$ rpki-client -vvf rpki.apnic.net/member_repository/A9186C2F/773D39B6B34111EC8203195BC4F9AE02/AB3742F4B34411ECB016765EC4F9AE02.roa File: AB3742F4B34411ECB016765EC4F9AE02.roa (raw, json) Hash identifier: oywLtrB7Dks1CdJjkD2xhNPjQlapRspAyRegZBX074I= Subject key identifier: 53:A8:83:F7:93:3C:B3:55:97:76:8F:CD:A2:91:E6:59:28:69:C9:20 Certificate issuer: /CN=A9186C2F/serialNumber=FE19778A0D07BDDB5FF6B9F05BE2D545520EC494 Certificate serial: 036B Authority key identifier: FE:19:77:8A:0D:07:BD:DB:5F:F6:B9:F0:5B:E2:D5:45:52:0E:C4:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_hl3ig0Hvdtf9rnwW-LVRVIOxJQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186C2F/773D39B6B34111EC8203195BC4F9AE02/AB3742F4B34411ECB016765EC4F9AE02.roa Signing time: Fri 23 May 2025 01:17:26 +0000 ROA not before: Fri 23 May 2025 01:17:26 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 139726 IP address blocks: 103.150.212.0/24 maxlen: 24 2001:df3:8b80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186C2F/773D39B6B34111EC8203195BC4F9AE02/_hl3ig0Hvdtf9rnwW-LVRVIOxJQ.crl rsync://rpki.apnic.net/member_repository/A9186C2F/773D39B6B34111EC8203195BC4F9AE02/_hl3ig0Hvdtf9rnwW-LVRVIOxJQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_hl3ig0Hvdtf9rnwW-LVRVIOxJQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 01:11:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 875 (0x36b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186C2F, serialNumber=FE19778A0D07BDDB5FF6B9F05BE2D545520EC494 Validity Not Before: May 23 01:17:26 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682fcca6-237c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:a3:1c:d9:de:84:3d:31:3a:e9:ce:44:15:65: 78:fd:3a:9c:64:7d:bd:b4:2e:05:c9:a2:24:89:b3: 54:40:5c:29:6a:a8:22:50:b6:ef:ac:0c:35:5b:de: b4:63:07:c4:f0:9a:c6:57:ff:61:2d:b8:89:08:83: e0:d4:6f:ba:8b:57:cb:ee:5a:15:88:c5:38:69:fc: 35:57:db:ef:8b:f5:f2:7a:60:8e:c6:cf:26:d0:11: 12:8a:7e:04:3c:48:ef:c9:5a:09:d3:1b:86:8a:be: ad:d3:f5:cf:db:49:59:ca:49:52:bf:03:3e:55:39: b2:f0:9d:72:51:7e:7b:7b:14:17:c2:9e:53:70:55: a5:dc:35:1a:18:f3:4d:eb:0a:88:21:dd:59:f6:29: 09:37:ee:d7:d9:c3:da:32:3d:e5:ec:5c:dc:81:5d: 08:7a:64:b4:78:05:8e:43:3b:e0:a8:7e:9c:db:22: ad:64:86:6d:59:48:fe:c3:e9:5a:b6:9a:39:b7:1b: c4:94:46:96:21:41:fe:0a:83:d8:89:b5:0b:47:4a: c0:ea:4e:44:b1:00:38:67:15:d5:03:70:bd:b7:bf: c9:5b:50:72:ab:92:32:59:e0:04:11:2e:d5:d9:92: bc:4b:0a:f6:70:39:c4:90:e8:47:a6:3f:36:c9:df: 1d:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:A8:83:F7:93:3C:B3:55:97:76:8F:CD:A2:91:E6:59:28:69:C9:20 X509v3 Authority Key Identifier: keyid:FE:19:77:8A:0D:07:BD:DB:5F:F6:B9:F0:5B:E2:D5:45:52:0E:C4:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186C2F/773D39B6B34111EC8203195BC4F9AE02/_hl3ig0Hvdtf9rnwW-LVRVIOxJQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_hl3ig0Hvdtf9rnwW-LVRVIOxJQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186C2F/773D39B6B34111EC8203195BC4F9AE02/AB3742F4B34411ECB016765EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.212.0/24 IPv6: 2001:df3:8b80::/48 Signature Algorithm: sha256WithRSAEncryption 6f:b0:ba:c4:04:7a:10:52:71:8a:f1:e0:19:8b:90:14:5a:c4: d5:f5:ba:09:79:27:38:0d:21:f4:2e:27:1a:e2:24:3b:0f:49: 73:76:5d:15:d7:f6:c2:e5:69:3d:d1:d7:4b:95:9d:1e:a1:a5: a6:55:c9:01:ea:bc:99:0b:06:7c:94:bf:46:ba:19:f2:cc:73: bd:dd:f2:3a:33:0a:fa:11:67:5c:04:81:ab:08:17:c7:e6:e4: 8f:a4:a4:2e:ac:b1:59:23:78:62:e9:7b:f3:96:42:67:7f:fe: 01:1c:bc:36:fb:e2:e1:b9:ef:bc:73:e4:69:5c:34:65:c5:e1: ce:42:24:6b:a6:5f:a2:73:f8:30:94:7c:ff:fe:bb:7f:5d:3a: 78:5b:27:7e:2f:a3:70:f2:09:99:d2:9f:52:6e:c9:71:c4:52: 7b:7f:ff:a7:57:9c:99:00:c1:65:72:ed:92:d3:44:e7:9f:39: 35:d4:27:6a:d6:da:f0:ae:60:9b:56:79:82:20:7c:b9:8f:c9: 2a:bb:fd:de:74:f6:7d:32:41:d1:1d:c9:b0:39:5a:4d:68:25: b1:17:37:a1:60:ec:4c:e9:05:c6:95:0f:b5:18:a9:b7:cb:67: 35:cb:23:5c:57:17:fd:62:25:55:c6:29:1d:16:3d:51:37:90: c4:45:cf:12 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICA2swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODZDMkYxMTAvBgNVBAUTKEZFMTk3NzhBMEQwN0JEREI1RkY2QjlGMDVCRTJENTQ1 NTIwRUM0OTQwHhcNMjUwNTIzMDExNzI2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmY2NhNi0yMzdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3qMc2d6EPTE66c5EFWV4/TqcZH29tC4FyaIkibNUQFwpaqgiULbvrAw1W960 YwfE8JrGV/9hLbiJCIPg1G+6i1fL7loViMU4afw1V9vvi/XyemCOxs8m0BESin4E PEjvyVoJ0xuGir6t0/XP20lZyklSvwM+VTmy8J1yUX57exQXwp5TcFWl3DUaGPNN 6wqIId1Z9ikJN+7X2cPaMj3l7FzcgV0IemS0eAWOQzvgqH6c2yKtZIZtWUj+w+la tpo5txvElEaWIUH+CoPYibULR0rA6k5EsQA4ZxXVA3C9t7/JW1Byq5IyWeAEES7V 2ZK8Swr2cDnEkOhHpj82yd8dmwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFFOog/eT PLNVl3aPzaKR5lkoackgMB8GA1UdIwQYMBaAFP4Zd4oNB73bX/a58Fvi1UVSDsSU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NkMyRi83NzNEMzlCNkIz NDExMUVDODIwMzE5NUJDNEY5QUUwMi9faGwzaWcwSHZkdGY5cm53Vy1MVlJWSU94 SlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19obDNpZzBIdmR0ZjlybndXLUxWUlZJT3hKUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODZDMkYvNzczRDM5QjZCMzQxMTFFQzgyMDMxOTVCQzRGOUFFMDIvQUIzNzQyRjRC MzQ0MTFFQ0IwMTY3NjVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnltQwDwQCAAIwCQMHACABDfOLgDANBgkqhkiG9w0BAQsF AAOCAQEAb7C6xAR6EFJxivHgGYuQFFrE1fW6CXknOA0h9C4nGuIkOw9Jc3ZdFdf2 wuVpPdHXS5WdHqGlplXJAeq8mQsGfJS/RroZ8sxzvd3yOjMK+hFnXASBqwgXx+bk j6SkLqyxWSN4Yul785ZCZ3/+ARy8Nvvi4bnvvHPkaVw0ZcXhzkIka6ZfonP4MJR8 //67f106eFsnfi+jcPIJmdKfUm7JccRSe3//p1ecmQDBZXLtktNE5585NdQnatba 8K5gm1Z5giB8uY/JKrv93nT2fTJB0R3JsDlaTWglsRc3oWDsTOkFxpUPtRipt8tn NcsjXFcX/WIlVcYpHRY9UTeQxEXPEg== -----END CERTIFICATE-----Generated at Tue Jun 3 23:50:18 2025 by rpki-client