$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5308/A81914E2F4D511E9B917F349C4F9AE02/CD5B717E8AB811EDA3D4ED68C4F9AE02.roa File: CD5B717E8AB811EDA3D4ED68C4F9AE02.roa (raw, json) Hash identifier: XLP4ULkxYx27srGDokdT1/3ibgVd5Ja0S3t9A21I8Bo= Subject key identifier: EE:AC:26:E1:4E:22:A6:8E:2D:6B:EF:02:FA:38:77:1D:DA:0A:7A:35 Certificate issuer: /CN=A91A5308/serialNumber=7B59055212849105AD6F39E5881D842E707439AF Certificate serial: 0CC3 Authority key identifier: 7B:59:05:52:12:84:91:05:AD:6F:39:E5:88:1D:84:2E:70:74:39:AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e1kFUhKEkQWtbznliB2ELnB0Oa8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5308/A81914E2F4D511E9B917F349C4F9AE02/CD5B717E8AB811EDA3D4ED68C4F9AE02.roa Signing time: Wed 14 May 2025 18:31:58 +0000 ROA not before: Wed 14 May 2025 18:31:58 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 138638 IP address blocks: 103.135.88.0/22 maxlen: 24 2404:7840::/32 maxlen: 32 2404:7840::/48 maxlen: 48 2404:7840:1::/48 maxlen: 48 2404:7840:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5308/A81914E2F4D511E9B917F349C4F9AE02/e1kFUhKEkQWtbznliB2ELnB0Oa8.crl rsync://rpki.apnic.net/member_repository/A91A5308/A81914E2F4D511E9B917F349C4F9AE02/e1kFUhKEkQWtbznliB2ELnB0Oa8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e1kFUhKEkQWtbznliB2ELnB0Oa8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 18:20:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3267 (0xcc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5308, serialNumber=7B59055212849105AD6F39E5881D842E707439AF Validity Not Before: May 14 18:31:58 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=6824e19d-3103 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:45:6e:77:3f:41:84:32:82:5e:ae:ac:1e:c9: cb:08:d0:65:a7:67:bf:0d:da:f6:92:58:a8:c6:f8: 67:5a:f7:11:8b:ec:98:e6:77:25:eb:09:4d:3f:0e: a2:71:69:4e:d9:2c:a7:c2:a2:53:06:7b:27:36:3a: 3b:98:70:85:5a:23:89:75:de:9a:c1:55:a8:0b:32: 4d:ea:46:69:ab:b7:49:c3:5e:51:11:22:4a:d7:27: 60:48:91:80:48:7a:98:4e:a3:b8:47:8a:08:ae:39: 3a:e8:a7:ee:46:8d:5f:b9:c9:a4:03:af:01:4e:42: 00:4a:7f:d6:f5:06:50:1e:34:3f:29:cc:88:1c:3a: 69:33:df:98:33:11:eb:28:ae:4d:58:9b:ed:1e:c3: 14:07:e0:46:65:00:bf:6f:59:ba:41:c7:3e:15:cc: ed:fd:67:79:a0:d4:ad:c4:b2:fc:a3:76:2e:14:48: 6e:b1:b8:fc:ec:30:34:76:aa:15:7b:01:cd:db:25: 59:0d:c0:63:8d:8a:f8:c0:6e:c1:3b:dd:78:49:3a: 92:8f:c2:2d:8f:59:dd:84:0d:0a:92:aa:2c:1a:62: 0a:7f:8f:55:54:1c:15:7b:06:ab:84:9a:1c:3c:ad: 9b:63:6d:12:a7:d2:1f:4e:ca:21:7a:18:b8:ea:4c: ad:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:AC:26:E1:4E:22:A6:8E:2D:6B:EF:02:FA:38:77:1D:DA:0A:7A:35 X509v3 Authority Key Identifier: keyid:7B:59:05:52:12:84:91:05:AD:6F:39:E5:88:1D:84:2E:70:74:39:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5308/A81914E2F4D511E9B917F349C4F9AE02/e1kFUhKEkQWtbznliB2ELnB0Oa8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e1kFUhKEkQWtbznliB2ELnB0Oa8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5308/A81914E2F4D511E9B917F349C4F9AE02/CD5B717E8AB811EDA3D4ED68C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.135.88.0/22 IPv6: 2404:7840::/32 Signature Algorithm: sha256WithRSAEncryption 2a:f3:a4:52:d7:b8:a6:48:9f:4b:07:6c:08:3f:05:03:5f:15: 73:25:c7:82:a7:74:d8:4e:2e:9e:fc:ad:d8:81:32:bd:de:4d: 68:61:0c:fe:02:10:28:e2:2a:c3:b0:c7:6d:a4:e3:68:c5:5c: 4d:17:57:d7:3c:bd:e0:01:17:70:f8:6f:7c:0d:ca:59:a0:7f: 09:4c:e9:58:a9:af:80:a8:6c:79:cc:d6:fb:73:c4:58:02:72: 62:95:a1:a2:67:02:91:c6:49:4c:d2:a8:f8:3f:ed:61:0b:de: 0d:6a:5e:08:7f:01:16:74:b8:d3:1f:d7:57:43:84:3d:5e:cd: 18:36:b1:e6:ef:15:cb:2d:b6:ff:77:66:ab:37:b2:d4:ca:cd: 29:ce:ae:33:25:5f:b1:d5:a7:95:2b:5f:a4:46:17:ee:c5:83: 60:9d:24:cd:3e:c9:02:2d:9c:ff:77:a7:35:da:b7:5d:15:4f: 2f:a7:1e:12:32:79:8f:19:d9:5a:46:8d:67:ca:5b:df:c5:ec: 92:b0:02:4a:48:f4:72:bd:64:fc:18:b2:3c:9f:86:34:17:5a: 49:d5:f1:e3:17:6c:4a:4c:b6:0b:2f:8a:20:71:94:99:a5:a4: a4:ca:71:64:e6:1e:ae:30:03:a8:10:88:72:70:61:e8:66:ba: 33:c8:4f:06 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTUzMDgxMTAvBgNVBAUTKDdCNTkwNTUyMTI4NDkxMDVBRDZGMzlFNTg4MUQ4NDJF NzA3NDM5QUYwHhcNMjUwNTE0MTgzMTU4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODI0ZTE5ZC0zMTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtEVudz9BhDKCXq6sHsnLCNBlp2e/Ddr2klioxvhnWvcRi+yY5ncl6wlNPw6i cWlO2SynwqJTBnsnNjo7mHCFWiOJdd6awVWoCzJN6kZpq7dJw15RESJK1ydgSJGA SHqYTqO4R4oIrjk66KfuRo1fucmkA68BTkIASn/W9QZQHjQ/KcyIHDppM9+YMxHr KK5NWJvtHsMUB+BGZQC/b1m6Qcc+Fczt/Wd5oNStxLL8o3YuFEhusbj87DA0dqoV ewHN2yVZDcBjjYr4wG7BO914STqSj8Itj1ndhA0KkqosGmIKf49VVBwVewarhJoc PK2bY20Sp9IfTsohehi46kyt6wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFO6sJuFO IqaOLWvvAvo4dx3aCno1MB8GA1UdIwQYMBaAFHtZBVIShJEFrW855YgdhC5wdDmv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTMwOC9BODE5MTRFMkY0 RDUxMUU5QjkxN0YzNDlDNEY5QUUwMi9lMWtGVWhLRWtRV3Riem5saUIyRUxuQjBP YTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Uxa0ZVaEtFa1FXdGJ6bmxpQjJFTG5CME9hOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTUzMDgvQTgxOTE0RTJGNEQ1MTFFOUI5MTdGMzQ5QzRGOUFFMDIvQ0Q1QjcxN0U4 QUI4MTFFREEzRDRFRDY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnh1gwDQQCAAIwBwMFACQEeEAwDQYJKoZIhvcNAQELBQAD ggEBACrzpFLXuKZIn0sHbAg/BQNfFXMlx4KndNhOLp78rdiBMr3eTWhhDP4CECji KsOwx22k42jFXE0XV9c8veABF3D4b3wNylmgfwlM6Vipr4CobHnM1vtzxFgCcmKV oaJnApHGSUzSqPg/7WEL3g1qXgh/ARZ0uNMf11dDhD1ezRg2sebvFcsttv93Zqs3 stTKzSnOrjMlX7HVp5UrX6RGF+7Fg2CdJM0+yQItnP93pzXat10VTy+nHhIyeY8Z 2VpGjWfKW9/F7JKwAkpI9HK9ZPwYsjyfhjQXWknV8eMXbEpMtgsviiBxlJmlpKTK cWTmHq4wA6gQiHJwYehmujPITwY= -----END CERTIFICATE-----Generated at Tue Jun 3 23:59:37 2025 by rpki-client