$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5CA9/96D611D04B0A11F0AB54201EC4F9AE02/36B587404B0F11F0A2359B4EC4F9AE02.roa File: 36B587404B0F11F0A2359B4EC4F9AE02.roa (raw, json) Hash identifier: Mp1JcqkdMAmbReGNCmp0QyS72nIBhDSCoOb/C1pLXic= Subject key identifier: 2A:B1:5F:FF:1C:95:1E:29:F4:14:30:85:0D:5A:53:FC:49:4E:F3:C9 Certificate issuer: /CN=A91C5CA9/serialNumber=55DD6C1BF1C447DF3CC8640D1112A96ACAE1F80C Certificate serial: 02 Authority key identifier: 55:DD:6C:1B:F1:C4:47:DF:3C:C8:64:0D:11:12:A9:6A:CA:E1:F8:0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vd1sG_HER988yGQNERKpasrh-Aw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5CA9/96D611D04B0A11F0AB54201EC4F9AE02/36B587404B0F11F0A2359B4EC4F9AE02.roa Signing time: Tue 17 Jun 2025 00:08:36 +0000 ROA not before: Tue 17 Jun 2025 00:08:36 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 135672 IP address blocks: 103.78.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5CA9/96D611D04B0A11F0AB54201EC4F9AE02/Vd1sG_HER988yGQNERKpasrh-Aw.crl rsync://rpki.apnic.net/member_repository/A91C5CA9/96D611D04B0A11F0AB54201EC4F9AE02/Vd1sG_HER988yGQNERKpasrh-Aw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vd1sG_HER988yGQNERKpasrh-Aw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:56:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5CA9, serialNumber=55DD6C1BF1C447DF3CC8640D1112A96ACAE1F80C Validity Not Before: Jun 17 00:08:36 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6850b204-0f72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:47:86:d6:b6:64:23:a7:20:6a:a4:5b:3b:23: 30:25:52:24:03:ba:f6:2d:f0:e3:cd:8e:61:07:c1: 98:de:ac:98:94:24:ba:37:a2:8d:2c:b3:f1:51:ec: d4:b0:66:ab:a6:71:22:ef:54:65:72:5e:e7:0d:96: eb:d8:3e:ba:35:aa:5c:78:0f:d9:fb:0b:17:1c:d0: 13:7b:c1:ec:c7:3a:bc:4c:87:3b:2d:0b:31:d8:2c: 2f:9d:ff:21:6e:ce:85:a6:58:4e:41:6e:f1:91:eb: b9:c5:d6:36:07:ac:a5:14:b0:a8:6a:6b:bd:8f:9e: 30:32:74:ae:fe:d3:fc:72:d1:16:48:07:04:32:1a: 80:e9:70:af:5f:25:b9:9f:f4:ae:e9:0e:84:bb:38: 52:e7:fc:c2:14:70:c0:66:69:55:8d:4f:7d:58:90: 80:c9:69:1c:07:e4:68:ad:2e:8b:05:8f:06:6b:a9: e2:77:7a:cf:2f:88:d2:b2:de:01:2f:35:73:ed:a1: 93:da:e3:65:99:3e:6f:2e:a9:f7:5b:4b:7c:cc:b1: 41:e6:69:eb:b0:b0:a3:82:42:1a:f1:14:c4:04:a8: 63:f1:a0:d7:27:d1:e6:ba:d8:7d:0c:b1:19:8e:ad: 20:7f:35:4d:63:47:f4:0d:4e:99:6b:ba:94:49:d9: d9:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:B1:5F:FF:1C:95:1E:29:F4:14:30:85:0D:5A:53:FC:49:4E:F3:C9 X509v3 Authority Key Identifier: keyid:55:DD:6C:1B:F1:C4:47:DF:3C:C8:64:0D:11:12:A9:6A:CA:E1:F8:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5CA9/96D611D04B0A11F0AB54201EC4F9AE02/Vd1sG_HER988yGQNERKpasrh-Aw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vd1sG_HER988yGQNERKpasrh-Aw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5CA9/96D611D04B0A11F0AB54201EC4F9AE02/36B587404B0F11F0A2359B4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.78.153.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:fe:04:fe:4a:00:9f:c1:53:67:68:b3:3d:04:df:be:f7:11: 0d:40:47:c0:0e:dc:dc:2b:db:ae:63:e2:db:af:50:11:21:03: 00:fd:f6:b2:14:cf:d8:bd:7e:ba:25:44:69:ca:76:07:19:f9: db:cc:c4:ad:5c:c4:ce:b0:d4:f3:0b:ab:f9:00:e9:e4:c5:ad: 88:33:39:a3:77:63:8d:1a:1d:f0:fd:ad:38:09:9d:f7:b1:f6: 1c:ad:2f:0a:e6:73:a6:22:76:e2:49:88:34:71:f7:c6:9c:c1: e9:7f:3c:38:11:2a:df:d6:c8:a5:2a:3a:34:36:0f:e3:5b:93: 9b:53:10:7c:64:91:c1:be:e7:d6:37:24:1d:bc:c9:99:24:72: ed:7e:27:3f:2e:97:0e:a0:0d:6d:e3:c6:e8:7a:09:ff:43:92: 32:73:62:7e:b3:b0:ff:d9:70:78:2b:89:46:20:da:4b:aa:67: 6b:f4:38:95:2c:3e:a5:02:4d:cb:45:9f:ec:78:2e:a8:47:89: d6:78:05:cc:e8:ef:e9:00:c3:e0:da:0d:0c:b2:b9:e5:44:17: 16:01:37:3e:c2:c8:43:4a:f0:7c:e9:43:26:d5:96:ce:48:c0: 7d:8b:88:bf:ce:e3:b8:bc:a8:27:53:07:ad:c5:db:2b:77:7f: 24:a7:18:4e -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NUNBOTExMC8GA1UEBRMoNTVERDZDMUJGMUM0NDdERjNDQzg2NDBEMTExMkE5NkFD QUUxRjgwQzAeFw0yNTA2MTcwMDA4MzZaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NTBiMjA0LTBmNzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVR4bWtmQjpyBqpFs7IzAlUiQDuvYt8OPNjmEHwZjerJiUJLo3oo0ss/FR7NSw ZqumcSLvVGVyXucNluvYPro1qlx4D9n7Cxcc0BN7wezHOrxMhzstCzHYLC+d/yFu zoWmWE5BbvGR67nF1jYHrKUUsKhqa72PnjAydK7+0/xy0RZIBwQyGoDpcK9fJbmf 9K7pDoS7OFLn/MIUcMBmaVWNT31YkIDJaRwH5GitLosFjwZrqeJ3es8viNKy3gEv NXPtoZPa42WZPm8uqfdbS3zMsUHmaeuwsKOCQhrxFMQEqGPxoNcn0ea62H0MsRmO rSB/NU1jR/QNTplrupRJ2dlVAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUKrFf/xyV Hin0FDCFDVpT/ElO88kwHwYDVR0jBBgwFoAUVd1sG/HER988yGQNERKpasrh+Aww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM1Q0E5Lzk2RDYxMUQwNEIw QTExRjBBQjU0MjAxRUM0RjlBRTAyL1ZkMXNHX0hFUjk4OHlHUU5FUktwYXNyaC1B dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVmQxc0dfSEVSOTg4eUdRTkVSS3Bhc3JoLUF3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NUNBOS85NkQ2MTFEMDRCMEExMUYwQUI1NDIwMUVDNEY5QUUwMi8zNkI1ODc0MDRC MEYxMUYwQTIzNTlCNEVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGdOmTANBgkqhkiG9w0BAQsFAAOCAQEAH/4E/koAn8FTZ2iz PQTfvvcRDUBHwA7c3CvbrmPi269QESEDAP32shTP2L1+uiVEacp2Bxn528zErVzE zrDU8wur+QDp5MWtiDM5o3djjRod8P2tOAmd97H2HK0vCuZzpiJ24kmINHH3xpzB 6X88OBEq39bIpSo6NDYP41uTm1MQfGSRwb7n1jckHbzJmSRy7X4nPy6XDqANbePG 6HoJ/0OSMnNifrOw/9lweCuJRiDaS6pna/Q4lSw+pQJNy0Wf7HguqEeJ1ngFzOjv 6QDD4NoNDLK55UQXFgE3PsLIQ0rwfOlDJtWWzkjAfYuIv87juLyoJ1MHrcXbK3d/ JKcYTg== -----END CERTIFICATE-----Generated at Wed Jul 2 10:22:49 2025 by rpki-client