$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/36AFB016FC6111EEAFBE4719C4F9AE02.roa File: 36AFB016FC6111EEAFBE4719C4F9AE02.roa (raw, json) Hash identifier: 8Neml3oC6KcoFUvC+s8BLmWMEpSAAtUFs6SqBjTSq9o= Subject key identifier: 7D:FF:CC:9F:45:35:64:19:2C:26:65:CC:87:BE:94:5E:A8:F3:27:A7 Certificate issuer: /CN=A91BFE6A/serialNumber=EF62F155C1971D504941F571EEDFAC0AFCC52859 Certificate serial: 1284 Authority key identifier: EF:62:F1:55:C1:97:1D:50:49:41:F5:71:EE:DF:AC:0A:FC:C5:28:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72LxVcGXHVBJQfVx7t-sCvzFKFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/36AFB016FC6111EEAFBE4719C4F9AE02.roa Signing time: Wed 14 May 2025 17:38:57 +0000 ROA not before: Wed 14 May 2025 17:38:57 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 63930 IP address blocks: 45.119.203.0/24 maxlen: 24 103.60.10.0/24 maxlen: 24 103.60.11.0/24 maxlen: 24 119.161.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.crl rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72LxVcGXHVBJQfVx7t-sCvzFKFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 17:17:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4740 (0x1284) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFE6A, serialNumber=EF62F155C1971D504941F571EEDFAC0AFCC52859 Validity Not Before: May 14 17:38:57 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6824d531-ac47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:fa:00:5a:ea:40:88:13:53:aa:5f:5b:0d:df: 19:b2:b2:a3:19:b9:67:3a:d3:bf:a6:b1:7c:7f:7c: 0b:56:9e:71:0c:97:73:61:a4:17:c4:48:ad:ee:08: dd:31:84:02:5e:08:40:f2:aa:78:c9:c1:43:cf:8a: 0a:29:21:12:97:b4:43:1c:70:17:00:23:db:2f:af: 0b:e1:c9:57:03:33:09:e2:58:5d:29:6b:fc:5c:f1: c7:e5:12:1c:44:20:99:df:0f:46:b1:2e:1b:0d:d7: 1d:31:ca:df:80:bf:13:f9:ed:17:83:02:e8:b2:67: 78:de:73:eb:29:d2:a6:2f:d5:a9:8f:7e:43:2b:31: d8:8a:2b:ff:3c:58:61:ef:95:a9:32:52:aa:4f:93: c0:c2:8e:92:e5:4d:44:63:5b:f4:d5:9c:c3:b7:7c: e4:6e:73:cf:42:8a:1e:c6:e3:c3:b7:1a:c3:c6:4b: 7e:5d:64:02:38:47:84:2a:3f:de:8f:c1:c1:c6:3a: b6:4b:fb:32:88:03:15:70:9e:e3:77:29:94:a6:7b: a7:da:8e:ad:dc:d0:87:94:3a:18:f6:29:b8:5e:e0: d6:cd:b9:fe:2e:ba:dc:aa:2a:ce:1a:39:f7:09:9e: 28:2a:a8:9f:34:d4:b6:61:ce:dd:a0:5c:fb:f1:47: 3d:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:FF:CC:9F:45:35:64:19:2C:26:65:CC:87:BE:94:5E:A8:F3:27:A7 X509v3 Authority Key Identifier: keyid:EF:62:F1:55:C1:97:1D:50:49:41:F5:71:EE:DF:AC:0A:FC:C5:28:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72LxVcGXHVBJQfVx7t-sCvzFKFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/36AFB016FC6111EEAFBE4719C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.119.203.0/24 103.60.10.0/23 119.161.100.0/24 Signature Algorithm: sha256WithRSAEncryption b0:be:29:14:b3:fa:a7:c5:d6:f4:4c:00:e2:69:d6:8e:d8:0e: f4:80:7c:86:be:30:7b:ba:18:9f:27:2c:59:68:85:af:d2:c9: c0:87:4f:48:5f:18:2b:2e:b5:f0:73:8b:57:e1:91:1f:b6:b7: 2c:de:c1:c9:99:ec:a6:db:d0:2e:23:4d:c8:03:05:21:9f:e8: a3:a0:c9:5a:b0:23:a9:44:f9:9a:66:d1:ff:f0:47:7b:53:9a: 2c:29:18:91:6d:ea:24:8f:c5:7b:a4:0a:b3:21:a0:00:a5:9a: 54:a0:d2:28:51:cd:8c:04:b3:61:6d:39:6e:63:ec:0d:cf:2a: eb:7d:a9:33:e5:94:c7:ef:cd:da:46:62:7f:94:16:80:05:88: 79:98:4f:16:c3:f1:30:43:dc:30:f9:5f:96:87:a9:95:b6:22: 88:ec:11:c2:b4:de:b9:86:3d:53:e5:f5:bb:5d:6a:c2:43:44: de:db:25:89:4d:e7:b7:1a:99:d2:5c:aa:2c:a1:c8:d6:7e:cc: 71:7e:39:2e:ff:9d:0d:10:de:2f:45:63:07:d6:15:c1:3d:b2: dd:8a:90:c4:91:f4:5d:17:19:ec:37:86:35:9b:c0:86:ec:86: db:15:61:6e:0e:c2:3e:6d:09:c6:2c:9a:56:bf:d1:84:d2:4e: 3c:c8:5c:48 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICEoQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkZFNkExMTAvBgNVBAUTKEVGNjJGMTU1QzE5NzFENTA0OTQxRjU3MUVFREZBQzBB RkNDNTI4NTkwHhcNMjUwNTE0MTczODU3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI0ZDUzMS1hYzQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtfoAWupAiBNTql9bDd8ZsrKjGblnOtO/prF8f3wLVp5xDJdzYaQXxEit7gjd MYQCXghA8qp4ycFDz4oKKSESl7RDHHAXACPbL68L4clXAzMJ4lhdKWv8XPHH5RIc RCCZ3w9GsS4bDdcdMcrfgL8T+e0XgwLosmd43nPrKdKmL9Wpj35DKzHYiiv/PFhh 75WpMlKqT5PAwo6S5U1EY1v01ZzDt3zkbnPPQooexuPDtxrDxkt+XWQCOEeEKj/e j8HBxjq2S/syiAMVcJ7jdymUpnun2o6t3NCHlDoY9im4XuDWzbn+LrrcqirOGjn3 CZ4oKqifNNS2Yc7doFz78Uc9QQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFH3/zJ9F NWQZLCZlzIe+lF6o8yenMB8GA1UdIwQYMBaAFO9i8VXBlx1QSUH1ce7frAr8xShZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRkU2QS8xRDY0MzI4RUQz ODcxMUU4QkQ3MDc1NUNDNEY5QUUwMi83Mkx4VmNHWEhWQkpRZlZ4N3Qtc0N2ekZL RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyTHhWY0dYSFZCSlFmVng3dC1zQ3Z6RktGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkZFNkEvMUQ2NDMyOEVEMzg3MTFFOEJENzA3NTVDQzRGOUFFMDIvMzZBRkIwMTZG QzYxMTFFRUFGQkU0NzE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAAtd8sDBAFnPAoDBAB3oWQwDQYJKoZIhvcNAQELBQADggEB ALC+KRSz+qfF1vRMAOJp1o7YDvSAfIa+MHu6GJ8nLFloha/SycCHT0hfGCsutfBz i1fhkR+2tyzewcmZ7Kbb0C4jTcgDBSGf6KOgyVqwI6lE+Zpm0f/wR3tTmiwpGJFt 6iSPxXukCrMhoAClmlSg0ihRzYwEs2FtOW5j7A3PKut9qTPllMfvzdpGYn+UFoAF iHmYTxbD8TBD3DD5X5aHqZW2IojsEcK03rmGPVPl9btdasJDRN7bJYlN57camdJc qiyhyNZ+zHF+OS7/nQ0Q3i9FYwfWFcE9st2KkMSR9F0XGew3hjWbwIbshtsVYW4O wj5tCcYsmla/0YTSTjzIXEg= -----END CERTIFICATE-----Generated at Wed Jun 4 00:09:41 2025 by rpki-client