$ rpki-client -vvf rpki.apnic.net/member_repository/A9187461/B2C206E04A1A11EDAE6D1023C4F9AE02/5D0766AC28B411F0A1AE5A68C4F9AE02.roa File: 5D0766AC28B411F0A1AE5A68C4F9AE02.roa (raw, json) Hash identifier: IyWwjIStMD7CLHAYI80G9u0bSfl+ZxcEcIIy1oHhXzo= Subject key identifier: 5A:F5:B4:A7:35:67:2F:EE:33:53:08:9B:6B:BF:62:94:92:A7:E8:2B Certificate issuer: /CN=A9187461/serialNumber=8DF693242D610F876307475342A92E1556028E53 Certificate serial: 01EB Authority key identifier: 8D:F6:93:24:2D:61:0F:87:63:07:47:53:42:A9:2E:15:56:02:8E:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jfaTJC1hD4djB0dTQqkuFVYCjlM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187461/B2C206E04A1A11EDAE6D1023C4F9AE02/5D0766AC28B411F0A1AE5A68C4F9AE02.roa Signing time: Mon 05 May 2025 02:08:42 +0000 ROA not before: Mon 05 May 2025 02:08:42 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 138385 IP address blocks: 103.137.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187461/B2C206E04A1A11EDAE6D1023C4F9AE02/jfaTJC1hD4djB0dTQqkuFVYCjlM.crl rsync://rpki.apnic.net/member_repository/A9187461/B2C206E04A1A11EDAE6D1023C4F9AE02/jfaTJC1hD4djB0dTQqkuFVYCjlM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jfaTJC1hD4djB0dTQqkuFVYCjlM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 02:19:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 491 (0x1eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187461, serialNumber=8DF693242D610F876307475342A92E1556028E53 Validity Not Before: May 5 02:08:42 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68181da9-8415 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:68:ce:12:62:7d:9e:fb:f4:77:cf:1b:4d:a8: 57:38:86:3f:77:a6:6a:b2:5b:7d:11:f7:7f:e7:84: 7e:8b:0a:70:85:cb:c7:d9:43:b0:49:cd:bb:d2:10: ff:e2:2e:4d:3e:fc:12:c6:b8:8a:59:af:89:6c:0e: 20:d4:92:1e:0f:3c:1a:d8:a9:33:cc:0d:05:3d:57: 7e:f9:59:4b:3f:61:56:15:4c:ed:1e:6e:39:27:43: 50:c7:7b:63:7e:a8:50:89:d7:d7:33:b9:01:fe:a0: dc:86:d0:e3:81:20:8c:19:db:0e:c2:5a:f9:2a:10: 30:24:d9:0c:64:61:26:af:3a:fa:55:66:f8:29:f5: d6:d3:8e:3d:f8:4e:70:96:a6:aa:13:87:23:f3:46: 60:4b:c8:22:ca:90:f9:4d:00:fe:9c:e8:ce:a2:dc: ec:e5:21:5b:40:f6:64:65:78:e1:cc:49:d4:8c:43: 8e:c9:5d:f1:d9:bf:ba:3e:06:60:1d:66:74:71:e8: 88:cd:dc:19:8e:b6:b1:14:d4:d9:d1:56:d9:12:37: 9c:04:fa:77:ba:33:03:62:ed:c5:6c:8b:55:da:06: 47:a1:08:79:8a:54:c5:79:93:4f:32:69:bf:9e:ca: ae:9c:2f:a5:86:6e:4f:f5:0d:9e:3e:62:7c:b4:e4: 46:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:F5:B4:A7:35:67:2F:EE:33:53:08:9B:6B:BF:62:94:92:A7:E8:2B X509v3 Authority Key Identifier: keyid:8D:F6:93:24:2D:61:0F:87:63:07:47:53:42:A9:2E:15:56:02:8E:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187461/B2C206E04A1A11EDAE6D1023C4F9AE02/jfaTJC1hD4djB0dTQqkuFVYCjlM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jfaTJC1hD4djB0dTQqkuFVYCjlM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187461/B2C206E04A1A11EDAE6D1023C4F9AE02/5D0766AC28B411F0A1AE5A68C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.137.158.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:6b:59:a3:2b:17:b5:d3:43:70:09:31:6d:d9:a0:f0:55:5d: 13:47:15:4f:cb:b3:8a:0d:82:a2:5a:6e:52:b5:5f:a2:62:1f: c7:19:05:f4:7d:41:f1:0c:d4:a6:9a:7d:54:16:3c:f0:89:58: c7:ef:29:8a:2a:5d:24:72:de:67:4d:0b:fc:6f:a9:fa:5a:23: c9:93:bd:e4:29:a6:89:3a:f4:b3:ee:58:0f:61:74:ac:6e:20: 9f:64:3f:7c:2b:e8:f5:e5:c0:4c:3d:f2:62:f9:34:27:24:db: 2f:d0:b6:6d:86:4b:05:90:7b:3c:65:29:9b:70:9c:55:4d:c1: e5:2c:46:90:7e:59:af:f0:ad:92:c3:12:70:97:8a:cc:54:78: b2:ce:03:6a:96:29:a3:76:fa:20:e2:20:13:52:c1:e9:9e:dd: de:09:2b:21:85:3f:b2:ca:51:f7:34:26:b4:97:d4:5f:10:d7: 6c:3a:64:a0:2e:6a:ac:83:3c:d5:a4:ed:05:cd:9c:eb:2a:ef: a5:9b:f5:f6:dc:92:c9:c4:1e:92:52:b2:6c:4b:85:24:67:06: dc:5b:dc:20:7b:f5:14:31:2b:aa:51:52:51:e9:14:47:c6:8e: 5d:c1:55:87:36:bb:aa:ce:90:07:53:56:93:8b:03:7a:7f:38: b3:ca:4e:77 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAeswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc0NjExMTAvBgNVBAUTKDhERjY5MzI0MkQ2MTBGODc2MzA3NDc1MzQyQTkyRTE1 NTYwMjhFNTMwHhcNMjUwNTA1MDIwODQyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE4MWRhOS04NDE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuWjOEmJ9nvv0d88bTahXOIY/d6Zqslt9Efd/54R+iwpwhcvH2UOwSc270hD/ 4i5NPvwSxriKWa+JbA4g1JIeDzwa2KkzzA0FPVd++VlLP2FWFUztHm45J0NQx3tj fqhQidfXM7kB/qDchtDjgSCMGdsOwlr5KhAwJNkMZGEmrzr6VWb4KfXW0449+E5w lqaqE4cj80ZgS8giypD5TQD+nOjOotzs5SFbQPZkZXjhzEnUjEOOyV3x2b+6PgZg HWZ0ceiIzdwZjraxFNTZ0VbZEjecBPp3ujMDYu3FbItV2gZHoQh5ilTFeZNPMmm/ nsqunC+lhm5P9Q2ePmJ8tORGHQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFr1tKc1 Zy/uM1MIm2u/YpSSp+grMB8GA1UdIwQYMBaAFI32kyQtYQ+HYwdHU0KpLhVWAo5T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzQ2MS9CMkMyMDZFMDRB MUExMUVEQUU2RDEwMjNDNEY5QUUwMi9qZmFUSkMxaEQ0ZGpCMGRUUXFrdUZWWUNq bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pmYVRKQzFoRDRkakIwZFRRcWt1RlZZQ2psTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODc0NjEvQjJDMjA2RTA0QTFBMTFFREFFNkQxMDIzQzRGOUFFMDIvNUQwNzY2QUMy OEI0MTFGMEExQUU1QTY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABniZ4wDQYJKoZIhvcNAQELBQADggEBAExrWaMrF7XTQ3AJ MW3ZoPBVXRNHFU/Ls4oNgqJablK1X6JiH8cZBfR9QfEM1KaafVQWPPCJWMfvKYoq XSRy3mdNC/xvqfpaI8mTveQppok69LPuWA9hdKxuIJ9kP3wr6PXlwEw98mL5NCck 2y/Qtm2GSwWQezxlKZtwnFVNweUsRpB+Wa/wrZLDEnCXisxUeLLOA2qWKaN2+iDi IBNSweme3d4JKyGFP7LKUfc0JrSX1F8Q12w6ZKAuaqyDPNWk7QXNnOsq76Wb9fbc ksnEHpJSsmxLhSRnBtxb3CB79RQxK6pRUlHpFEfGjl3BVYc2u6rOkAdTVpOLA3p/ OLPKTnc= -----END CERTIFICATE-----Generated at Mon Jun 2 07:18:48 2025 by rpki-client