$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5418/0C0B800EF68211E9A8996146C4F9AE02/FD2A54D8DD6311EA9EFD035CC4F9AE02.roa File: FD2A54D8DD6311EA9EFD035CC4F9AE02.roa (raw, json) Hash identifier: JEsgPmGGVDzS2y0yxDAwcuYDJ86ZFLnYIOd4ECkwCvk= Subject key identifier: BA:A3:A3:A9:4A:5E:13:F0:21:50:1B:AF:64:CC:A6:7D:C6:01:1D:FF Certificate issuer: /CN=A91B5418/serialNumber=6B5EBFE98A378764C1B12DCB6904E4610B50AC57 Certificate serial: 0C07 Authority key identifier: 6B:5E:BF:E9:8A:37:87:64:C1:B1:2D:CB:69:04:E4:61:0B:50:AC:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a16_6Yo3h2TBsS3LaQTkYQtQrFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5418/0C0B800EF68211E9A8996146C4F9AE02/FD2A54D8DD6311EA9EFD035CC4F9AE02.roa Signing time: Mon 06 May 2024 19:28:21 +0000 ROA not before: Mon 06 May 2024 19:28:21 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 137453 IP address blocks: 103.137.72.0/24 maxlen: 24 103.137.73.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5418/0C0B800EF68211E9A8996146C4F9AE02/a16_6Yo3h2TBsS3LaQTkYQtQrFc.crl rsync://rpki.apnic.net/member_repository/A91B5418/0C0B800EF68211E9A8996146C4F9AE02/a16_6Yo3h2TBsS3LaQTkYQtQrFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a16_6Yo3h2TBsS3LaQTkYQtQrFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:22:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3079 (0xc07) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5418 Validity Not Before: May 6 19:28:21 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66392f54-efd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:3d:48:d5:02:58:ec:ad:54:99:e4:c6:d4:aa: 43:f1:c0:21:c1:c5:f9:e1:68:de:ea:82:67:c4:e5: b5:22:36:1e:57:e7:88:72:1e:27:7e:42:e5:95:a9: 61:ce:cf:92:f6:c6:ee:61:09:28:85:e6:a9:8f:30: ce:0c:fe:4b:9a:5a:f6:5f:25:54:5e:d6:46:76:26: 86:89:cf:b1:c2:04:c3:6b:bb:ba:dd:f6:9f:c4:fd: 54:1c:23:d6:ef:65:ee:20:02:17:4c:c5:a0:83:f7: 45:a0:3e:ca:81:ab:b3:b4:9f:18:3c:0f:19:a4:54: ad:54:b5:f5:56:27:24:2d:c8:cf:f8:6c:f0:5e:27: 4b:fc:62:43:8a:db:27:92:fc:20:23:53:67:40:78: a3:1f:57:1d:c7:73:62:87:a8:d7:ce:0c:f2:97:24: c2:0c:d7:7b:70:a3:00:0c:dc:f8:f4:48:0e:ec:99: e7:88:79:40:fe:7a:c5:6e:2f:ee:f4:74:64:58:83: 2a:33:dd:47:35:25:11:0e:ee:40:53:50:8a:d8:63: e5:df:63:1d:d6:fe:7c:65:c3:c6:ae:1a:f6:31:2d: d6:6f:3e:5d:88:83:53:80:e2:44:65:6d:bf:06:cd: 97:bb:36:4f:c4:2a:56:aa:44:98:3c:15:c1:1b:90: 8e:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:A3:A3:A9:4A:5E:13:F0:21:50:1B:AF:64:CC:A6:7D:C6:01:1D:FF X509v3 Authority Key Identifier: keyid:6B:5E:BF:E9:8A:37:87:64:C1:B1:2D:CB:69:04:E4:61:0B:50:AC:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5418/0C0B800EF68211E9A8996146C4F9AE02/a16_6Yo3h2TBsS3LaQTkYQtQrFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a16_6Yo3h2TBsS3LaQTkYQtQrFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5418/0C0B800EF68211E9A8996146C4F9AE02/FD2A54D8DD6311EA9EFD035CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.137.72.0/23 Signature Algorithm: sha256WithRSAEncryption cc:e9:c0:12:56:7a:03:27:c9:4d:9a:82:62:29:7a:bf:29:67: a7:be:36:47:c7:1b:f0:67:71:00:c6:7e:b7:13:39:c2:29:7c: 2c:ee:0d:a4:e7:6d:fe:18:13:0c:4b:04:2a:e9:ce:90:d0:e4: 5d:5a:c4:89:cc:49:73:d2:be:35:fe:bc:9d:9e:60:8f:3f:87: 9c:ca:6b:09:1a:df:88:b8:06:fa:06:2e:62:d1:c2:96:36:71: 2f:b1:67:14:52:99:ac:44:0e:a1:16:0c:3b:1c:9b:e5:c5:07: f8:f4:0b:49:80:bd:f0:7a:45:74:8f:85:7c:4f:79:c1:7c:a6: 7b:14:3a:3e:1c:ce:31:66:9f:66:01:4a:d3:d2:d9:e4:c4:25: f9:28:78:4e:2a:f8:62:e2:6f:fe:18:6a:e1:8f:6f:0f:f1:79: 07:7e:58:57:19:a6:8a:bd:99:36:c5:6c:13:3f:6a:d2:a8:eb: 22:ac:d2:81:c6:61:b8:cd:93:49:43:53:7f:9d:10:0e:72:87: 64:01:9e:bb:b4:d8:43:3c:2d:2c:dc:10:19:99:a2:23:8f:9c: a6:b0:72:65:4e:19:73:ce:e2:fc:9c:45:c6:16:61:19:93:fa: a3:10:af:0f:b0:61:d4:fa:5b:e8:b0:b9:f3:33:dc:5b:55:c7: c4:97:40:a2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDAcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU0MTgxMTAvBgNVBAUTKDZCNUVCRkU5OEEzNzg3NjRDMUIxMkRDQjY5MDRFNDYx MEI1MEFDNTcwHhcNMjQwNTA2MTkyODIxWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjM5MmY1NC1lZmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsD1I1QJY7K1UmeTG1KpD8cAhwcX54Wje6oJnxOW1IjYeV+eIch4nfkLllalh zs+S9sbuYQkoheapjzDODP5Lmlr2XyVUXtZGdiaGic+xwgTDa7u63fafxP1UHCPW 72XuIAIXTMWgg/dFoD7KgauztJ8YPA8ZpFStVLX1VickLcjP+GzwXidL/GJDitsn kvwgI1NnQHijH1cdx3Nih6jXzgzylyTCDNd7cKMADNz49EgO7JnniHlA/nrFbi/u 9HRkWIMqM91HNSURDu5AU1CK2GPl32Md1v58ZcPGrhr2MS3Wbz5diINTgOJEZW2/ Bs2XuzZPxCpWqkSYPBXBG5COWwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLqjo6lK XhPwIVAbr2TMpn3GAR3/MB8GA1UdIwQYMBaAFGtev+mKN4dkwbEty2kE5GELUKxX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTQxOC8wQzBCODAwRUY2 ODIxMUU5QTg5OTYxNDZDNEY5QUUwMi9hMTZfNllvM2gyVEJzUzNMYVFUa1lRdFFy RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ExNl82WW8zaDJUQnNTM0xhUVRrWVF0UXJGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjU0MTgvMEMwQjgwMEVGNjgyMTFFOUE4OTk2MTQ2QzRGOUFFMDIvRkQyQTU0RDhE RDYzMTFFQTlFRkQwMzVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFniUgwDQYJKoZIhvcNAQELBQADggEBAMzpwBJWegMnyU2a gmIper8pZ6e+NkfHG/BncQDGfrcTOcIpfCzuDaTnbf4YEwxLBCrpzpDQ5F1axInM SXPSvjX+vJ2eYI8/h5zKawka34i4BvoGLmLRwpY2cS+xZxRSmaxEDqEWDDscm+XF B/j0C0mAvfB6RXSPhXxPecF8pnsUOj4czjFmn2YBStPS2eTEJfkoeE4q+GLib/4Y auGPbw/xeQd+WFcZpoq9mTbFbBM/atKo6yKs0oHGYbjNk0lDU3+dEA5yh2QBnru0 2EM8LSzcEBmZoiOPnKawcmVOGXPO4vycRcYWYRmT+qMQrw+wYdT6W+iwufMz3FtV x8SXQKI= -----END CERTIFICATE-----Generated at Sat Apr 5 11:44:31 2025 by rpki-client