$ rpki-client -vvf rpki.apnic.net/member_repository/A9149B61/7616D4FC2ACD11EEB7222C3CC4F9AE02/10F1A0582B8511EEA7FF697BC4F9AE02.roa File: 10F1A0582B8511EEA7FF697BC4F9AE02.roa (raw, json) Hash identifier: imnNT9qYRRIcc5JHDTtnRt4iRKv++5OKcbvGmRUGbZg= Subject key identifier: 1F:10:42:56:A3:5D:4E:7A:3D:4E:4E:97:31:AF:43:26:56:F4:B1:07 Certificate issuer: /CN=A9149B61/serialNumber=E3E100F804013A05F922EE11CB4E0ABEA6C22B98 Certificate serial: 0157 Authority key identifier: E3:E1:00:F8:04:01:3A:05:F9:22:EE:11:CB:4E:0A:BE:A6:C2:2B:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4-EA-AQBOgX5Iu4Ry04KvqbCK5g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149B61/7616D4FC2ACD11EEB7222C3CC4F9AE02/10F1A0582B8511EEA7FF697BC4F9AE02.roa Signing time: Wed 07 May 2025 03:41:11 +0000 ROA not before: Wed 07 May 2025 03:41:11 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 134829 IP address blocks: 103.186.86.0/24 maxlen: 24 103.186.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149B61/7616D4FC2ACD11EEB7222C3CC4F9AE02/4-EA-AQBOgX5Iu4Ry04KvqbCK5g.crl rsync://rpki.apnic.net/member_repository/A9149B61/7616D4FC2ACD11EEB7222C3CC4F9AE02/4-EA-AQBOgX5Iu4Ry04KvqbCK5g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4-EA-AQBOgX5Iu4Ry04KvqbCK5g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 03:30:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 343 (0x157) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149B61, serialNumber=E3E100F804013A05F922EE11CB4E0ABEA6C22B98 Validity Not Before: May 7 03:41:11 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=681ad656-81ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:05:67:02:ba:16:ac:0e:7c:3b:5e:9f:45:49: bc:6c:23:98:e8:27:ca:d4:23:06:9d:2f:9b:80:f3: 25:c7:c2:b6:4c:cd:5c:90:10:b4:f0:15:e5:ed:90: b7:11:92:ea:95:20:21:85:a0:6d:54:c4:df:b5:ef: a1:bb:6a:ae:1a:c6:6d:4e:6b:df:cb:14:a7:b1:ff: cb:4a:fd:94:5c:d4:fd:b5:ba:9b:69:ec:a1:13:09: a8:e6:b0:d9:6e:7e:fa:3f:3f:83:f3:ef:9e:11:b5: d1:d7:a2:5f:5c:b3:f5:d3:1b:57:6b:c0:d8:62:f2: a7:55:9c:d0:fb:82:9a:e4:0d:b3:49:b0:c2:f4:1e: 3e:9a:a3:a0:9e:81:ef:de:00:b3:2f:05:25:ad:53: 7f:cc:41:0f:d5:f9:6a:52:3f:61:c4:d1:11:c1:c8: 0d:3b:47:ab:d1:90:cd:47:46:07:e8:53:57:b1:cc: 6c:a0:fb:63:16:d5:49:86:6a:50:2c:37:9a:66:ed: 76:d0:a6:32:18:10:e8:4f:bf:1f:23:f3:88:90:62: bf:ea:44:a1:b3:e2:92:15:18:f5:98:22:f9:fc:9c: e6:c2:92:c1:6e:a2:77:13:1f:a2:f6:d8:c3:19:00: 8d:f3:62:46:67:84:0c:3f:e8:cb:d6:d4:fb:01:46: 52:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:10:42:56:A3:5D:4E:7A:3D:4E:4E:97:31:AF:43:26:56:F4:B1:07 X509v3 Authority Key Identifier: keyid:E3:E1:00:F8:04:01:3A:05:F9:22:EE:11:CB:4E:0A:BE:A6:C2:2B:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149B61/7616D4FC2ACD11EEB7222C3CC4F9AE02/4-EA-AQBOgX5Iu4Ry04KvqbCK5g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4-EA-AQBOgX5Iu4Ry04KvqbCK5g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149B61/7616D4FC2ACD11EEB7222C3CC4F9AE02/10F1A0582B8511EEA7FF697BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.186.86.0/23 Signature Algorithm: sha256WithRSAEncryption 15:44:b7:3e:58:26:fa:78:d3:ef:c9:db:9a:3b:37:93:61:2b: a7:23:9c:28:27:b4:df:55:16:78:32:42:f2:23:34:f7:cf:71: 0e:23:23:e1:50:2f:ac:70:0b:f9:58:ac:93:e2:64:7e:15:95: c5:f5:21:07:f0:7f:63:b9:ec:6d:93:d7:d1:b4:fa:86:d7:f1: 75:cb:e2:2d:e2:30:b9:4d:92:1c:63:7e:e6:7b:d4:4c:7d:04: 20:c7:6a:9b:fd:06:3d:67:fe:c3:6b:4c:92:97:cf:73:f1:7f: d0:30:f8:ff:cc:14:aa:66:fd:42:d5:2e:bf:06:fd:08:42:bf: 19:22:46:cc:9a:66:dc:35:9c:c1:d5:54:cd:be:da:59:4b:50: 80:a0:00:e4:d1:df:29:35:63:8e:66:9f:f2:da:cf:4b:71:49: 00:11:4c:62:c2:a3:c4:c5:f0:ee:75:7a:5d:5a:f1:e4:0e:56: 7a:e5:84:a8:37:a1:18:eb:81:7a:69:e0:b6:14:61:69:c5:bb: f2:96:10:83:13:59:74:cf:f5:56:71:e2:5c:4e:e0:85:d3:f3: 55:f2:db:38:e9:df:9f:f0:43:08:62:50:33:47:48:56:23:39: 43:91:3f:a8:76:e2:56:45:81:6b:75:ba:26:0b:58:9a:17:97: f9:49:29:6f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAVcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlCNjExMTAvBgNVBAUTKEUzRTEwMEY4MDQwMTNBMDVGOTIyRUUxMUNCNEUwQUJF QTZDMjJCOTgwHhcNMjUwNTA3MDM0MTExWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFhZDY1Ni04MWVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApAVnAroWrA58O16fRUm8bCOY6CfK1CMGnS+bgPMlx8K2TM1ckBC08BXl7ZC3 EZLqlSAhhaBtVMTfte+hu2quGsZtTmvfyxSnsf/LSv2UXNT9tbqbaeyhEwmo5rDZ bn76Pz+D8++eEbXR16JfXLP10xtXa8DYYvKnVZzQ+4Ka5A2zSbDC9B4+mqOgnoHv 3gCzLwUlrVN/zEEP1flqUj9hxNERwcgNO0er0ZDNR0YH6FNXscxsoPtjFtVJhmpQ LDeaZu120KYyGBDoT78fI/OIkGK/6kShs+KSFRj1mCL5/JzmwpLBbqJ3Ex+i9tjD GQCN82JGZ4QMP+jL1tT7AUZSpwIDAQABo4IClTCCApEwHQYDVR0OBBYEFB8QQlaj XU56PU5OlzGvQyZW9LEHMB8GA1UdIwQYMBaAFOPhAPgEAToF+SLuEctOCr6mwiuY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUI2MS83NjE2RDRGQzJB Q0QxMUVFQjcyMjJDM0NDNEY5QUUwMi80LUVBLUFRQk9nWDVJdTRSeTA0S3ZxYkNL NWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQtRUEtQVFCT2dYNUl1NFJ5MDRLdnFiQ0s1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlCNjEvNzYxNkQ0RkMyQUNEMTFFRUI3MjIyQzNDQzRGOUFFMDIvMTBGMUEwNTgy Qjg1MTFFRUE3RkY2OTdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnulYwDQYJKoZIhvcNAQELBQADggEBABVEtz5YJvp40+/J 25o7N5NhK6cjnCgntN9VFngyQvIjNPfPcQ4jI+FQL6xwC/lYrJPiZH4VlcX1IQfw f2O57G2T19G0+obX8XXL4i3iMLlNkhxjfuZ71Ex9BCDHapv9Bj1n/sNrTJKXz3Px f9Aw+P/MFKpm/ULVLr8G/QhCvxkiRsyaZtw1nMHVVM2+2llLUICgAOTR3yk1Y45m n/Laz0txSQARTGLCo8TF8O51el1a8eQOVnrlhKg3oRjrgXpp4LYUYWnFu/KWEIMT WXTP9VZx4lxO4IXT81Xy2zjp35/wQwhiUDNHSFYjOUORP6h24lZFgWt1uiYLWJoX l/lJKW8= -----END CERTIFICATE-----Generated at Fri May 16 00:52:48 2025 by rpki-client