$ rpki-client -vvf rpki.apnic.net/member_repository/A913A5BD/4B2B393E1CF711EDA00FD343C4F9AE02/C605A7A01CF911EDBAE62F45C4F9AE02.roa File: C605A7A01CF911EDBAE62F45C4F9AE02.roa (raw, json) Hash identifier: nUMhsxhIRqeHeQEDGBtbEEh0D5JOlIzRcfpKkf1PF5o= Subject key identifier: 0B:6D:2E:C7:7E:77:EE:F4:FE:E0:FE:6F:42:8D:95:05:2F:13:6E:F6 Certificate issuer: /CN=A913A5BD/serialNumber=D5F174FFFDFA108BBB2F87E73C6E9DD5108D3A9F Certificate serial: 0247 Authority key identifier: D5:F1:74:FF:FD:FA:10:8B:BB:2F:87:E7:3C:6E:9D:D5:10:8D:3A:9F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1fF0__36EIu7L4fnPG6d1RCNOp8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A5BD/4B2B393E1CF711EDA00FD343C4F9AE02/C605A7A01CF911EDBAE62F45C4F9AE02.roa Signing time: Sat 03 May 2025 02:08:17 +0000 ROA not before: Sat 03 May 2025 02:08:17 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 45213 IP address blocks: 139.86.0.0/16 maxlen: 16 139.86.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A5BD/4B2B393E1CF711EDA00FD343C4F9AE02/1fF0__36EIu7L4fnPG6d1RCNOp8.crl rsync://rpki.apnic.net/member_repository/A913A5BD/4B2B393E1CF711EDA00FD343C4F9AE02/1fF0__36EIu7L4fnPG6d1RCNOp8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1fF0__36EIu7L4fnPG6d1RCNOp8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 01:39:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 583 (0x247) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A5BD, serialNumber=D5F174FFFDFA108BBB2F87E73C6E9DD5108D3A9F Validity Not Before: May 3 02:08:17 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68157a90-e5b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:f6:eb:80:b1:38:82:14:d5:31:3d:a3:f0:30: e7:5d:6d:23:8a:9f:21:4d:d7:d0:f7:3c:01:a3:d1: ed:76:00:ea:7f:8f:b6:1b:0e:b5:19:66:db:2c:7b: b2:58:91:b8:7c:a8:d0:5e:02:e4:03:59:11:ba:dc: 5c:d3:8d:cb:bd:3c:46:85:a6:ac:69:7c:bf:d6:b9: d5:67:48:57:b4:4e:e3:f6:56:65:7e:15:ce:77:1e: 37:9f:e4:74:b8:95:c0:ba:72:3f:06:6e:94:d3:5c: 05:60:88:b2:fe:79:97:23:e9:dd:61:8c:39:94:b4: b5:aa:ac:d2:cc:55:c7:c4:d2:01:ac:a1:64:90:d1: f0:c2:de:34:00:fb:00:97:d0:06:b6:50:19:fd:7d: c7:cd:a7:db:d8:37:5a:74:bf:fa:69:c1:34:76:b4: 43:a0:b9:d2:81:14:f4:37:9e:83:71:9c:4a:62:04: 1f:4f:c4:13:4f:44:f0:d6:01:89:21:c1:94:b8:11: 4e:77:25:95:5c:cf:0f:f4:40:0c:d2:d0:67:fb:95: 88:a7:50:49:78:6b:b2:fc:d4:10:84:e6:5f:be:aa: 31:a3:5a:e3:d0:54:91:cc:93:7c:82:76:30:c3:05: 06:73:82:2f:20:e3:88:96:37:f1:42:43:ab:5f:dd: 37:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:6D:2E:C7:7E:77:EE:F4:FE:E0:FE:6F:42:8D:95:05:2F:13:6E:F6 X509v3 Authority Key Identifier: keyid:D5:F1:74:FF:FD:FA:10:8B:BB:2F:87:E7:3C:6E:9D:D5:10:8D:3A:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A5BD/4B2B393E1CF711EDA00FD343C4F9AE02/1fF0__36EIu7L4fnPG6d1RCNOp8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1fF0__36EIu7L4fnPG6d1RCNOp8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A5BD/4B2B393E1CF711EDA00FD343C4F9AE02/C605A7A01CF911EDBAE62F45C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 139.86.0.0/16 Signature Algorithm: sha256WithRSAEncryption 28:e9:85:82:15:b0:bc:bd:97:0f:e2:09:90:81:9d:ce:ff:d8: b9:e6:e1:0e:52:bb:43:78:76:14:5b:d6:8d:3c:b2:69:cd:3f: 9a:db:00:01:e7:8c:68:50:a8:c4:fe:5c:61:fa:f4:6f:63:70: 1b:c3:49:01:97:5f:ab:31:57:4b:ed:5b:43:17:0b:48:9c:bb: 94:a3:9c:f5:13:66:b3:c6:19:02:92:85:49:5c:9c:19:81:79: 7f:98:95:44:95:d9:43:b3:03:90:22:c4:60:92:3d:61:b8:bb: 63:3b:e8:77:b1:e4:42:29:d7:f6:2d:09:fe:6c:2e:8f:c6:7f: f6:52:ca:9b:c0:67:1f:99:b8:f7:c8:62:dc:c9:cf:61:48:57: c9:1d:17:f6:d1:cd:8d:38:12:40:67:56:5c:2c:92:82:79:69: 38:8c:8d:75:d3:21:76:49:55:a0:fe:b0:00:83:1e:2c:18:3a: 90:85:35:d2:22:17:72:72:78:1c:62:6d:e3:00:cd:c3:ee:03: c4:77:a5:aa:ac:0e:4d:67:74:5f:d5:a6:60:f2:dc:4f:ff:1f: 37:26:a8:a2:62:13:7f:7b:97:fe:ab:f8:e3:1a:fc:bc:9c:cf: a3:19:43:85:6e:4b:b4:6a:61:ac:3b:83:c3:ee:0e:72:10:36: 57:cc:f9:1c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICAkcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E1QkQxMTAvBgNVBAUTKEQ1RjE3NEZGRkRGQTEwOEJCQjJGODdFNzNDNkU5REQ1 MTA4RDNBOUYwHhcNMjUwNTAzMDIwODE3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1N2E5MC1lNWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8PbrgLE4ghTVMT2j8DDnXW0jip8hTdfQ9zwBo9HtdgDqf4+2Gw61GWbbLHuy WJG4fKjQXgLkA1kRutxc043LvTxGhaasaXy/1rnVZ0hXtE7j9lZlfhXOdx43n+R0 uJXAunI/Bm6U01wFYIiy/nmXI+ndYYw5lLS1qqzSzFXHxNIBrKFkkNHwwt40APsA l9AGtlAZ/X3Hzafb2DdadL/6acE0drRDoLnSgRT0N56DcZxKYgQfT8QTT0Tw1gGJ IcGUuBFOdyWVXM8P9EAM0tBn+5WIp1BJeGuy/NQQhOZfvqoxo1rj0FSRzJN8gnYw wwUGc4IvIOOIljfxQkOrX903EQIDAQABo4IClDCCApAwHQYDVR0OBBYEFAttLsd+ d+70/uD+b0KNlQUvE272MB8GA1UdIwQYMBaAFNXxdP/9+hCLuy+H5zxundUQjTqf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTVCRC80QjJCMzkzRTFD RjcxMUVEQTAwRkQzNDNDNEY5QUUwMi8xZkYwX18zNkVJdTdMNGZuUEc2ZDFSQ05P cDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzFmRjBfXzM2RUl1N0w0Zm5QRzZkMVJDTk9wOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0E1QkQvNEIyQjM5M0UxQ0Y3MTFFREEwMEZEMzQzQzRGOUFFMDIvQzYwNUE3QTAx Q0Y5MTFFREJBRTYyRjQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCLVjANBgkqhkiG9w0BAQsFAAOCAQEAKOmFghWwvL2XD+IJ kIGdzv/YuebhDlK7Q3h2FFvWjTyyac0/mtsAAeeMaFCoxP5cYfr0b2NwG8NJAZdf qzFXS+1bQxcLSJy7lKOc9RNms8YZApKFSVycGYF5f5iVRJXZQ7MDkCLEYJI9Ybi7 Yzvod7HkQinX9i0J/mwuj8Z/9lLKm8BnH5m498hi3MnPYUhXyR0X9tHNjTgSQGdW XCySgnlpOIyNddMhdklVoP6wAIMeLBg6kIU10iIXcnJ4HGJt4wDNw+4DxHelqqwO TWd0X9WmYPLcT/8fNyaoomITf3uX/qv44xr8vJzPoxlDhW5LtGphrDuDw+4OchA2 V8z5HA== -----END CERTIFICATE-----Generated at Wed May 14 12:53:27 2025 by rpki-client