$ rpki-client -vvf rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/9394D360345F11F0AB96776CC4F9AE02.roa File: 9394D360345F11F0AB96776CC4F9AE02.roa (raw, json) Hash identifier: GgwLhcIgruySS/YGMWErE8BGQI8HrXA2kybuS84FbjI= Subject key identifier: B0:97:E1:4F:4A:AB:37:5D:64:33:6F:B3:07:EC:6D:3D:10:FC:32:79 Certificate issuer: /CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Certificate serial: 1122 Authority key identifier: 36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/9394D360345F11F0AB96776CC4F9AE02.roa Signing time: Mon 19 May 2025 03:15:55 +0000 ROA not before: Mon 19 May 2025 03:15:55 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 38136 IP address blocks: 103.149.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 17:35:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4386 (0x1122) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91803DB, serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Validity Not Before: May 19 03:15:55 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=682aa26b-5185 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:84:08:ec:fe:43:c6:6c:36:57:0e:69:84:71: 32:1b:90:e9:86:f8:e9:4d:57:e9:25:a6:a8:65:f1: 1b:99:ab:6f:2b:62:1c:8f:30:6f:7c:3a:0a:d6:fc: 93:76:49:04:37:2f:9e:d5:0b:9e:23:41:b8:63:f3: 08:be:2f:7f:a4:e5:e2:ed:8d:6c:55:41:c8:5a:67: ed:11:63:dc:4f:27:1d:19:3c:7d:36:ad:9a:6f:b6: 49:da:8b:f6:b2:01:6c:d1:03:7d:7f:0d:a9:38:d4: 63:33:fc:c5:8c:4a:8c:60:58:bf:83:3f:a2:61:14: 3d:fd:2e:12:4c:0e:72:b2:03:d8:bf:ef:8d:c7:cc: ec:55:ff:d1:5c:1d:8d:49:e3:69:60:50:e1:a9:fc: 6a:c9:14:4b:6f:26:ce:9f:50:63:77:14:e7:48:59: 5d:fd:ce:a4:a9:84:ee:2f:6d:f4:a9:cb:ad:2d:2d: 30:8e:28:13:66:42:9c:9e:44:8c:09:ea:82:91:0c: d7:2f:7a:27:50:83:47:41:03:18:f8:86:d7:7e:c4: b9:91:ba:0f:a7:77:19:46:5b:4e:42:57:89:87:9d: 1a:26:ef:67:10:87:8e:9a:b9:f0:1b:6f:d6:c1:f3: c8:c9:8d:35:b8:ff:bb:e3:c7:c9:56:8a:de:68:01: f8:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:97:E1:4F:4A:AB:37:5D:64:33:6F:B3:07:EC:6D:3D:10:FC:32:79 X509v3 Authority Key Identifier: keyid:36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/9394D360345F11F0AB96776CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.149.145.0/24 Signature Algorithm: sha256WithRSAEncryption 71:5f:8e:ab:ee:5b:f8:b7:8c:69:13:e7:be:a6:86:98:8c:0c: ba:e4:b9:c0:bb:ce:25:17:44:5e:51:01:8d:b5:79:29:0b:2f: 92:b9:a1:ba:e4:bc:0d:d3:0a:b3:fa:e7:83:2b:fe:39:0b:1e: b7:3e:b2:94:4c:2e:ca:40:c5:73:cc:95:69:78:bf:3e:20:e0: e1:77:04:51:2a:ea:33:79:8b:3c:ff:1c:00:d4:4b:51:d4:68: 61:c8:29:fb:24:39:58:0f:71:6d:e1:1b:4d:00:d3:61:5c:aa: 15:0c:3b:68:33:35:2b:73:d7:a4:ca:ef:72:84:6e:4a:84:b4: 5f:05:18:59:e2:5f:43:e6:6b:01:0f:34:ae:04:5c:0c:37:75: 7b:8a:8c:73:0a:2d:24:f2:74:3a:dc:4d:eb:0a:29:00:e8:d5: 9b:84:84:92:5b:c5:33:9f:6a:47:35:96:52:1a:5c:00:c8:df: 71:6f:6e:89:89:df:56:9f:de:50:07:a7:d9:d5:24:99:6c:2b: a0:0d:fa:75:a3:d5:c4:bd:a8:36:14:14:51:b2:e3:49:8d:43: e5:63:d5:5a:7c:07:4d:96:08:86:68:5b:b8:98:c7:d2:98:5f: e2:1d:41:93:2d:4e:60:f0:3f:7d:8a:67:59:7c:a4:db:7a:6d: 7f:b4:c7:dd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICESIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzREIxMTAvBgNVBAUTKDM2RUQ4QjY3NUVBNzIzODA4NUFGQTA2QzA5M0U1NEE5 RDNGRDdCNjAwHhcNMjUwNTE5MDMxNTU1WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJhYTI2Yi01MTg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmIQI7P5Dxmw2Vw5phHEyG5DphvjpTVfpJaaoZfEbmatvK2IcjzBvfDoK1vyT dkkENy+e1QueI0G4Y/MIvi9/pOXi7Y1sVUHIWmftEWPcTycdGTx9Nq2ab7ZJ2ov2 sgFs0QN9fw2pONRjM/zFjEqMYFi/gz+iYRQ9/S4STA5ysgPYv++Nx8zsVf/RXB2N SeNpYFDhqfxqyRRLbybOn1BjdxTnSFld/c6kqYTuL230qcutLS0wjigTZkKcnkSM CeqCkQzXL3onUINHQQMY+IbXfsS5kboPp3cZRltOQleJh50aJu9nEIeOmrnwG2/W wfPIyY01uP+748fJVoreaAH4rwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLCX4U9K qzddZDNvswfsbT0Q/DJ5MB8GA1UdIwQYMBaAFDbti2depyOAha+gbAk+VKnT/Xtg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDNEQi8wREMzNUQzRThE RDQxMUU5QkZFMkM1NTZDNEY5QUUwMi9OdTJMWjE2bkk0Q0ZyNkJzQ1Q1VXFkUDll MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051MkxaMTZuSTRDRnI2QnNDVDVVcWRQOWUyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODAzREIvMERDMzVEM0U4REQ0MTFFOUJGRTJDNTU2QzRGOUFFMDIvOTM5NEQzNjAz NDVGMTFGMEFCOTY3NzZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnlZEwDQYJKoZIhvcNAQELBQADggEBAHFfjqvuW/i3jGkT 576mhpiMDLrkucC7ziUXRF5RAY21eSkLL5K5obrkvA3TCrP654Mr/jkLHrc+spRM LspAxXPMlWl4vz4g4OF3BFEq6jN5izz/HADUS1HUaGHIKfskOVgPcW3hG00A02Fc qhUMO2gzNStz16TK73KEbkqEtF8FGFniX0PmawEPNK4EXAw3dXuKjHMKLSTydDrc TesKKQDo1ZuEhJJbxTOfakc1llIaXADI33FvbomJ31af3lAHp9nVJJlsK6AN+nWj 1cS9qDYUFFGy40mNQ+Vj1Vp8B02WCIZoW7iYx9KYX+IdQZMtTmDwP32KZ1l8pNt6 bX+0x90= -----END CERTIFICATE-----Generated at Sun Jun 15 10:07:58 2025 by rpki-client