$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/13EB65D41AB511F0A1F0A34BC4F9AE02.roa File: 13EB65D41AB511F0A1F0A34BC4F9AE02.roa (raw, json) Hash identifier: gBn5RMkmkclmyZmL4wf1QAerjjB7P04/rGPHIIjACSc= Subject key identifier: 5B:94:16:DE:78:52:F1:68:E4:04:29:F2:42:86:3F:B4:30:44:EC:6E Certificate issuer: /CN=A91B2EDE/serialNumber=9DB258C170B232294D863F60D2DC0123CDAAE789 Certificate serial: 1A Authority key identifier: 9D:B2:58:C1:70:B2:32:29:4D:86:3F:60:D2:DC:01:23:CD:AA:E7:89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nbJYwXCyMilNhj9g0twBI82q54k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/13EB65D41AB511F0A1F0A34BC4F9AE02.roa Signing time: Sat 31 May 2025 07:51:18 +0000 ROA not before: Sat 31 May 2025 07:51:18 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 6079 IP address blocks: 103.152.136.0/24 maxlen: 24 103.152.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.crl rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nbJYwXCyMilNhj9g0twBI82q54k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 07:40:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26 (0x1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2EDE, serialNumber=9DB258C170B232294D863F60D2DC0123CDAAE789 Validity Not Before: May 31 07:51:18 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=683ab4f6-189b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f4:87:12:01:83:e2:b5:01:56:b0:e0:b8:f5: 4a:5a:6e:92:ef:89:01:48:f8:20:b9:4f:4f:57:ea: 45:a2:95:f0:d6:7b:0a:51:19:f4:9f:16:33:6e:c8: d5:22:f9:1c:07:e9:e4:f6:45:6b:e9:01:73:38:2f: f6:3c:84:0c:7b:73:66:cb:92:e5:02:cc:36:22:b8: 9c:51:26:d4:0b:02:25:89:5d:40:3a:0c:6f:cc:7c: c7:80:8f:b0:cd:b2:31:ec:73:b5:91:be:7c:fb:87: 37:04:c2:5e:04:2c:6d:5a:6e:b0:b2:c1:36:03:7a: d7:ec:6a:5f:88:4a:57:08:17:cd:f9:70:3c:0c:7b: 41:1a:51:79:f2:60:b4:96:86:d7:a7:62:24:ac:d6: 0c:f2:48:80:c3:8b:32:47:18:b4:93:19:60:f7:ad: 28:e5:ce:d1:90:e1:ea:cb:9d:68:e5:da:af:fd:11: 2c:eb:53:6d:92:0b:c7:13:e4:dd:a3:e8:c5:1a:f8: 34:18:15:42:14:ad:27:eb:76:28:5d:23:76:1d:45: 91:b0:28:d0:98:b4:d9:a8:0b:7f:62:2f:e4:13:59: 24:b9:1d:54:24:53:04:5a:95:2a:60:86:5f:d9:6f: 6f:b3:03:19:27:41:1c:c7:1b:ec:78:ac:bc:7f:f7: 98:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:94:16:DE:78:52:F1:68:E4:04:29:F2:42:86:3F:B4:30:44:EC:6E X509v3 Authority Key Identifier: keyid:9D:B2:58:C1:70:B2:32:29:4D:86:3F:60:D2:DC:01:23:CD:AA:E7:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/nbJYwXCyMilNhj9g0twBI82q54k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nbJYwXCyMilNhj9g0twBI82q54k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2EDE/55CB2E041AB411F085DD694AC4F9AE02/13EB65D41AB511F0A1F0A34BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.136.0/23 Signature Algorithm: sha256WithRSAEncryption a4:51:73:0c:04:a8:32:5c:08:4c:fa:6a:3b:bb:e2:13:64:52: 0b:c8:61:0b:0a:bf:04:78:ee:bc:4b:32:3e:48:8c:a4:17:6a: 89:c4:08:a3:e4:74:5c:5c:a7:63:ff:7d:2b:22:5c:1f:42:f3: 52:d8:84:d5:81:4f:e7:c8:21:6c:de:bb:64:03:86:82:29:68: ec:94:84:ae:27:fb:97:f5:13:9f:ab:9f:0f:6f:81:c0:be:06: 94:16:5c:ae:cb:45:93:df:32:85:07:62:e4:75:7a:60:7c:8a: e2:38:2b:f7:0e:55:76:60:36:15:36:74:e1:20:17:04:10:a0: 6e:6c:0c:88:c4:44:76:01:2e:ee:cf:62:1f:09:9c:0b:6b:61: 72:5f:c9:6b:4e:bc:66:78:e3:e3:42:5d:36:30:8e:e1:72:77: e7:16:61:b1:76:3e:72:37:b3:45:c1:99:40:25:1a:e8:e7:1d: 60:89:f4:2e:2b:c1:eb:ea:53:5c:9d:6f:4e:c7:34:68:3a:3d: 15:f7:90:1c:17:48:08:85:d6:7a:b0:83:d2:aa:dc:4c:29:6a: 2d:17:46:a8:d3:57:04:09:b1:5f:1c:53:0b:aa:c7:8b:da:9f: fb:be:32:30:41:ce:61:3e:28:91:33:40:96:f0:91:01:67:86: f0:e8:ab:f3 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBGjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MkVERTExMC8GA1UEBRMoOURCMjU4QzE3MEIyMzIyOTREODYzRjYwRDJEQzAxMjND REFBRTc4OTAeFw0yNTA1MzEwNzUxMThaFw0yNjA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4M2FiNGY2LTE4OWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC89IcSAYPitQFWsOC49UpabpLviQFI+CC5T09X6kWilfDWewpRGfSfFjNuyNUi +RwH6eT2RWvpAXM4L/Y8hAx7c2bLkuUCzDYiuJxRJtQLAiWJXUA6DG/MfMeAj7DN sjHsc7WRvnz7hzcEwl4ELG1abrCywTYDetfsal+ISlcIF835cDwMe0EaUXnyYLSW htenYiSs1gzySIDDizJHGLSTGWD3rSjlztGQ4erLnWjl2q/9ESzrU22SC8cT5N2j 6MUa+DQYFUIUrSfrdihdI3YdRZGwKNCYtNmoC39iL+QTWSS5HVQkUwRalSpghl/Z b2+zAxknQRzHG+x4rLx/95jlAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUW5QW3nhS 8WjkBCnyQoY/tDBE7G4wHwYDVR0jBBgwFoAUnbJYwXCyMilNhj9g0twBI82q54kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIyRURFLzU1Q0IyRTA0MUFC NDExRjA4NURENjk0QUM0RjlBRTAyL25iSll3WEN5TWlsTmhqOWcwdHdCSTgycTU0 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbmJKWXdYQ3lNaWxOaGo5ZzB0d0JJODJxNTRrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MkVERS81NUNCMkUwNDFBQjQxMUYwODVERDY5NEFDNEY5QUUwMi8xM0VCNjVENDFB QjUxMUYwQTFGMEEzNEJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWeYiDANBgkqhkiG9w0BAQsFAAOCAQEApFFzDASoMlwITPpq O7viE2RSC8hhCwq/BHjuvEsyPkiMpBdqicQIo+R0XFynY/99KyJcH0LzUtiE1YFP 58ghbN67ZAOGgilo7JSErif7l/UTn6ufD2+BwL4GlBZcrstFk98yhQdi5HV6YHyK 4jgr9w5VdmA2FTZ04SAXBBCgbmwMiMREdgEu7s9iHwmcC2thcl/Ja068Znjj40Jd NjCO4XJ35xZhsXY+cjezRcGZQCUa6OcdYIn0LivB6+pTXJ1vTsc0aDo9FfeQHBdI CIXWerCD0qrcTClqLRdGqNNXBAmxXxxTC6rHi9qf+74yMEHOYT4okTNAlvCRAWeG 8Oir8w== -----END CERTIFICATE-----Generated at Mon Jun 2 06:31:18 2025 by rpki-client