$ rpki-client -vvf rpki.apnic.net/member_repository/A9175155/3744B3C4B02811EB9D27891AC4F9AE02/86F4D41881C811ECB5F90D48C4F9AE02.roa File: 86F4D41881C811ECB5F90D48C4F9AE02.roa (raw, json) Hash identifier: jcE65YGPbY23C0JRfHdMvEfT+xppldiedci4zrgXKQc= Subject key identifier: 05:B5:91:86:6E:73:9F:09:3D:20:1C:52:17:77:19:48:CA:E2:05:54 Certificate issuer: /CN=A9175155/serialNumber=80084A34FD4F3B932C092182407B8905D9406500 Certificate serial: 062A Authority key identifier: 80:08:4A:34:FD:4F:3B:93:2C:09:21:82:40:7B:89:05:D9:40:65:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gAhKNP1PO5MsCSGCQHuJBdlAZQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175155/3744B3C4B02811EB9D27891AC4F9AE02/86F4D41881C811ECB5F90D48C4F9AE02.roa Signing time: Fri 16 May 2025 23:33:13 +0000 ROA not before: Fri 16 May 2025 23:33:13 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 138665 IP address blocks: 103.136.0.0/22 maxlen: 22 103.136.0.0/24 maxlen: 24 103.136.1.0/24 maxlen: 24 2404:8940::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175155/3744B3C4B02811EB9D27891AC4F9AE02/gAhKNP1PO5MsCSGCQHuJBdlAZQA.crl rsync://rpki.apnic.net/member_repository/A9175155/3744B3C4B02811EB9D27891AC4F9AE02/gAhKNP1PO5MsCSGCQHuJBdlAZQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gAhKNP1PO5MsCSGCQHuJBdlAZQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 23:05:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1578 (0x62a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175155, serialNumber=80084A34FD4F3B932C092182407B8905D9406500 Validity Not Before: May 16 23:33:13 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=6827cb38-d03a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:28:ec:fd:bf:6c:93:50:95:76:7c:4a:f9:a3: 9c:dd:ee:f6:72:b4:dd:02:f0:84:8a:7e:1d:b4:e9: 39:5c:9a:10:b3:9e:ba:e1:af:77:96:e8:fb:5d:9a: 23:b4:d4:20:0a:b5:04:10:f0:e3:e5:56:1f:66:ee: e9:67:98:2a:80:f3:1d:df:8f:ea:cf:d1:46:a8:65: 6b:cb:e3:e4:0a:a5:9e:45:37:7b:92:b9:0c:86:08: 8d:22:4f:84:d9:68:8b:e6:54:3f:2d:6d:59:19:5b: 53:86:6e:fe:7b:7e:a9:f8:64:9c:aa:6f:4d:a5:0c: 83:6a:ff:07:e0:a0:16:cd:91:f9:bc:e3:22:c2:ad: 75:61:bc:fa:78:dd:3b:fe:5f:5f:66:08:1d:16:79: 3e:93:ee:3a:4a:1e:20:8b:3e:14:5b:40:8a:02:57: e7:f5:63:9d:ac:a8:7e:55:cf:5b:8d:c6:d7:bd:1e: 6e:a0:99:1a:81:3a:0d:4d:eb:77:54:bc:15:94:44: 18:a7:5b:7f:22:8c:ab:45:00:4d:26:1c:c7:9e:d7: 99:31:aa:5f:a3:12:78:89:df:3f:ee:b0:21:b5:1b: db:62:bf:b5:35:cf:b3:0a:38:ce:d6:5c:1c:43:d5: 02:51:85:fa:00:7c:13:8b:0b:75:6a:a8:a2:95:e1: 0c:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:B5:91:86:6E:73:9F:09:3D:20:1C:52:17:77:19:48:CA:E2:05:54 X509v3 Authority Key Identifier: keyid:80:08:4A:34:FD:4F:3B:93:2C:09:21:82:40:7B:89:05:D9:40:65:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175155/3744B3C4B02811EB9D27891AC4F9AE02/gAhKNP1PO5MsCSGCQHuJBdlAZQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gAhKNP1PO5MsCSGCQHuJBdlAZQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175155/3744B3C4B02811EB9D27891AC4F9AE02/86F4D41881C811ECB5F90D48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.136.0.0/22 IPv6: 2404:8940::/48 Signature Algorithm: sha256WithRSAEncryption 9d:1d:02:c1:c6:7f:fb:4c:ba:94:d2:9c:7d:49:02:27:ed:97: 07:be:49:cf:78:62:d3:b3:3b:61:05:45:f2:13:f0:e0:f2:b6: 70:d3:fc:eb:88:ba:4c:0b:de:b6:3b:75:43:59:aa:26:d2:22: cb:85:a1:93:ca:6a:ce:7e:95:34:dc:00:5b:93:c1:dd:33:4f: 93:c8:c4:7d:1a:8e:88:01:d7:52:43:30:26:f4:4f:c0:f5:7e: c5:53:f5:34:a4:68:02:68:ad:6f:f4:d3:04:8d:21:70:a5:ca: a7:69:51:92:99:e9:6a:8e:59:6a:23:95:13:b8:72:c8:99:d3: 9d:0e:af:3d:ca:c8:17:f2:39:d1:b1:b7:bf:fb:14:51:54:6d: 1b:71:b6:5c:77:6e:6d:da:1b:fd:5e:e7:36:17:46:c3:f8:71: 76:4f:cb:39:ce:1a:ac:a3:18:1b:14:d2:59:88:52:47:da:fe: 0a:61:52:a7:c2:4b:c1:2b:ee:09:a5:19:dc:18:91:6c:1d:57: 5a:6f:fd:c8:6a:94:66:27:fd:ab:e2:1e:40:22:23:49:0b:73: e7:67:43:8d:0a:cb:41:9c:8d:a1:eb:23:24:5c:4b:bc:e4:2a: d5:9e:6b:84:38:8d:94:ab:9f:f1:e3:1f:53:83:de:8f:04:bd: 20:d2:d2:57 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBiowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzUxNTUxMTAvBgNVBAUTKDgwMDg0QTM0RkQ0RjNCOTMyQzA5MjE4MjQwN0I4OTA1 RDk0MDY1MDAwHhcNMjUwNTE2MjMzMzEzWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODI3Y2IzOC1kMDNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzSjs/b9sk1CVdnxK+aOc3e72crTdAvCEin4dtOk5XJoQs5664a93luj7XZoj tNQgCrUEEPDj5VYfZu7pZ5gqgPMd34/qz9FGqGVry+PkCqWeRTd7krkMhgiNIk+E 2WiL5lQ/LW1ZGVtThm7+e36p+GScqm9NpQyDav8H4KAWzZH5vOMiwq11Ybz6eN07 /l9fZggdFnk+k+46Sh4giz4UW0CKAlfn9WOdrKh+Vc9bjcbXvR5uoJkagToNTet3 VLwVlEQYp1t/IoyrRQBNJhzHnteZMapfoxJ4id8/7rAhtRvbYr+1Nc+zCjjO1lwc Q9UCUYX6AHwTiwt1aqiileEMIQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFAW1kYZu c58JPSAcUhd3GUjK4gVUMB8GA1UdIwQYMBaAFIAISjT9TzuTLAkhgkB7iQXZQGUA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTE1NS8zNzQ0QjNDNEIw MjgxMUVCOUQyNzg5MUFDNEY5QUUwMi9nQWhLTlAxUE81TXNDU0dDUUh1SkJkbEFa UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dBaEtOUDFQTzVNc0NTR0NRSHVKQmRsQVpRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzUxNTUvMzc0NEIzQzRCMDI4MTFFQjlEMjc4OTFBQzRGOUFFMDIvODZGNEQ0MTg4 MUM4MTFFQ0I1RjkwRDQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAJniAAwDwQCAAIwCQMHACQEiUAAADANBgkqhkiG9w0BAQsF AAOCAQEAnR0CwcZ/+0y6lNKcfUkCJ+2XB75Jz3hi07M7YQVF8hPw4PK2cNP864i6 TAvetjt1Q1mqJtIiy4Whk8pqzn6VNNwAW5PB3TNPk8jEfRqOiAHXUkMwJvRPwPV+ xVP1NKRoAmitb/TTBI0hcKXKp2lRkpnpao5ZaiOVE7hyyJnTnQ6vPcrIF/I50bG3 v/sUUVRtG3G2XHdubdob/V7nNhdGw/hxdk/LOc4arKMYGxTSWYhSR9r+CmFSp8JL wSvuCaUZ3BiRbB1XWm/9yGqUZif9q+IeQCIjSQtz52dDjQrLQZyNoesjJFxLvOQq 1Z5rhDiNlKuf8eMfU4PejwS9INLSVw== -----END CERTIFICATE-----Generated at Mon Jun 2 05:51:05 2025 by rpki-client