$ rpki-client -vvf rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/A1CB8D62C13411ECA5838429C4F9AE02.roa File: A1CB8D62C13411ECA5838429C4F9AE02.roa (raw, json) Hash identifier: fD9tz1Cxj0LH2YQosk7eVSKaAn/WfIdEtafahpCOyrI= Subject key identifier: DD:1B:FB:1F:28:EE:0B:82:56:BC:15:5E:4C:9F:55:07:48:F4:28:93 Certificate issuer: /CN=A917039B/serialNumber=D21022C00F0DBBE58A99A1E673D3AE1C5DFDCB89 Certificate serial: 033D Authority key identifier: D2:10:22:C0:0F:0D:BB:E5:8A:99:A1:E6:73:D3:AE:1C:5D:FD:CB:89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/A1CB8D62C13411ECA5838429C4F9AE02.roa Signing time: Sat 31 May 2025 01:46:45 +0000 ROA not before: Sat 31 May 2025 01:46:45 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 135163 IP address blocks: 103.186.156.0/24 maxlen: 24 2001:df0:ab40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 01:19:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 829 (0x33d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917039B, serialNumber=D21022C00F0DBBE58A99A1E673D3AE1C5DFDCB89 Validity Not Before: May 31 01:46:45 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683a5f85-7f6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:65:ba:57:16:55:b6:c2:83:db:43:8a:d0:b9: a8:52:13:30:14:66:c8:ba:09:c6:c0:f8:97:40:ee: 70:44:6c:5b:59:0f:10:ca:03:fb:2b:42:88:72:6c: 00:6a:c0:da:bc:ba:5d:4b:61:b7:f2:a9:08:a3:ad: ed:65:67:0c:c7:d4:5f:19:f5:7a:83:9f:bc:bd:c8: f3:38:ae:26:c4:55:54:a1:d0:9b:85:ea:5e:26:a0: 3c:1f:33:3a:e8:93:0d:9e:79:e0:bf:9b:95:b6:39: 7c:75:c1:a6:dd:3a:e6:83:f6:1c:4d:26:51:7e:4c: bb:41:3e:da:17:93:c0:24:b0:67:d2:ab:ce:db:8e: 5f:f9:d7:e9:4b:9d:05:ee:05:d1:d5:14:42:35:c7: a7:17:a8:39:b7:2a:90:4b:60:98:4d:0b:9f:09:c4: 30:51:30:15:a6:ff:fc:2b:f3:56:c5:a3:81:cf:d8: 1a:4e:8c:75:f8:76:e9:4b:ef:26:c7:d2:7f:5c:ac: be:a0:08:f6:73:9a:4a:5f:23:bb:c2:a8:d9:aa:b2: a9:31:d1:eb:91:af:b2:67:18:fb:f6:1b:ef:d3:b3: 3d:72:1b:70:5d:e9:b0:87:5f:ad:7c:06:33:cd:98: bb:92:f9:74:82:d7:3c:47:e0:2a:4e:8d:a4:9d:b2: f7:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:1B:FB:1F:28:EE:0B:82:56:BC:15:5E:4C:9F:55:07:48:F4:28:93 X509v3 Authority Key Identifier: keyid:D2:10:22:C0:0F:0D:BB:E5:8A:99:A1:E6:73:D3:AE:1C:5D:FD:CB:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/A1CB8D62C13411ECA5838429C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.186.156.0/24 IPv6: 2001:df0:ab40::/48 Signature Algorithm: sha256WithRSAEncryption aa:33:30:8a:fa:bd:7a:9d:aa:e5:9b:76:55:6e:0d:64:a8:26: 6f:d8:56:e7:84:9f:0e:51:f6:dd:f9:40:bb:be:30:63:85:ac: ea:22:3e:75:de:98:ce:94:9e:c5:23:1b:b6:12:c0:43:e6:18: 8f:c0:ce:b3:b1:4f:48:e8:4e:0c:df:75:25:69:f8:21:dd:61: 2d:1c:29:bb:6e:ad:97:97:c9:96:52:93:8c:34:5a:18:0d:af: 7a:ad:ba:eb:b5:1d:c9:79:96:b9:b6:af:e5:d7:72:b7:3f:2d: 6c:84:04:01:6b:46:65:81:13:4e:5a:62:9d:49:5b:96:77:8e: 3e:40:3d:27:e6:12:17:4a:1d:b7:20:9e:b0:a0:4a:5f:dd:50: 8c:ed:9f:47:c7:ea:67:56:0f:8c:d3:10:c5:21:56:f9:97:35: 9a:40:34:62:51:b8:0f:bd:9e:ad:a4:80:bb:7d:55:49:0b:93: 3f:5e:f4:88:90:fd:f6:07:31:5f:65:88:5c:ce:a8:44:56:fb: 75:8c:2a:a5:29:ce:32:c7:e0:0d:21:11:2f:94:9f:36:4d:43: d8:07:ba:fb:df:0c:7d:2c:bc:ff:73:25:1f:d9:1f:db:a5:4d: 76:1e:8a:18:ab:61:99:51:23:ff:01:d9:41:ce:82:52:1a:a6: 6d:c5:01:7f -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAz0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAzOUIxMTAvBgNVBAUTKEQyMTAyMkMwMEYwREJCRTU4QTk5QTFFNjczRDNBRTFD NURGRENCODkwHhcNMjUwNTMxMDE0NjQ1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNhNWY4NS03ZjZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkmW6VxZVtsKD20OK0LmoUhMwFGbIugnGwPiXQO5wRGxbWQ8QygP7K0KIcmwA asDavLpdS2G38qkIo63tZWcMx9RfGfV6g5+8vcjzOK4mxFVUodCbhepeJqA8HzM6 6JMNnnngv5uVtjl8dcGm3Trmg/YcTSZRfky7QT7aF5PAJLBn0qvO245f+dfpS50F 7gXR1RRCNcenF6g5tyqQS2CYTQufCcQwUTAVpv/8K/NWxaOBz9gaTox1+HbpS+8m x9J/XKy+oAj2c5pKXyO7wqjZqrKpMdHrka+yZxj79hvv07M9chtwXemwh1+tfAYz zZi7kvl0gtc8R+AqTo2knbL3HQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFN0b+x8o 7guCVrwVXkyfVQdI9CiTMB8GA1UdIwQYMBaAFNIQIsAPDbvlipmh5nPTrhxd/cuJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDM5Qi85OUY1NDQ3OEMx MzExMUVDOTZCNUUwMjVDNEY5QUUwMi8waEFpd0E4TnUtV0ttYUhtYzlPdUhGMzl5 NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBoQWl3QThOdS1XS21hSG1jOU91SEYzOXk0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzAzOUIvOTlGNTQ0NzhDMTMxMTFFQzk2QjVFMDI1QzRGOUFFMDIvQTFDQjhENjJD MTM0MTFFQ0E1ODM4NDI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnupwwDwQCAAIwCQMHACABDfCrQDANBgkqhkiG9w0BAQsF AAOCAQEAqjMwivq9ep2q5Zt2VW4NZKgmb9hW54SfDlH23flAu74wY4Ws6iI+dd6Y zpSexSMbthLAQ+YYj8DOs7FPSOhODN91JWn4Id1hLRwpu26tl5fJllKTjDRaGA2v eq2667UdyXmWubav5ddytz8tbIQEAWtGZYETTlpinUlblneOPkA9J+YSF0odtyCe sKBKX91QjO2fR8fqZ1YPjNMQxSFW+Zc1mkA0YlG4D72eraSAu31VSQuTP170iJD9 9gcxX2WIXM6oRFb7dYwqpSnOMsfgDSERL5SfNk1D2Ae6+98MfSy8/3MlH9kf26VN dh6KGKthmVEj/wHZQc6CUhqmbcUBfw== -----END CERTIFICATE-----Generated at Tue Jun 3 23:45:07 2025 by rpki-client