$ rpki-client -vvf rpki.apnic.net/member_repository/A915ABD7/5F49AA68BEC411EC878CC166C4F9AE02/A4F1EAECC09211EC8950E57AC4F9AE02.roa File: A4F1EAECC09211EC8950E57AC4F9AE02.roa (raw, json) Hash identifier: /dpglo9CFx73F4sqDk7WZ21gpjG8xDFFFJkPbHJ8/V0= Subject key identifier: 32:A9:45:7A:9C:78:7D:9E:87:0E:0B:8E:53:0F:58:2E:68:93:DE:31 Certificate issuer: /CN=A915ABD7/serialNumber=DD8218C9B814AE85B9406536607250C7AAEEC809 Certificate serial: 0349 Authority key identifier: DD:82:18:C9:B8:14:AE:85:B9:40:65:36:60:72:50:C7:AA:EE:C8:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3YIYybgUroW5QGU2YHJQx6ruyAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915ABD7/5F49AA68BEC411EC878CC166C4F9AE02/A4F1EAECC09211EC8950E57AC4F9AE02.roa Signing time: Fri 09 May 2025 01:14:31 +0000 ROA not before: Fri 09 May 2025 01:14:31 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 135325 IP address blocks: 103.186.138.0/23 maxlen: 23 103.186.138.0/24 maxlen: 24 103.186.139.0/24 maxlen: 24 2001:df0:a940::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915ABD7/5F49AA68BEC411EC878CC166C4F9AE02/3YIYybgUroW5QGU2YHJQx6ruyAk.crl rsync://rpki.apnic.net/member_repository/A915ABD7/5F49AA68BEC411EC878CC166C4F9AE02/3YIYybgUroW5QGU2YHJQx6ruyAk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3YIYybgUroW5QGU2YHJQx6ruyAk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 01:04:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 841 (0x349) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915ABD7, serialNumber=DD8218C9B814AE85B9406536607250C7AAEEC809 Validity Not Before: May 9 01:14:31 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681d56f7-c388 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:1c:95:fc:f6:d4:65:57:72:d8:09:5d:97:d7: c0:b0:2d:89:83:3a:42:3b:0c:ec:6f:41:69:ca:21: 3f:b5:d4:8b:0d:bc:d6:7b:a2:7e:88:04:5a:3d:16: f2:b7:21:0c:d2:10:10:a1:47:38:01:43:f0:36:93: b3:74:e1:e0:71:96:e4:ee:6c:14:e5:76:1e:0b:f6: 57:7e:15:06:43:44:ae:a1:ea:3a:6a:e5:90:e0:4f: 69:07:c3:75:7d:84:d7:b0:d4:39:f1:d6:da:ef:c6: 9f:98:56:1c:12:e2:02:36:ff:e0:af:e1:8e:73:3d: ad:db:e9:2e:5c:0f:2e:16:83:83:d3:dd:34:bf:be: ab:ae:e7:07:a1:80:2b:1b:0b:9f:8c:06:65:03:2e: 4a:c9:16:74:6f:ed:db:19:59:8d:5b:06:78:70:80: cd:3c:92:4e:6f:ec:f0:a4:fb:3e:40:e7:d6:f7:bf: 13:ce:f1:bb:69:88:d0:19:88:d6:b4:1a:9c:c5:8f: 98:ed:02:ea:6e:10:83:68:df:39:5b:b6:1f:c2:a7: 9e:bb:b4:da:f6:39:8d:59:e6:51:3a:29:95:1b:8f: 03:6d:c3:b6:90:c0:33:ba:b6:fd:c7:e8:96:3c:b0: 1d:6e:e5:4e:7b:b1:2d:32:af:bb:83:c5:d0:e6:27: ce:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:A9:45:7A:9C:78:7D:9E:87:0E:0B:8E:53:0F:58:2E:68:93:DE:31 X509v3 Authority Key Identifier: keyid:DD:82:18:C9:B8:14:AE:85:B9:40:65:36:60:72:50:C7:AA:EE:C8:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915ABD7/5F49AA68BEC411EC878CC166C4F9AE02/3YIYybgUroW5QGU2YHJQx6ruyAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3YIYybgUroW5QGU2YHJQx6ruyAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915ABD7/5F49AA68BEC411EC878CC166C4F9AE02/A4F1EAECC09211EC8950E57AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.186.138.0/23 IPv6: 2001:df0:a940::/48 Signature Algorithm: sha256WithRSAEncryption 71:1c:c9:16:e4:00:d9:81:f0:42:f0:d7:47:ce:34:04:46:9e: 84:c5:34:08:e6:71:a8:41:35:33:05:e3:0d:4b:24:bc:b1:fd: 3d:ab:b4:2c:8a:94:ca:07:38:8c:61:1a:93:e9:2e:d4:c1:59: c0:04:74:58:cc:a2:b9:e8:5f:0d:fa:d9:84:9a:eb:57:6c:48: 73:62:d0:54:d4:94:e5:42:37:e4:20:9b:19:1f:71:73:32:91: 40:32:12:ce:2a:54:d0:10:e9:f9:0e:5c:e9:28:06:31:01:9f: 0e:61:42:49:02:ee:6c:d9:65:8f:16:77:28:2c:60:62:d3:1c: 2e:2c:9a:75:2b:4b:3d:3c:d3:c7:98:21:47:7a:13:96:4d:4b: 78:86:22:44:67:12:2b:08:71:4f:2e:2e:cc:0e:c6:ee:ce:d0: 0d:27:d1:e4:95:04:9a:56:99:0d:26:95:d2:29:e6:e7:af:87: 2f:e6:6a:21:82:1c:a5:14:78:09:6c:b9:8f:3b:b4:94:97:b2: 7f:54:f7:64:d8:35:9a:80:4a:02:e8:43:66:24:51:5c:13:5e: 4b:26:a0:aa:22:ae:27:05:b5:c7:29:81:1a:50:e7:d6:24:89: aa:ef:b0:b7:1c:95:62:95:b8:44:e9:ff:3a:9c:3b:a9:60:b0: 1c:1d:76:15 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICA0kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUFCRDcxMTAvBgNVBAUTKEREODIxOEM5QjgxNEFFODVCOTQwNjUzNjYwNzI1MEM3 QUFFRUM4MDkwHhcNMjUwNTA5MDExNDMxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFkNTZmNy1jMzg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ByV/PbUZVdy2Aldl9fAsC2JgzpCOwzsb0FpyiE/tdSLDbzWe6J+iARaPRby tyEM0hAQoUc4AUPwNpOzdOHgcZbk7mwU5XYeC/ZXfhUGQ0Suoeo6auWQ4E9pB8N1 fYTXsNQ58dba78afmFYcEuICNv/gr+GOcz2t2+kuXA8uFoOD0900v76rrucHoYAr GwufjAZlAy5KyRZ0b+3bGVmNWwZ4cIDNPJJOb+zwpPs+QOfW978TzvG7aYjQGYjW tBqcxY+Y7QLqbhCDaN85W7Yfwqeeu7Ta9jmNWeZROimVG48DbcO2kMAzurb9x+iW PLAdbuVOe7EtMq+7g8XQ5ifO0QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDKpRXqc eH2ehw4LjlMPWC5ok94xMB8GA1UdIwQYMBaAFN2CGMm4FK6FuUBlNmByUMeq7sgJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QUJENy81RjQ5QUE2OEJF QzQxMUVDODc4Q0MxNjZDNEY5QUUwMi8zWUlZeWJnVXJvVzVRR1UyWUhKUXg2cnV5 QWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNZSVl5YmdVcm9XNVFHVTJZSEpReDZydXlBay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUFCRDcvNUY0OUFBNjhCRUM0MTFFQzg3OENDMTY2QzRGOUFFMDIvQTRGMUVBRUND MDkyMTFFQzg5NTBFNTdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnuoowDwQCAAIwCQMHACABDfCpQDANBgkqhkiG9w0BAQsF AAOCAQEAcRzJFuQA2YHwQvDXR840BEaehMU0COZxqEE1MwXjDUskvLH9Pau0LIqU ygc4jGEak+ku1MFZwAR0WMyiuehfDfrZhJrrV2xIc2LQVNSU5UI35CCbGR9xczKR QDISzipU0BDp+Q5c6SgGMQGfDmFCSQLubNlljxZ3KCxgYtMcLiyadStLPTzTx5gh R3oTlk1LeIYiRGcSKwhxTy4uzA7G7s7QDSfR5JUEmlaZDSaV0inm56+HL+ZqIYIc pRR4CWy5jzu0lJeyf1T3ZNg1moBKAuhDZiRRXBNeSyagqiKuJwW1xymBGlDn1iSJ qu+wtxyVYpW4ROn/Opw7qWCwHB12FQ== -----END CERTIFICATE-----Generated at Thu May 15 22:23:03 2025 by rpki-client