$ rpki-client -vvf rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/DB78B2684BCD11EE8F976B7EC4F9AE02.roa File: DB78B2684BCD11EE8F976B7EC4F9AE02.roa (raw, json) Hash identifier: LJOeHyhGq5PPmm1YdhMXahy2BlMK+uuqLBs6e3cOua4= Subject key identifier: EE:05:CC:70:B9:46:D1:B0:E1:AF:53:05:2A:5A:26:16:D3:AE:96:44 Certificate issuer: /CN=A91409DC/serialNumber=14A6CABC302EC1E3DCE74DE98BF558A042BEAC56 Certificate serial: 0855 Authority key identifier: 14:A6:CA:BC:30:2E:C1:E3:DC:E7:4D:E9:8B:F5:58:A0:42:BE:AC:56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FKbKvDAuwePc503pi_VYoEK-rFY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/DB78B2684BCD11EE8F976B7EC4F9AE02.roa Signing time: Fri 02 May 2025 18:57:15 +0000 ROA not before: Fri 02 May 2025 18:57:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 138917 IP address blocks: 103.137.40.0/24 maxlen: 24 2001:df0:1880::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.crl rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FKbKvDAuwePc503pi_VYoEK-rFY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 18:41:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2133 (0x855) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91409DC, serialNumber=14A6CABC302EC1E3DCE74DE98BF558A042BEAC56 Validity Not Before: May 2 18:57:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6815158b-e158 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:a9:e9:8b:48:9e:8a:c0:2c:98:27:27:a9:4e: de:20:0a:7b:cf:bb:51:75:48:4d:79:2f:56:68:d2: 01:85:26:3e:74:1f:71:bb:ef:f3:fe:ae:4e:8a:70: a7:f2:11:f1:59:a2:1d:31:ca:a9:35:f9:6b:28:d3: f2:80:5d:63:fa:88:75:64:cf:e0:cb:75:d6:80:1e: a6:19:00:da:0b:5f:44:5f:ad:ef:63:2c:a4:78:94: 02:12:64:4a:21:fe:e9:4c:28:a5:35:b9:2b:db:2f: 13:b2:af:9a:a7:72:8a:7c:f5:2b:28:02:67:c0:e4: 7a:ed:74:84:ee:4e:5e:33:fb:7d:c7:c3:65:6f:8e: 05:a8:6e:9c:f2:18:31:df:0c:e7:39:b6:5f:ca:d5: de:d9:15:2c:2b:34:e5:0a:64:9c:9b:b5:85:0a:6e: c3:e7:35:87:28:ae:73:5e:06:d4:e4:52:4d:81:19: de:32:d1:54:6f:65:e4:b0:42:ac:79:83:52:03:da: 23:e8:7f:fc:63:cc:50:aa:53:f9:25:58:f2:69:c8: e7:e4:b4:21:a5:3c:31:d9:ee:3a:f1:96:9d:77:b1: 0f:8a:a3:b3:df:81:5d:8a:41:03:d1:d4:57:5c:54: e7:e2:2f:00:ad:19:d1:1c:f1:3e:b2:8d:1e:f8:eb: 37:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:05:CC:70:B9:46:D1:B0:E1:AF:53:05:2A:5A:26:16:D3:AE:96:44 X509v3 Authority Key Identifier: keyid:14:A6:CA:BC:30:2E:C1:E3:DC:E7:4D:E9:8B:F5:58:A0:42:BE:AC:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FKbKvDAuwePc503pi_VYoEK-rFY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/DB78B2684BCD11EE8F976B7EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.137.40.0/24 IPv6: 2001:df0:1880::/48 Signature Algorithm: sha256WithRSAEncryption 19:ce:ac:37:01:72:27:39:94:e1:8e:a5:ef:23:2c:5f:15:73: 0f:65:f0:17:41:18:9f:6d:c6:d2:c2:23:13:50:5c:33:d6:20: b6:41:40:5f:d8:23:33:c1:b8:49:44:4a:5a:18:b6:8e:c8:c8: 24:82:8c:98:bb:ac:a2:eb:d3:f0:19:af:49:75:aa:ba:69:e7: e7:a6:b2:ad:8b:8d:61:f2:d8:66:67:bf:ed:e6:41:98:47:11: 99:0d:a6:2b:0b:e1:2e:77:27:fd:dd:d1:c4:7a:8a:17:b9:a4: 45:74:9c:47:8c:dc:cf:0b:ca:f5:f4:0e:bf:5f:c9:c3:06:3f: ba:2a:ba:3c:62:c6:e9:b8:d9:d9:b2:6d:a2:44:3c:cc:ea:14: 94:c7:e4:a9:63:fd:b7:80:e8:96:1b:47:cc:09:bd:57:80:b8: 01:40:c8:c2:49:f2:1a:46:75:f2:62:8e:aa:90:b0:c8:cd:dc: 36:28:f3:6a:4d:56:88:a9:d5:7b:c1:a7:13:0a:af:47:9d:3e: fa:9b:85:b1:50:f2:9a:94:a0:40:f1:44:1f:2f:92:d0:5d:57: b3:44:b5:d6:bc:8f:ac:34:35:75:ba:ac:4d:ac:23:50:c9:9c: 66:1c:b9:37:03:90:be:ad:3e:d1:67:69:97:f7:29:ed:a5:7e: f8:fc:cf:a5 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCFUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA5REMxMTAvBgNVBAUTKDE0QTZDQUJDMzAyRUMxRTNEQ0U3NERFOThCRjU1OEEw NDJCRUFDNTYwHhcNMjUwNTAyMTg1NzE1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1MTU4Yi1lMTU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2anpi0ieisAsmCcnqU7eIAp7z7tRdUhNeS9WaNIBhSY+dB9xu+/z/q5OinCn 8hHxWaIdMcqpNflrKNPygF1j+oh1ZM/gy3XWgB6mGQDaC19EX63vYyykeJQCEmRK If7pTCilNbkr2y8Tsq+ap3KKfPUrKAJnwOR67XSE7k5eM/t9x8Nlb44FqG6c8hgx 3wznObZfytXe2RUsKzTlCmScm7WFCm7D5zWHKK5zXgbU5FJNgRneMtFUb2XksEKs eYNSA9oj6H/8Y8xQqlP5JVjyacjn5LQhpTwx2e468Zadd7EPiqOz34FdikED0dRX XFTn4i8ArRnRHPE+so0e+Os3CQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFO4FzHC5 RtGw4a9TBSpaJhbTrpZEMB8GA1UdIwQYMBaAFBSmyrwwLsHj3OdN6Yv1WKBCvqxW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDlEQy9BNUJCRkFBNjA5 MzUxMUVBQUIxMEM5MUZDNEY5QUUwMi9GS2JLdkRBdXdlUGM1MDNwaV9WWW9FSy1y RlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZLYkt2REF1d2VQYzUwM3BpX1ZZb0VLLXJGWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDA5REMvQTVCQkZBQTYwOTM1MTFFQUFCMTBDOTFGQzRGOUFFMDIvREI3OEIyNjg0 QkNEMTFFRThGOTc2QjdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABniSgwDwQCAAIwCQMHACABDfAYgDANBgkqhkiG9w0BAQsF AAOCAQEAGc6sNwFyJzmU4Y6l7yMsXxVzD2XwF0EYn23G0sIjE1BcM9YgtkFAX9gj M8G4SURKWhi2jsjIJIKMmLusouvT8BmvSXWqumnn56ayrYuNYfLYZme/7eZBmEcR mQ2mKwvhLncn/d3RxHqKF7mkRXScR4zczwvK9fQOv1/JwwY/uiq6PGLG6bjZ2bJt okQ8zOoUlMfkqWP9t4DolhtHzAm9V4C4AUDIwknyGkZ18mKOqpCwyM3cNijzak1W iKnVe8GnEwqvR50++puFsVDympSgQPFEHy+S0F1Xs0S11ryPrDQ1dbqsTawjUMmc Zhy5NwOQvq0+0Wdpl/cp7aV++PzPpQ== -----END CERTIFICATE-----Generated at Tue Jun 3 23:50:14 2025 by rpki-client