$ rpki-client -vvf rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/D933655E23B511EBA7BDD50FC4F9AE02.roa File: D933655E23B511EBA7BDD50FC4F9AE02.roa (raw, json) Hash identifier: 8WBXx40LoIwub2WeF3ccrcQG4fq4wKZ7IVrDku/6ikQ= Subject key identifier: 8D:BB:CE:D0:B8:F5:2B:68:19:34:09:3B:BF:A5:E8:A2:F2:FF:48:AB Certificate issuer: /CN=A91D37E4/serialNumber=8BDA8A1FE07B46C33063046A725EAB85642B9C2D Certificate serial: 076D Authority key identifier: 8B:DA:8A:1F:E0:7B:46:C3:30:63:04:6A:72:5E:AB:85:64:2B:9C:2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i9qKH-B7RsMwYwRqcl6rhWQrnC0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/D933655E23B511EBA7BDD50FC4F9AE02.roa Signing time: Mon 26 May 2025 22:10:17 +0000 ROA not before: Mon 26 May 2025 22:10:17 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 136488 IP address blocks: 103.90.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.crl rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i9qKH-B7RsMwYwRqcl6rhWQrnC0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 21:45:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1901 (0x76d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D37E4, serialNumber=8BDA8A1FE07B46C33063046A725EAB85642B9C2D Validity Not Before: May 26 22:10:17 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6834e6c8-76da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a1:eb:9e:d4:91:7c:fe:60:b3:cc:d8:74:cf: c6:6b:c5:61:02:41:f0:5e:e7:58:b0:0a:1b:7d:24: 99:74:69:75:4a:0f:e5:a6:5a:2e:e3:a4:ef:9c:55: ee:17:9d:26:18:be:3a:60:ff:83:07:45:bd:3d:f0: a1:cb:4c:c1:b9:59:70:7a:85:60:0e:7a:aa:d4:c5: d8:63:1a:f9:1b:e1:63:4e:c5:2b:28:86:4e:5f:e2: cb:47:c7:fa:53:c8:18:99:58:35:81:4e:8b:5a:f2: e7:c7:6f:fa:3d:55:7c:53:6d:6d:80:ec:c6:9f:b3: 41:2e:b7:c7:42:ef:5b:8b:67:fd:bb:7d:2b:3b:c1: 78:64:e3:cf:1d:fd:5f:85:bd:1a:0a:89:ee:13:88: 85:d9:f7:51:dc:36:dc:9a:6d:73:4f:c4:55:eb:49: e2:e5:62:6d:ac:af:63:3c:7f:de:f4:eb:64:a6:67: 64:ac:49:61:17:43:73:cd:5e:a9:c8:a3:14:e4:3d: 49:d6:e7:65:45:56:cf:24:44:93:30:ca:3a:95:55: 87:6a:cd:fe:f3:69:97:0d:47:1c:c8:35:a0:50:56: 91:51:47:b9:c4:61:5d:8c:7a:90:aa:8b:1f:26:19: 06:e9:b3:e7:cf:75:08:bd:fb:25:58:d3:62:34:d9: e6:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:BB:CE:D0:B8:F5:2B:68:19:34:09:3B:BF:A5:E8:A2:F2:FF:48:AB X509v3 Authority Key Identifier: keyid:8B:DA:8A:1F:E0:7B:46:C3:30:63:04:6A:72:5E:AB:85:64:2B:9C:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/i9qKH-B7RsMwYwRqcl6rhWQrnC0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i9qKH-B7RsMwYwRqcl6rhWQrnC0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D37E4/36FB11441D5A11EBB7988D17C4F9AE02/D933655E23B511EBA7BDD50FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.90.14.0/24 Signature Algorithm: sha256WithRSAEncryption b3:28:ff:aa:1d:67:4b:1b:89:b3:5b:eb:bc:54:f4:f1:84:1c: 9b:e1:af:cd:9d:aa:0d:14:d2:10:51:c4:69:6b:11:7a:c7:50: 4f:a0:09:39:fc:e9:f0:8f:fc:31:de:4c:ee:0f:eb:28:18:2d: e0:13:15:e1:f3:e0:74:71:8d:ca:ba:ce:aa:c8:0a:b2:18:bf: 2d:e1:d4:d7:c5:56:06:a0:d2:07:30:6f:42:d4:97:a6:13:05: 63:08:63:a0:e5:5c:f5:2a:ac:45:e9:e7:09:c7:3f:3c:bc:e1: f1:2c:0f:5f:d5:1d:b5:f7:5c:b8:3e:0d:d0:ac:77:a9:9e:ed: 42:66:24:bb:0c:b8:03:1d:69:3c:11:5b:69:60:0e:82:b2:24: 6c:3a:93:d2:91:1f:ac:28:c5:cd:0d:19:9a:1c:31:b6:6c:d1: e6:d7:5e:2d:25:75:b2:7f:2c:23:83:b0:73:e2:e8:20:82:c9: 0e:e5:9a:19:c1:91:ad:52:5d:42:c8:42:34:ea:22:3e:d6:ad: 17:45:3f:49:3c:a1:40:67:5f:f8:a1:0c:5b:80:1b:9b:50:50: 68:06:72:e2:3e:f1:b9:c9:21:54:50:cb:cc:96:fd:bc:24:11: 6a:43:97:34:55:e0:f0:61:ad:c4:7e:fc:c0:14:4a:d3:fc:e6: 7a:99:a7:1f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB20wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM3RTQxMTAvBgNVBAUTKDhCREE4QTFGRTA3QjQ2QzMzMDYzMDQ2QTcyNUVBQjg1 NjQyQjlDMkQwHhcNMjUwNTI2MjIxMDE3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM0ZTZjOC03NmRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvqHrntSRfP5gs8zYdM/Ga8VhAkHwXudYsAobfSSZdGl1Sg/lplou46TvnFXu F50mGL46YP+DB0W9PfChy0zBuVlweoVgDnqq1MXYYxr5G+FjTsUrKIZOX+LLR8f6 U8gYmVg1gU6LWvLnx2/6PVV8U21tgOzGn7NBLrfHQu9bi2f9u30rO8F4ZOPPHf1f hb0aConuE4iF2fdR3Dbcmm1zT8RV60ni5WJtrK9jPH/e9OtkpmdkrElhF0NzzV6p yKMU5D1J1udlRVbPJESTMMo6lVWHas3+82mXDUccyDWgUFaRUUe5xGFdjHqQqosf JhkG6bPnz3UIvfslWNNiNNnm9wIDAQABo4IClTCCApEwHQYDVR0OBBYEFI27ztC4 9StoGTQJO7+l6KLy/0irMB8GA1UdIwQYMBaAFIvaih/ge0bDMGMEanJeq4VkK5wt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzdFNC8zNkZCMTE0NDFE NUExMUVCQjc5ODhEMTdDNEY5QUUwMi9pOXFLSC1CN1JzTXdZd1JxY2w2cmhXUXJu QzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2k5cUtILUI3UnNNd1l3UnFjbDZyaFdRcm5DMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDM3RTQvMzZGQjExNDQxRDVBMTFFQkI3OTg4RDE3QzRGOUFFMDIvRDkzMzY1NUUy M0I1MTFFQkE3QkRENTBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnWg4wDQYJKoZIhvcNAQELBQADggEBALMo/6odZ0sbibNb 67xU9PGEHJvhr82dqg0U0hBRxGlrEXrHUE+gCTn86fCP/DHeTO4P6ygYLeATFeHz 4HRxjcq6zqrICrIYvy3h1NfFVgag0gcwb0LUl6YTBWMIY6DlXPUqrEXp5wnHPzy8 4fEsD1/VHbX3XLg+DdCsd6me7UJmJLsMuAMdaTwRW2lgDoKyJGw6k9KRH6woxc0N GZocMbZs0ebXXi0ldbJ/LCODsHPi6CCCyQ7lmhnBka1SXULIQjTqIj7WrRdFP0k8 oUBnX/ihDFuAG5tQUGgGcuI+8bnJIVRQy8yW/bwkEWpDlzRV4PBhrcR+/MAUStP8 5nqZpx8= -----END CERTIFICATE-----Generated at Tue Jun 3 23:46:00 2025 by rpki-client