$ rpki-client -vvf rpki.apnic.net/member_repository/A9187461/B2C206E04A1A11EDAE6D1023C4F9AE02/5E73EF1028B411F0A1AE5A68C4F9AE02.roa File: 5E73EF1028B411F0A1AE5A68C4F9AE02.roa (raw, json) Hash identifier: egVVNLsPdwUoef36phQTdD6372WDtBPUXE4iD/r+2cc= Subject key identifier: 80:F8:A6:09:5C:B7:56:3B:1F:BF:B2:6A:FE:B0:B6:E2:E7:E5:0B:62 Certificate issuer: /CN=A9187461/serialNumber=8DF693242D610F876307475342A92E1556028E53 Certificate serial: 01ED Authority key identifier: 8D:F6:93:24:2D:61:0F:87:63:07:47:53:42:A9:2E:15:56:02:8E:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jfaTJC1hD4djB0dTQqkuFVYCjlM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187461/B2C206E04A1A11EDAE6D1023C4F9AE02/5E73EF1028B411F0A1AE5A68C4F9AE02.roa Signing time: Mon 05 May 2025 02:08:43 +0000 ROA not before: Mon 05 May 2025 02:08:43 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 58682 IP address blocks: 103.137.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187461/B2C206E04A1A11EDAE6D1023C4F9AE02/jfaTJC1hD4djB0dTQqkuFVYCjlM.crl rsync://rpki.apnic.net/member_repository/A9187461/B2C206E04A1A11EDAE6D1023C4F9AE02/jfaTJC1hD4djB0dTQqkuFVYCjlM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jfaTJC1hD4djB0dTQqkuFVYCjlM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 02:21:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 493 (0x1ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187461, serialNumber=8DF693242D610F876307475342A92E1556028E53 Validity Not Before: May 5 02:08:43 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68181dab-99e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a6:47:a0:3f:21:50:e1:33:1e:96:56:5b:a9: 18:87:fd:af:f4:6e:82:ce:1b:df:ea:a2:51:8b:4f: 05:92:6b:6a:57:e0:fe:6e:25:4e:02:33:b9:89:78: b6:f3:47:78:67:91:53:1d:c6:32:c0:a3:ea:8a:54: bc:45:c4:0d:21:e6:c7:69:4a:29:87:ea:2b:68:28: 88:a2:10:2a:87:6a:69:e4:50:05:f7:c1:9b:25:b1: 43:02:9d:f9:a1:ae:77:85:eb:3e:0a:70:6b:65:9b: 39:4f:53:b9:8d:d4:b2:e6:c1:4e:6a:68:8e:ff:e7: ea:db:2b:c7:41:97:3a:21:cb:73:2d:de:c0:a6:51: 6d:8e:d1:09:8d:df:82:b7:82:4b:ec:13:51:00:60: 7b:a8:57:e8:36:7d:aa:27:8a:b7:55:83:94:11:ab: dd:44:52:c4:50:40:3d:a1:c6:98:18:4a:6a:27:53: 7b:04:a5:38:eb:82:62:1a:96:65:3f:3e:d6:f4:5a: 70:04:ff:e9:2d:85:cd:f1:51:6c:45:3a:d5:32:29: 18:52:96:8a:fc:be:98:48:05:65:2e:d7:6c:8f:52: bc:52:11:13:80:2c:57:4f:7c:cb:12:ab:7a:a1:20: ff:1a:0c:b0:e4:91:25:da:2b:e0:bd:67:e0:42:6b: 9e:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:F8:A6:09:5C:B7:56:3B:1F:BF:B2:6A:FE:B0:B6:E2:E7:E5:0B:62 X509v3 Authority Key Identifier: keyid:8D:F6:93:24:2D:61:0F:87:63:07:47:53:42:A9:2E:15:56:02:8E:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187461/B2C206E04A1A11EDAE6D1023C4F9AE02/jfaTJC1hD4djB0dTQqkuFVYCjlM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jfaTJC1hD4djB0dTQqkuFVYCjlM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187461/B2C206E04A1A11EDAE6D1023C4F9AE02/5E73EF1028B411F0A1AE5A68C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.137.159.0/24 Signature Algorithm: sha256WithRSAEncryption 26:69:52:5e:ac:ce:3e:7c:6d:7a:f1:31:87:37:3a:76:c8:fa: da:96:bf:d1:4b:cf:61:6d:78:b4:46:13:12:5d:ca:26:ae:bd: 66:2f:a7:51:7b:2d:62:ca:07:79:b0:69:5e:86:70:de:d7:e6: 5e:5c:d8:75:52:4f:b2:62:bf:9c:41:9e:23:14:fc:17:d5:02: 24:89:f8:5d:c4:0e:d1:f6:28:d7:64:b6:7f:2f:28:8a:99:00: c3:8f:45:fa:d4:dd:13:12:8b:35:19:93:53:47:64:2c:81:80: 41:4c:be:76:20:4b:42:36:2d:bd:71:09:3c:83:ff:8d:a4:5f: be:ed:02:fd:b1:6f:fd:da:5a:94:8f:8c:fd:a1:83:80:2a:7e: 31:b4:b8:aa:02:41:6d:6c:50:f9:3f:57:e4:4d:fc:9e:9a:4d: 62:b9:33:e3:ef:6e:1d:2a:e1:01:5c:24:8e:a4:96:c9:f2:fd: 14:04:ef:a5:63:4f:c6:55:d1:7a:aa:07:1d:af:7e:1a:33:e8: bd:d7:26:d5:42:b3:0c:e5:0c:b4:17:bc:de:7a:e2:e7:87:67: 8d:75:a2:86:70:d0:43:15:fd:0a:99:52:05:8e:22:bb:4f:f6: f3:69:bb:fd:cc:ed:9d:36:5a:ca:00:24:80:b8:dc:3f:86:e9: b7:59:3b:a3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAe0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc0NjExMTAvBgNVBAUTKDhERjY5MzI0MkQ2MTBGODc2MzA3NDc1MzQyQTkyRTE1 NTYwMjhFNTMwHhcNMjUwNTA1MDIwODQzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE4MWRhYi05OWUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxaZHoD8hUOEzHpZWW6kYh/2v9G6Czhvf6qJRi08FkmtqV+D+biVOAjO5iXi2 80d4Z5FTHcYywKPqilS8RcQNIebHaUoph+oraCiIohAqh2pp5FAF98GbJbFDAp35 oa53hes+CnBrZZs5T1O5jdSy5sFOamiO/+fq2yvHQZc6IctzLd7AplFtjtEJjd+C t4JL7BNRAGB7qFfoNn2qJ4q3VYOUEavdRFLEUEA9ocaYGEpqJ1N7BKU464JiGpZl Pz7W9FpwBP/pLYXN8VFsRTrVMikYUpaK/L6YSAVlLtdsj1K8UhETgCxXT3zLEqt6 oSD/Ggyw5JEl2ivgvWfgQmueRQIDAQABo4IClTCCApEwHQYDVR0OBBYEFID4pglc t1Y7H7+yav6wtuLn5QtiMB8GA1UdIwQYMBaAFI32kyQtYQ+HYwdHU0KpLhVWAo5T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzQ2MS9CMkMyMDZFMDRB MUExMUVEQUU2RDEwMjNDNEY5QUUwMi9qZmFUSkMxaEQ0ZGpCMGRUUXFrdUZWWUNq bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pmYVRKQzFoRDRkakIwZFRRcWt1RlZZQ2psTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODc0NjEvQjJDMjA2RTA0QTFBMTFFREFFNkQxMDIzQzRGOUFFMDIvNUU3M0VGMTAy OEI0MTFGMEExQUU1QTY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABniZ8wDQYJKoZIhvcNAQELBQADggEBACZpUl6szj58bXrx MYc3OnbI+tqWv9FLz2FteLRGExJdyiauvWYvp1F7LWLKB3mwaV6GcN7X5l5c2HVS T7Jiv5xBniMU/BfVAiSJ+F3EDtH2KNdktn8vKIqZAMOPRfrU3RMSizUZk1NHZCyB gEFMvnYgS0I2Lb1xCTyD/42kX77tAv2xb/3aWpSPjP2hg4AqfjG0uKoCQW1sUPk/ V+RN/J6aTWK5M+Pvbh0q4QFcJI6klsny/RQE76VjT8ZV0XqqBx2vfhoz6L3XJtVC swzlDLQXvN564ueHZ411ooZw0EMV/QqZUgWOIrtP9vNpu/3M7Z02WsoAJIC43D+G 6bdZO6M= -----END CERTIFICATE-----Generated at Wed Jun 4 00:12:25 2025 by rpki-client