$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD75B/64A1DA4801DC11ED9EFE2A56C4F9AE02/D6A658CE01DE11ED8236F073C4F9AE02.roa File: D6A658CE01DE11ED8236F073C4F9AE02.roa (raw, json) Hash identifier: kmjWEDePak7RaIzaM2s6P+tZd0JsQcs5f1UxF22C33k= Subject key identifier: 31:49:D2:52:AD:17:7A:96:81:5E:EF:2C:27:31:D7:5F:2A:51:51:41 Certificate issuer: /CN=A91DD75B/serialNumber=EB813F59761C7C6B1AE28C478167E2061AB5CACF Certificate serial: 027D Authority key identifier: EB:81:3F:59:76:1C:7C:6B:1A:E2:8C:47:81:67:E2:06:1A:B5:CA:CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64E_WXYcfGsa4oxHgWfiBhq1ys8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD75B/64A1DA4801DC11ED9EFE2A56C4F9AE02/D6A658CE01DE11ED8236F073C4F9AE02.roa Signing time: Thu 03 Apr 2025 01:57:05 +0000 ROA not before: Thu 03 Apr 2025 01:57:05 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 138902 IP address blocks: 103.136.226.0/23 maxlen: 23 103.136.226.0/24 maxlen: 24 2400:94e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD75B/64A1DA4801DC11ED9EFE2A56C4F9AE02/64E_WXYcfGsa4oxHgWfiBhq1ys8.crl rsync://rpki.apnic.net/member_repository/A91DD75B/64A1DA4801DC11ED9EFE2A56C4F9AE02/64E_WXYcfGsa4oxHgWfiBhq1ys8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64E_WXYcfGsa4oxHgWfiBhq1ys8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Apr 2025 01:15:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 637 (0x27d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD75B, serialNumber=EB813F59761C7C6B1AE28C478167E2061AB5CACF Validity Not Before: Apr 3 01:57:05 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67edeaf1-b083 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:b3:f5:d6:e5:c2:8e:ad:b2:27:b3:31:bd:17: 8b:66:73:c9:25:7a:79:35:e4:2c:2c:a5:a6:0e:eb: 5f:31:db:7e:a6:a3:2a:df:10:67:ee:17:2f:71:7d: 76:5b:6c:e5:3d:32:57:f1:24:1e:df:21:b8:83:0b: 5d:4e:f9:8e:94:4a:1b:9b:2a:58:09:4a:ae:57:48: 8d:cb:62:27:35:be:57:a9:65:bb:04:25:fe:85:e4: c8:9c:1a:79:0c:f1:44:93:7c:e6:7f:3c:73:93:74: 5b:64:ee:1a:45:ce:71:37:dd:15:87:d0:33:66:f4: fd:ea:0d:ce:4e:57:83:1f:33:95:04:2e:0f:5f:5c: 8f:03:dc:a5:b0:73:9a:f4:2c:ca:9a:34:2b:e5:9d: 78:e1:e0:30:ba:28:59:d3:11:f0:b2:84:d0:16:db: 89:f1:e9:39:69:21:89:f4:39:e6:ba:84:e6:01:da: ed:8e:9e:02:e1:28:ea:f1:da:52:b5:7c:9c:1c:b8: 75:22:79:47:86:20:bf:47:5c:e4:82:61:82:7a:83: a6:4e:20:9f:38:8c:08:85:4a:5c:a6:9c:4b:52:22: 73:d6:68:49:88:55:2b:60:72:31:21:15:fa:19:8e: 61:91:c4:19:83:3f:3f:81:74:7a:a9:91:de:1c:cf: 08:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:49:D2:52:AD:17:7A:96:81:5E:EF:2C:27:31:D7:5F:2A:51:51:41 X509v3 Authority Key Identifier: keyid:EB:81:3F:59:76:1C:7C:6B:1A:E2:8C:47:81:67:E2:06:1A:B5:CA:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD75B/64A1DA4801DC11ED9EFE2A56C4F9AE02/64E_WXYcfGsa4oxHgWfiBhq1ys8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64E_WXYcfGsa4oxHgWfiBhq1ys8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD75B/64A1DA4801DC11ED9EFE2A56C4F9AE02/D6A658CE01DE11ED8236F073C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.136.226.0/23 IPv6: 2400:94e0::/32 Signature Algorithm: sha256WithRSAEncryption 38:7c:40:cd:00:90:0c:a7:e0:d6:5a:06:65:e9:05:59:94:a0: 75:db:4d:c1:79:aa:b2:00:75:64:bf:be:6a:ec:df:a9:1c:6c: 0b:04:be:14:4d:e6:09:fc:66:dd:07:9e:be:3f:29:02:88:f9: 61:b2:39:63:c6:50:5b:e2:a0:17:bc:59:92:3d:4a:c6:52:65: 29:0d:0b:38:8d:64:5a:8d:d6:a4:1f:cf:8f:f4:48:c5:8c:d4: 99:18:ca:ea:6d:2b:a6:08:f1:fb:85:cb:e7:cc:23:8c:43:5b: 51:2b:72:d6:8c:0d:d1:1b:b5:1f:fd:68:ab:6b:c6:5a:25:88: 58:18:d5:05:d7:e4:8d:d0:de:dc:e8:42:cd:e9:b4:64:a0:56: 97:1e:ff:65:94:e9:01:d7:88:f0:18:d0:4d:27:05:72:38:89: 8a:3d:2f:07:57:3d:97:6e:f0:5a:65:04:80:ec:06:e9:0f:da: e2:ef:e8:98:3d:d1:24:00:5b:a2:db:e6:70:34:1e:cd:c2:09: 64:a9:85:54:d4:f9:3e:80:64:11:68:a0:e5:83:c6:75:ea:b0: 9b:d5:79:d7:a1:88:70:85:5a:5c:27:67:a4:05:30:52:88:23: be:a9:1e:e8:ec:48:37:b6:23:8d:75:d3:48:7b:5b:75:d9:61: 51:84:07:12 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAn0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ3NUIxMTAvBgNVBAUTKEVCODEzRjU5NzYxQzdDNkIxQUUyOEM0NzgxNjdFMjA2 MUFCNUNBQ0YwHhcNMjUwNDAzMDE1NzA1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkZWFmMS1iMDgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArrP11uXCjq2yJ7MxvReLZnPJJXp5NeQsLKWmDutfMdt+pqMq3xBn7hcvcX12 W2zlPTJX8SQe3yG4gwtdTvmOlEobmypYCUquV0iNy2InNb5XqWW7BCX+heTInBp5 DPFEk3zmfzxzk3RbZO4aRc5xN90Vh9AzZvT96g3OTleDHzOVBC4PX1yPA9ylsHOa 9CzKmjQr5Z144eAwuihZ0xHwsoTQFtuJ8ek5aSGJ9DnmuoTmAdrtjp4C4Sjq8dpS tXycHLh1InlHhiC/R1zkgmGCeoOmTiCfOIwIhUpcppxLUiJz1mhJiFUrYHIxIRX6 GY5hkcQZgz8/gXR6qZHeHM8IbwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFDFJ0lKt F3qWgV7vLCcx118qUVFBMB8GA1UdIwQYMBaAFOuBP1l2HHxrGuKMR4Fn4gYatcrP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDc1Qi82NEExREE0ODAx REMxMUVEOUVGRTJBNTZDNEY5QUUwMi82NEVfV1hZY2ZHc2E0b3hIZ1dmaUJocTF5 czguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY0RV9XWFljZkdzYTRveEhnV2ZpQmhxMXlzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REQ3NUIvNjRBMURBNDgwMURDMTFFRDlFRkUyQTU2QzRGOUFFMDIvRDZBNjU4Q0Uw MURFMTFFRDgyMzZGMDczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFniOIwDQQCAAIwBwMFACQAlOAwDQYJKoZIhvcNAQELBQAD ggEBADh8QM0AkAyn4NZaBmXpBVmUoHXbTcF5qrIAdWS/vmrs36kcbAsEvhRN5gn8 Zt0Hnr4/KQKI+WGyOWPGUFvioBe8WZI9SsZSZSkNCziNZFqN1qQfz4/0SMWM1JkY yuptK6YI8fuFy+fMI4xDW1ErctaMDdEbtR/9aKtrxloliFgY1QXX5I3Q3tzoQs3p tGSgVpce/2WU6QHXiPAY0E0nBXI4iYo9LwdXPZdu8FplBIDsBukP2uLv6Jg90SQA W6Lb5nA0Hs3CCWSphVTU+T6AZBFooOWDxnXqsJvVedehiHCFWlwnZ6QFMFKII76p HujsSDe2I41100h7W3XZYVGEBxI= -----END CERTIFICATE-----Generated at Fri Apr 18 23:40:19 2025 by rpki-client