$ rpki-client -vvf rpki.apnic.net/member_repository/A919690C/D3D5848C8FBA11EAA34AC072C4F9AE02/87818166020D11EF916F0D65C4F9AE02.roa File: 87818166020D11EF916F0D65C4F9AE02.roa (raw, json) Hash identifier: 4GMMhSURpIBkWAvEdhOIay2AAC4Jz1BwpUEUv1geigk= Subject key identifier: 4D:EC:A4:84:5C:B4:5F:BB:82:21:B3:A4:69:24:6E:D2:42:D0:C1:07 Certificate issuer: /CN=A919690C/serialNumber=2D58989048C219F01088AE72BFAE0970DF5DA636 Certificate serial: 097F Authority key identifier: 2D:58:98:90:48:C2:19:F0:10:88:AE:72:BF:AE:09:70:DF:5D:A6:36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LViYkEjCGfAQiK5yv64JcN9dpjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919690C/D3D5848C8FBA11EAA34AC072C4F9AE02/87818166020D11EF916F0D65C4F9AE02.roa Signing time: Wed 30 Apr 2025 19:59:21 +0000 ROA not before: Wed 30 Apr 2025 19:59:21 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 198247 IP address blocks: 103.85.129.0/24 maxlen: 24 119.160.236.0/24 maxlen: 24 119.160.237.0/24 maxlen: 24 119.160.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919690C/D3D5848C8FBA11EAA34AC072C4F9AE02/LViYkEjCGfAQiK5yv64JcN9dpjY.crl rsync://rpki.apnic.net/member_repository/A919690C/D3D5848C8FBA11EAA34AC072C4F9AE02/LViYkEjCGfAQiK5yv64JcN9dpjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LViYkEjCGfAQiK5yv64JcN9dpjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:21:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2431 (0x97f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919690C, serialNumber=2D58989048C219F01088AE72BFAE0970DF5DA636 Validity Not Before: Apr 30 19:59:21 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68128118-1c96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:06:41:1b:9e:e4:b4:26:03:bc:61:d3:c3:0d: 77:51:d8:2f:19:b0:9f:52:d5:4d:66:e0:e0:fa:3f: 4b:c7:c3:1d:12:a4:b0:73:2d:3e:55:8f:79:f5:93: 85:a9:02:76:85:a4:6e:63:c6:14:2d:0f:ae:32:67: 7b:08:26:91:0b:3a:fe:b7:79:6b:15:9a:83:76:46: 5d:ff:41:23:2d:43:63:01:01:14:23:96:1f:81:d3: 79:09:ad:d9:36:8a:69:33:e5:0f:13:85:f2:cc:48: 79:8c:90:7e:c6:a0:9c:1a:ed:bd:d2:e6:f6:79:43: cf:59:a8:39:e4:2f:f8:92:99:9a:b6:8c:44:ec:ba: 0e:a4:63:20:06:12:4c:94:33:32:6b:3f:fa:b9:1d: a7:3b:80:42:0e:39:d3:cf:bb:c5:7a:82:1e:ac:26: 2b:7c:31:0d:c6:77:44:64:db:b0:51:0e:5c:46:cd: d4:a0:35:2a:30:cc:bf:73:23:25:fc:a6:f8:f1:15: 93:61:de:5f:15:02:df:fe:80:40:08:b7:9c:0b:68: 88:c5:92:0b:bf:c5:dc:5a:21:e5:e7:cf:f7:be:fa: d2:22:cd:86:b3:62:bc:c9:bf:05:df:5b:13:c7:f6: 85:46:bb:a8:1b:46:bf:23:61:2b:76:59:d8:5d:89: 18:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:EC:A4:84:5C:B4:5F:BB:82:21:B3:A4:69:24:6E:D2:42:D0:C1:07 X509v3 Authority Key Identifier: keyid:2D:58:98:90:48:C2:19:F0:10:88:AE:72:BF:AE:09:70:DF:5D:A6:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919690C/D3D5848C8FBA11EAA34AC072C4F9AE02/LViYkEjCGfAQiK5yv64JcN9dpjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LViYkEjCGfAQiK5yv64JcN9dpjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919690C/D3D5848C8FBA11EAA34AC072C4F9AE02/87818166020D11EF916F0D65C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.85.129.0/24 119.160.236.0-119.160.238.255 Signature Algorithm: sha256WithRSAEncryption 53:f5:9b:4d:52:00:45:f7:bf:31:83:56:40:6c:e8:1b:6b:c3: 06:4b:b0:97:b5:d1:96:4a:57:1e:23:00:c3:11:5e:97:87:a3: 04:3a:51:d7:23:c5:bd:42:5b:2f:91:88:40:9a:e6:fa:09:85: 04:ab:69:3e:75:e6:ca:0d:03:b4:cc:83:d3:69:24:e7:dd:51: 81:1f:fb:f1:0f:53:f0:32:62:b6:26:35:35:e0:25:1f:89:d8: 57:d9:09:49:44:b3:eb:ca:c2:8a:18:6d:1b:5c:29:5d:d0:25: a6:fe:93:99:09:12:1d:ba:b0:23:ce:80:cd:64:c5:22:4a:03: e6:8d:54:9d:d5:3a:f9:1f:63:76:a7:27:e5:00:2b:fb:09:2c: aa:25:24:a8:b4:73:76:7a:c1:ff:5b:87:cd:80:ac:7f:91:2b: b2:d8:47:94:8b:b6:b3:b3:ea:60:58:84:dd:24:98:6e:9a:38: 14:d1:ea:9f:ad:4e:61:bc:58:74:ae:fd:1f:83:94:2c:fb:14: 6f:4f:81:b7:77:8c:a3:d1:b5:85:fc:c0:a2:6e:7e:19:02:3b: 22:46:2d:aa:b0:33:3c:4f:70:d7:9c:c6:6c:71:4e:8d:8c:b7: 33:24:e7:c2:76:92:69:2a:83:3f:31:9c:79:14:00:b2:47:c6: 27:93:d4:71 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICCX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY5MEMxMTAvBgNVBAUTKDJENTg5ODkwNDhDMjE5RjAxMDg4QUU3MkJGQUUwOTcw REY1REE2MzYwHhcNMjUwNDMwMTk1OTIxWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyODExOC0xYzk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwwZBG57ktCYDvGHTww13UdgvGbCfUtVNZuDg+j9Lx8MdEqSwcy0+VY959ZOF qQJ2haRuY8YULQ+uMmd7CCaRCzr+t3lrFZqDdkZd/0EjLUNjAQEUI5YfgdN5Ca3Z NoppM+UPE4XyzEh5jJB+xqCcGu290ub2eUPPWag55C/4kpmatoxE7LoOpGMgBhJM lDMyaz/6uR2nO4BCDjnTz7vFeoIerCYrfDENxndEZNuwUQ5cRs3UoDUqMMy/cyMl /Kb48RWTYd5fFQLf/oBACLecC2iIxZILv8XcWiHl58/3vvrSIs2Gs2K8yb8F31sT x/aFRruoG0a/I2ErdlnYXYkYfQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFE3spIRc tF+7giGzpGkkbtJC0MEHMB8GA1UdIwQYMBaAFC1YmJBIwhnwEIiucr+uCXDfXaY2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjkwQy9EM0Q1ODQ4QzhG QkExMUVBQTM0QUMwNzJDNEY5QUUwMi9MVmlZa0VqQ0dmQVFpSzV5djY0SmNOOWRw alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xWaVlrRWpDR2ZBUWlLNXl2NjRKY045ZHBqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTY5MEMvRDNENTg0OEM4RkJBMTFFQUEzNEFDMDcyQzRGOUFFMDIvODc4MTgxNjYw MjBEMTFFRjkxNkYwRDY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBABnVYEwDAMEAneg7AMEAHeg7jANBgkqhkiG9w0BAQsFAAOC AQEAU/WbTVIARfe/MYNWQGzoG2vDBkuwl7XRlkpXHiMAwxFel4ejBDpR1yPFvUJb L5GIQJrm+gmFBKtpPnXmyg0DtMyD02kk591RgR/78Q9T8DJitiY1NeAlH4nYV9kJ SUSz68rCihhtG1wpXdAlpv6TmQkSHbqwI86AzWTFIkoD5o1UndU6+R9jdqcn5QAr +wksqiUkqLRzdnrB/1uHzYCsf5ErsthHlIu2s7PqYFiE3SSYbpo4FNHqn61OYbxY dK79H4OULPsUb0+Bt3eMo9G1hfzAom5+GQI7IkYtqrAzPE9w15zGbHFOjYy3MyTn wnaSaSqDPzGceRQAskfGJ5PUcQ== -----END CERTIFICATE-----Generated at Fri Jul 4 08:24:00 2025 by rpki-client