQo2E4_vlF1PRbUs9Ynl8Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Jun 2025 21:27:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1853 (0x73d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B5C2, serialNumber=1EED263F0428D84E3FBE51753D16D4B3D62797C4 Validity Not Before: May 16 22:10:12 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=6827b7c4-f2b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d7:2e:49:48:e9:8a:a6:5f:14:44:61:fd:d0: 8c:b6:8c:25:5d:4a:f8:37:93:3b:b1:a6:2b:14:7a: c8:be:76:bb:5e:36:11:8a:b3:da:52:44:5a:9b:ab: 71:4f:38:83:38:84:68:9c:d6:1a:42:47:0b:84:d5: 2f:76:0a:4a:ae:d8:23:3b:d8:35:ec:d5:28:d2:48: f1:d2:dc:0a:2a:d8:94:fc:be:2b:24:b8:76:b9:5f: 16:9c:62:49:37:63:2d:06:18:5d:0f:2d:98:07:0a: 08:e0:b1:54:3f:d6:bf:72:b9:f8:fd:00:03:99:9d: dc:60:d3:a7:9a:2f:68:11:cd:b3:b0:8b:78:e1:09: 9b:d9:17:ab:57:b0:50:a0:2f:c4:bf:c0:58:a2:55: 92:7d:6b:ee:fd:49:63:53:f6:07:ac:1b:06:cc:11: a5:63:53:3c:95:d3:93:0d:3f:a9:73:5a:a0:4c:d2: fa:6d:58:40:b2:dd:14:79:e0:38:a8:d7:40:bb:62: 27:47:4e:ac:9d:b7:89:7c:94:01:a3:b9:82:74:50: 37:4a:c2:a8:57:ea:57:48:22:71:22:7d:48:ab:9b: 80:1d:68:ad:cf:60:3b:d9:a4:7e:7b:77:d8:e2:f5: 6e:95:be:55:bd:58:47:0a:3c:57:3f:8e:85:37:12: 3f:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:3D:F1:4F:24:57:EB:71:41:21:CC:BB:07:C9:FE:0E:BB:F2:C2:7B X509v3 Authority Key Identifier: keyid:1E:ED:26:3F:04:28:D8:4E:3F:BE:51:75:3D:16:D4:B3:D6:27:97:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B5C2/779D04A0364111EB8499D219C4F9AE02/Hu0mPwQo2E4_vlF1PRbUs9Ynl8Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hu0mPwQo2E4_vlF1PRbUs9Ynl8Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B5C2/779D04A0364111EB8499D219C4F9AE02/5010A55A8C6411EE9E586967C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.86.200.0/22 IPv6: 2400:c740::/32 Signature Algorithm: sha256WithRSAEncryption 04:02:10:95:3b:d5:31:d1:c4:1b:da:76:2b:3e:56:75:41:fe: d2:35:5f:61:95:a8:62:14:ce:76:e4:18:e0:c3:0c:b3:83:24: 76:76:6e:15:a7:b3:3c:a9:7f:ea:be:d0:4c:de:a6:bd:64:35: b0:b3:99:91:ca:32:16:38:7c:9b:cd:8e:4f:b6:4d:4a:f6:47: d5:9a:a4:99:7a:6f:a1:96:32:e7:4d:95:ec:c8:34:47:fd:54: 70:fb:3e:2d:2f:1e:c4:e7:45:7b:06:b1:31:40:40:e5:56:7b: 83:da:aa:00:c9:20:b0:81:6e:d6:84:83:e0:8d:56:a5:5b:82: ab:e8:e3:d2:70:39:2f:85:6b:00:e4:4b:93:00:8f:3c:c8:f4: 6a:cc:fe:3e:04:e6:18:16:84:47:3d:3b:dd:a6:82:89:ff:7e: e3:0c:70:fe:4e:a3:c8:75:b9:95:73:c3:34:60:3f:d8:c0:4f: c6:90:03:c1:5b:82:af:be:7a:67:01:a8:5b:b4:af:a1:e1:e9: fa:b5:c8:0d:e1:45:37:aa:7e:29:0e:10:2a:7b:38:77:fb:4d: c6:77:2b:e1:0c:00:f0:a0:ce:28:2d:d5:85:91:98:fa:26:3d: 61:6b:42:c2:a6:5f:03:b6:b6:a9:d0:e3:ca:91:4a:87:09:56: b2:e6:15:6c -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBz0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I1QzIxMTAvBgNVBAUTKDFFRUQyNjNGMDQyOEQ4NEUzRkJFNTE3NTNEMTZENEIz RDYyNzk3QzQwHhcNMjUwNTE2MjIxMDEyWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODI3YjdjNC1mMmIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvtcuSUjpiqZfFERh/dCMtowlXUr4N5M7saYrFHrIvna7XjYRirPaUkRam6tx TziDOIRonNYaQkcLhNUvdgpKrtgjO9g17NUo0kjx0twKKtiU/L4rJLh2uV8WnGJJ N2MtBhhdDy2YBwoI4LFUP9a/crn4/QADmZ3cYNOnmi9oEc2zsIt44Qmb2RerV7BQ oC/Ev8BYolWSfWvu/UljU/YHrBsGzBGlY1M8ldOTDT+pc1qgTNL6bVhAst0UeeA4 qNdAu2InR06snbeJfJQBo7mCdFA3SsKoV+pXSCJxIn1Iq5uAHWitz2A72aR+e3fY 4vVulb5VvVhHCjxXP46FNxI/hQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFI498U8k V+txQSHMuwfJ/g678sJ7MB8GA1UdIwQYMBaAFB7tJj8EKNhOP75RdT0W1LPWJ5fE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjVDMi83NzlEMDRBMDM2 NDExMUVCODQ5OUQyMTlDNEY5QUUwMi9IdTBtUHdRbzJFNF92bEYxUFJiVXM5WW5s OFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h1MG1Qd1FvMkU0X3ZsRjFQUmJVczlZbmw4US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0I1QzIvNzc5RDA0QTAzNjQxMTFFQjg0OTlEMjE5QzRGOUFFMDIvNTAxMEE1NUE4 QzY0MTFFRTlFNTg2OTY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnVsgwDQQCAAIwBwMFACQAx0AwDQYJKoZIhvcNAQELBQAD ggEBAAQCEJU71THRxBvadis+VnVB/tI1X2GVqGIUznbkGODDDLODJHZ2bhWnszyp f+q+0Ezepr1kNbCzmZHKMhY4fJvNjk+2TUr2R9WapJl6b6GWMudNlezINEf9VHD7 Pi0vHsTnRXsGsTFAQOVWe4PaqgDJILCBbtaEg+CNVqVbgqvo49JwOS+FawDkS5MA jzzI9GrM/j4E5hgWhEc9O92mgon/fuMMcP5Oo8h1uZVzwzRgP9jAT8aQA8Fbgq++ emcBqFu0r6Hh6fq1yA3hRTeqfikOECp7OHf7TcZ3K+EMAPCgzigt1YWRmPomPWFr QsKmXwO2tqnQ48qRSocJVrLmFWw= -----END CERTIFICATE-----Generated at Mon Jun 9 14:29:53 2025 by rpki-client