$ rpki-client -vvf rpki.apnic.net/member_repository/A9175155/3744B3C4B02811EB9D27891AC4F9AE02/86F4D41881C811ECB5F90D48C4F9AE02.roa File: 86F4D41881C811ECB5F90D48C4F9AE02.roa (raw, json) Hash identifier: 7ut9o3eElxzFIAxqT3mKev4l3ztho9GK4MCuBdiUU04= Subject key identifier: 54:93:E8:E7:20:70:90:9B:D7:DD:CA:04:B5:B0:75:2B:16:A0:EC:43 Certificate issuer: /CN=A9175155/serialNumber=80084A34FD4F3B932C092182407B8905D9406500 Certificate serial: 061C Authority key identifier: 80:08:4A:34:FD:4F:3B:93:2C:09:21:82:40:7B:89:05:D9:40:65:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gAhKNP1PO5MsCSGCQHuJBdlAZQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175155/3744B3C4B02811EB9D27891AC4F9AE02/86F4D41881C811ECB5F90D48C4F9AE02.roa Signing time: Mon 28 Apr 2025 23:34:52 +0000 ROA not before: Mon 28 Apr 2025 23:34:52 +0000 ROA not after: Thu 28 Aug 2025 00:00:00 +0000 asID: 138665 IP address blocks: 103.136.0.0/22 maxlen: 22 103.136.0.0/24 maxlen: 24 103.136.1.0/24 maxlen: 24 2404:8940::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175155/3744B3C4B02811EB9D27891AC4F9AE02/gAhKNP1PO5MsCSGCQHuJBdlAZQA.crl rsync://rpki.apnic.net/member_repository/A9175155/3744B3C4B02811EB9D27891AC4F9AE02/gAhKNP1PO5MsCSGCQHuJBdlAZQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gAhKNP1PO5MsCSGCQHuJBdlAZQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 22:44:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1564 (0x61c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175155, serialNumber=80084A34FD4F3B932C092182407B8905D9406500 Validity Not Before: Apr 28 23:34:52 2025 GMT Not After : Aug 28 00:00:00 2025 GMT Subject: CN=6810109b-d58d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:94:15:5b:93:07:64:c2:b0:ba:01:46:50:3f: fd:3e:41:cd:73:b9:fd:4a:08:98:1e:66:02:a1:61: 1f:8e:d4:e6:96:25:b3:14:1f:19:42:b1:77:d8:35: c0:ec:76:68:e1:0f:20:ef:eb:7d:68:b8:fe:0f:66: fb:c2:02:33:11:17:dc:a1:bf:5f:ba:59:62:6a:63: 03:89:8f:14:fb:7e:9f:3f:65:7b:87:24:f5:d1:10: f9:38:47:fd:39:80:d2:92:c0:c9:4d:f4:8e:b6:cf: 13:2f:74:1e:6b:d8:1e:b5:d9:2a:c7:06:8b:d3:75: de:19:10:14:4e:31:cb:6b:08:b8:52:0d:45:ea:d7: 56:70:24:3f:d4:c0:00:58:40:30:da:99:22:21:21: af:25:b7:4f:ed:e2:27:77:64:3a:a5:2d:2b:73:58: 01:4e:6a:7b:37:12:ba:0e:1b:01:a2:74:dc:09:62: c7:ad:24:b0:11:3a:6f:07:59:cd:7b:db:6c:66:d9: c3:dd:41:19:04:68:11:6f:66:a7:b1:2d:8b:74:08: 74:8f:74:9f:37:c3:2e:55:9e:70:16:8d:8e:4f:94: 0b:5b:f0:63:8d:6c:57:5c:7a:50:2f:c3:a8:5c:2e: d9:80:7a:3b:42:a3:a9:39:6c:78:80:b4:7f:a8:73: 69:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:93:E8:E7:20:70:90:9B:D7:DD:CA:04:B5:B0:75:2B:16:A0:EC:43 X509v3 Authority Key Identifier: keyid:80:08:4A:34:FD:4F:3B:93:2C:09:21:82:40:7B:89:05:D9:40:65:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175155/3744B3C4B02811EB9D27891AC4F9AE02/gAhKNP1PO5MsCSGCQHuJBdlAZQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gAhKNP1PO5MsCSGCQHuJBdlAZQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175155/3744B3C4B02811EB9D27891AC4F9AE02/86F4D41881C811ECB5F90D48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.136.0.0/22 IPv6: 2404:8940::/48 Signature Algorithm: sha256WithRSAEncryption 61:78:aa:1d:70:c8:64:c7:44:4f:36:fa:af:41:65:1a:f4:61: de:31:71:bc:0c:8c:87:a0:db:43:24:54:61:b8:b2:d8:80:5c: 96:ec:09:bd:36:16:c8:45:96:78:2d:a4:dc:82:59:a7:ee:ee: be:e2:fe:a0:98:2a:5a:96:37:9f:20:bd:24:cc:ae:11:e8:49: c9:6c:d1:af:22:b1:f2:99:fa:66:59:46:61:78:05:13:eb:cc: 02:cb:b6:a8:be:3e:75:cb:1b:b1:c8:c5:98:ea:f6:7d:72:83: ee:ec:6d:3a:8e:04:49:97:e6:00:7b:e5:37:49:cf:3f:c4:b6: 95:1f:b5:26:03:68:f6:2b:09:f6:e1:d2:7a:a1:5d:0f:3c:1a: b7:05:1e:97:ce:4b:19:d4:31:9b:cd:1e:5e:fa:97:2b:a3:12: 64:f8:75:60:04:a8:50:ee:51:05:b5:eb:7f:1d:81:de:a6:23: d4:94:71:28:d3:2f:da:52:46:17:18:85:5c:1f:79:f7:64:d2: 0f:18:ea:b3:37:4b:e2:12:b9:d0:10:70:6c:cc:17:1f:15:55: 0f:5d:a3:24:64:ab:a5:d9:45:2a:15:22:2a:54:98:a9:df:c6: 07:c3:66:42:92:a6:a2:78:61:77:33:53:fb:c6:fb:44:4f:90: f7:dd:59:32 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBhwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzUxNTUxMTAvBgNVBAUTKDgwMDg0QTM0RkQ0RjNCOTMyQzA5MjE4MjQwN0I4OTA1 RDk0MDY1MDAwHhcNMjUwNDI4MjMzNDUyWhcNMjUwODI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODEwMTA5Yi1kNThkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAypQVW5MHZMKwugFGUD/9PkHNc7n9SgiYHmYCoWEfjtTmliWzFB8ZQrF32DXA 7HZo4Q8g7+t9aLj+D2b7wgIzERfcob9fulliamMDiY8U+36fP2V7hyT10RD5OEf9 OYDSksDJTfSOts8TL3Qea9getdkqxwaL03XeGRAUTjHLawi4Ug1F6tdWcCQ/1MAA WEAw2pkiISGvJbdP7eInd2Q6pS0rc1gBTmp7NxK6DhsBonTcCWLHrSSwETpvB1nN e9tsZtnD3UEZBGgRb2ansS2LdAh0j3SfN8MuVZ5wFo2OT5QLW/BjjWxXXHpQL8Oo XC7ZgHo7QqOpOWx4gLR/qHNpmQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFFST6Ocg cJCb193KBLWwdSsWoOxDMB8GA1UdIwQYMBaAFIAISjT9TzuTLAkhgkB7iQXZQGUA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTE1NS8zNzQ0QjNDNEIw MjgxMUVCOUQyNzg5MUFDNEY5QUUwMi9nQWhLTlAxUE81TXNDU0dDUUh1SkJkbEFa UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dBaEtOUDFQTzVNc0NTR0NRSHVKQmRsQVpRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzUxNTUvMzc0NEIzQzRCMDI4MTFFQjlEMjc4OTFBQzRGOUFFMDIvODZGNEQ0MTg4 MUM4MTFFQ0I1RjkwRDQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAJniAAwDwQCAAIwCQMHACQEiUAAADANBgkqhkiG9w0BAQsF AAOCAQEAYXiqHXDIZMdETzb6r0FlGvRh3jFxvAyMh6DbQyRUYbiy2IBcluwJvTYW yEWWeC2k3IJZp+7uvuL+oJgqWpY3nyC9JMyuEehJyWzRryKx8pn6ZllGYXgFE+vM Asu2qL4+dcsbscjFmOr2fXKD7uxtOo4ESZfmAHvlN0nPP8S2lR+1JgNo9isJ9uHS eqFdDzwatwUel85LGdQxm80eXvqXK6MSZPh1YASoUO5RBbXrfx2B3qYj1JRxKNMv 2lJGFxiFXB9592TSDxjqszdL4hK50BBwbMwXHxVVD12jJGSrpdlFKhUiKlSYqd/G B8NmQpKmonhhdzNT+8b7RE+Q991ZMg== -----END CERTIFICATE-----Generated at Wed May 14 20:57:33 2025 by rpki-client