$ rpki-client -vvf rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/39E76DD0589311EF88BF4665C4F9AE02.roa File: 39E76DD0589311EF88BF4665C4F9AE02.roa (raw, json) Hash identifier: t3nWUOarrxhEFD60ip2NaXslcMEcqGLVxqGfot6fF3I= Subject key identifier: 17:CF:7C:6C:20:CC:9B:75:87:DE:9E:B4:1A:6B:D2:94:26:3E:7B:B2 Certificate issuer: /CN=A911A69A/serialNumber=AE658EA377EA11840B08EA6C88D9090E8B6C5204 Certificate serial: AB Authority key identifier: AE:65:8E:A3:77:EA:11:84:0B:08:EA:6C:88:D9:09:0E:8B:6C:52:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rmWOo3fqEYQLCOpsiNkJDotsUgQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/39E76DD0589311EF88BF4665C4F9AE02.roa Signing time: Mon 23 Jun 2025 05:25:49 +0000 ROA not before: Mon 23 Jun 2025 05:25:49 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 133952 IP address blocks: 43.230.136.0/22 maxlen: 24 103.49.196.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.crl rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rmWOo3fqEYQLCOpsiNkJDotsUgQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 171 (0xab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A69A, serialNumber=AE658EA377EA11840B08EA6C88D9090E8B6C5204 Validity Not Before: Jun 23 05:25:49 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=6858e55d-8615 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:04:1b:6e:51:81:a4:f0:75:70:74:04:f8:71: 2a:41:87:2e:2f:de:37:d9:e3:cf:a6:5c:8a:11:19: bd:92:cd:96:a6:e9:54:a8:44:f8:27:9d:a7:2d:82: 79:8d:53:72:5c:e4:24:09:4d:f1:f8:1d:e6:3e:9a: 3a:f0:49:55:d1:bb:57:5f:11:b7:8e:9e:a0:9c:5b: 03:a2:df:fd:55:8a:9c:81:60:9a:9e:30:3a:96:8f: 47:20:58:b1:f5:59:fa:78:1b:8b:37:7b:2e:9d:2a: bc:90:81:78:9d:3b:99:6a:04:59:ce:9a:a6:91:0e: 54:3b:3e:49:f2:51:5d:0b:28:51:f9:19:5d:88:fd: ff:d1:ce:4f:47:16:e1:b4:c6:5f:6d:81:37:b7:ce: 73:db:7a:82:bb:62:58:25:10:1c:3a:23:f9:87:a4: f5:f6:b8:db:60:bb:94:44:0b:2f:d0:db:fa:8f:ef: a2:f5:a0:fe:3a:2c:b5:f1:ea:c7:d4:42:16:c6:34: 12:8f:18:94:49:3d:4b:4f:2d:a0:41:c9:10:3b:b0: c4:6d:95:87:f3:2e:f2:f5:d8:15:75:0d:cb:8a:3a: 65:0a:c5:7a:97:05:08:a0:55:a3:dd:de:c4:a3:d6: b0:f5:30:8d:70:af:9c:d1:6d:ea:0c:e3:7c:5e:e5: 99:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:CF:7C:6C:20:CC:9B:75:87:DE:9E:B4:1A:6B:D2:94:26:3E:7B:B2 X509v3 Authority Key Identifier: keyid:AE:65:8E:A3:77:EA:11:84:0B:08:EA:6C:88:D9:09:0E:8B:6C:52:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/rmWOo3fqEYQLCOpsiNkJDotsUgQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rmWOo3fqEYQLCOpsiNkJDotsUgQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A69A/8B0E7380589211EF86B12564C4F9AE02/39E76DD0589311EF88BF4665C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.230.136.0/22 103.49.196.0/22 Signature Algorithm: sha256WithRSAEncryption 16:20:59:09:a7:a9:66:e5:7e:b1:73:16:a8:0a:ed:6a:1f:f2: 23:c4:3b:1b:e9:eb:5a:e1:ee:15:06:37:df:6a:4f:75:9a:c8: 6a:a2:ca:82:d8:5d:97:f7:b7:d1:0c:b2:3b:c4:a6:e8:ef:d8: f1:10:a0:ab:c1:53:c7:bf:06:5f:8b:87:90:c1:d0:29:ed:6b: e5:e4:07:8f:91:ec:d3:66:0e:a1:ec:ec:10:69:ab:8d:9c:7d: ec:37:4b:a4:3e:33:58:15:2f:af:85:28:00:78:a0:63:71:e7: 27:46:57:79:e2:d0:25:08:60:48:ae:17:4a:d0:20:4a:89:02: 32:40:c1:e2:6e:97:6d:24:fa:17:41:70:e5:78:1c:1a:6d:b9: 86:8b:e7:a3:d5:6a:f7:9f:79:c2:cc:8a:d3:4a:d4:47:b4:46: 9e:2e:68:39:fe:33:81:96:56:f2:f9:0c:98:85:47:9d:9b:67: b1:29:09:a0:f8:40:f7:57:2d:1e:07:ca:b1:88:76:a3:6f:12: 81:7d:1d:95:90:a5:55:0c:16:96:1e:dd:77:cd:29:03:38:cc: af:46:7d:a9:73:ed:32:06:2f:7a:40:d8:8e:6e:1e:76:eb:3b: 24:43:6a:71:b1:5a:03:c0:4d:b9:60:cf:5f:c4:63:47:33:5f: a3:28:ac:40 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUE2OUExMTAvBgNVBAUTKEFFNjU4RUEzNzdFQTExODQwQjA4RUE2Qzg4RDkwOTBF OEI2QzUyMDQwHhcNMjUwNjIzMDUyNTQ5WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODU4ZTU1ZC04NjE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAogQbblGBpPB1cHQE+HEqQYcuL9432ePPplyKERm9ks2WpulUqET4J52nLYJ5 jVNyXOQkCU3x+B3mPpo68ElV0btXXxG3jp6gnFsDot/9VYqcgWCanjA6lo9HIFix 9Vn6eBuLN3sunSq8kIF4nTuZagRZzpqmkQ5UOz5J8lFdCyhR+RldiP3/0c5PRxbh tMZfbYE3t85z23qCu2JYJRAcOiP5h6T19rjbYLuURAsv0Nv6j++i9aD+Oiy18erH 1EIWxjQSjxiUST1LTy2gQckQO7DEbZWH8y7y9dgVdQ3LijplCsV6lwUIoFWj3d7E o9aw9TCNcK+c0W3qDON8XuWZZwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBfPfGwg zJt1h96etBpr0pQmPnuyMB8GA1UdIwQYMBaAFK5ljqN36hGECwjqbIjZCQ6LbFIE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTY5QS84QjBFNzM4MDU4 OTIxMUVGODZCMTI1NjRDNEY5QUUwMi9ybVdPbzNmcUVZUUxDT3BzaU5rSkRvdHNV Z1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JtV09vM2ZxRVlRTENPcHNpTmtKRG90c1VnUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUE2OUEvOEIwRTczODA1ODkyMTFFRjg2QjEyNTY0QzRGOUFFMDIvMzlFNzZERDA1 ODkzMTFFRjg4QkY0NjY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr5ogDBAJnMcQwDQYJKoZIhvcNAQELBQADggEBABYgWQmn qWblfrFzFqgK7Wof8iPEOxvp61rh7hUGN99qT3WayGqiyoLYXZf3t9EMsjvEpujv 2PEQoKvBU8e/Bl+Lh5DB0Cnta+XkB4+R7NNmDqHs7BBpq42cfew3S6Q+M1gVL6+F KAB4oGNx5ydGV3ni0CUIYEiuF0rQIEqJAjJAweJul20k+hdBcOV4HBptuYaL56PV avefecLMitNK1Ee0Rp4uaDn+M4GWVvL5DJiFR52bZ7EpCaD4QPdXLR4HyrGIdqNv EoF9HZWQpVUMFpYe3XfNKQM4zK9Gfalz7TIGL3pA2I5uHnbrOyRDanGxWgPATblg z1/EY0czX6MorEA= -----END CERTIFICATE-----Generated at Thu Jul 3 18:33:22 2025 by rpki-client