$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/5CF4C0D4FADD11EE8083D572C4F9AE02.roa File: 5CF4C0D4FADD11EE8083D572C4F9AE02.roa (raw, json) Hash identifier: tBK54wCyQ2wcX6ZNsRYGZb85q/LNuJrcbm5n2EF4GsM= Subject key identifier: DB:30:09:FB:49:62:D2:3F:61:88:85:3F:6A:13:2D:54:74:2A:B7:97 Certificate issuer: /CN=A91D6884/serialNumber=C5D409FB5D3AA973A950C9C31CC30155F3493F62 Certificate serial: 0139 Authority key identifier: C5:D4:09:FB:5D:3A:A9:73:A9:50:C9:C3:1C:C3:01:55:F3:49:3F:62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xdQJ-106qXOpUMnDHMMBVfNJP2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/5CF4C0D4FADD11EE8083D572C4F9AE02.roa Signing time: Thu 05 Jun 2025 03:53:16 +0000 ROA not before: Thu 05 Jun 2025 03:53:16 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 56229 IP address blocks: 103.189.136.0/24 maxlen: 24 103.189.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.crl rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xdQJ-106qXOpUMnDHMMBVfNJP2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 03:53:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 313 (0x139) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6884, serialNumber=C5D409FB5D3AA973A950C9C31CC30155F3493F62 Validity Not Before: Jun 5 03:53:16 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=684114ac-6726 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:aa:16:18:66:ef:a4:94:7a:f6:06:f7:0a:07: 58:2a:99:83:ae:f6:43:e2:c5:3f:c1:4f:a2:a1:ac: 17:5f:40:ce:d9:70:e8:c9:4c:26:d6:cc:a9:ad:b8: 82:c0:c8:e8:6b:91:4e:0d:44:63:4d:7d:4a:a6:bd: 40:23:f8:5f:9e:2e:07:06:2c:e4:aa:44:82:d9:f9: 8f:b8:59:30:97:53:6b:29:3c:88:88:01:26:5a:18: 3e:2c:24:29:a2:74:6f:fa:3f:83:98:16:e0:a6:a1: ac:f6:9a:cd:6c:30:bc:ab:98:28:94:b3:4d:23:59: 97:c0:15:c5:4f:22:95:91:81:e1:82:bc:1f:85:15: 60:2c:47:b0:26:c9:0a:89:87:47:56:54:90:60:39: 42:b3:b9:b0:75:64:e5:d1:02:3f:46:e2:90:3a:58: fd:0e:a8:a8:cf:fb:c5:e9:a7:78:85:57:a3:af:2c: 6b:8b:b4:c7:e7:cd:3b:fc:28:53:cb:bb:0a:13:64: 21:57:a0:4d:77:30:29:6b:c3:4c:81:15:16:37:c4: 0f:30:cc:07:ff:a7:a7:0b:a5:39:b1:5d:05:97:72: 71:bd:c3:5b:65:b6:75:c8:94:d7:96:ed:a2:8e:b7: cc:41:40:d1:e2:bb:ed:58:d1:d3:ab:1c:b0:58:ae: 75:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:30:09:FB:49:62:D2:3F:61:88:85:3F:6A:13:2D:54:74:2A:B7:97 X509v3 Authority Key Identifier: keyid:C5:D4:09:FB:5D:3A:A9:73:A9:50:C9:C3:1C:C3:01:55:F3:49:3F:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xdQJ-106qXOpUMnDHMMBVfNJP2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/5CF4C0D4FADD11EE8083D572C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.189.136.0/23 Signature Algorithm: sha256WithRSAEncryption 95:76:51:e7:da:3d:36:13:10:21:e3:65:a5:6e:4d:c3:84:bf: 54:13:41:dd:47:b4:ca:d6:77:78:ef:22:1d:e3:93:2c:7e:44: c4:c9:01:48:39:b9:41:df:87:72:73:b3:70:3b:dd:6e:49:e9: 5c:6f:22:fa:76:93:d0:6d:fe:cb:6c:41:f9:75:01:33:2c:eb: 05:da:98:13:d6:2b:85:02:08:5f:9a:25:61:3d:71:cc:ab:c1: fd:c0:ce:42:c3:ec:bb:9e:e0:79:df:9d:07:b5:ef:ee:82:08: 7f:9e:c2:82:7f:bf:0b:49:d2:bc:78:57:3d:27:53:48:e5:1a: d8:b6:af:7f:80:dd:c7:ce:9d:c9:09:d4:56:d3:1a:be:0c:bf: 26:27:48:25:15:d2:b3:5a:ec:93:1c:31:a0:f1:c8:5f:cf:2b: 48:ea:97:54:53:c0:c3:6c:ff:53:11:26:69:b3:d5:e9:bb:02: 24:f5:57:07:d8:fa:e2:21:c2:51:08:fa:d4:a7:aa:99:32:1f: b0:4f:d6:a5:92:1d:73:28:35:af:63:63:7e:55:05:27:6b:86: 7e:de:86:be:36:40:2a:fb:a4:61:a2:0c:09:44:84:d6:af:14: 92:12:f8:3e:da:45:d4:46:3a:f0:08:26:8e:c0:60:6f:1c:53: 1a:e1:64:29 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICATkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY4ODQxMTAvBgNVBAUTKEM1RDQwOUZCNUQzQUE5NzNBOTUwQzlDMzFDQzMwMTU1 RjM0OTNGNjIwHhcNMjUwNjA1MDM1MzE2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQxMTRhYy02NzI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3qoWGGbvpJR69gb3CgdYKpmDrvZD4sU/wU+ioawXX0DO2XDoyUwm1syprbiC wMjoa5FODURjTX1Kpr1AI/hfni4HBizkqkSC2fmPuFkwl1NrKTyIiAEmWhg+LCQp onRv+j+DmBbgpqGs9prNbDC8q5golLNNI1mXwBXFTyKVkYHhgrwfhRVgLEewJskK iYdHVlSQYDlCs7mwdWTl0QI/RuKQOlj9Dqioz/vF6ad4hVejryxri7TH5807/ChT y7sKE2QhV6BNdzApa8NMgRUWN8QPMMwH/6enC6U5sV0Fl3JxvcNbZbZ1yJTXlu2i jrfMQUDR4rvtWNHTqxywWK51IQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNswCftJ YtI/YYiFP2oTLVR0KreXMB8GA1UdIwQYMBaAFMXUCftdOqlzqVDJwxzDAVXzST9i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjg4NC8yQTk1MDI1NjY5 NzUxMUVFQjcwQTU1MEVDNEY5QUUwMi94ZFFKLTEwNnFYT3BVTW5ESE1NQlZmTkpQ MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hkUUotMTA2cVhPcFVNbkRITU1CVmZOSlAySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDY4ODQvMkE5NTAyNTY2OTc1MTFFRUI3MEE1NTBFQzRGOUFFMDIvNUNGNEMwRDRG QUREMTFFRTgwODNENTcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnvYgwDQYJKoZIhvcNAQELBQADggEBAJV2UefaPTYTECHj ZaVuTcOEv1QTQd1HtMrWd3jvIh3jkyx+RMTJAUg5uUHfh3Jzs3A73W5J6VxvIvp2 k9Bt/stsQfl1ATMs6wXamBPWK4UCCF+aJWE9ccyrwf3AzkLD7Lue4HnfnQe17+6C CH+ewoJ/vwtJ0rx4Vz0nU0jlGti2r3+A3cfOnckJ1FbTGr4MvyYnSCUV0rNa7JMc MaDxyF/PK0jql1RTwMNs/1MRJmmz1em7AiT1VwfY+uIhwlEI+tSnqpkyH7BP1qWS HXMoNa9jY35VBSdrhn7ehr42QCr7pGGiDAlEhNavFJIS+D7aRdRGOvAIJo7AYG8c UxrhZCk= -----END CERTIFICATE-----Generated at Thu Jun 5 19:54:26 2025 by rpki-client