$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5418/0C0B800EF68211E9A8996146C4F9AE02/FD2A54D8DD6311EA9EFD035CC4F9AE02.roa File: FD2A54D8DD6311EA9EFD035CC4F9AE02.roa (raw, json) Hash identifier: 9m0UQLhCfmSnooX3c/o+r8ndL1ume0rI54qO9D+eF4U= Subject key identifier: EE:F3:A2:B2:93:98:7B:FE:F6:46:04:EE:18:A8:9D:C0:F0:32:92:71 Certificate issuer: /CN=A91B5418/serialNumber=6B5EBFE98A378764C1B12DCB6904E4610B50AC57 Certificate serial: 0CC2 Authority key identifier: 6B:5E:BF:E9:8A:37:87:64:C1:B1:2D:CB:69:04:E4:61:0B:50:AC:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a16_6Yo3h2TBsS3LaQTkYQtQrFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5418/0C0B800EF68211E9A8996146C4F9AE02/FD2A54D8DD6311EA9EFD035CC4F9AE02.roa Signing time: Tue 22 Apr 2025 18:17:05 +0000 ROA not before: Tue 22 Apr 2025 18:17:05 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 137453 IP address blocks: 103.137.72.0/24 maxlen: 24 103.137.73.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5418/0C0B800EF68211E9A8996146C4F9AE02/a16_6Yo3h2TBsS3LaQTkYQtQrFc.crl rsync://rpki.apnic.net/member_repository/A91B5418/0C0B800EF68211E9A8996146C4F9AE02/a16_6Yo3h2TBsS3LaQTkYQtQrFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a16_6Yo3h2TBsS3LaQTkYQtQrFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:12:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3266 (0xcc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5418, serialNumber=6B5EBFE98A378764C1B12DCB6904E4610B50AC57 Validity Not Before: Apr 22 18:17:05 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=6807dd20-bc30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:43:67:0f:00:99:07:b5:16:49:20:94:da:e6: 60:d8:5b:3c:dc:8c:ef:97:14:39:ca:48:93:b5:84: 1b:3a:4c:c1:25:83:7e:fc:72:53:65:75:92:f2:93: f2:3d:d8:ab:b0:27:cd:60:8a:74:1b:12:a7:97:3b: 11:10:89:da:00:3c:f9:76:15:c3:be:04:b0:3c:e8: 14:b3:f7:dc:51:ae:5b:6a:06:92:36:75:19:27:de: 21:32:9d:47:d6:16:45:15:21:6a:9a:08:9a:42:68: bc:14:2f:00:d3:1d:2a:1f:76:89:0e:b2:8b:9d:8e: 59:b7:7a:52:52:c3:fe:30:6e:79:77:0e:00:52:3c: 1b:cf:ef:fa:40:3c:00:e9:a6:db:47:8d:3d:4a:25: 06:8b:22:78:3d:1c:91:2c:46:2f:e4:df:a2:2b:be: 9f:20:a5:91:4a:64:be:fd:d2:f6:94:04:ff:07:70: 9e:7e:1b:55:5e:33:7e:af:b6:ce:6d:15:2b:28:32: 32:03:9c:7d:0c:8d:9a:fa:de:c1:46:bf:e5:e3:5c: a5:0a:a8:2e:11:75:b5:2c:03:4f:7a:79:93:3a:b3: 3b:7a:23:14:eb:9e:70:77:d0:f6:93:d8:f2:c1:2d: f6:cc:72:65:41:db:68:66:ea:8f:d1:cf:ce:4e:bd: 48:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:F3:A2:B2:93:98:7B:FE:F6:46:04:EE:18:A8:9D:C0:F0:32:92:71 X509v3 Authority Key Identifier: keyid:6B:5E:BF:E9:8A:37:87:64:C1:B1:2D:CB:69:04:E4:61:0B:50:AC:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5418/0C0B800EF68211E9A8996146C4F9AE02/a16_6Yo3h2TBsS3LaQTkYQtQrFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a16_6Yo3h2TBsS3LaQTkYQtQrFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5418/0C0B800EF68211E9A8996146C4F9AE02/FD2A54D8DD6311EA9EFD035CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.137.72.0/23 Signature Algorithm: sha256WithRSAEncryption 4d:60:5c:8f:66:f8:0a:ce:53:92:cf:39:19:03:45:34:ac:a0: 86:06:7c:6c:6e:d2:7f:cc:90:f8:d8:7a:ad:35:c2:a1:13:0d: 3d:52:9a:9c:88:5c:ef:2b:f5:d4:77:c0:a2:93:2d:1b:84:da: 54:90:ca:f0:b3:10:5b:ba:5b:e8:3b:b5:0d:f0:f4:6a:a2:40: 2f:2e:39:ea:d1:1e:85:eb:cc:58:6c:8c:f2:ea:13:64:bf:ff: 7c:f2:df:09:d3:ac:9a:f1:7e:6a:1c:bc:4c:c1:c3:aa:3c:b0: c4:52:76:d1:5d:de:4a:cb:27:10:21:4a:07:ee:e9:8c:34:b8: 29:dc:7c:9c:29:fa:d9:b9:0e:72:e5:ec:18:e5:80:b4:30:36: 49:46:af:2d:97:40:de:5d:00:44:9f:06:f9:47:57:d1:2e:7a: b5:87:97:8b:7d:8e:dc:22:20:e5:8f:f5:99:fa:91:cf:d4:a5: ce:08:81:64:0d:33:05:92:d4:f8:15:34:00:77:cf:ca:29:22: 58:78:71:4a:22:86:4f:9d:ad:03:41:07:bf:9d:fe:1d:b0:1c: 3b:e3:77:4d:a4:f4:df:5a:64:ef:52:7e:e9:d7:91:44:fe:27: c6:a0:03:be:1b:96:35:37:47:c8:8f:dc:ca:d4:02:2e:d9:0d: e1:a4:a1:cc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU0MTgxMTAvBgNVBAUTKDZCNUVCRkU5OEEzNzg3NjRDMUIxMkRDQjY5MDRFNDYx MEI1MEFDNTcwHhcNMjUwNDIyMTgxNzA1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODA3ZGQyMC1iYzMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA70NnDwCZB7UWSSCU2uZg2Fs83IzvlxQ5ykiTtYQbOkzBJYN+/HJTZXWS8pPy PdirsCfNYIp0GxKnlzsREInaADz5dhXDvgSwPOgUs/fcUa5bagaSNnUZJ94hMp1H 1hZFFSFqmgiaQmi8FC8A0x0qH3aJDrKLnY5Zt3pSUsP+MG55dw4AUjwbz+/6QDwA 6abbR409SiUGiyJ4PRyRLEYv5N+iK76fIKWRSmS+/dL2lAT/B3CefhtVXjN+r7bO bRUrKDIyA5x9DI2a+t7BRr/l41ylCqguEXW1LANPenmTOrM7eiMU655wd9D2k9jy wS32zHJlQdtoZuqP0c/OTr1IiwIDAQABo4IClTCCApEwHQYDVR0OBBYEFO7zorKT mHv+9kYE7hioncDwMpJxMB8GA1UdIwQYMBaAFGtev+mKN4dkwbEty2kE5GELUKxX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTQxOC8wQzBCODAwRUY2 ODIxMUU5QTg5OTYxNDZDNEY5QUUwMi9hMTZfNllvM2gyVEJzUzNMYVFUa1lRdFFy RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ExNl82WW8zaDJUQnNTM0xhUVRrWVF0UXJGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjU0MTgvMEMwQjgwMEVGNjgyMTFFOUE4OTk2MTQ2QzRGOUFFMDIvRkQyQTU0RDhE RDYzMTFFQTlFRkQwMzVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFniUgwDQYJKoZIhvcNAQELBQADggEBAE1gXI9m+ArOU5LP ORkDRTSsoIYGfGxu0n/MkPjYeq01wqETDT1SmpyIXO8r9dR3wKKTLRuE2lSQyvCz EFu6W+g7tQ3w9GqiQC8uOerRHoXrzFhsjPLqE2S//3zy3wnTrJrxfmocvEzBw6o8 sMRSdtFd3krLJxAhSgfu6Yw0uCncfJwp+tm5DnLl7BjlgLQwNklGry2XQN5dAESf BvlHV9EuerWHl4t9jtwiIOWP9Zn6kc/Upc4IgWQNMwWS1PgVNAB3z8opIlh4cUoi hk+drQNBB7+d/h2wHDvjd02k9N9aZO9SfunXkUT+J8agA74bljU3R8iP3MrUAi7Z DeGkocw= -----END CERTIFICATE-----Generated at Sat Apr 26 05:54:08 2025 by rpki-client