$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/C359A8EE3F8811F091A50521C4F9AE02.roa File: C359A8EE3F8811F091A50521C4F9AE02.roa (raw, json) Hash identifier: B6Dm/XprETB/X2voPXcwGnRyH0b/f02gNXVC4ht5tz4= Subject key identifier: 9A:37:96:8C:3D:FD:21:AB:DE:36:04:1D:8E:28:10:07:95:96:C3:8F Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Certificate serial: 360D Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/C359A8EE3F8811F091A50521C4F9AE02.roa Signing time: Mon 02 Jun 2025 08:08:28 +0000 ROA not before: Mon 02 Jun 2025 08:08:28 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 58396 IP address blocks: 27.54.116.0/24 maxlen: 24 27.54.117.0/24 maxlen: 24 27.54.118.0/24 maxlen: 24 27.54.119.0/24 maxlen: 24 103.11.21.0/24 maxlen: 24 103.11.222.0/24 maxlen: 24 103.225.172.0/23 maxlen: 23 103.225.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 15:39:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13837 (0x360d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214, serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Validity Not Before: Jun 2 08:08:28 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=683d5bfb-18b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:43:91:3b:86:ef:01:c8:68:02:8b:3b:72:6d: bd:ed:ab:f7:e2:8b:d1:36:8b:34:f0:9f:12:14:01: 0a:a0:a2:02:7e:54:40:35:e2:43:0e:e2:ca:3b:c8: 29:01:52:cc:64:9d:d8:e2:58:40:f5:5e:d8:de:67: 3b:f0:dd:00:49:5d:28:42:af:dd:68:82:9a:f5:36: ab:1d:f6:ad:57:07:59:23:36:a4:fd:a2:5b:48:5c: 50:ff:86:5c:10:5d:79:b5:0d:4e:fe:f5:26:73:85: 78:ad:b3:e4:77:fd:74:f4:08:74:84:4d:73:98:80: 62:d2:e2:2c:54:ae:c9:02:fb:2b:1b:b6:2a:55:0e: 1b:08:68:00:af:11:0a:07:7a:cd:00:6a:6c:5f:59: 87:bc:22:61:8d:5a:db:40:5f:6d:ae:1e:7b:d9:14: 95:4f:4c:37:ab:45:97:68:95:1a:7f:3a:ee:15:a9: a4:78:7e:f5:48:18:ed:4d:16:28:a2:17:ea:c1:fa: f9:d4:72:22:87:24:a6:02:04:52:d0:ee:bd:3c:fe: 05:66:93:e9:0f:84:6c:58:dd:15:4b:44:6d:1c:88: c0:59:03:5f:7a:fc:ab:8f:e8:ad:d4:06:3e:bf:ee: 2f:f3:ff:f8:ed:98:e4:12:62:be:d4:fe:c2:04:64: be:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:37:96:8C:3D:FD:21:AB:DE:36:04:1D:8E:28:10:07:95:96:C3:8F X509v3 Authority Key Identifier: keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/C359A8EE3F8811F091A50521C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.54.116.0/22 103.11.21.0/24 103.11.222.0/24 103.225.172.0/23 Signature Algorithm: sha256WithRSAEncryption 79:e0:14:67:a4:f0:a7:7b:3f:d9:a9:b7:8e:46:f0:9f:ad:72: 4d:e2:80:31:87:c7:34:c6:20:96:c7:14:cb:ea:99:8c:6c:15: 2f:94:94:48:3f:c4:31:f4:b3:93:2b:f2:38:b9:a5:43:ea:30: 02:16:2d:07:b7:ab:ef:16:07:27:cd:60:5a:af:7b:2b:e5:47: a3:c3:5a:33:38:81:be:e8:f3:81:c8:a1:bf:99:43:76:1c:69: fb:12:a6:3b:65:72:28:04:2d:be:af:72:5c:0b:dd:32:ea:14: 54:90:c9:22:d1:ad:f6:f2:76:bb:bf:e8:3a:fa:bf:96:be:01: a0:e6:0c:0e:5a:05:64:38:96:ea:83:a8:51:d2:a6:dd:94:d0: 94:db:8a:c4:02:dc:55:aa:39:8c:28:18:51:82:1f:c8:44:ee: c1:76:78:7b:e5:bd:4c:96:63:59:a9:51:b5:ef:08:ab:34:64: 41:6b:e8:22:1f:35:20:b9:e6:e3:b0:cf:08:5c:90:98:be:d3: f9:16:e1:be:b9:01:0b:35:08:cb:a2:1d:6e:89:64:fb:14:35: d4:90:64:c1:2b:ff:8c:6d:df:a7:69:ae:e6:7d:1a:67:11:65: 06:06:92:5d:31:f8:46:56:de:07:2f:53:5e:b6:ec:2c:b4:9e: 98:6e:8b:c5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICNg0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKEYzREI5RjE2MjAwOEJENjY2Q0JGOEM5OTYwNzgxNENG QUIyNEQ3RTcwHhcNMjUwNjAyMDgwODI4WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNkNWJmYi0xOGIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4kORO4bvAchoAos7cm297av34ovRNos08J8SFAEKoKICflRANeJDDuLKO8gp AVLMZJ3Y4lhA9V7Y3mc78N0ASV0oQq/daIKa9TarHfatVwdZIzak/aJbSFxQ/4Zc EF15tQ1O/vUmc4V4rbPkd/109Ah0hE1zmIBi0uIsVK7JAvsrG7YqVQ4bCGgArxEK B3rNAGpsX1mHvCJhjVrbQF9trh572RSVT0w3q0WXaJUafzruFamkeH71SBjtTRYo ohfqwfr51HIihySmAgRS0O69PP4FZpPpD4RsWN0VS0RtHIjAWQNfevyrj+it1AY+ v+4v8//47ZjkEmK+1P7CBGS++wIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFJo3low9 /SGr3jYEHY4oEAeVlsOPMB8GA1UdIwQYMBaAFPPbnxYgCL1mbL+MmWB4FM+rJNfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9DNjVENTM2NDMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi84OXVmRmlBSXZXWnN2NHlaWUhnVXo2c2sx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5dWZGaUFJdldac3Y0eVpZSGdVejZzazEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQzY1RDUzNjQzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvQzM1OUE4RUUz Rjg4MTFGMDkxQTUwNTIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAIbNnQDBABnCxUDBABnC94DBAFn4awwDQYJKoZIhvcNAQEL BQADggEBAHngFGek8Kd7P9mpt45G8J+tck3igDGHxzTGIJbHFMvqmYxsFS+UlEg/ xDH0s5Mr8ji5pUPqMAIWLQe3q+8WByfNYFqveyvlR6PDWjM4gb7o84HIob+ZQ3Yc afsSpjtlcigELb6vclwL3TLqFFSQySLRrfbydru/6Dr6v5a+AaDmDA5aBWQ4luqD qFHSpt2U0JTbisQC3FWqOYwoGFGCH8hE7sF2eHvlvUyWY1mpUbXvCKs0ZEFr6CIf NSC55uOwzwhckJi+0/kW4b65AQs1CMuiHW6JZPsUNdSQZMEr/4xt36dpruZ9GmcR ZQYGkl0x+EZW3gcvU1627Cy0nphui8U= -----END CERTIFICATE-----Generated at Sun Jun 8 02:42:01 2025 by rpki-client