$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3D89/D3ED585820B811EFBE1C2815C4F9AE02/37D4A3DE20BA11EF9B035D1FC4F9AE02.roa File: 37D4A3DE20BA11EF9B035D1FC4F9AE02.roa (raw, json) Hash identifier: 97sXWjq7Fj5JCQCyo6BRYI+5mz862DUMpg5o3JeeUks= Subject key identifier: 7B:58:2F:69:0A:B2:FD:35:54:34:AD:3E:E9:08:31:A1:85:01:56:52 Certificate issuer: /CN=A91D3D89/serialNumber=48F96009BCD4CE06CD60D125F0A91B23FEC30360 Certificate serial: BD Authority key identifier: 48:F9:60:09:BC:D4:CE:06:CD:60:D1:25:F0:A9:1B:23:FE:C3:03:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPlgCbzUzgbNYNEl8KkbI_7DA2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3D89/D3ED585820B811EFBE1C2815C4F9AE02/37D4A3DE20BA11EF9B035D1FC4F9AE02.roa Signing time: Sun 25 May 2025 05:36:49 +0000 ROA not before: Sun 25 May 2025 05:36:49 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 152856 IP address blocks: 103.159.210.0/23 maxlen: 24 2001:df3:d140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3D89/D3ED585820B811EFBE1C2815C4F9AE02/SPlgCbzUzgbNYNEl8KkbI_7DA2A.crl rsync://rpki.apnic.net/member_repository/A91D3D89/D3ED585820B811EFBE1C2815C4F9AE02/SPlgCbzUzgbNYNEl8KkbI_7DA2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPlgCbzUzgbNYNEl8KkbI_7DA2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 05:36:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 189 (0xbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3D89, serialNumber=48F96009BCD4CE06CD60D125F0A91B23FEC30360 Validity Not Before: May 25 05:36:49 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6832ac71-e538 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ca:71:2d:82:77:0f:e6:6d:39:23:30:18:06: 47:a8:04:68:2a:1e:99:cd:36:99:2b:7a:00:8d:fc: b8:27:1c:da:9b:b5:e2:40:7b:c3:3a:a9:40:9d:21: 4a:2e:12:47:5e:03:9f:d8:4f:60:09:ad:16:dd:6c: d5:b6:ba:07:bc:1b:cf:ea:04:db:11:bf:19:97:b0: ae:c4:45:08:4f:ce:d9:80:6d:f3:56:d9:16:f3:7f: 1e:24:f3:2e:68:61:41:44:e9:53:e9:0c:73:3c:cd: ed:38:26:ff:0a:29:4c:33:4d:70:ec:97:e7:30:1b: a5:88:87:be:75:b5:44:25:61:97:60:86:94:b1:e2: 4b:d0:82:37:8c:fd:c2:9a:79:fa:2f:95:61:0c:d9: 7e:27:c2:f8:c0:bf:41:a6:be:cb:ee:9d:cb:a2:0e: b4:ad:a7:fa:00:e3:d1:00:c7:7a:ef:02:d2:fa:f6: 0b:8d:a4:27:1d:74:dd:e4:aa:ce:4f:08:42:25:d7: 28:71:ee:b2:96:5b:36:82:b7:36:5d:3a:50:c4:85: cb:9d:e8:13:db:88:41:34:83:ff:04:58:87:dc:5c: a2:33:1f:81:1e:61:c4:8d:75:50:22:d9:a3:34:5f: 56:73:9e:03:31:26:aa:31:c2:07:ad:3b:70:5f:98: 03:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:58:2F:69:0A:B2:FD:35:54:34:AD:3E:E9:08:31:A1:85:01:56:52 X509v3 Authority Key Identifier: keyid:48:F9:60:09:BC:D4:CE:06:CD:60:D1:25:F0:A9:1B:23:FE:C3:03:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3D89/D3ED585820B811EFBE1C2815C4F9AE02/SPlgCbzUzgbNYNEl8KkbI_7DA2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPlgCbzUzgbNYNEl8KkbI_7DA2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3D89/D3ED585820B811EFBE1C2815C4F9AE02/37D4A3DE20BA11EF9B035D1FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.210.0/23 IPv6: 2001:df3:d140::/48 Signature Algorithm: sha256WithRSAEncryption 2a:77:72:56:f0:67:ae:39:41:dc:8e:c6:5b:5a:03:26:f0:15: 49:d5:60:31:12:62:f0:50:e9:fb:6c:da:8b:24:bf:68:f9:e1: d5:37:3e:f3:80:56:13:ea:b4:5e:d5:13:73:19:62:f6:6c:87: 61:32:5c:40:da:ce:d1:eb:6f:27:2b:83:88:f1:a6:34:75:d2: 64:47:99:f0:b8:0c:8e:fd:6c:31:56:ae:ea:6d:aa:05:cb:f3: cf:33:0f:8f:3e:a9:50:fd:c9:a1:5a:10:f1:7f:77:b2:67:21: 7a:d0:70:ac:fc:c6:d3:9c:bb:e3:1d:70:d5:eb:fa:58:7c:fe: 81:be:36:b5:42:71:ef:fd:ba:7a:7e:6f:33:1d:a2:4d:35:dd: 28:b3:9b:d8:e5:c7:11:cc:ce:28:c2:76:c0:c4:0d:98:fe:ff: eb:85:7b:5a:a6:74:f6:d4:40:65:e9:23:d7:b3:67:c9:61:ed: d4:2a:26:ed:94:ed:2b:10:8a:9f:82:4e:20:ca:77:d3:1d:4a: aa:a2:4b:70:a2:61:22:ce:11:cd:7d:92:cc:ca:56:98:0b:0c: 5e:c4:87:66:19:94:46:42:69:05:21:a9:c7:30:2d:c5:dc:12: 4e:2a:a5:db:81:27:02:1e:be:77:ac:29:4c:a0:6c:db:f3:ec: b8:96:f2:c2 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNEODkxMTAvBgNVBAUTKDQ4Rjk2MDA5QkNENENFMDZDRDYwRDEyNUYwQTkxQjIz RkVDMzAzNjAwHhcNMjUwNTI1MDUzNjQ5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODMyYWM3MS1lNTM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArcpxLYJ3D+ZtOSMwGAZHqARoKh6ZzTaZK3oAjfy4Jxzam7XiQHvDOqlAnSFK LhJHXgOf2E9gCa0W3WzVtroHvBvP6gTbEb8Zl7CuxEUIT87ZgG3zVtkW838eJPMu aGFBROlT6QxzPM3tOCb/CilMM01w7JfnMBuliIe+dbVEJWGXYIaUseJL0II3jP3C mnn6L5VhDNl+J8L4wL9Bpr7L7p3Log60raf6AOPRAMd67wLS+vYLjaQnHXTd5KrO TwhCJdcoce6ylls2grc2XTpQxIXLnegT24hBNIP/BFiH3FyiMx+BHmHEjXVQItmj NF9Wc54DMSaqMcIHrTtwX5gDHwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFHtYL2kK sv01VDStPukIMaGFAVZSMB8GA1UdIwQYMBaAFEj5YAm81M4GzWDRJfCpGyP+wwNg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0Q4OS9EM0VENTg1ODIw QjgxMUVGQkUxQzI4MTVDNEY5QUUwMi9TUGxnQ2J6VXpnYk5ZTkVsOEtrYklfN0RB MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NQbGdDYnpVemdiTllORWw4S2tiSV83REEyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDNEODkvRDNFRDU4NTgyMEI4MTFFRkJFMUMyODE1QzRGOUFFMDIvMzdENEEzREUy MEJBMTFFRjlCMDM1RDFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnn9IwDwQCAAIwCQMHACABDfPRQDANBgkqhkiG9w0BAQsF AAOCAQEAKndyVvBnrjlB3I7GW1oDJvAVSdVgMRJi8FDp+2zaiyS/aPnh1Tc+84BW E+q0XtUTcxli9myHYTJcQNrO0etvJyuDiPGmNHXSZEeZ8LgMjv1sMVau6m2qBcvz zzMPjz6pUP3JoVoQ8X93smchetBwrPzG05y74x1w1ev6WHz+gb42tUJx7/26en5v Mx2iTTXdKLOb2OXHEczOKMJ2wMQNmP7/64V7WqZ09tRAZekj17NnyWHt1Com7ZTt KxCKn4JOIMp30x1KqqJLcKJhIs4RzX2SzMpWmAsMXsSHZhmURkJpBSGpxzAtxdwS Tiql24EnAh6+d6wpTKBs2/PsuJbywg== -----END CERTIFICATE-----Generated at Mon Jun 2 07:18:10 2025 by rpki-client