$ rpki-client -vvf rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/568D8AACF00511ED9239BC6EC4F9AE02.roa File: 568D8AACF00511ED9239BC6EC4F9AE02.roa (raw, json) Hash identifier: INPCDc0DcqgC408Ka6XEyt5LGDqlBDYRzaUMMyrzKIM= Subject key identifier: 73:07:51:8B:17:31:4C:CB:F5:E7:63:8C:44:F1:01:86:B9:3D:E3:B8 Certificate issuer: /CN=A91449E2/serialNumber=0F46BDBC74904E5DF829F01595B51CAAA201B9DB Certificate serial: 0184 Authority key identifier: 0F:46:BD:BC:74:90:4E:5D:F8:29:F0:15:95:B5:1C:AA:A2:01:B9:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/568D8AACF00511ED9239BC6EC4F9AE02.roa Signing time: Sat 31 May 2025 03:51:33 +0000 ROA not before: Sat 31 May 2025 03:51:33 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 151318 IP address blocks: 103.137.230.0/23 maxlen: 23 103.137.230.0/24 maxlen: 24 103.137.231.0/24 maxlen: 24 2001:df2:66c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.crl rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 03:20:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 388 (0x184) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91449E2, serialNumber=0F46BDBC74904E5DF829F01595B51CAAA201B9DB Validity Not Before: May 31 03:51:33 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683a7cc5-a0e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:f6:8b:19:28:89:bf:18:a6:e9:28:2b:1a:c6: 18:2c:b5:84:01:62:0f:44:77:c6:6e:ed:05:b6:25: 6a:4d:71:94:bf:9f:d3:15:cd:35:f5:74:9d:68:be: 55:1c:ca:2d:87:a8:d9:6b:4f:40:39:44:0a:b5:64: f3:15:13:57:3f:9b:fb:12:ee:46:e0:05:fb:d1:78: d8:5a:f3:71:6c:3c:22:78:f5:c7:ca:26:41:c1:33: 71:7e:3c:00:29:95:a5:2e:80:b8:70:62:7a:eb:d7: c8:2b:c3:68:44:bc:9b:ff:66:4f:7d:f0:78:9f:21: c1:d6:6e:d5:94:d3:ba:9a:5f:1d:b7:9c:87:b2:e1: 6e:a3:bb:3c:a3:32:c7:f0:fb:b6:a9:ab:a6:13:82: 29:67:f1:30:cc:4f:bd:67:70:fe:76:22:98:6d:9c: ea:91:f1:2d:a6:a9:0d:51:3f:d4:5f:eb:7e:0f:00: 5a:fb:0e:bf:84:db:d9:99:a7:66:27:80:13:ae:ae: 74:d7:9b:39:ea:93:5f:2a:39:4e:d5:cd:a8:df:45: f5:23:c1:8c:a9:01:29:a8:2d:88:52:e7:0a:e4:5d: 95:b3:df:10:c3:0f:5d:26:23:44:33:89:46:3c:1f: ca:be:4f:e4:75:18:9b:39:40:14:ee:a2:57:1f:c7: 5c:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:07:51:8B:17:31:4C:CB:F5:E7:63:8C:44:F1:01:86:B9:3D:E3:B8 X509v3 Authority Key Identifier: keyid:0F:46:BD:BC:74:90:4E:5D:F8:29:F0:15:95:B5:1C:AA:A2:01:B9:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/568D8AACF00511ED9239BC6EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.137.230.0/23 IPv6: 2001:df2:66c0::/48 Signature Algorithm: sha256WithRSAEncryption 93:6e:8e:d9:4f:c7:3d:6f:73:64:14:26:af:7c:3e:3f:e7:c9: f4:52:2d:9b:14:fe:5f:48:3c:62:8f:5a:d0:88:33:73:6f:dc: 8a:8f:d8:91:e1:68:70:80:56:d0:85:86:06:8a:24:bf:6f:6a: eb:1f:46:ae:92:78:7e:3d:39:16:a1:e5:64:10:ca:7d:09:20: 8d:18:dd:ea:ab:f5:24:2d:b1:fe:86:ce:a4:db:2a:d6:eb:4b: 83:ea:51:f6:0b:04:95:42:5c:1b:2f:ed:29:1c:3a:24:f6:8e: ac:00:aa:29:c0:2e:fd:e8:41:90:68:25:21:64:fd:fd:b2:15: 50:21:dc:be:2b:45:ee:60:b8:2f:6c:22:42:9f:c8:3f:b7:2b: 79:c0:a9:a7:f1:a2:dd:d1:32:93:35:cf:62:5c:5c:b2:c8:c7: 92:74:29:a3:07:27:e6:d8:99:77:60:a2:62:17:08:34:86:37: c8:91:1c:6d:3a:dc:3b:ec:35:6a:cf:a3:ae:8c:da:84:ee:b3: a2:84:6e:a7:9b:6f:ca:c0:20:50:3d:d3:20:4c:34:f1:63:42: 0f:98:f2:bd:a1:d4:05:32:2c:47:de:26:df:d0:d5:29:e9:db: 5a:a5:9f:e5:9b:04:3a:bf:25:a7:5f:f1:56:30:ed:f8:f6:ea: 2e:62:06:d7 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQ5RTIxMTAvBgNVBAUTKDBGNDZCREJDNzQ5MDRFNURGODI5RjAxNTk1QjUxQ0FB QTIwMUI5REIwHhcNMjUwNTMxMDM1MTMzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNhN2NjNS1hMGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzfaLGSiJvxim6SgrGsYYLLWEAWIPRHfGbu0FtiVqTXGUv5/TFc019XSdaL5V HMoth6jZa09AOUQKtWTzFRNXP5v7Eu5G4AX70XjYWvNxbDwiePXHyiZBwTNxfjwA KZWlLoC4cGJ669fIK8NoRLyb/2ZPffB4nyHB1m7VlNO6ml8dt5yHsuFuo7s8ozLH 8Pu2qaumE4IpZ/EwzE+9Z3D+diKYbZzqkfEtpqkNUT/UX+t+DwBa+w6/hNvZmadm J4ATrq5015s56pNfKjlO1c2o30X1I8GMqQEpqC2IUucK5F2Vs98Qww9dJiNEM4lG PB/Kvk/kdRibOUAU7qJXH8dchwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFHMHUYsX MUzL9edjjETxAYa5PeO4MB8GA1UdIwQYMBaAFA9Gvbx0kE5d+CnwFZW1HKqiAbnb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDlFMi9CNjQ0MzM4NEVG RkYxMUVEODU1NkVFNTRDNEY5QUUwMi9EMGE5dkhTUVRsMzRLZkFWbGJVY3FxSUJ1 ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QwYTl2SFNRVGwzNEtmQVZsYlVjcXFJQnVkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDQ5RTIvQjY0NDMzODRFRkZGMTFFRDg1NTZFRTU0QzRGOUFFMDIvNTY4RDhBQUNG MDA1MTFFRDkyMzlCQzZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnieYwDwQCAAIwCQMHACABDfJmwDANBgkqhkiG9w0BAQsF AAOCAQEAk26O2U/HPW9zZBQmr3w+P+fJ9FItmxT+X0g8Yo9a0Igzc2/cio/YkeFo cIBW0IWGBookv29q6x9GrpJ4fj05FqHlZBDKfQkgjRjd6qv1JC2x/obOpNsq1utL g+pR9gsElUJcGy/tKRw6JPaOrACqKcAu/ehBkGglIWT9/bIVUCHcvitF7mC4L2wi Qp/IP7crecCpp/Gi3dEykzXPYlxcssjHknQpowcn5tiZd2CiYhcINIY3yJEcbTrc O+w1as+jrozahO6zooRup5tvysAgUD3TIEw08WNCD5jyvaHUBTIsR94m39DVKenb WqWf5ZsEOr8lp1/xVjDt+PbqLmIG1w== -----END CERTIFICATE-----Generated at Mon Jun 2 07:04:24 2025 by rpki-client