$ rpki-client -vvf rpki.apnic.net/member_repository/A913CB5F/005E59ACC09211EC8044C164C4F9AE02/688AF35CC09511EC8CFFDB10C4F9AE02.roa File: 688AF35CC09511EC8CFFDB10C4F9AE02.roa (raw, json) Hash identifier: S7JF/bNkGQBKzWyyMCIfasqHndqaViHJP5nFlj8AfpU= Subject key identifier: E0:BD:E1:ED:ED:AF:8D:25:BF:1C:06:2C:A9:18:02:F2:AF:A9:2B:97 Certificate issuer: /CN=A913CB5F/serialNumber=F02A5D102F7F33B26111B4A28742F7BA2F1E9A99 Certificate serial: 0335 Authority key identifier: F0:2A:5D:10:2F:7F:33:B2:61:11:B4:A2:87:42:F7:BA:2F:1E:9A:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CpdEC9_M7JhEbSih0L3ui8empk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913CB5F/005E59ACC09211EC8044C164C4F9AE02/688AF35CC09511EC8CFFDB10C4F9AE02.roa Signing time: Mon 05 May 2025 01:06:41 +0000 ROA not before: Mon 05 May 2025 01:06:41 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 132372 IP address blocks: 103.186.116.0/24 maxlen: 24 103.186.117.0/24 maxlen: 24 2001:df0:a8c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913CB5F/005E59ACC09211EC8044C164C4F9AE02/8CpdEC9_M7JhEbSih0L3ui8empk.crl rsync://rpki.apnic.net/member_repository/A913CB5F/005E59ACC09211EC8044C164C4F9AE02/8CpdEC9_M7JhEbSih0L3ui8empk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CpdEC9_M7JhEbSih0L3ui8empk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 00:38:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 821 (0x335) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913CB5F, serialNumber=F02A5D102F7F33B26111B4A28742F7BA2F1E9A99 Validity Not Before: May 5 01:06:41 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68180f21-d5c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:d4:60:71:ec:78:b4:f8:df:d2:41:92:89:1c: b1:78:3c:74:2c:28:87:dd:f1:3f:1b:15:83:37:41: ae:3a:1a:c3:e8:a0:36:b7:03:21:15:e9:e8:bf:ed: 08:e6:3f:17:3c:38:fc:05:f2:74:6b:ce:7a:f1:ca: 1b:7c:4e:35:57:12:66:37:1f:79:21:ad:5c:fa:00: db:c1:68:13:c5:7e:16:7f:fd:8f:9d:d0:d2:09:24: 56:b7:e0:c0:58:b3:a2:46:4c:03:f7:f1:72:42:8e: 68:7b:09:34:97:98:6d:89:ed:8d:2d:e3:b7:63:a0: 9c:f9:7a:98:d0:4d:bf:b4:92:b1:98:fe:7a:73:08: a2:4f:8e:fa:a0:24:c9:27:53:c0:cf:c1:7e:20:a5: d5:a4:22:c8:6b:33:f7:1e:ef:8c:0b:f7:61:08:88: 38:d7:18:1a:b1:50:3f:b2:ae:ba:3a:ac:a8:e1:9d: 02:53:d8:7f:21:cb:c9:1f:bc:3e:bc:92:2f:23:9c: 14:f3:b5:0b:e0:c9:15:d1:70:41:8f:ce:ee:ba:36: ca:db:fe:67:47:4a:26:f8:10:84:bc:c2:c5:68:9a: f5:1a:4d:39:88:7b:3b:26:93:c6:4e:be:52:75:91: ec:32:73:b6:64:14:15:18:77:54:e3:39:77:dd:c2: b6:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:BD:E1:ED:ED:AF:8D:25:BF:1C:06:2C:A9:18:02:F2:AF:A9:2B:97 X509v3 Authority Key Identifier: keyid:F0:2A:5D:10:2F:7F:33:B2:61:11:B4:A2:87:42:F7:BA:2F:1E:9A:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913CB5F/005E59ACC09211EC8044C164C4F9AE02/8CpdEC9_M7JhEbSih0L3ui8empk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CpdEC9_M7JhEbSih0L3ui8empk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913CB5F/005E59ACC09211EC8044C164C4F9AE02/688AF35CC09511EC8CFFDB10C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.186.116.0/23 IPv6: 2001:df0:a8c0::/48 Signature Algorithm: sha256WithRSAEncryption 4b:ff:6a:9c:ca:b2:3a:f3:0e:b5:9d:17:cf:09:09:ec:bd:9f: af:f6:2f:d7:7b:1a:62:3e:44:e4:df:32:77:07:f6:de:d1:23: eb:71:45:fe:da:ba:06:3e:15:41:c7:0f:31:cf:b6:65:ee:b7: 70:23:4d:6a:a2:6d:73:6a:f0:8f:7c:3f:8e:7a:6d:19:6c:05: b9:9b:b5:29:b4:64:77:b8:d8:e0:b2:1c:8c:7c:f5:97:7b:02: 8f:9e:b8:74:72:69:b2:77:71:24:81:5a:e5:b7:79:87:c4:cf: be:22:b8:48:26:6f:b9:5f:99:16:2f:f0:ab:5a:38:f1:39:cb: 59:b0:7e:38:13:73:d7:0e:3a:4e:a9:4b:ba:e7:c6:b1:17:c7: 94:69:1a:6a:bf:bb:3b:2e:2e:ca:96:0a:03:87:9b:a4:c8:be: 9d:fc:9b:97:65:e0:66:2d:52:0e:fd:6a:2c:78:bc:90:75:c2: aa:80:44:2f:f5:33:c6:a6:78:c5:9d:de:3b:da:59:99:85:7b: 2f:eb:a4:b4:94:7a:8c:9b:3d:06:36:3a:03:ba:36:92:54:25: 2e:82:3e:aa:93:7d:08:68:36:34:c2:5b:a3:cd:2c:1f:a9:e5: 8c:4f:b3:9c:be:74:4c:e1:0a:ec:64:74:fb:32:98:92:c5:22: 94:61:85:3c -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAzUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0NCNUYxMTAvBgNVBAUTKEYwMkE1RDEwMkY3RjMzQjI2MTExQjRBMjg3NDJGN0JB MkYxRTlBOTkwHhcNMjUwNTA1MDEwNjQxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE4MGYyMS1kNWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA69Rgcex4tPjf0kGSiRyxeDx0LCiH3fE/GxWDN0GuOhrD6KA2twMhFenov+0I 5j8XPDj8BfJ0a8568cobfE41VxJmNx95Ia1c+gDbwWgTxX4Wf/2PndDSCSRWt+DA WLOiRkwD9/FyQo5oewk0l5htie2NLeO3Y6Cc+XqY0E2/tJKxmP56cwiiT476oCTJ J1PAz8F+IKXVpCLIazP3Hu+MC/dhCIg41xgasVA/sq66Oqyo4Z0CU9h/IcvJH7w+ vJIvI5wU87UL4MkV0XBBj87uujbK2/5nR0om+BCEvMLFaJr1Gk05iHs7JpPGTr5S dZHsMnO2ZBQVGHdU4zl33cK2+QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFOC94e3t r40lvxwGLKkYAvKvqSuXMB8GA1UdIwQYMBaAFPAqXRAvfzOyYRG0oodC97ovHpqZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQ0I1Ri8wMDVFNTlBQ0Mw OTIxMUVDODA0NEMxNjRDNEY5QUUwMi84Q3BkRUM5X003SmhFYlNpaDBMM3VpOGVt cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhDcGRFQzlfTTdKaEViU2loMEwzdWk4ZW1way5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0NCNUYvMDA1RTU5QUNDMDkyMTFFQzgwNDRDMTY0QzRGOUFFMDIvNjg4QUYzNUND MDk1MTFFQzhDRkZEQjEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnunQwDwQCAAIwCQMHACABDfCowDANBgkqhkiG9w0BAQsF AAOCAQEAS/9qnMqyOvMOtZ0XzwkJ7L2fr/Yv13saYj5E5N8ydwf23tEj63FF/tq6 Bj4VQccPMc+2Ze63cCNNaqJtc2rwj3w/jnptGWwFuZu1KbRkd7jY4LIcjHz1l3sC j564dHJpsndxJIFa5bd5h8TPviK4SCZvuV+ZFi/wq1o48TnLWbB+OBNz1w46TqlL uufGsRfHlGkaar+7Oy4uypYKA4ebpMi+nfybl2XgZi1SDv1qLHi8kHXCqoBEL/Uz xqZ4xZ3eO9pZmYV7L+uktJR6jJs9BjY6A7o2klQlLoI+qpN9CGg2NMJbo80sH6nl jE+znL50TOEK7GR0+zKYksUilGGFPA== -----END CERTIFICATE-----Generated at Sun May 11 14:03:56 2025 by rpki-client