$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/653DCD9ADEE811EF9DE2374CC4F9AE02.roa File: 653DCD9ADEE811EF9DE2374CC4F9AE02.roa (raw, json) Hash identifier: Mazx36+KDEkICPeaUfwJ/FcwJ2wGDeNl/2eEhKXlMWc= Subject key identifier: 61:B4:92:F6:66:8A:0B:CC:19:FE:2F:22:CB:4D:3E:37:53:3E:03:65 Certificate issuer: /CN=A91CAA4E/serialNumber=9C4FFE65DEA35233D39E8702238565574DED466E Certificate serial: 06E7 Authority key identifier: 9C:4F:FE:65:DE:A3:52:33:D3:9E:87:02:23:85:65:57:4D:ED:46:6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nE_-Zd6jUjPTnocCI4VlV03tRm4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/653DCD9ADEE811EF9DE2374CC4F9AE02.roa Signing time: Thu 30 Jan 2025 08:58:38 +0000 ROA not before: Thu 30 Jan 2025 08:58:38 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 152723 IP address blocks: 103.137.108.0/24 maxlen: 24 103.137.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/nE_-Zd6jUjPTnocCI4VlV03tRm4.crl rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/nE_-Zd6jUjPTnocCI4VlV03tRm4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nE_-Zd6jUjPTnocCI4VlV03tRm4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:07:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1767 (0x6e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAA4E Validity Not Before: Jan 30 08:58:38 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=679b3f3e-f221 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:9e:42:ee:c8:ef:4e:d6:3f:85:71:34:91:34: 8b:10:2c:0d:bd:91:64:ac:fb:e9:dd:8e:83:29:fe: b0:64:25:4f:27:15:a7:79:1b:56:dd:ec:3d:03:55: c2:f5:7e:2d:7f:3f:9c:d8:1b:34:1a:b5:86:98:cc: db:4c:2f:49:53:89:85:5e:eb:32:95:08:c4:71:1e: f8:40:90:3f:fa:74:40:17:e7:08:0c:10:13:8c:37: 9d:28:a7:78:b9:78:7c:d0:2e:f6:57:0b:ff:38:f6: 45:6e:f7:24:12:48:53:6d:b6:78:d2:0c:d7:f1:45: 3f:ce:86:ba:78:ef:52:4f:80:43:62:d6:fb:c1:1a: 9e:56:3f:2f:b4:67:c1:f6:ae:ae:00:91:d3:bd:4b: 13:e6:8e:86:7d:c2:74:30:b6:f0:64:89:d8:13:fc: 81:dd:d2:77:e6:10:f6:e5:33:33:a8:63:8f:8b:86: c1:b5:81:46:60:29:1c:2a:a0:b8:2f:0d:b9:c7:2f: b1:e0:63:33:cd:84:cd:10:c0:60:3c:64:95:be:a8: 6f:75:a1:b9:61:69:a5:8a:85:ba:b7:30:04:a7:e3: da:f1:7d:ef:63:f7:a6:9d:4b:19:1b:7b:b0:79:62: ed:9f:1e:b4:5f:0f:7a:03:e0:b8:3f:20:7f:70:31: 43:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:B4:92:F6:66:8A:0B:CC:19:FE:2F:22:CB:4D:3E:37:53:3E:03:65 X509v3 Authority Key Identifier: keyid:9C:4F:FE:65:DE:A3:52:33:D3:9E:87:02:23:85:65:57:4D:ED:46:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/nE_-Zd6jUjPTnocCI4VlV03tRm4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nE_-Zd6jUjPTnocCI4VlV03tRm4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAA4E/55E9795AA94F11E8AA0C900EC4F9AE02/653DCD9ADEE811EF9DE2374CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.137.108.0/23 Signature Algorithm: sha256WithRSAEncryption c9:d2:19:93:c9:58:81:da:7e:2b:aa:f4:1b:53:34:4b:79:da: f3:59:ef:7d:ab:8e:da:15:71:1c:0b:0b:c2:9b:1f:9e:89:9c: 22:ed:47:9b:6b:fd:16:30:a0:30:80:a8:75:f4:87:d6:11:86: aa:3c:a2:df:9a:8f:75:ec:87:0a:b5:ad:c7:fe:dd:a2:75:95: d3:a6:a0:87:e0:1e:b3:0f:88:a3:d9:cd:04:6c:0e:fd:67:34: 1a:cd:74:97:6e:d3:a1:c6:a6:ce:e1:6e:ac:9a:f9:fa:c5:0a: ec:16:31:e9:74:6d:ab:2b:6c:02:17:f6:45:50:94:d6:22:4d: cb:59:c7:30:a9:01:ea:7b:5d:67:a3:5f:92:ee:61:4f:7d:56: 4a:25:70:d7:25:8a:4e:c0:bb:1f:74:8f:56:76:81:ca:8d:2b: 8f:6d:4e:a3:ab:e9:fc:ae:af:6f:dd:28:31:f4:9f:c0:aa:8f: df:89:06:d5:50:99:e1:c0:ca:60:fd:65:36:2e:b9:a0:84:87: 30:1b:78:cd:0f:9e:b6:a4:ac:31:fc:c3:cc:21:a3:53:31:ee: f0:56:63:34:53:b8:05:e2:69:0f:95:bf:d7:6c:50:17:b0:76: 89:c2:ab:75:6c:b2:33:96:0b:09:8d:4c:6a:e4:59:69:66:8a: 71:75:cd:93 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBucwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FBNEUxMTAvBgNVBAUTKDlDNEZGRTY1REVBMzUyMzNEMzlFODcwMjIzODU2NTU3 NERFRDQ2NkUwHhcNMjUwMTMwMDg1ODM4WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzliM2YzZS1mMjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Z5C7sjvTtY/hXE0kTSLECwNvZFkrPvp3Y6DKf6wZCVPJxWneRtW3ew9A1XC 9X4tfz+c2Bs0GrWGmMzbTC9JU4mFXusylQjEcR74QJA/+nRAF+cIDBATjDedKKd4 uXh80C72Vwv/OPZFbvckEkhTbbZ40gzX8UU/zoa6eO9ST4BDYtb7wRqeVj8vtGfB 9q6uAJHTvUsT5o6GfcJ0MLbwZInYE/yB3dJ35hD25TMzqGOPi4bBtYFGYCkcKqC4 Lw25xy+x4GMzzYTNEMBgPGSVvqhvdaG5YWmlioW6tzAEp+Pa8X3vY/emnUsZG3uw eWLtnx60Xw96A+C4PyB/cDFDrwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGG0kvZm igvMGf4vIstNPjdTPgNlMB8GA1UdIwQYMBaAFJxP/mXeo1Iz056HAiOFZVdN7UZu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUE0RS81NUU5Nzk1QUE5 NEYxMUU4QUEwQzkwMEVDNEY5QUUwMi9uRV8tWmQ2alVqUFRub2NDSTRWbFYwM3RS bTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25FXy1aZDZqVWpQVG5vY0NJNFZsVjAzdFJtNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0FBNEUvNTVFOTc5NUFBOTRGMTFFOEFBMEM5MDBFQzRGOUFFMDIvNjUzRENEOUFE RUU4MTFFRjlERTIzNzRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFniWwwDQYJKoZIhvcNAQELBQADggEBAMnSGZPJWIHafiuq 9BtTNEt52vNZ732rjtoVcRwLC8KbH56JnCLtR5tr/RYwoDCAqHX0h9YRhqo8ot+a j3Xshwq1rcf+3aJ1ldOmoIfgHrMPiKPZzQRsDv1nNBrNdJdu06HGps7hbqya+frF CuwWMel0basrbAIX9kVQlNYiTctZxzCpAep7XWejX5LuYU99VkolcNclik7Aux90 j1Z2gcqNK49tTqOr6fyur2/dKDH0n8Cqj9+JBtVQmeHAymD9ZTYuuaCEhzAbeM0P nrakrDH8w8who1Mx7vBWYzRTuAXiaQ+Vv9dsUBewdonCq3VssjOWCwmNTGrkWWlm inF1zZM= -----END CERTIFICATE-----Generated at Sat Apr 5 06:03:26 2025 by rpki-client