$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFCB1/6E872D5E656F11E9BBE8F724C4F9AE02/FD58613E7B7B11E99CCAAF73C4F9AE02.roa File: FD58613E7B7B11E99CCAAF73C4F9AE02.roa (raw, json) Hash identifier: 090bVc+Qwt8YDuc/RlwXjl9kZ0cXU70VKlUww1lp6Co= Subject key identifier: 6E:81:5E:5C:DE:30:31:F0:80:04:33:08:38:6D:0B:11:BE:8B:BA:D4 Certificate issuer: /CN=A91BFCB1/serialNumber=7B112F9EBEC342DFCAC774EB5C2681125C65E0CF Certificate serial: 0F57 Authority key identifier: 7B:11:2F:9E:BE:C3:42:DF:CA:C7:74:EB:5C:26:81:12:5C:65:E0:CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/exEvnr7DQt_Kx3TrXCaBElxl4M8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFCB1/6E872D5E656F11E9BBE8F724C4F9AE02/FD58613E7B7B11E99CCAAF73C4F9AE02.roa Signing time: Fri 04 Apr 2025 17:47:54 +0000 ROA not before: Fri 04 Apr 2025 17:47:54 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 138943 IP address blocks: 103.137.132.0/22 maxlen: 24 2404:b140::/32 maxlen: 42 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFCB1/6E872D5E656F11E9BBE8F724C4F9AE02/exEvnr7DQt_Kx3TrXCaBElxl4M8.crl rsync://rpki.apnic.net/member_repository/A91BFCB1/6E872D5E656F11E9BBE8F724C4F9AE02/exEvnr7DQt_Kx3TrXCaBElxl4M8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/exEvnr7DQt_Kx3TrXCaBElxl4M8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 17:29:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3927 (0xf57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFCB1, serialNumber=7B112F9EBEC342DFCAC774EB5C2681125C65E0CF Validity Not Before: Apr 4 17:47:54 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f01b49-7dae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:9b:df:00:0e:20:dd:8c:f5:54:86:ba:19:47: 35:d3:53:1b:6e:17:4f:a4:de:64:ab:b3:f0:fb:0c: 52:8c:ac:c1:16:bf:57:f4:2d:9e:1a:e4:61:1b:4f: 58:db:6f:66:55:43:5e:56:02:b0:fc:a9:f4:4c:a0: d0:40:72:49:31:ed:c5:97:21:c9:d3:75:c5:22:e5: 69:a0:3b:86:1a:ce:c7:69:49:97:88:54:36:77:94: 8a:dc:d0:82:33:73:fc:22:e7:2f:b0:24:4a:6f:c9: ac:a7:96:f5:36:51:14:f5:64:87:36:e7:19:cb:47: ca:d2:2c:5d:2e:54:3c:fb:0e:73:48:02:ea:fb:02: 22:42:8e:b2:eb:75:f7:39:3a:9d:2d:ae:15:01:ff: 5c:9a:a0:12:2e:19:84:68:bd:b8:e2:6f:c5:97:8d: e3:52:dc:a6:01:c4:9a:60:47:ce:9c:fb:a2:c4:f3: 87:5c:a9:fe:0f:2d:a9:56:72:e4:35:b2:ab:13:2e: 4c:b4:0f:9e:67:12:38:c2:f0:2a:1d:d3:26:99:ef: e6:98:e9:d0:66:34:e8:b6:1b:a9:00:ff:a3:5b:87: 90:f6:ba:c7:ea:b1:f7:87:5a:72:e2:d4:45:6b:dd: bd:0d:11:b0:aa:82:09:95:7e:3c:39:1a:a7:58:a1: 9c:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:81:5E:5C:DE:30:31:F0:80:04:33:08:38:6D:0B:11:BE:8B:BA:D4 X509v3 Authority Key Identifier: keyid:7B:11:2F:9E:BE:C3:42:DF:CA:C7:74:EB:5C:26:81:12:5C:65:E0:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFCB1/6E872D5E656F11E9BBE8F724C4F9AE02/exEvnr7DQt_Kx3TrXCaBElxl4M8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/exEvnr7DQt_Kx3TrXCaBElxl4M8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFCB1/6E872D5E656F11E9BBE8F724C4F9AE02/FD58613E7B7B11E99CCAAF73C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.137.132.0/22 IPv6: 2404:b140::/32 Signature Algorithm: sha256WithRSAEncryption 52:fe:9b:b6:0e:91:f2:45:3d:70:ce:6f:de:07:15:de:e9:60: 91:3f:b4:97:87:e1:12:c5:4f:70:6a:dc:06:1c:c0:79:f3:5f: 6d:0b:df:3a:5e:fa:19:6b:3d:ec:79:08:b2:a8:77:bf:81:e8: f9:4c:35:e6:ee:71:81:61:15:c0:98:19:97:76:f3:ad:63:3d: 90:6c:35:cd:b0:79:7e:eb:85:49:3d:7d:9c:06:46:b5:47:0b: 54:84:aa:42:5d:cc:f9:66:1f:9e:4a:55:6c:f6:3a:d3:ab:84: 1d:84:2b:14:9c:34:7f:41:a1:65:0a:14:3e:c2:f7:e2:85:e0: 54:72:5d:d8:db:db:83:63:96:8f:90:db:8f:aa:64:bd:2c:7e: 4f:82:59:b7:87:ec:d3:16:77:b1:e0:e4:8a:a4:29:5d:91:e8: 49:ed:9a:2f:99:28:67:fe:25:68:f0:7a:15:e1:b8:63:71:96: 42:d6:bd:41:d4:f3:54:d6:9e:f2:26:db:a4:0b:14:05:45:e8: 7d:59:63:17:53:0d:13:b2:79:df:21:79:20:b9:18:e8:a7:81: e2:cc:28:b0:0f:93:a5:58:ad:73:3e:c0:4e:61:32:c7:81:d7: 3c:e9:1a:e1:b8:a9:17:39:f2:16:d3:d0:66:eb:13:44:5e:87: 73:75:be:ec -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICD1cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkZDQjExMTAvBgNVBAUTKDdCMTEyRjlFQkVDMzQyREZDQUM3NzRFQjVDMjY4MTEy NUM2NUUwQ0YwHhcNMjUwNDA0MTc0NzU0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2YwMWI0OS03ZGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8pvfAA4g3Yz1VIa6GUc101MbbhdPpN5kq7Pw+wxSjKzBFr9X9C2eGuRhG09Y 229mVUNeVgKw/Kn0TKDQQHJJMe3FlyHJ03XFIuVpoDuGGs7HaUmXiFQ2d5SK3NCC M3P8IucvsCRKb8msp5b1NlEU9WSHNucZy0fK0ixdLlQ8+w5zSALq+wIiQo6y63X3 OTqdLa4VAf9cmqASLhmEaL244m/Fl43jUtymAcSaYEfOnPuixPOHXKn+Dy2pVnLk NbKrEy5MtA+eZxI4wvAqHdMmme/mmOnQZjTothupAP+jW4eQ9rrH6rH3h1py4tRF a929DRGwqoIJlX48ORqnWKGcKQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFG6BXlze MDHwgAQzCDhtCxG+i7rUMB8GA1UdIwQYMBaAFHsRL56+w0Lfysd061wmgRJcZeDP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRkNCMS82RTg3MkQ1RTY1 NkYxMUU5QkJFOEY3MjRDNEY5QUUwMi9leEV2bnI3RFF0X0t4M1RyWENhQkVseGw0 TTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V4RXZucjdEUXRfS3gzVHJYQ2FCRWx4bDRNOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkZDQjEvNkU4NzJENUU2NTZGMTFFOUJCRThGNzI0QzRGOUFFMDIvRkQ1ODYxM0U3 QjdCMTFFOTlDQ0FBRjczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJniYQwDQQCAAIwBwMFACQEsUAwDQYJKoZIhvcNAQELBQAD ggEBAFL+m7YOkfJFPXDOb94HFd7pYJE/tJeH4RLFT3Bq3AYcwHnzX20L3zpe+hlr Pex5CLKod7+B6PlMNebucYFhFcCYGZd2861jPZBsNc2weX7rhUk9fZwGRrVHC1SE qkJdzPlmH55KVWz2OtOrhB2EKxScNH9BoWUKFD7C9+KF4FRyXdjb24Njlo+Q24+q ZL0sfk+CWbeH7NMWd7Hg5IqkKV2R6Entmi+ZKGf+JWjwehXhuGNxlkLWvUHU81TW nvIm26QLFAVF6H1ZYxdTDROyed8heSC5GOingeLMKLAPk6VYrXM+wE5hMseB1zzp GuG4qRc58hbT0GbrE0Reh3N1vuw= -----END CERTIFICATE-----Generated at Sun Apr 13 04:03:53 2025 by rpki-client