$ rpki-client -vvf rpki.apnic.net/member_repository/A91765CB/695515E0062811EEA714C263C4F9AE02/5CBE3872145C11F0BFD6B347C4F9AE02.roa File: 5CBE3872145C11F0BFD6B347C4F9AE02.roa (raw, json) Hash identifier: wN+RYivC51/sVMn5qM1gC8zTEDi66N47MLSR9Ot7lLw= Subject key identifier: 94:ED:E7:E1:F8:A5:3C:4C:A4:ED:0B:DD:B4:36:E8:03:9F:55:FE:D9 Certificate issuer: /CN=A91765CB/serialNumber=D19D21F65A4C93CD36C3073302130F4E65B7F0E9 Certificate serial: 0165 Authority key identifier: D1:9D:21:F6:5A:4C:93:CD:36:C3:07:33:02:13:0F:4E:65:B7:F0:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Z0h9lpMk802wwczAhMPTmW38Ok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91765CB/695515E0062811EEA714C263C4F9AE02/5CBE3872145C11F0BFD6B347C4F9AE02.roa Signing time: Tue 08 Apr 2025 09:32:18 +0000 ROA not before: Tue 08 Apr 2025 09:32:18 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 55501 IP address blocks: 103.155.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91765CB/695515E0062811EEA714C263C4F9AE02/0Z0h9lpMk802wwczAhMPTmW38Ok.crl rsync://rpki.apnic.net/member_repository/A91765CB/695515E0062811EEA714C263C4F9AE02/0Z0h9lpMk802wwczAhMPTmW38Ok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Z0h9lpMk802wwczAhMPTmW38Ok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:06:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 357 (0x165) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91765CB, serialNumber=D19D21F65A4C93CD36C3073302130F4E65B7F0E9 Validity Not Before: Apr 8 09:32:18 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=67f4ed21-2e91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:4c:ba:a0:cd:98:a6:33:fc:c9:93:99:4a:46: cd:c2:8e:4f:ae:c1:7b:63:ce:56:b5:05:56:e2:36: 79:a7:dc:6b:dc:e5:0c:e4:ce:3a:ec:db:b7:2a:f9: 0e:00:06:b9:9b:5d:80:ed:f5:cf:cc:fd:68:8f:b2: e6:ae:9f:19:78:d6:b9:4b:0f:35:82:11:81:43:ff: 5e:dc:b8:5b:a6:6e:25:02:b2:f9:e4:f7:d6:0e:42: 52:4f:16:2c:41:30:12:48:fe:ea:6d:9c:4e:67:1f: 3a:00:b1:c5:18:87:b4:e2:dd:42:cb:d2:9a:6f:1c: 36:96:87:79:36:61:a3:d0:d0:03:c2:98:cf:87:c9: 68:28:11:45:41:96:d7:6e:ef:2d:b9:82:2e:66:51: 62:64:a3:e2:21:32:7f:78:35:e4:ea:1a:f4:c5:ff: 53:fb:fb:d8:ce:06:68:bd:41:87:12:1b:cd:ec:ff: 6b:73:fe:44:53:87:89:df:98:50:3d:e3:54:14:ca: 0b:55:21:7e:41:21:7e:27:bf:cb:3c:ef:fb:49:ee: a8:eb:44:86:6d:33:97:a8:d8:57:71:04:7b:6d:de: b9:f0:48:db:8a:51:e4:43:5e:38:8b:86:bc:ee:01: ab:c7:15:3d:6b:64:e4:2f:2f:60:93:4a:9e:ab:05: bb:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:ED:E7:E1:F8:A5:3C:4C:A4:ED:0B:DD:B4:36:E8:03:9F:55:FE:D9 X509v3 Authority Key Identifier: keyid:D1:9D:21:F6:5A:4C:93:CD:36:C3:07:33:02:13:0F:4E:65:B7:F0:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91765CB/695515E0062811EEA714C263C4F9AE02/0Z0h9lpMk802wwczAhMPTmW38Ok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Z0h9lpMk802wwczAhMPTmW38Ok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91765CB/695515E0062811EEA714C263C4F9AE02/5CBE3872145C11F0BFD6B347C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.155.63.0/24 Signature Algorithm: sha256WithRSAEncryption c8:eb:48:6e:88:c7:2f:c0:ea:33:83:85:32:c8:29:59:20:1e: 6d:30:31:0f:20:19:cc:b7:9f:20:fb:14:9d:47:06:d1:04:05: b8:21:ef:25:aa:8b:63:d4:8c:f1:dd:e1:5f:27:d8:35:0c:33: e1:37:e6:df:37:a0:21:af:3a:ae:df:65:e5:b5:a0:f7:3b:be: a7:e8:1b:4e:89:32:45:78:6f:ce:f4:3d:49:c7:3f:6d:dc:77: fd:61:cd:9f:3e:d5:96:bb:68:0d:5f:c1:98:3e:91:be:6f:42: f7:d1:ef:c0:68:b9:f6:91:a0:bf:c5:02:ce:ec:ce:7b:fa:54: b7:73:7d:e3:8e:74:a2:76:ec:98:34:47:ca:01:6d:a8:96:36: 58:0f:a9:72:df:94:62:ed:08:a6:d7:8f:f3:e5:52:48:56:4f: da:70:50:93:16:d9:c5:68:b9:cf:1e:1d:71:67:77:0f:a8:39: 66:7f:95:01:e8:dd:74:32:ed:4d:19:95:ae:fd:88:45:14:2c: 3e:74:70:b2:b1:bd:2f:3c:a7:6a:91:1b:68:54:94:38:1f:b8: bd:0c:4f:2f:92:8c:1a:49:f3:17:51:53:7c:fd:e6:77:86:6b: ac:8a:0f:f6:6c:33:03:a8:76:6b:be:17:7d:15:0b:37:27:dd: 2c:5d:7e:0f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzY1Q0IxMTAvBgNVBAUTKEQxOUQyMUY2NUE0QzkzQ0QzNkMzMDczMzAyMTMwRjRF NjVCN0YwRTkwHhcNMjUwNDA4MDkzMjE4WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y0ZWQyMS0yZTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxEy6oM2YpjP8yZOZSkbNwo5PrsF7Y85WtQVW4jZ5p9xr3OUM5M467Nu3KvkO AAa5m12A7fXPzP1oj7Lmrp8ZeNa5Sw81ghGBQ/9e3Lhbpm4lArL55PfWDkJSTxYs QTASSP7qbZxOZx86ALHFGIe04t1Cy9Kabxw2lod5NmGj0NADwpjPh8loKBFFQZbX bu8tuYIuZlFiZKPiITJ/eDXk6hr0xf9T+/vYzgZovUGHEhvN7P9rc/5EU4eJ35hQ PeNUFMoLVSF+QSF+J7/LPO/7Se6o60SGbTOXqNhXcQR7bd658EjbilHkQ144i4a8 7gGrxxU9a2TkLy9gk0qeqwW7SQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJTt5+H4 pTxMpO0L3bQ26AOfVf7ZMB8GA1UdIwQYMBaAFNGdIfZaTJPNNsMHMwITD05lt/Dp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjVDQi82OTU1MTVFMDA2 MjgxMUVFQTcxNEMyNjNDNEY5QUUwMi8wWjBoOWxwTWs4MDJ3d2N6QWhNUFRtVzM4 T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBaMGg5bHBNazgwMnd3Y3pBaE1QVG1XMzhPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzY1Q0IvNjk1NTE1RTAwNjI4MTFFRUE3MTRDMjYzQzRGOUFFMDIvNUNCRTM4NzIx NDVDMTFGMEJGRDZCMzQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnmz8wDQYJKoZIhvcNAQELBQADggEBAMjrSG6Ixy/A6jOD hTLIKVkgHm0wMQ8gGcy3nyD7FJ1HBtEEBbgh7yWqi2PUjPHd4V8n2DUMM+E35t83 oCGvOq7fZeW1oPc7vqfoG06JMkV4b870PUnHP23cd/1hzZ8+1Za7aA1fwZg+kb5v QvfR78BoufaRoL/FAs7sznv6VLdzfeOOdKJ27Jg0R8oBbaiWNlgPqXLflGLtCKbX j/PlUkhWT9pwUJMW2cVouc8eHXFndw+oOWZ/lQHo3XQy7U0Zla79iEUULD50cLKx vS88p2qRG2hUlDgfuL0MTy+SjBpJ8xdRU3z95neGa6yKD/ZsMwOodmu+F30VCzcn 3Sxdfg8= -----END CERTIFICATE-----Generated at Sat Apr 26 15:11:12 2025 by rpki-client