$ rpki-client -vvf rpki.apnic.net/member_repository/A916B837/9D90AB62C15A11ECA44F5360C4F9AE02/3B62C20EFF3911EDBCDB5046C4F9AE02.roa File: 3B62C20EFF3911EDBCDB5046C4F9AE02.roa (raw, json) Hash identifier: AVY0d5/NDiEX5/XcV/ITBN3dlkJ2RLeGLkg0Eo543zw= Subject key identifier: CA:93:9C:72:3B:40:F8:FB:6B:28:F2:E9:51:B9:A5:61:80:BF:7A:13 Certificate issuer: /CN=A916B837/serialNumber=F5522DE313844E96E3EBF38034ECA09BE2AA0AD5 Certificate serial: 037B Authority key identifier: F5:52:2D:E3:13:84:4E:96:E3:EB:F3:80:34:EC:A0:9B:E2:AA:0A:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9VIt4xOETpbj6_OANOygm-KqCtU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B837/9D90AB62C15A11ECA44F5360C4F9AE02/3B62C20EFF3911EDBCDB5046C4F9AE02.roa Signing time: Mon 19 May 2025 00:57:49 +0000 ROA not before: Mon 19 May 2025 00:57:49 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 18041 IP address blocks: 103.186.118.0/23 maxlen: 24 2400:70e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B837/9D90AB62C15A11ECA44F5360C4F9AE02/9VIt4xOETpbj6_OANOygm-KqCtU.crl rsync://rpki.apnic.net/member_repository/A916B837/9D90AB62C15A11ECA44F5360C4F9AE02/9VIt4xOETpbj6_OANOygm-KqCtU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9VIt4xOETpbj6_OANOygm-KqCtU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 01:16:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 891 (0x37b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B837, serialNumber=F5522DE313844E96E3EBF38034ECA09BE2AA0AD5 Validity Not Before: May 19 00:57:49 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682a820d-d836 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:f9:2d:84:35:57:5a:02:9c:97:98:5d:d1:64: c1:23:0c:fb:19:72:b4:18:04:6b:18:09:bb:69:02: 8e:d3:d0:45:31:2a:de:35:06:20:d6:71:f2:e6:d0: 5a:1c:fa:42:5c:7a:4c:d8:a1:76:6b:c7:e1:a1:a4: 78:75:31:ee:54:fc:ae:2d:d1:56:ac:85:3f:37:c0: ed:bd:c4:4b:74:76:3f:fd:f0:cb:3a:7c:57:66:a0: e0:26:2e:2e:27:02:0b:a0:66:e2:d8:11:7a:28:ac: 9b:d2:20:14:29:2d:d2:c0:30:1f:10:1d:43:f9:44: 35:5a:73:fe:eb:05:f3:f2:86:30:12:d8:fc:79:54: 70:b5:a8:51:49:02:94:87:d2:34:99:c7:e8:65:f2: 33:f5:c9:06:e7:36:ae:d7:e6:1a:01:51:a0:8d:25: a7:09:da:bc:f9:53:9e:e5:6d:89:57:0a:e3:ba:bb: 4b:9a:7e:9d:0a:1d:64:d0:d9:40:14:dc:02:8a:32: 07:a3:3b:68:e6:2a:d4:12:ae:e9:92:6a:21:69:b8: 5b:0b:04:03:bb:7e:17:66:82:a2:80:5a:ac:4e:3b: be:4a:1a:6e:83:f0:2c:3d:a8:37:60:28:f1:1f:b1: b6:a0:46:e3:5b:5b:6f:95:83:9b:b3:bc:56:72:c7: 58:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:93:9C:72:3B:40:F8:FB:6B:28:F2:E9:51:B9:A5:61:80:BF:7A:13 X509v3 Authority Key Identifier: keyid:F5:52:2D:E3:13:84:4E:96:E3:EB:F3:80:34:EC:A0:9B:E2:AA:0A:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B837/9D90AB62C15A11ECA44F5360C4F9AE02/9VIt4xOETpbj6_OANOygm-KqCtU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9VIt4xOETpbj6_OANOygm-KqCtU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B837/9D90AB62C15A11ECA44F5360C4F9AE02/3B62C20EFF3911EDBCDB5046C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.186.118.0/23 IPv6: 2400:70e0::/32 Signature Algorithm: sha256WithRSAEncryption 6d:e4:85:74:42:fc:c6:4d:bf:b6:dc:9f:6c:a6:84:05:40:6c: 06:26:b2:b9:3b:2d:98:d0:4b:ce:bb:d6:c9:c4:6b:de:b8:be: 32:e8:1f:3a:fe:2a:0e:b4:35:6b:b3:3e:6e:d3:29:bc:87:62: 5f:8f:6a:be:99:ce:dc:5a:f8:ca:8c:a3:8c:6c:32:7a:77:84: 46:7b:85:98:b0:dd:64:d5:56:64:4b:ad:93:5d:44:e5:ff:03: 3d:ab:b3:85:d4:1a:d8:d2:50:b6:26:40:27:8c:64:be:24:c1: 95:8a:cf:cf:75:a9:3b:e5:39:cc:3e:54:6d:97:99:52:3b:47: ab:9c:c7:e4:9f:6b:78:7d:45:f8:fb:72:27:23:38:3d:64:85: be:31:39:18:5b:30:22:f1:42:64:dd:8a:3f:25:ed:eb:6e:a9: 8a:3c:c4:ea:93:df:ad:3b:84:f6:e1:a3:95:f7:16:be:31:0b: cf:d8:75:90:ed:89:08:96:bf:e8:be:ec:f8:ce:4c:ec:f5:ba: 4f:d9:57:c6:e5:2d:7b:54:75:05:98:7e:33:9f:97:49:5f:7d: 09:46:1f:c5:85:9c:0e:05:99:ef:5c:82:46:79:7a:21:4e:bd: ce:82:c9:db:c9:07:bb:90:59:7e:a8:23:a4:1d:3a:5e:ce:f3: c4:2f:3c:7e -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICA3swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI4MzcxMTAvBgNVBAUTKEY1NTIyREUzMTM4NDRFOTZFM0VCRjM4MDM0RUNBMDlC RTJBQTBBRDUwHhcNMjUwNTE5MDA1NzQ5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJhODIwZC1kODM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4fkthDVXWgKcl5hd0WTBIwz7GXK0GARrGAm7aQKO09BFMSreNQYg1nHy5tBa HPpCXHpM2KF2a8fhoaR4dTHuVPyuLdFWrIU/N8DtvcRLdHY//fDLOnxXZqDgJi4u JwILoGbi2BF6KKyb0iAUKS3SwDAfEB1D+UQ1WnP+6wXz8oYwEtj8eVRwtahRSQKU h9I0mcfoZfIz9ckG5zau1+YaAVGgjSWnCdq8+VOe5W2JVwrjurtLmn6dCh1k0NlA FNwCijIHozto5irUEq7pkmohabhbCwQDu34XZoKigFqsTju+Shpug/AsPag3YCjx H7G2oEbjW1tvlYObs7xWcsdYWQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFMqTnHI7 QPj7ayjy6VG5pWGAv3oTMB8GA1UdIwQYMBaAFPVSLeMThE6W4+vzgDTsoJviqgrV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjgzNy85RDkwQUI2MkMx NUExMUVDQTQ0RjUzNjBDNEY5QUUwMi85Vkl0NHhPRVRwYmo2X09BTk95Z20tS3FD dFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlWSXQ0eE9FVHBiajZfT0FOT3lnbS1LcUN0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkI4MzcvOUQ5MEFCNjJDMTVBMTFFQ0E0NEY1MzYwQzRGOUFFMDIvM0I2MkMyMEVG RjM5MTFFREJDREI1MDQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnunYwDQQCAAIwBwMFACQAcOAwDQYJKoZIhvcNAQELBQAD ggEBAG3khXRC/MZNv7bcn2ymhAVAbAYmsrk7LZjQS8671snEa964vjLoHzr+Kg60 NWuzPm7TKbyHYl+Par6Zztxa+MqMo4xsMnp3hEZ7hZiw3WTVVmRLrZNdROX/Az2r s4XUGtjSULYmQCeMZL4kwZWKz891qTvlOcw+VG2XmVI7R6ucx+Sfa3h9Rfj7cicj OD1khb4xORhbMCLxQmTdij8l7etuqYo8xOqT3607hPbho5X3Fr4xC8/YdZDtiQiW v+i+7PjOTOz1uk/ZV8blLXtUdQWYfjOfl0lffQlGH8WFnA4Fme9cgkZ5eiFOvc6C ydvJB7uQWX6oI6QdOl7O88QvPH4= -----END CERTIFICATE-----Generated at Mon Jun 2 07:08:11 2025 by rpki-client