$ rpki-client -vvf rpki.apnic.net/member_repository/A9116D68/724CC84C788711E9A08AEC60C4F9AE02/98A1BAB6E9B611EE89994B66C4F9AE02.roa File: 98A1BAB6E9B611EE89994B66C4F9AE02.roa (raw, json) Hash identifier: t2aB2zeGB7GLVJUFKuYwNrlRUrrBiilMq9C3DO3eLYk= Subject key identifier: DB:76:D3:21:35:55:43:AE:22:E1:D1:5D:60:4E:69:1B:97:63:2D:70 Certificate issuer: /CN=A9116D68/serialNumber=5CE59BEA40493FCC5746716922F1988D96291FBE Certificate serial: 0851 Authority key identifier: 5C:E5:9B:EA:40:49:3F:CC:57:46:71:69:22:F1:98:8D:96:29:1F:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOWb6kBJP8xXRnFpIvGYjZYpH74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116D68/724CC84C788711E9A08AEC60C4F9AE02/98A1BAB6E9B611EE89994B66C4F9AE02.roa Signing time: Sat 10 May 2025 17:40:33 +0000 ROA not before: Sat 10 May 2025 17:40:33 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136419 IP address blocks: 103.87.36.0/24 maxlen: 24 103.87.236.0/23 maxlen: 24 103.87.238.0/24 maxlen: 24 2001:df0:7700::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116D68/724CC84C788711E9A08AEC60C4F9AE02/XOWb6kBJP8xXRnFpIvGYjZYpH74.crl rsync://rpki.apnic.net/member_repository/A9116D68/724CC84C788711E9A08AEC60C4F9AE02/XOWb6kBJP8xXRnFpIvGYjZYpH74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOWb6kBJP8xXRnFpIvGYjZYpH74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 17:46:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2129 (0x851) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116D68, serialNumber=5CE59BEA40493FCC5746716922F1988D96291FBE Validity Not Before: May 10 17:40:33 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681f8f91-78bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:31:09:fa:08:0c:48:dc:d8:9e:81:7b:30:d8: e0:28:28:f8:a1:d6:bd:62:80:69:88:ac:b3:f6:61: 60:da:d3:1e:c3:2d:14:ee:a5:f7:82:d0:2f:65:1b: aa:29:5b:19:9c:ce:bb:dd:dc:0f:2c:8d:ad:25:64: 78:fc:77:4b:85:f7:23:99:f2:71:bb:a5:bb:81:80: bb:2a:38:39:e1:36:d0:3e:66:67:ef:65:5e:c1:c0: 0c:c8:7a:c9:95:68:80:de:73:cf:78:8a:d7:b0:62: fb:cd:8e:94:32:49:c6:d6:b2:e5:8e:78:6d:06:0a: 65:3c:b4:95:c4:a2:23:a0:c4:27:aa:2d:a5:66:a7: 58:fa:52:8e:6a:90:0d:e6:63:9f:c2:2f:59:2b:b7: 59:20:1c:c8:58:09:b9:06:8f:d5:cd:b3:7a:28:b8: 85:03:69:8a:8c:9b:ba:6b:ff:71:ab:b7:90:c6:00: e5:fe:b4:31:67:8e:ae:b3:ed:5b:8a:cd:f3:03:db: 39:e3:f3:41:9c:10:24:dd:4a:03:b3:13:1e:b8:63: 8b:29:fe:0e:19:27:3f:de:c0:5f:de:58:96:49:3d: da:30:05:65:2a:0b:98:0d:3a:08:8e:34:81:ea:e0: cf:0a:ca:3d:c8:da:95:a7:b6:17:4b:78:30:6a:3b: c6:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:76:D3:21:35:55:43:AE:22:E1:D1:5D:60:4E:69:1B:97:63:2D:70 X509v3 Authority Key Identifier: keyid:5C:E5:9B:EA:40:49:3F:CC:57:46:71:69:22:F1:98:8D:96:29:1F:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116D68/724CC84C788711E9A08AEC60C4F9AE02/XOWb6kBJP8xXRnFpIvGYjZYpH74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XOWb6kBJP8xXRnFpIvGYjZYpH74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116D68/724CC84C788711E9A08AEC60C4F9AE02/98A1BAB6E9B611EE89994B66C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.87.36.0/24 103.87.236.0-103.87.238.255 IPv6: 2001:df0:7700::/48 Signature Algorithm: sha256WithRSAEncryption 15:93:8e:4e:76:57:ef:5b:98:1e:da:dc:50:6c:74:08:92:b7: ce:2f:70:13:a0:b7:69:f2:58:5e:22:da:9c:31:86:2d:fe:1e: 65:6e:b4:fb:66:a9:bd:23:cf:a7:2a:12:d4:a5:76:27:04:2b: 8a:b8:d9:19:ef:51:b9:f4:13:61:37:b0:91:2b:6c:91:37:3f: 2e:77:3f:f3:2e:d2:c8:48:76:df:25:be:80:c7:a2:6e:cb:e9: 19:bd:bd:fe:9b:52:ed:d0:ed:f3:73:97:f3:02:1a:89:e2:05: 5b:a0:44:07:5e:a0:f2:69:16:2e:89:cd:43:45:b6:11:e0:a9: 1e:a0:78:b4:a0:b0:62:32:c5:94:ac:dd:12:41:49:a1:63:8a: 8d:b8:43:a1:91:15:9e:df:06:96:7c:da:63:3f:26:e5:11:94: 1f:cc:98:99:69:0d:ae:1a:05:49:4c:a4:04:70:2d:4b:d5:be: dd:63:82:92:d1:cc:4f:a2:67:47:a1:1e:65:8d:8b:04:07:fc: 78:b1:e8:af:93:4f:61:04:9c:b7:85:2e:e7:ea:77:60:19:df: 0a:80:a7:4b:88:83:7c:4a:f6:5e:bc:70:04:c2:6e:ce:b8:df: b1:07:d0:28:a1:c2:1d:46:46:ee:03:86:02:e0:e3:a4:43:4d: 91:b9:e8:32 -----BEGIN CERTIFICATE----- MIIFkDCCBHigAwIBAgICCFEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTZENjgxMTAvBgNVBAUTKDVDRTU5QkVBNDA0OTNGQ0M1NzQ2NzE2OTIyRjE5ODhE OTYyOTFGQkUwHhcNMjUwNTEwMTc0MDMzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFmOGY5MS03OGJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnTEJ+ggMSNzYnoF7MNjgKCj4oda9YoBpiKyz9mFg2tMewy0U7qX3gtAvZRuq KVsZnM673dwPLI2tJWR4/HdLhfcjmfJxu6W7gYC7Kjg54TbQPmZn72VewcAMyHrJ lWiA3nPPeIrXsGL7zY6UMknG1rLljnhtBgplPLSVxKIjoMQnqi2lZqdY+lKOapAN 5mOfwi9ZK7dZIBzIWAm5Bo/VzbN6KLiFA2mKjJu6a/9xq7eQxgDl/rQxZ46us+1b is3zA9s54/NBnBAk3UoDsxMeuGOLKf4OGSc/3sBf3liWST3aMAVlKguYDToIjjSB 6uDPCso9yNqVp7YXS3gwajvG6wIDAQABo4ICtDCCArAwHQYDVR0OBBYEFNt20yE1 VUOuIuHRXWBOaRuXYy1wMB8GA1UdIwQYMBaAFFzlm+pAST/MV0ZxaSLxmI2WKR++ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNkQ2OC83MjRDQzg0Qzc4 ODcxMUU5QTA4QUVDNjBDNEY5QUUwMi9YT1diNmtCSlA4eFhSbkZwSXZHWWpaWXBI NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hPV2I2a0JKUDh4WFJuRnBJdkdZalpZcEg3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTZENjgvNzI0Q0M4NEM3ODg3MTFFOUEwOEFFQzYwQzRGOUFFMDIvOThBMUJBQjZF OUI2MTFFRTg5OTk0QjY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPgYIKwYBBQUHAQcBAf8E LzAtMBoEAgABMBQDBABnVyQwDAMEAmdX7AMEAGdX7jAPBAIAAjAJAwcAIAEN8HcA MA0GCSqGSIb3DQEBCwUAA4IBAQAVk45OdlfvW5ge2txQbHQIkrfOL3AToLdp8lhe ItqcMYYt/h5lbrT7Zqm9I8+nKhLUpXYnBCuKuNkZ71G59BNhN7CRK2yRNz8udz/z LtLISHbfJb6Ax6Juy+kZvb3+m1Lt0O3zc5fzAhqJ4gVboEQHXqDyaRYuic1DRbYR 4KkeoHi0oLBiMsWUrN0SQUmhY4qNuEOhkRWe3waWfNpjPyblEZQfzJiZaQ2uGgVJ TKQEcC1L1b7dY4KS0cxPomdHoR5ljYsEB/x4seivk09hBJy3hS7n6ndgGd8KgKdL iIN8SvZevHAEwm7OuN+xB9AoocIdRkbuA4YC4OOkQ02Ruegy -----END CERTIFICATE-----Generated at Thu May 15 13:18:53 2025 by rpki-client