$ rpki-client -vvf rpki.apnic.net/member_repository/A912698E/F19A7C949C1C11E992FAFB1BC4F9AE02/DC185D0CB0A111EE8C78834EC4F9AE02.roa File: DC185D0CB0A111EE8C78834EC4F9AE02.roa (raw, json) Hash identifier: m0l23vJryclykCD48Z3CE8U9M7wFbCoJly5IlJCZMlg= Subject key identifier: 8A:F4:51:DE:4C:96:54:A0:71:BA:90:A9:60:76:D3:9A:76:B2:4B:AC Certificate issuer: /CN=A912698E/serialNumber=C0B9C11B1B160F321B8AEC4CFCDDDAD895FC47DE Certificate serial: 0E6D Authority key identifier: C0:B9:C1:1B:1B:16:0F:32:1B:8A:EC:4C:FC:DD:DA:D8:95:FC:47:DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wLnBGxsWDzIbiuxM_N3a2JX8R94.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912698E/F19A7C949C1C11E992FAFB1BC4F9AE02/DC185D0CB0A111EE8C78834EC4F9AE02.roa Signing time: Thu 24 Apr 2025 17:46:46 +0000 ROA not before: Thu 24 Apr 2025 17:46:46 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 132824 IP address blocks: 103.136.32.0/24 maxlen: 24 103.136.33.0/24 maxlen: 24 103.136.34.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912698E/F19A7C949C1C11E992FAFB1BC4F9AE02/wLnBGxsWDzIbiuxM_N3a2JX8R94.crl rsync://rpki.apnic.net/member_repository/A912698E/F19A7C949C1C11E992FAFB1BC4F9AE02/wLnBGxsWDzIbiuxM_N3a2JX8R94.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wLnBGxsWDzIbiuxM_N3a2JX8R94.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 17:51:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3693 (0xe6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912698E, serialNumber=C0B9C11B1B160F321B8AEC4CFCDDDAD895FC47DE Validity Not Before: Apr 24 17:46:46 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=680a7906-276d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:e4:fd:83:9b:33:63:3b:f1:16:66:dd:6d:2c: a9:a8:01:a3:07:cd:43:84:84:02:4d:6f:ab:75:3e: 0a:18:d8:a1:a9:41:84:49:68:f7:3a:ef:eb:bd:1c: 66:a3:d4:82:1d:91:7b:62:74:de:d1:d4:d5:f5:a0: 7b:c4:e5:90:aa:cd:f9:a0:d9:44:22:ec:50:42:c2: 31:1e:24:73:4d:98:ba:63:54:e9:a5:82:9f:99:4a: 71:26:e3:9c:d8:bb:ba:49:97:9e:42:b3:4f:ec:71: 4f:95:f5:fa:ec:71:52:cf:58:27:9d:db:26:89:87: e0:f9:26:a7:8c:3c:bc:1b:e8:52:c5:6b:62:4d:3f: c7:c8:00:82:f8:ff:38:90:02:6e:c7:7e:fe:25:23: 52:6c:a6:e7:e4:2e:4c:48:c7:7c:61:1f:b0:9f:cb: 70:27:72:28:ea:5e:b0:bd:85:52:97:b2:88:32:ef: 1a:4b:87:09:b1:de:94:cd:50:db:3d:9c:b0:c3:f3: 82:6e:49:cc:09:bb:09:eb:55:39:0a:88:93:ca:33: 3c:a6:55:65:ff:9c:e2:84:f5:d2:9b:25:77:6c:51: 4e:1c:43:74:fb:b8:dd:bb:a1:bb:af:b0:54:89:d3: be:7c:03:e2:82:12:a1:c0:4c:27:9a:88:76:a6:8f: da:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:F4:51:DE:4C:96:54:A0:71:BA:90:A9:60:76:D3:9A:76:B2:4B:AC X509v3 Authority Key Identifier: keyid:C0:B9:C1:1B:1B:16:0F:32:1B:8A:EC:4C:FC:DD:DA:D8:95:FC:47:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912698E/F19A7C949C1C11E992FAFB1BC4F9AE02/wLnBGxsWDzIbiuxM_N3a2JX8R94.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wLnBGxsWDzIbiuxM_N3a2JX8R94.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912698E/F19A7C949C1C11E992FAFB1BC4F9AE02/DC185D0CB0A111EE8C78834EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.136.32.0-103.136.34.255 Signature Algorithm: sha256WithRSAEncryption 59:df:66:24:65:bc:c6:ef:c2:a1:16:65:da:9e:d2:cf:f6:be: 92:80:06:11:44:3e:7e:8d:3f:42:19:2a:de:24:6d:0a:6a:52: 1d:6f:21:a1:aa:76:fc:db:dc:df:14:b2:aa:d1:3f:6c:56:aa: 72:d8:67:97:47:e9:ba:a9:e6:e6:c4:72:47:15:e8:44:bc:d1: bd:52:16:73:14:c1:2b:50:c6:47:3a:41:17:4c:1a:16:83:31: 24:3c:e8:20:d4:8b:8d:58:17:c5:d5:0a:42:49:f0:ad:30:a0: 7f:1b:91:0f:6c:e3:bd:44:fb:34:ed:53:4b:7c:d9:45:81:bd: 32:3d:e3:04:a8:81:d7:8e:16:6d:04:42:c5:04:03:3d:ff:4d: e7:ef:8b:ee:12:64:3f:56:53:4d:e9:7f:8c:69:f1:b5:97:4c: ac:f9:f1:ca:56:21:8e:5d:70:ea:f8:94:7a:79:d9:63:0f:9f: be:8f:ca:18:7b:58:e6:5b:43:86:b5:cd:4b:3b:64:1d:8f:99: 4f:e9:1c:13:60:16:23:0e:b1:d3:f0:33:8f:4f:ef:2b:51:ea: 96:bd:ad:84:28:88:0b:fb:a3:d2:83:c8:9c:7b:cf:a0:87:da: ce:0b:6e:8c:dc:3d:da:88:fe:47:61:29:7d:26:ed:91:8f:7d: 7e:48:b5:25 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICDm0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjY5OEUxMTAvBgNVBAUTKEMwQjlDMTFCMUIxNjBGMzIxQjhBRUM0Q0ZDREREQUQ4 OTVGQzQ3REUwHhcNMjUwNDI0MTc0NjQ2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODBhNzkwNi0yNzZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqOT9g5szYzvxFmbdbSypqAGjB81DhIQCTW+rdT4KGNihqUGESWj3Ou/rvRxm o9SCHZF7YnTe0dTV9aB7xOWQqs35oNlEIuxQQsIxHiRzTZi6Y1TppYKfmUpxJuOc 2Lu6SZeeQrNP7HFPlfX67HFSz1gnndsmiYfg+SanjDy8G+hSxWtiTT/HyACC+P84 kAJux37+JSNSbKbn5C5MSMd8YR+wn8twJ3Io6l6wvYVSl7KIMu8aS4cJsd6UzVDb PZyww/OCbknMCbsJ61U5CoiTyjM8plVl/5zihPXSmyV3bFFOHEN0+7jdu6G7r7BU idO+fAPighKhwEwnmoh2po/abwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFIr0Ud5M llSgcbqQqWB205p2skusMB8GA1UdIwQYMBaAFMC5wRsbFg8yG4rsTPzd2tiV/Efe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjk4RS9GMTlBN0M5NDlD MUMxMUU5OTJGQUZCMUJDNEY5QUUwMi93TG5CR3hzV0R6SWJpdXhNX04zYTJKWDhS OTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dMbkJHeHNXRHpJYml1eE1fTjNhMkpYOFI5NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjY5OEUvRjE5QTdDOTQ5QzFDMTFFOTkyRkFGQjFCQzRGOUFFMDIvREMxODVEMENC MEExMTFFRThDNzg4MzRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEBWeIIAMEAGeIIjANBgkqhkiG9w0BAQsFAAOCAQEAWd9m JGW8xu/CoRZl2p7Sz/a+koAGEUQ+fo0/Qhkq3iRtCmpSHW8hoap2/Nvc3xSyqtE/ bFaqcthnl0fpuqnm5sRyRxXoRLzRvVIWcxTBK1DGRzpBF0waFoMxJDzoINSLjVgX xdUKQknwrTCgfxuRD2zjvUT7NO1TS3zZRYG9Mj3jBKiB144WbQRCxQQDPf9N5++L 7hJkP1ZTTel/jGnxtZdMrPnxylYhjl1w6viUennZYw+fvo/KGHtY5ltDhrXNSztk HY+ZT+kcE2AWIw6x0/Azj0/vK1Hqlr2thCiIC/uj0oPInHvPoIfazgtujNw92oj+ R2EpfSbtkY99fki1JQ== -----END CERTIFICATE-----Generated at Thu May 15 15:07:14 2025 by rpki-client