$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/5C660A1C2B3B11F0A840B56CC4F9AE02.roa File: 5C660A1C2B3B11F0A840B56CC4F9AE02.roa (raw, json) Hash identifier: V8p9VLJZ8dMS88VKEm96PHdQIWrnvcVVOHp3tmAkW/w= Subject key identifier: EE:4F:89:37:0A:CD:26:D8:3C:0C:E8:26:BF:83:96:B6:5F:3E:22:B0 Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Certificate serial: 3590 Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/5C660A1C2B3B11F0A840B56CC4F9AE02.roa Signing time: Wed 07 May 2025 12:04:00 +0000 ROA not before: Wed 07 May 2025 12:04:00 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 138842 IP address blocks: 103.138.68.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 15:44:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13712 (0x3590) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214, serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Validity Not Before: May 7 12:04:00 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=681b4c30-5e98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:e7:f4:38:3f:fd:e5:cb:41:4a:2a:91:eb:c6: 58:3f:2a:66:25:b8:e6:03:27:b4:4b:46:3f:6b:1e: fa:13:b7:e1:a8:2d:10:6b:d2:94:f0:a4:eb:7d:81: 36:be:c0:f7:54:69:7a:41:87:96:08:b6:c4:c3:82: 10:8d:34:88:a0:99:b1:ab:99:ec:99:07:c1:92:9e: 2b:21:6e:4e:c4:43:bd:48:c8:b1:aa:f2:86:b6:10: d4:a0:b9:df:a0:09:06:c5:f2:d3:17:5a:4f:21:65: 59:f3:fa:1c:1c:53:b1:32:73:6b:b2:4e:24:b6:26: ca:83:82:70:34:45:ba:4c:43:0d:23:b9:51:90:55: 3c:b8:be:39:b7:06:e3:c2:c6:b9:71:52:69:50:60: a7:c8:10:10:2e:ee:2d:35:97:f3:50:ba:b8:04:4f: e7:fc:0d:c1:f9:2f:64:8c:63:71:2d:a0:84:6d:a6: 85:1b:22:24:10:cb:55:5c:4d:f1:08:e9:63:ed:53: f1:90:74:d5:49:89:19:70:81:ad:fd:8b:6e:e6:ae: 83:2b:59:48:ec:0f:3e:13:4a:f5:2c:af:40:10:6d: 5a:0e:2c:9e:44:a8:e9:8f:4a:a8:9d:8a:2a:02:4b: 62:41:dc:3b:ed:5c:44:f8:93:73:f8:51:b2:9c:9e: c3:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:4F:89:37:0A:CD:26:D8:3C:0C:E8:26:BF:83:96:B6:5F:3E:22:B0 X509v3 Authority Key Identifier: keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/5C660A1C2B3B11F0A840B56CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.68.0/23 Signature Algorithm: sha256WithRSAEncryption 47:4a:d1:d6:d8:3f:e3:3f:a7:19:c4:27:32:53:c6:58:b3:12: fa:bb:30:95:52:a5:88:26:78:1f:4f:94:ab:5e:f2:7d:14:0d: 1d:7a:c0:f2:5d:67:80:65:d1:6f:00:24:c1:ee:84:75:34:0f: 22:62:fb:c8:b3:47:75:6c:c8:41:42:cf:a6:9f:b1:5a:d1:1a: 76:a6:de:19:99:55:dd:51:c2:c7:d3:84:86:ad:8c:86:3b:44: 04:6d:12:df:a2:c4:b3:c4:cb:6d:9c:7d:cf:bf:5b:1e:bb:4a: 5f:8e:19:04:96:94:69:fa:ba:70:4a:a0:18:72:9b:8e:0d:fc: a1:8a:e5:40:5e:22:f5:2c:37:72:32:fb:9b:6c:e8:ec:33:69: 34:2a:04:8e:96:20:d6:00:ed:c3:17:4c:22:2e:c3:4d:f6:50: f5:11:77:76:f2:bc:42:e2:1f:95:c9:07:4d:40:e0:d4:67:bf: 2c:44:8b:d3:9f:fb:52:1c:fa:d8:13:c1:04:84:5f:48:5e:16: a9:bb:98:27:32:5c:76:73:a3:c0:44:b6:81:fc:3a:ed:04:3c: 03:03:b0:78:0d:12:d2:33:ee:18:2f:74:ba:86:a4:01:28:57: 7d:c1:8e:bd:38:f8:81:b9:6f:40:60:9b:57:da:c9:09:85:74: 7d:f6:6a:07 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKEYzREI5RjE2MjAwOEJENjY2Q0JGOEM5OTYwNzgxNENG QUIyNEQ3RTcwHhcNMjUwNTA3MTIwNDAwWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFiNGMzMC01ZTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApef0OD/95ctBSiqR68ZYPypmJbjmAye0S0Y/ax76E7fhqC0Qa9KU8KTrfYE2 vsD3VGl6QYeWCLbEw4IQjTSIoJmxq5nsmQfBkp4rIW5OxEO9SMixqvKGthDUoLnf oAkGxfLTF1pPIWVZ8/ocHFOxMnNrsk4ktibKg4JwNEW6TEMNI7lRkFU8uL45twbj wsa5cVJpUGCnyBAQLu4tNZfzULq4BE/n/A3B+S9kjGNxLaCEbaaFGyIkEMtVXE3x COlj7VPxkHTVSYkZcIGt/Ytu5q6DK1lI7A8+E0r1LK9AEG1aDiyeRKjpj0qonYoq AktiQdw77VxE+JNz+FGynJ7DnwIDAQABo4IClTCCApEwHQYDVR0OBBYEFO5PiTcK zSbYPAzoJr+DlrZfPiKwMB8GA1UdIwQYMBaAFPPbnxYgCL1mbL+MmWB4FM+rJNfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9DNjVENTM2NDMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi84OXVmRmlBSXZXWnN2NHlaWUhnVXo2c2sx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5dWZGaUFJdldac3Y0eVpZSGdVejZzazEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQzY1RDUzNjQzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvNUM2NjBBMUMy QjNCMTFGMEE4NDBCNTZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnikQwDQYJKoZIhvcNAQELBQADggEBAEdK0dbYP+M/pxnE JzJTxlizEvq7MJVSpYgmeB9PlKte8n0UDR16wPJdZ4Bl0W8AJMHuhHU0DyJi+8iz R3VsyEFCz6afsVrRGnam3hmZVd1RwsfThIatjIY7RARtEt+ixLPEy22cfc+/Wx67 Sl+OGQSWlGn6unBKoBhym44N/KGK5UBeIvUsN3Iy+5ts6OwzaTQqBI6WINYA7cMX TCIuw032UPURd3byvELiH5XJB01A4NRnvyxEi9Of+1Ic+tgTwQSEX0heFqm7mCcy XHZzo8BEtoH8Ou0EPAMDsHgNEtIz7hgvdLqGpAEoV33Bjr04+IG5b0Bgm1fayQmF dH32agc= -----END CERTIFICATE-----Generated at Tue Jun 3 23:55:31 2025 by rpki-client