$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5418/0C0B800EF68211E9A8996146C4F9AE02/D3EC028C2AF511EE90800A65C4F9AE02.roa File: D3EC028C2AF511EE90800A65C4F9AE02.roa (raw, json) Hash identifier: +hALYP3fmXiUu1g2+UCKikl1Y9WM+rKXEqvZUSDNE8I= Subject key identifier: 03:77:CF:01:3A:5B:6B:3E:34:64:0B:AB:76:1D:E9:66:1F:17:17:93 Certificate issuer: /CN=A91B5418/serialNumber=6B5EBFE98A378764C1B12DCB6904E4610B50AC57 Certificate serial: 0CC1 Authority key identifier: 6B:5E:BF:E9:8A:37:87:64:C1:B1:2D:CB:69:04:E4:61:0B:50:AC:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a16_6Yo3h2TBsS3LaQTkYQtQrFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5418/0C0B800EF68211E9A8996146C4F9AE02/D3EC028C2AF511EE90800A65C4F9AE02.roa Signing time: Tue 22 Apr 2025 18:17:03 +0000 ROA not before: Tue 22 Apr 2025 18:17:03 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 135341 IP address blocks: 103.137.72.0/24 maxlen: 24 103.137.73.0/24 maxlen: 24 103.137.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5418/0C0B800EF68211E9A8996146C4F9AE02/a16_6Yo3h2TBsS3LaQTkYQtQrFc.crl rsync://rpki.apnic.net/member_repository/A91B5418/0C0B800EF68211E9A8996146C4F9AE02/a16_6Yo3h2TBsS3LaQTkYQtQrFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a16_6Yo3h2TBsS3LaQTkYQtQrFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:12:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3265 (0xcc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5418, serialNumber=6B5EBFE98A378764C1B12DCB6904E4610B50AC57 Validity Not Before: Apr 22 18:17:03 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=6807dd1e-fdcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a4:79:a0:a8:ab:60:3b:7a:1f:84:c6:25:90: 27:ba:f3:08:e4:c7:ea:33:2c:f4:94:f5:1d:f8:ce: 63:dc:69:f1:2a:4d:2e:b8:25:34:f1:23:59:7e:92: 51:4a:67:5f:ef:8b:63:1b:cc:b9:c5:d8:b4:8f:b8: ed:95:6a:df:41:a1:c0:74:1b:40:34:98:44:5b:83: 50:3f:13:57:5d:0f:28:e9:c4:1b:af:dd:06:1f:f7: 8e:32:a8:c3:f2:ff:3d:cc:3d:d2:7a:d6:ee:e7:a1: f8:3b:87:72:e8:18:02:06:73:ca:6e:73:cb:3a:9e: c0:3b:08:65:27:4c:ef:84:94:e5:8a:54:e6:c2:b9: 88:a2:bb:52:9a:33:ab:06:ae:8d:c9:29:83:b8:f1: ac:c5:5a:be:e7:02:d9:8c:4f:3a:34:ac:f9:49:2c: f0:2c:9c:21:ee:9d:40:c6:e1:8b:f1:c8:21:51:db: 26:8a:a4:1a:3b:80:bb:46:a6:a4:c8:2a:12:94:39: 83:8f:a1:64:f0:74:c1:b2:8c:5a:2c:31:2d:3a:a8: c2:6c:08:e6:74:de:1f:76:98:49:7f:f9:a5:cc:e4: 08:c1:5f:de:f6:03:77:8f:83:7c:65:61:01:ee:3b: 8d:67:39:65:f3:60:5c:69:8b:25:fa:29:4b:29:65: 49:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:77:CF:01:3A:5B:6B:3E:34:64:0B:AB:76:1D:E9:66:1F:17:17:93 X509v3 Authority Key Identifier: keyid:6B:5E:BF:E9:8A:37:87:64:C1:B1:2D:CB:69:04:E4:61:0B:50:AC:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5418/0C0B800EF68211E9A8996146C4F9AE02/a16_6Yo3h2TBsS3LaQTkYQtQrFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a16_6Yo3h2TBsS3LaQTkYQtQrFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5418/0C0B800EF68211E9A8996146C4F9AE02/D3EC028C2AF511EE90800A65C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.137.72.0-103.137.74.255 Signature Algorithm: sha256WithRSAEncryption 75:c8:b9:30:bc:fd:d7:7d:9e:b3:ed:43:72:c7:6a:c6:66:28: ce:2e:62:16:f5:81:3a:9c:c3:f7:8f:12:23:f9:30:2c:00:21: cd:fc:ee:2c:f7:ff:fe:d4:f3:cd:cf:13:cd:6c:7b:3b:dd:af: b9:61:3e:7c:ba:bb:33:d5:7e:6b:b1:49:fd:de:31:1d:70:c8: 18:a3:79:c2:51:c5:9c:31:ec:25:f0:a5:56:d5:1c:38:df:83: 67:ee:82:f1:77:fa:9d:c8:34:8f:25:c5:c3:72:95:76:1a:f5: 7f:81:8d:90:39:47:cc:7f:f2:d1:9c:b4:73:33:8e:0f:61:53: 6e:f8:39:31:03:06:29:41:11:47:8d:51:bb:80:62:e4:19:4d: bd:7c:85:3e:4e:e1:40:de:da:04:4d:a7:22:f8:65:ea:27:d6: c0:b4:c3:db:b5:a0:32:01:e6:29:d0:43:7d:63:8d:80:78:8a: 2c:c1:69:e3:61:15:bd:d5:d0:f5:a1:88:29:ee:a5:32:63:70: 8c:07:71:36:02:87:10:f2:ec:e4:63:09:18:3c:4d:f6:d4:9f: dd:c3:4c:81:f0:14:71:c3:f6:57:62:23:61:2d:54:6a:32:0e: a1:bf:91:6a:1c:bf:9c:d4:3c:6c:14:6e:bf:b0:e2:9b:0a:ae: 72:c1:f4:fd -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICDMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU0MTgxMTAvBgNVBAUTKDZCNUVCRkU5OEEzNzg3NjRDMUIxMkRDQjY5MDRFNDYx MEI1MEFDNTcwHhcNMjUwNDIyMTgxNzAzWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODA3ZGQxZS1mZGNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuKR5oKirYDt6H4TGJZAnuvMI5MfqMyz0lPUd+M5j3GnxKk0uuCU08SNZfpJR Smdf74tjG8y5xdi0j7jtlWrfQaHAdBtANJhEW4NQPxNXXQ8o6cQbr90GH/eOMqjD 8v89zD3Setbu56H4O4dy6BgCBnPKbnPLOp7AOwhlJ0zvhJTlilTmwrmIortSmjOr Bq6NySmDuPGsxVq+5wLZjE86NKz5SSzwLJwh7p1AxuGL8cghUdsmiqQaO4C7Rqak yCoSlDmDj6Fk8HTBsoxaLDEtOqjCbAjmdN4fdphJf/mlzOQIwV/e9gN3j4N8ZWEB 7juNZzll82BcaYsl+ilLKWVJSQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFAN3zwE6 W2s+NGQLq3Yd6WYfFxeTMB8GA1UdIwQYMBaAFGtev+mKN4dkwbEty2kE5GELUKxX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTQxOC8wQzBCODAwRUY2 ODIxMUU5QTg5OTYxNDZDNEY5QUUwMi9hMTZfNllvM2gyVEJzUzNMYVFUa1lRdFFy RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ExNl82WW8zaDJUQnNTM0xhUVRrWVF0UXJGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjU0MTgvMEMwQjgwMEVGNjgyMTFFOUE4OTk2MTQ2QzRGOUFFMDIvRDNFQzAyOEMy QUY1MTFFRTkwODAwQTY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEA2eJSAMEAGeJSjANBgkqhkiG9w0BAQsFAAOCAQEAdci5 MLz9132es+1DcsdqxmYozi5iFvWBOpzD948SI/kwLAAhzfzuLPf//tTzzc8TzWx7 O92vuWE+fLq7M9V+a7FJ/d4xHXDIGKN5wlHFnDHsJfClVtUcON+DZ+6C8Xf6ncg0 jyXFw3KVdhr1f4GNkDlHzH/y0Zy0czOOD2FTbvg5MQMGKUERR41Ru4Bi5BlNvXyF Pk7hQN7aBE2nIvhl6ifWwLTD27WgMgHmKdBDfWONgHiKLMFp42EVvdXQ9aGIKe6l MmNwjAdxNgKHEPLs5GMJGDxN9tSf3cNMgfAUccP2V2IjYS1UajIOob+Rahy/nNQ8 bBRuv7DimwqucsH0/Q== -----END CERTIFICATE-----Generated at Sat Apr 26 05:38:01 2025 by rpki-client