$ rpki-client -vvf rpki.apnic.net/member_repository/A913B5C2/779D04A0364111EB8499D219C4F9AE02/5010A55A8C6411EE9E586967C4F9AE02.roa File: 5010A55A8C6411EE9E586967C4F9AE02.roa (raw, json) Hash identifier: p+F8DO30EZkMzrW2EHkKA7ZgA9gvLZlEKHzbjenOLuM= Subject key identifier: 90:16:6C:58:BC:4A:37:F5:1A:5A:E5:96:FF:5C:01:4C:05:D7:36:9B Certificate issuer: /CN=A913B5C2/serialNumber=1EED263F0428D84E3FBE51753D16D4B3D62797C4 Certificate serial: 0730 Authority key identifier: 1E:ED:26:3F:04:28:D8:4E:3F:BE:51:75:3D:16:D4:B3:D6:27:97:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hu0mPwQo2E4_vlF1PRbUs9Ynl8Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B5C2/779D04A0364111EB8499D219C4F9AE02/5010A55A8C6411EE9E586967C4F9AE02.roa Signing time: Mon 28 Apr 2025 22:32:40 +0000 ROA not before: Mon 28 Apr 2025 22:32:39 +0000 ROA not after: Thu 28 Aug 2025 00:00:00 +0000 asID: 136416 IP address blocks: 103.86.200.0/22 maxlen: 24 2400:c740::/32 maxlen: 32 2400:c740::/36 maxlen: 36 2400:c740:1000::/36 maxlen: 36 2400:c740:2000::/36 maxlen: 36 2400:c740:3000::/36 maxlen: 36 2400:c740:4000::/36 maxlen: 36 2400:c740:5000::/36 maxlen: 36 2400:c740:6000::/36 maxlen: 36 2400:c740:7000::/36 maxlen: 36 2400:c740:8000::/36 maxlen: 36 2400:c740:9000::/36 maxlen: 36 2400:c740:a000::/36 maxlen: 36 2400:c740:b000::/36 maxlen: 36 2400:c740:c000::/36 maxlen: 36 2400:c740:d000::/36 maxlen: 36 2400:c740:e000::/36 maxlen: 36 2400:c740:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B5C2/779D04A0364111EB8499D219C4F9AE02/Hu0mPwQo2E4_vlF1PRbUs9Ynl8Q.crl rsync://rpki.apnic.net/member_repository/A913B5C2/779D04A0364111EB8499D219C4F9AE02/Hu0mPwQo2E4_vlF1PRbUs9Ynl8Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hu0mPwQo2E4_vlF1PRbUs9Ynl8Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 15 May 2025 21:40:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1840 (0x730) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B5C2, serialNumber=1EED263F0428D84E3FBE51753D16D4B3D62797C4 Validity Not Before: Apr 28 22:32:39 2025 GMT Not After : Aug 28 00:00:00 2025 GMT Subject: CN=68100207-4106 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:a1:34:2f:1e:9f:c3:8e:0e:73:31:94:b2:f5: 9a:09:c6:d0:99:e4:49:59:ee:92:51:88:3c:31:69: 13:66:4c:2f:b0:15:31:e1:5f:32:9c:55:56:81:43: 02:19:9e:c8:ea:19:1a:89:39:5f:ed:6b:da:35:75: ab:af:97:3c:9f:80:06:d2:74:a2:e2:62:44:13:cc: 42:c4:4d:cf:53:9e:97:71:b3:c7:c9:95:75:e8:bc: f1:89:1e:62:99:b4:ea:d4:6a:96:aa:bc:3b:de:24: fa:0b:76:cd:71:36:29:d3:c3:5c:cf:6d:ac:6c:be: 77:e9:a6:bb:d3:2f:50:bc:c3:6e:47:8a:54:92:8d: cf:75:0d:ec:43:f2:1d:91:4b:ae:c7:65:0b:95:c3: 38:22:82:cd:87:c1:48:06:bc:23:8b:72:56:ed:c1: ca:d5:ed:4f:db:f7:1e:e4:5c:c8:c0:10:e0:7a:37: 05:b1:7c:8e:2f:36:29:36:bc:09:8b:a8:f0:08:96: 49:01:4f:27:44:c7:4f:14:0f:bf:b6:f3:59:1a:fc: 0e:c3:15:48:d3:f7:7f:66:b4:77:6d:98:f9:61:c9: 33:6f:52:84:92:90:47:81:bb:43:3e:2f:94:58:c7: 4a:ea:70:22:aa:f9:c9:59:fc:78:99:a3:23:52:dc: 91:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:16:6C:58:BC:4A:37:F5:1A:5A:E5:96:FF:5C:01:4C:05:D7:36:9B X509v3 Authority Key Identifier: keyid:1E:ED:26:3F:04:28:D8:4E:3F:BE:51:75:3D:16:D4:B3:D6:27:97:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B5C2/779D04A0364111EB8499D219C4F9AE02/Hu0mPwQo2E4_vlF1PRbUs9Ynl8Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hu0mPwQo2E4_vlF1PRbUs9Ynl8Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B5C2/779D04A0364111EB8499D219C4F9AE02/5010A55A8C6411EE9E586967C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.86.200.0/22 IPv6: 2400:c740::/32 Signature Algorithm: sha256WithRSAEncryption 88:17:c2:c3:10:92:2e:fd:c5:63:7e:78:b8:2b:23:ad:f6:88: b0:1c:18:5a:08:b4:aa:f8:b7:1f:70:a4:87:de:9a:c6:29:9e: 1f:b4:3a:01:f9:d6:53:70:7c:15:03:8c:31:03:ca:ed:d0:cd: 20:44:ac:6e:22:ae:38:1c:6c:31:4a:60:cd:65:c0:ce:c8:8a: c8:48:28:d0:84:98:41:d5:1f:49:9d:fb:8e:33:54:75:e4:f3: ec:3c:68:f8:38:96:7b:94:63:7c:28:e1:cf:4a:5f:52:de:d9: e4:2e:bb:b4:d9:fd:26:4f:a0:4b:2d:fe:b4:59:64:b8:5b:8b: 29:11:e0:79:05:ee:43:e1:82:21:c3:bd:e8:82:1b:cd:5d:b5: cf:4c:2e:7c:c4:3f:45:7e:a5:dd:bb:5d:0f:a4:91:d4:11:46: 87:63:f3:4e:1a:93:a9:5a:cc:a8:fa:6d:47:f2:f0:1b:6d:1f: 0b:62:a8:0c:05:91:03:08:80:ee:4c:2a:ae:44:b0:57:79:08: 61:a2:7a:09:04:dc:a8:94:89:b1:b2:c0:52:8e:a0:d9:36:33: b0:03:12:19:f9:36:5a:04:96:d1:17:48:5c:01:e1:23:98:41: c3:7b:92:28:fe:12:65:ce:54:b4:09:91:44:d9:1f:15:0e:cf: 2b:9e:af:2e -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBzAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I1QzIxMTAvBgNVBAUTKDFFRUQyNjNGMDQyOEQ4NEUzRkJFNTE3NTNEMTZENEIz RDYyNzk3QzQwHhcNMjUwNDI4MjIzMjM5WhcNMjUwODI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODEwMDIwNy00MTA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzqE0Lx6fw44OczGUsvWaCcbQmeRJWe6SUYg8MWkTZkwvsBUx4V8ynFVWgUMC GZ7I6hkaiTlf7WvaNXWrr5c8n4AG0nSi4mJEE8xCxE3PU56XcbPHyZV16LzxiR5i mbTq1GqWqrw73iT6C3bNcTYp08Ncz22sbL536aa70y9QvMNuR4pUko3PdQ3sQ/Id kUuux2ULlcM4IoLNh8FIBrwji3JW7cHK1e1P2/ce5FzIwBDgejcFsXyOLzYpNrwJ i6jwCJZJAU8nRMdPFA+/tvNZGvwOwxVI0/d/ZrR3bZj5Yckzb1KEkpBHgbtDPi+U WMdK6nAiqvnJWfx4maMjUtyRmwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFJAWbFi8 Sjf1Glrllv9cAUwF1zabMB8GA1UdIwQYMBaAFB7tJj8EKNhOP75RdT0W1LPWJ5fE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjVDMi83NzlEMDRBMDM2 NDExMUVCODQ5OUQyMTlDNEY5QUUwMi9IdTBtUHdRbzJFNF92bEYxUFJiVXM5WW5s OFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h1MG1Qd1FvMkU0X3ZsRjFQUmJVczlZbmw4US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0I1QzIvNzc5RDA0QTAzNjQxMTFFQjg0OTlEMjE5QzRGOUFFMDIvNTAxMEE1NUE4 QzY0MTFFRTlFNTg2OTY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnVsgwDQQCAAIwBwMFACQAx0AwDQYJKoZIhvcNAQELBQAD ggEBAIgXwsMQki79xWN+eLgrI632iLAcGFoItKr4tx9wpIfemsYpnh+0OgH51lNw fBUDjDEDyu3QzSBErG4irjgcbDFKYM1lwM7IishIKNCEmEHVH0md+44zVHXk8+w8 aPg4lnuUY3wo4c9KX1Le2eQuu7TZ/SZPoEst/rRZZLhbiykR4HkF7kPhgiHDveiC G81dtc9MLnzEP0V+pd27XQ+kkdQRRodj804ak6lazKj6bUfy8BttHwtiqAwFkQMI gO5MKq5EsFd5CGGiegkE3KiUibGywFKOoNk2M7ADEhn5NloEltEXSFwB4SOYQcN7 kij+EmXOVLQJkUTZHxUOzyuery4= -----END CERTIFICATE-----Generated at Sat May 10 10:36:16 2025 by rpki-client