$ rpki-client -vvf rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/86A2CEB60F3E11EEA4C55465C4F9AE02.roa File: 86A2CEB60F3E11EEA4C55465C4F9AE02.roa (raw, json) Hash identifier: ZLzKJqHR9ccG28xsD3tS0PUqjyHlLmjfaTjR+9dBzcw= Subject key identifier: 0E:84:41:C4:38:1E:66:1C:11:5A:64:8A:6E:BF:B4:0E:41:63:D3:CF Certificate issuer: /CN=A911B4ED/serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Certificate serial: 017E Authority key identifier: 90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/86A2CEB60F3E11EEA4C55465C4F9AE02.roa Signing time: Tue 01 Jul 2025 04:09:38 +0000 ROA not before: Tue 01 Jul 2025 04:09:38 +0000 ROA not after: Thu 30 Oct 2025 00:00:00 +0000 asID: 141765 IP address blocks: 103.79.178.0/23 maxlen: 23 103.79.178.0/24 maxlen: 24 103.79.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 382 (0x17e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B4ED, serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Validity Not Before: Jul 1 04:09:38 2025 GMT Not After : Oct 30 00:00:00 2025 GMT Subject: CN=68635f82-9cd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:6b:67:5c:84:56:8e:47:85:52:b7:60:6a:36: 79:3e:f9:66:2f:de:33:cc:26:96:33:15:69:aa:34: a3:d0:01:ca:47:04:90:3a:77:41:f0:6c:fa:ac:d3: 1d:40:af:4d:d6:5e:3e:ed:88:c6:75:d1:ac:f7:6d: 99:93:16:ee:74:92:c9:16:19:eb:8c:7e:c3:6a:8b: 1f:3e:76:a2:c6:15:d9:c4:8d:00:bd:7b:84:7d:36: 91:f9:f7:06:86:87:6d:7f:9a:e5:1e:9b:31:14:6f: 12:6c:a5:93:2f:b7:b5:22:e7:fa:4b:91:0b:4b:13: 5f:e6:79:10:08:9c:0f:14:a6:84:0b:1c:55:c5:b8: 5a:8b:7a:5e:59:c7:bf:4c:ca:29:56:83:ba:6a:95: a7:d4:77:82:80:ed:16:e6:f9:2b:b6:34:d6:cc:d5: 75:92:17:86:5f:f6:18:a9:3c:49:84:a1:8d:c9:2a: 4f:05:01:da:af:be:a2:73:9f:b4:1a:7b:b7:79:fe: 54:e8:1a:d5:7c:72:2b:e6:7b:a2:eb:28:55:7d:80: 07:57:34:cd:6b:4e:00:28:f8:7e:e5:1a:49:d5:a8: 67:c8:c6:3b:a7:a9:7e:6a:6f:47:c7:f9:bb:64:07: d0:9c:66:30:73:f5:77:74:9a:45:bd:d7:0c:b5:6c: c6:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:84:41:C4:38:1E:66:1C:11:5A:64:8A:6E:BF:B4:0E:41:63:D3:CF X509v3 Authority Key Identifier: keyid:90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/86A2CEB60F3E11EEA4C55465C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.79.178.0/23 Signature Algorithm: sha256WithRSAEncryption cd:ff:64:a7:ff:22:4b:bc:a7:b4:0d:ea:e1:7d:d1:c1:3f:da: 98:49:72:14:0f:ba:e7:02:6e:37:2b:fb:69:8f:6f:50:3c:9c: 1b:45:23:6b:3e:54:69:62:c7:15:43:b9:dc:e2:d6:1d:40:63: d2:f0:ac:e2:9b:01:bb:4c:9e:7e:fb:42:ff:af:22:1d:a8:c7: 56:5c:8f:90:1a:52:f2:19:b1:0c:77:da:ce:6d:7d:b8:32:1a: f2:17:d3:79:92:84:2f:84:e9:c7:fd:4a:98:aa:4d:d3:16:e3: 51:3e:c7:3d:19:9b:70:c3:74:fc:db:30:18:ef:28:b5:9b:48: 86:f5:e9:65:b1:67:3c:72:6a:58:ca:5f:10:5e:2c:37:44:b5: 20:08:8c:b2:fc:6a:46:0e:cd:6c:68:02:47:91:82:25:8a:29: 3b:ce:84:98:ec:c4:bb:0a:15:e8:1b:5e:e9:51:5f:94:dd:60: cb:d1:60:99:a1:10:7d:d7:06:06:42:ff:eb:a6:f5:3f:5f:2c: c6:09:a0:f9:32:91:fc:76:0d:b8:46:be:12:55:a2:30:de:42: 26:9c:b2:30:ab:80:e0:b1:ae:a4:0e:bc:d3:fe:aa:8c:6a:78: a7:5a:d0:00:59:f8:e8:87:c8:87:9f:89:31:83:e0:ab:07:46: 6b:03:d4:34 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0RUQxMTAvBgNVBAUTKDkwOEU3ODkwMzRGMTg0MTVEODc1OUMyNkEzNDZFQjgx MEVGNUE0MTUwHhcNMjUwNzAxMDQwOTM4WhcNMjUxMDMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYzNWY4Mi05Y2QzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsmtnXIRWjkeFUrdgajZ5PvlmL94zzCaWMxVpqjSj0AHKRwSQOndB8Gz6rNMd QK9N1l4+7YjGddGs922ZkxbudJLJFhnrjH7DaosfPnaixhXZxI0AvXuEfTaR+fcG hodtf5rlHpsxFG8SbKWTL7e1Iuf6S5ELSxNf5nkQCJwPFKaECxxVxbhai3peWce/ TMopVoO6apWn1HeCgO0W5vkrtjTWzNV1kheGX/YYqTxJhKGNySpPBQHar76ic5+0 Gnu3ef5U6BrVfHIr5nui6yhVfYAHVzTNa04AKPh+5RpJ1ahnyMY7p6l+am9Hx/m7 ZAfQnGYwc/V3dJpFvdcMtWzGkwIDAQABo4IClTCCApEwHQYDVR0OBBYEFA6EQcQ4 HmYcEVpkim6/tA5BY9PPMB8GA1UdIwQYMBaAFJCOeJA08YQV2HWcJqNG64EO9aQV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjRFRC9GQTRCMEFDNDBG MzcxMUVFQUI5RDk0NjhDNEY5QUUwMi9rSTU0a0RUeGhCWFlkWndtbzBicmdRNzFw QlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJNTRrRFR4aEJYWWRad21vMGJyZ1E3MXBCVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0RUQvRkE0QjBBQzQwRjM3MTFFRUFCOUQ5NDY4QzRGOUFFMDIvODZBMkNFQjYw RjNFMTFFRUE0QzU1NDY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnT7IwDQYJKoZIhvcNAQELBQADggEBAM3/ZKf/Iku8p7QN 6uF90cE/2phJchQPuucCbjcr+2mPb1A8nBtFI2s+VGlixxVDudzi1h1AY9LwrOKb AbtMnn77Qv+vIh2ox1Zcj5AaUvIZsQx32s5tfbgyGvIX03mShC+E6cf9SpiqTdMW 41E+xz0Zm3DDdPzbMBjvKLWbSIb16WWxZzxyaljKXxBeLDdEtSAIjLL8akYOzWxo AkeRgiWKKTvOhJjsxLsKFegbXulRX5TdYMvRYJmhEH3XBgZC/+um9T9fLMYJoPky kfx2DbhGvhJVojDeQiacsjCrgOCxrqQOvNP+qoxqeKda0ABZ+OiHyIefiTGD4KsH RmsD1DQ= -----END CERTIFICATE-----Generated at Fri Jul 4 14:46:12 2025 by rpki-client