$ rpki-client -vvf rpki.apnic.net/member_repository/A915ABD7/5F49AA68BEC411EC878CC166C4F9AE02/88F3C02C045611EFB93F1F33C4F9AE02.roa File: 88F3C02C045611EFB93F1F33C4F9AE02.roa (raw, json) Hash identifier: NYEcly+S03KH8Gz/ED4JBmnf9asUtp3vEim2ZrMueG0= Subject key identifier: 27:2F:95:DD:BD:38:4D:2A:FF:C6:57:D5:97:2E:CC:B8:35:F5:E2:F1 Certificate issuer: /CN=A915ABD7/serialNumber=DD8218C9B814AE85B9406536607250C7AAEEC809 Certificate serial: 034A Authority key identifier: DD:82:18:C9:B8:14:AE:85:B9:40:65:36:60:72:50:C7:AA:EE:C8:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3YIYybgUroW5QGU2YHJQx6ruyAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915ABD7/5F49AA68BEC411EC878CC166C4F9AE02/88F3C02C045611EFB93F1F33C4F9AE02.roa Signing time: Fri 09 May 2025 01:14:32 +0000 ROA not before: Fri 09 May 2025 01:14:32 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 142271 IP address blocks: 103.186.138.0/23 maxlen: 23 103.186.138.0/24 maxlen: 24 103.186.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915ABD7/5F49AA68BEC411EC878CC166C4F9AE02/3YIYybgUroW5QGU2YHJQx6ruyAk.crl rsync://rpki.apnic.net/member_repository/A915ABD7/5F49AA68BEC411EC878CC166C4F9AE02/3YIYybgUroW5QGU2YHJQx6ruyAk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3YIYybgUroW5QGU2YHJQx6ruyAk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 00:51:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 842 (0x34a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915ABD7, serialNumber=DD8218C9B814AE85B9406536607250C7AAEEC809 Validity Not Before: May 9 01:14:32 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681d56f8-3279 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:7a:ca:ab:1d:61:94:49:bd:1a:bd:1d:29:35: 12:f8:26:ec:4e:b3:43:9c:04:54:71:b0:21:40:45: 99:a6:17:4e:d9:0f:b6:54:7f:7e:71:6a:5b:ca:82: 55:b5:f0:05:da:9b:23:47:01:cb:64:a2:df:38:0c: cc:91:8d:ee:77:b5:85:0b:f9:ec:f2:bd:40:02:77: c8:9a:59:92:6f:e8:04:97:21:4e:c1:2f:c4:d9:3c: 6c:ed:a6:11:cd:23:f1:f9:9a:c3:b9:0e:9c:a1:95: df:3e:39:b2:a3:38:9a:af:e4:8d:4e:0a:dd:f9:a9: 0b:f5:fa:e6:0b:78:41:07:71:b9:f3:99:c0:a5:66: 0a:a7:61:d9:7a:79:81:f6:79:d7:bb:75:93:77:b1: 7c:75:77:8c:58:af:aa:51:0e:78:42:87:f6:e8:c1: 55:aa:4b:ed:02:03:8a:d3:3a:1d:31:75:95:89:fa: 41:e7:03:96:be:9d:53:00:12:3e:df:15:6c:8c:12: 60:a6:f8:46:89:7a:fe:1a:ba:05:00:39:9e:e3:3e: 91:23:da:19:4f:48:12:93:ce:d4:ef:9c:07:7b:39: 87:61:72:0d:c2:ae:9a:d3:26:63:20:7f:12:c4:73: c7:21:c7:e1:29:67:8f:08:74:77:67:9b:43:6e:7f: 55:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:2F:95:DD:BD:38:4D:2A:FF:C6:57:D5:97:2E:CC:B8:35:F5:E2:F1 X509v3 Authority Key Identifier: keyid:DD:82:18:C9:B8:14:AE:85:B9:40:65:36:60:72:50:C7:AA:EE:C8:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915ABD7/5F49AA68BEC411EC878CC166C4F9AE02/3YIYybgUroW5QGU2YHJQx6ruyAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3YIYybgUroW5QGU2YHJQx6ruyAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915ABD7/5F49AA68BEC411EC878CC166C4F9AE02/88F3C02C045611EFB93F1F33C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.186.138.0/23 Signature Algorithm: sha256WithRSAEncryption bd:e1:58:d3:4f:64:57:93:ea:2d:b8:81:1a:a1:b8:24:2e:ee: 14:09:7a:d6:54:55:c8:3d:7d:97:9d:54:02:4d:44:5b:47:d0: 49:89:52:3f:8e:00:1e:42:7f:2c:17:d2:9f:55:51:ae:d9:f8: 1b:2f:80:4c:bb:c9:fa:88:54:5b:e2:fc:a5:4f:d2:7e:bb:11: 03:a8:17:03:e4:16:13:0f:ce:b1:5d:0e:45:e8:84:7b:67:72: ff:28:20:b0:ff:bd:43:2d:c2:83:5a:f1:23:38:5d:34:f9:60: 06:b2:b2:25:35:89:07:41:bc:48:0d:15:3e:9e:d2:89:b8:2b: c8:7d:61:d1:02:e1:2c:bd:17:d3:e8:3f:9d:bf:6a:d4:db:a4: 8e:bf:1e:ee:52:7b:1d:9a:78:46:65:e0:bf:a1:75:90:21:0e: 7d:08:fc:b4:a5:26:cd:8b:fc:3a:a7:ad:3a:d0:93:f7:02:bd: ff:e7:db:dc:e9:c2:38:9a:a0:20:0d:65:42:29:7c:11:af:57: 04:fc:e3:41:17:18:18:23:1f:77:c9:d3:12:0d:62:f2:10:42: b2:06:4e:d6:f7:90:95:97:7f:42:42:58:be:01:a4:f4:e7:56: 01:9d:28:e8:6c:ca:74:21:48:74:28:af:64:eb:83:37:e8:cb: 16:0f:8d:15 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA0owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUFCRDcxMTAvBgNVBAUTKEREODIxOEM5QjgxNEFFODVCOTQwNjUzNjYwNzI1MEM3 QUFFRUM4MDkwHhcNMjUwNTA5MDExNDMyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFkNTZmOC0zMjc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsHrKqx1hlEm9Gr0dKTUS+CbsTrNDnARUcbAhQEWZphdO2Q+2VH9+cWpbyoJV tfAF2psjRwHLZKLfOAzMkY3ud7WFC/ns8r1AAnfImlmSb+gElyFOwS/E2Txs7aYR zSPx+ZrDuQ6coZXfPjmyoziar+SNTgrd+akL9frmC3hBB3G585nApWYKp2HZenmB 9nnXu3WTd7F8dXeMWK+qUQ54Qof26MFVqkvtAgOK0zodMXWVifpB5wOWvp1TABI+ 3xVsjBJgpvhGiXr+GroFADme4z6RI9oZT0gSk87U75wHezmHYXINwq6a0yZjIH8S xHPHIcfhKWePCHR3Z5tDbn9VrQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCcvld29 OE0q/8ZX1ZcuzLg19eLxMB8GA1UdIwQYMBaAFN2CGMm4FK6FuUBlNmByUMeq7sgJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QUJENy81RjQ5QUE2OEJF QzQxMUVDODc4Q0MxNjZDNEY5QUUwMi8zWUlZeWJnVXJvVzVRR1UyWUhKUXg2cnV5 QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNZSVl5YmdVcm9XNVFHVTJZSEpReDZydXlBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUFCRDcvNUY0OUFBNjhCRUM0MTFFQzg3OENDMTY2QzRGOUFFMDIvODhGM0MwMkMw NDU2MTFFRkI5M0YxRjMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnuoowDQYJKoZIhvcNAQELBQADggEBAL3hWNNPZFeT6i24 gRqhuCQu7hQJetZUVcg9fZedVAJNRFtH0EmJUj+OAB5CfywX0p9VUa7Z+BsvgEy7 yfqIVFvi/KVP0n67EQOoFwPkFhMPzrFdDkXohHtncv8oILD/vUMtwoNa8SM4XTT5 YAaysiU1iQdBvEgNFT6e0om4K8h9YdEC4Sy9F9PoP52/atTbpI6/Hu5Sex2aeEZl 4L+hdZAhDn0I/LSlJs2L/DqnrTrQk/cCvf/n29zpwjiaoCANZUIpfBGvVwT840EX GBgjH3fJ0xINYvIQQrIGTtb3kJWXf0JCWL4BpPTnVgGdKOhsynQhSHQor2Trgzfo yxYPjRU= -----END CERTIFICATE-----Generated at Wed May 14 04:39:11 2025 by rpki-client