$ rpki-client -vvf rpki.apnic.net/member_repository/A91A02D8/E09248EA2AB611EFB339FD81C4F9AE02/86F9CBCC2AB711EF996EC819C4F9AE02.roa File: 86F9CBCC2AB711EF996EC819C4F9AE02.roa (raw, json) Hash identifier: YJwOvl48MytuGc6I1DEuIiMXD3Gk+mKKkditJ1faO0o= Subject key identifier: BA:D7:C1:F0:43:0E:73:37:3B:E4:A8:4A:2F:8B:D0:E9:D1:FF:6A:55 Certificate issuer: /CN=A91A02D8/serialNumber=ED9B0E6085A25DF26749FF27581A4E8BC7C186CC Certificate serial: BB Authority key identifier: ED:9B:0E:60:85:A2:5D:F2:67:49:FF:27:58:1A:4E:8B:C7:C1:86:CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ZsOYIWiXfJnSf8nWBpOi8fBhsw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A02D8/E09248EA2AB611EFB339FD81C4F9AE02/86F9CBCC2AB711EF996EC819C4F9AE02.roa Signing time: Wed 21 May 2025 05:16:51 +0000 ROA not before: Wed 21 May 2025 05:16:51 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 149299 IP address blocks: 103.25.10.0/23 maxlen: 23 103.25.10.0/24 maxlen: 24 103.25.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A02D8/E09248EA2AB611EFB339FD81C4F9AE02/7ZsOYIWiXfJnSf8nWBpOi8fBhsw.crl rsync://rpki.apnic.net/member_repository/A91A02D8/E09248EA2AB611EFB339FD81C4F9AE02/7ZsOYIWiXfJnSf8nWBpOi8fBhsw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ZsOYIWiXfJnSf8nWBpOi8fBhsw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:44:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 187 (0xbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A02D8, serialNumber=ED9B0E6085A25DF26749FF27581A4E8BC7C186CC Validity Not Before: May 21 05:16:51 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682d61c3-b2a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:22:18:51:2f:74:d5:68:b3:4a:76:b6:ef:1b: 14:69:fb:de:da:17:77:29:c5:f7:87:ff:be:db:3a: 33:f7:e0:42:4e:fd:49:b8:80:9b:cd:1b:c6:8f:88: e5:56:de:08:b3:59:69:b0:a1:e8:5c:33:1f:01:ba: 98:e5:06:b0:49:1e:a5:ef:a6:f5:87:46:ae:5b:ea: d0:bd:84:52:7d:ba:78:e2:d3:4e:af:95:71:32:49: 0c:2d:fe:5f:9a:58:13:93:c4:07:2a:b3:cc:54:99: ca:62:90:66:68:1f:72:63:d9:b9:35:c9:5d:3f:5a: c4:4b:f0:84:8a:72:76:9d:03:d8:e6:b8:af:d4:66: 55:68:73:3b:41:84:a3:db:7a:2d:a1:90:78:33:45: 37:7a:6c:ff:d7:c6:f5:e7:18:1b:80:17:44:bc:4e: f6:34:7a:9d:8f:61:0d:ce:ca:05:ab:1a:17:89:77: d8:50:1a:0f:82:aa:58:22:4f:5e:d7:90:91:84:62: 1d:a8:a9:17:96:7b:cc:77:59:2a:65:24:eb:9b:64: 91:83:7f:24:2f:d1:e3:15:c3:cd:9b:03:4c:e4:3c: a5:c6:50:e0:f3:88:40:5b:03:27:06:a6:9d:6a:38: 45:11:3e:07:50:c0:7c:2f:7c:ea:46:87:e5:cc:4c: f0:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:D7:C1:F0:43:0E:73:37:3B:E4:A8:4A:2F:8B:D0:E9:D1:FF:6A:55 X509v3 Authority Key Identifier: keyid:ED:9B:0E:60:85:A2:5D:F2:67:49:FF:27:58:1A:4E:8B:C7:C1:86:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A02D8/E09248EA2AB611EFB339FD81C4F9AE02/7ZsOYIWiXfJnSf8nWBpOi8fBhsw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ZsOYIWiXfJnSf8nWBpOi8fBhsw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A02D8/E09248EA2AB611EFB339FD81C4F9AE02/86F9CBCC2AB711EF996EC819C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.25.10.0/23 Signature Algorithm: sha256WithRSAEncryption 6e:27:73:0a:82:51:94:cf:5d:93:c7:6e:83:03:24:02:62:c3: 94:1a:b8:20:a4:15:2c:ff:d5:08:4f:9c:20:2f:16:04:10:4c: f0:76:3d:6f:6e:38:27:7d:b7:76:d2:0d:b0:ea:96:19:58:c2: c9:64:a1:93:39:b4:29:54:70:0c:51:a8:5b:07:d6:1a:eb:d5: 5f:04:58:b6:44:fa:b8:b7:e2:2e:28:6e:68:43:93:7a:00:61: b7:78:bf:45:df:c5:32:6a:66:34:bf:df:c4:60:d5:93:44:1e: 9b:85:0b:35:d6:38:07:38:62:12:61:69:0a:14:2d:7a:63:dd: ca:c5:9f:ce:8c:88:9a:af:f8:ae:d5:9f:fc:e6:68:99:9d:0c: ae:bc:80:25:44:48:38:84:a2:ef:4c:86:fe:bd:9f:09:6f:74: ef:e3:84:77:a6:66:91:df:8d:eb:dd:18:dd:68:c6:06:5b:28: b6:e8:99:17:9a:36:7b:98:b4:78:00:63:7b:82:b0:0a:75:9d: 5c:0c:b0:73:3b:b8:1d:74:81:ac:61:50:d9:4a:20:66:af:67: a9:bd:d0:ce:12:b0:4b:81:0a:15:dd:da:40:4f:de:75:23:e1: 53:51:54:e0:10:24:b3:5d:9c:c3:0e:3e:ad:a3:4a:e1:47:ef: ba:c8:b7:43 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTAyRDgxMTAvBgNVBAUTKEVEOUIwRTYwODVBMjVERjI2NzQ5RkYyNzU4MUE0RThC QzdDMTg2Q0MwHhcNMjUwNTIxMDUxNjUxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJkNjFjMy1iMmE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApCIYUS901WizSna27xsUafve2hd3KcX3h/++2zoz9+BCTv1JuICbzRvGj4jl Vt4Is1lpsKHoXDMfAbqY5QawSR6l76b1h0auW+rQvYRSfbp44tNOr5VxMkkMLf5f mlgTk8QHKrPMVJnKYpBmaB9yY9m5NcldP1rES/CEinJ2nQPY5riv1GZVaHM7QYSj 23otoZB4M0U3emz/18b15xgbgBdEvE72NHqdj2ENzsoFqxoXiXfYUBoPgqpYIk9e 15CRhGIdqKkXlnvMd1kqZSTrm2SRg38kL9HjFcPNmwNM5DylxlDg84hAWwMnBqad ajhFET4HUMB8L3zqRoflzEzwmwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLrXwfBD DnM3O+SoSi+L0OnR/2pVMB8GA1UdIwQYMBaAFO2bDmCFol3yZ0n/J1gaTovHwYbM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDJEOC9FMDkyNDhFQTJB QjYxMUVGQjMzOUZEODFDNEY5QUUwMi83WnNPWUlXaVhmSm5TZjhuV0JwT2k4ZkJo c3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdac09ZSVdpWGZKblNmOG5XQnBPaThmQmhzdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTAyRDgvRTA5MjQ4RUEyQUI2MTFFRkIzMzlGRDgxQzRGOUFFMDIvODZGOUNCQ0My QUI3MTFFRjk5NkVDODE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnGQowDQYJKoZIhvcNAQELBQADggEBAG4ncwqCUZTPXZPH boMDJAJiw5QauCCkFSz/1QhPnCAvFgQQTPB2PW9uOCd9t3bSDbDqlhlYwslkoZM5 tClUcAxRqFsH1hrr1V8EWLZE+ri34i4obmhDk3oAYbd4v0XfxTJqZjS/38Rg1ZNE HpuFCzXWOAc4YhJhaQoULXpj3crFn86MiJqv+K7Vn/zmaJmdDK68gCVESDiEou9M hv69nwlvdO/jhHemZpHfjevdGN1oxgZbKLbomReaNnuYtHgAY3uCsAp1nVwMsHM7 uB10gaxhUNlKIGavZ6m90M4SsEuBChXd2kBP3nUj4VNRVOAQJLNdnMMOPq2jSuFH 77rIt0M= -----END CERTIFICATE-----Generated at Tue Jun 3 23:56:29 2025 by rpki-client