$ rpki-client -vvf rpki.apnic.net/member_repository/A9157E6E/830C69700DEB11E79771B666C4F9AE02/B8F865A2147B11E7B5BEC457C4F9AE02.roa File: B8F865A2147B11E7B5BEC457C4F9AE02.roa (raw, json) Hash identifier: CIx5a/KDORd4MxJLQ+psYC26naN8iQLI+AuxYnr9L/s= Subject key identifier: 68:77:90:93:1B:F9:B5:41:BC:92:E9:AD:BB:1A:B4:56:40:7B:6A:E9 Certificate issuer: /CN=A9157E6E/serialNumber=626994D19762BE0F9884FA4EF0DCA66C3F5302A8 Certificate serial: 1B58 Authority key identifier: 62:69:94:D1:97:62:BE:0F:98:84:FA:4E:F0:DC:A6:6C:3F:53:02:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmmU0Zdivg-YhPpO8NymbD9TAqg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157E6E/830C69700DEB11E79771B666C4F9AE02/B8F865A2147B11E7B5BEC457C4F9AE02.roa Signing time: Fri 02 May 2025 16:53:56 +0000 ROA not before: Fri 02 May 2025 16:53:56 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 18172 IP address blocks: 103.87.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157E6E/830C69700DEB11E79771B666C4F9AE02/YmmU0Zdivg-YhPpO8NymbD9TAqg.crl rsync://rpki.apnic.net/member_repository/A9157E6E/830C69700DEB11E79771B666C4F9AE02/YmmU0Zdivg-YhPpO8NymbD9TAqg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmmU0Zdivg-YhPpO8NymbD9TAqg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 16:26:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7000 (0x1b58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157E6E, serialNumber=626994D19762BE0F9884FA4EF0DCA66C3F5302A8 Validity Not Before: May 2 16:53:56 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6814f8a3-1ddb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:92:e2:ae:1e:ae:b7:1c:a3:96:8c:92:ee:c7: c8:40:c4:8a:f5:4a:0a:61:f8:cc:ae:cc:6c:88:fb: ae:e6:4a:c2:a2:86:f3:29:80:06:8a:ee:7b:36:79: 19:83:0c:05:08:b1:f0:6f:61:34:07:0c:fb:45:7a: 4f:8a:cc:39:45:01:81:66:ac:ac:36:9c:2c:f4:c2: fe:18:c8:62:99:fc:f3:5a:a7:34:8b:4d:ac:3a:77: 3c:8e:4d:7f:62:2e:21:e6:a4:14:0e:4c:a2:14:54: 3e:00:bc:62:82:e1:d5:76:48:4d:08:6b:e8:41:d8: 1f:d9:9c:51:d2:32:75:9b:bc:be:55:c0:ad:52:65: 46:31:f4:ae:53:c9:04:ff:c8:63:01:22:a5:ec:d3: 10:e2:f7:b7:27:e3:00:7e:cd:c4:c0:81:9a:d3:4b: 15:83:d5:c2:d5:7b:a6:bf:20:d0:4e:fc:ce:94:99: 5e:c4:30:cb:7c:b4:05:e8:49:48:03:02:c4:14:4d: 74:72:6b:eb:b8:aa:54:28:95:5c:25:6e:10:ae:3a: 06:2d:db:68:40:7d:9f:06:26:38:ad:6f:ce:b5:50: 01:63:e8:78:17:68:88:32:a9:0c:37:90:a1:06:a4: 04:23:b2:9b:7d:e1:66:f3:2e:00:d7:1d:8a:b8:12: 3a:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:77:90:93:1B:F9:B5:41:BC:92:E9:AD:BB:1A:B4:56:40:7B:6A:E9 X509v3 Authority Key Identifier: keyid:62:69:94:D1:97:62:BE:0F:98:84:FA:4E:F0:DC:A6:6C:3F:53:02:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157E6E/830C69700DEB11E79771B666C4F9AE02/YmmU0Zdivg-YhPpO8NymbD9TAqg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmmU0Zdivg-YhPpO8NymbD9TAqg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157E6E/830C69700DEB11E79771B666C4F9AE02/B8F865A2147B11E7B5BEC457C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.87.255.0/24 Signature Algorithm: sha256WithRSAEncryption 19:2d:3b:e0:32:b8:29:94:45:37:49:c4:9b:68:bd:03:e5:aa: da:e2:2c:fb:e5:84:6f:80:0c:6a:10:6a:cc:23:c2:3f:6f:2c: 9d:e2:93:63:7a:cc:8e:f5:4f:bc:64:53:49:67:dd:44:a8:4e: 1a:79:11:e6:9e:fb:85:09:6f:85:ec:f4:d9:c7:c2:26:42:b7: e8:ea:56:fa:01:2e:f6:75:a4:18:0d:17:50:39:b6:0a:11:e2: 38:4a:7f:e1:c4:d3:b8:4d:a5:00:89:86:00:e9:cc:26:df:56: c3:64:3b:d4:48:3f:a0:02:48:e4:71:75:94:ac:a6:26:2a:68: 2a:51:af:24:a1:9f:10:28:2f:8f:26:a9:b0:49:b7:b7:b6:a4: 2a:c9:9c:81:5f:a8:60:42:3c:dc:62:bd:9d:24:92:be:36:44: ec:5d:a1:bd:88:03:a0:72:e8:1e:7f:c3:69:f9:6e:88:77:73: d9:33:76:dc:55:d0:bb:17:ff:9f:e7:92:cf:8b:fd:bd:43:f7: 80:67:2e:40:9c:2e:5a:98:37:a7:64:9e:00:ec:c3:4d:df:d1: 38:d7:bc:f1:1e:5c:2d:21:7a:8f:31:0c:a6:79:a3:f8:2f:80: 87:a3:32:88:be:44:ea:e4:cd:4e:09:4c:8c:73:6f:6e:c0:46: 62:bf:6f:88 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICG1gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdFNkUxMTAvBgNVBAUTKDYyNjk5NEQxOTc2MkJFMEY5ODg0RkE0RUYwRENBNjZD M0Y1MzAyQTgwHhcNMjUwNTAyMTY1MzU2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE0ZjhhMy0xZGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2JLirh6utxyjloyS7sfIQMSK9UoKYfjMrsxsiPuu5krCoobzKYAGiu57NnkZ gwwFCLHwb2E0Bwz7RXpPisw5RQGBZqysNpws9ML+GMhimfzzWqc0i02sOnc8jk1/ Yi4h5qQUDkyiFFQ+ALxiguHVdkhNCGvoQdgf2ZxR0jJ1m7y+VcCtUmVGMfSuU8kE /8hjASKl7NMQ4ve3J+MAfs3EwIGa00sVg9XC1XumvyDQTvzOlJlexDDLfLQF6ElI AwLEFE10cmvruKpUKJVcJW4QrjoGLdtoQH2fBiY4rW/OtVABY+h4F2iIMqkMN5Ch BqQEI7KbfeFm8y4A1x2KuBI6kwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGh3kJMb +bVBvJLprbsatFZAe2rpMB8GA1UdIwQYMBaAFGJplNGXYr4PmIT6TvDcpmw/UwKo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0U2RS84MzBDNjk3MDBE RUIxMUU3OTc3MUI2NjZDNEY5QUUwMi9ZbW1VMFpkaXZnLVloUHBPOE55bWJEOVRB cWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ltbVUwWmRpdmctWWhQcE84TnltYkQ5VEFxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdFNkUvODMwQzY5NzAwREVCMTFFNzk3NzFCNjY2QzRGOUFFMDIvQjhGODY1QTIx NDdCMTFFN0I1QkVDNDU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnV/8wDQYJKoZIhvcNAQELBQADggEBABktO+AyuCmURTdJ xJtovQPlqtriLPvlhG+ADGoQaswjwj9vLJ3ik2N6zI71T7xkU0ln3USoThp5Eeae +4UJb4Xs9NnHwiZCt+jqVvoBLvZ1pBgNF1A5tgoR4jhKf+HE07hNpQCJhgDpzCbf VsNkO9RIP6ACSORxdZSspiYqaCpRryShnxAoL48mqbBJt7e2pCrJnIFfqGBCPNxi vZ0kkr42ROxdob2IA6By6B5/w2n5boh3c9kzdtxV0LsX/5/nks+L/b1D94BnLkCc LlqYN6dkngDsw03f0TjXvPEeXC0heo8xDKZ5o/gvgIejMoi+ROrkzU4JTIxzb27A RmK/b4g= -----END CERTIFICATE-----Generated at Wed Jun 4 00:04:17 2025 by rpki-client