$ rpki-client -vvf rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/86ED5A7A710311EB9B9D9170C4F9AE02.roa File: 86ED5A7A710311EB9B9D9170C4F9AE02.roa (raw, json) Hash identifier: 5NdRDb6dOrWbhn6mJaBggnetZLOClPM7NuCy4XUOVTA= Subject key identifier: B3:16:ED:63:F1:11:16:89:C5:0D:EA:97:55:85:94:86:ED:CD:86:28 Certificate issuer: /CN=A917ED5C/serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Certificate serial: 0F06 Authority key identifier: 6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/86ED5A7A710311EB9B9D9170C4F9AE02.roa Signing time: Thu 22 May 2025 20:08:25 +0000 ROA not before: Thu 22 May 2025 20:08:25 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 38136 IP address blocks: 103.150.214.0/23 maxlen: 24 2406:840:d000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:07:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3846 (0xf06) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ED5C, serialNumber=6FD2E1FE04EAFF9027CE5313150BE84DE11CA1A5 Validity Not Before: May 22 20:08:25 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f8439-3611 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:8c:63:4f:53:1d:22:a7:55:87:c6:d4:3d:ad: b4:fb:75:ab:7b:bb:e2:ec:72:d1:d7:4a:28:a0:99: c2:80:62:ac:b3:00:43:83:6b:71:76:12:0a:06:08: f5:87:7d:19:d0:3d:51:0b:95:4f:e4:78:7b:58:75: 20:7b:35:e9:76:03:06:60:30:2c:24:74:f3:2f:9e: 68:5c:84:3d:7e:be:cf:c4:78:61:ec:ae:e0:0f:ca: 2a:e5:0e:7d:63:e2:10:55:0b:0b:71:66:ea:53:8c: c4:79:92:38:48:13:34:33:4b:b9:77:88:b0:c9:f5: fc:1c:3e:b0:3e:9e:6f:5d:bb:31:fb:48:97:49:61: 74:58:f8:a2:1f:e1:d0:1d:0b:5e:ef:06:de:00:1c: d5:89:50:b7:db:ff:c0:c1:6c:16:8a:9c:90:62:d1: 1d:3d:8c:c0:f9:49:50:ba:5d:42:f7:6b:a1:bb:93: f0:57:98:23:c4:c3:a3:1a:d1:f0:57:49:92:0b:5b: f3:2f:2f:68:f3:17:a4:b1:31:ba:32:c1:a5:c3:2d: 6d:b6:20:63:c2:27:a8:f7:7a:9c:7e:30:1e:5f:0f: 4c:8b:76:eb:d3:43:65:05:fb:57:a4:2f:92:fe:9b: b5:16:47:ed:b0:86:19:ef:28:2d:23:5b:a7:a6:d9: cf:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:16:ED:63:F1:11:16:89:C5:0D:EA:97:55:85:94:86:ED:CD:86:28 X509v3 Authority Key Identifier: keyid:6F:D2:E1:FE:04:EA:FF:90:27:CE:53:13:15:0B:E8:4D:E1:1C:A1:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9Lh_gTq_5AnzlMTFQvoTeEcoaU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ED5C/B56422D0860811EA92999571C4F9AE02/86ED5A7A710311EB9B9D9170C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.214.0/23 IPv6: 2406:840:d000::/36 Signature Algorithm: sha256WithRSAEncryption 99:99:7b:7c:8b:44:91:32:ed:bd:a3:33:09:28:99:3c:29:0c: e7:c0:a1:0d:ed:2f:a5:0a:a2:f2:7e:2a:67:8f:15:7c:68:f0: 0a:46:8a:96:8a:32:b6:e0:a2:73:14:91:0d:8e:8e:69:1f:15: 22:58:72:32:57:11:42:f7:aa:6c:ae:66:2d:29:9c:4e:ca:ca: f7:1e:6f:f9:18:b6:48:dc:8b:37:2b:20:cf:e0:05:25:2a:b1: 86:f7:36:49:a5:21:31:86:30:ab:7a:4d:56:d3:89:45:44:8e: 4c:6a:56:4a:e4:02:65:1c:31:98:7e:ca:74:09:41:60:16:ef: c0:da:c2:f1:62:75:34:99:43:5d:48:d2:4f:af:b0:d3:bd:22: 31:ea:e3:b5:33:ff:d9:fb:64:76:72:ab:b0:79:a3:c8:63:d9: 03:5e:85:2a:9f:aa:9e:cc:d7:6f:54:9f:b2:d6:29:10:cc:85: 22:6d:9d:a0:a7:ee:d1:c0:bc:aa:27:c3:90:33:1b:c2:b2:9c: a9:78:a2:55:fb:be:66:8d:08:94:a9:f1:85:4a:fa:85:b5:c4: c8:67:40:77:35:b7:0b:32:bf:7f:04:b2:58:09:7d:2f:af:f6: ad:27:75:64:48:73:0b:bf:48:73:2f:84:c7:17:99:cd:b5:01: 2a:ba:b9:f8 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgICDwYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VENUMxMTAvBgNVBAUTKDZGRDJFMUZFMDRFQUZGOTAyN0NFNTMxMzE1MEJFODRE RTExQ0ExQTUwHhcNMjUwNTIyMjAwODI1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmODQzOS0zNjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3oxjT1MdIqdVh8bUPa20+3Wre7vi7HLR10oooJnCgGKsswBDg2txdhIKBgj1 h30Z0D1RC5VP5Hh7WHUgezXpdgMGYDAsJHTzL55oXIQ9fr7PxHhh7K7gD8oq5Q59 Y+IQVQsLcWbqU4zEeZI4SBM0M0u5d4iwyfX8HD6wPp5vXbsx+0iXSWF0WPiiH+HQ HQte7wbeABzViVC32//AwWwWipyQYtEdPYzA+UlQul1C92uhu5PwV5gjxMOjGtHw V0mSC1vzLy9o8xeksTG6MsGlwy1ttiBjwieo93qcfjAeXw9Mi3br00NlBftXpC+S /pu1FkftsIYZ7ygtI1unptnPzQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFLMW7WPx ERaJxQ3ql1WFlIbtzYYoMB8GA1UdIwQYMBaAFG/S4f4E6v+QJ85TExUL6E3hHKGl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUQ1Qy9CNTY0MjJEMDg2 MDgxMUVBOTI5OTk1NzFDNEY5QUUwMi9iOUxoX2dUcV81QW56bE1URlF2b1RlRWNv YVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5TGhfZ1RxXzVBbnpsTVRGUXZvVGVFY29hVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VENUMvQjU2NDIyRDA4NjA4MTFFQTkyOTk5NTcxQzRGOUFFMDIvODZFRDVBN0E3 MTAzMTFFQjlCOUQ5MTcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLwYIKwYBBQUHAQcBAf8E IDAeMAwEAgABMAYDBAFnltYwDgQCAAIwCAMGBCQGCEDQMA0GCSqGSIb3DQEBCwUA A4IBAQCZmXt8i0SRMu29ozMJKJk8KQznwKEN7S+lCqLyfipnjxV8aPAKRoqWijK2 4KJzFJENjo5pHxUiWHIyVxFC96psrmYtKZxOysr3Hm/5GLZI3Is3KyDP4AUlKrGG 9zZJpSExhjCrek1W04lFRI5MalZK5AJlHDGYfsp0CUFgFu/A2sLxYnU0mUNdSNJP r7DTvSIx6uO1M//Z+2R2cquweaPIY9kDXoUqn6qezNdvVJ+y1ikQzIUibZ2gp+7R wLyqJ8OQMxvCspypeKJV+75mjQiUqfGFSvqFtcTIZ0B3NbcLMr9/BLJYCX0vr/at J3VkSHMLv0hzL4THF5nNtQEqurn4 -----END CERTIFICATE-----Generated at Mon Jun 2 07:09:36 2025 by rpki-client