$ rpki-client -vvf rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/79B042BAF3BD11EE961D7A7AC4F9AE02.roa File: 79B042BAF3BD11EE961D7A7AC4F9AE02.roa (raw, json) Hash identifier: 9OL0Nn9V+ede9DJf9mkaMrtLaF0tRZO3OAn8HvMuFRw= Subject key identifier: DD:E5:63:7A:B7:82:43:35:76:69:D0:45:BC:2B:A6:E9:95:13:62:05 Certificate issuer: /CN=A91568F6/serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Certificate serial: 0D90 Authority key identifier: 1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/79B042BAF3BD11EE961D7A7AC4F9AE02.roa Signing time: Tue 06 May 2025 18:27:32 +0000 ROA not before: Tue 06 May 2025 18:27:32 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 151804 IP address blocks: 103.140.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 18:06:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3472 (0xd90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91568F6, serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Validity Not Before: May 6 18:27:32 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=681a5494-0d06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:21:08:cd:90:4a:f9:56:75:b2:7b:d0:52:2f: f5:86:fe:fd:9a:a4:bc:c9:60:19:78:ff:26:ae:bf: e4:ee:7a:3e:9e:41:ae:ee:88:90:a6:01:65:a8:06: a6:8e:c8:8d:72:93:7b:5c:76:c3:b8:55:d5:d2:fe: 9b:cf:08:57:14:b6:4e:53:27:b0:be:33:29:ee:30: aa:e7:50:36:5c:60:e1:0c:70:c5:f8:87:d2:8d:68: 71:56:5b:d6:49:9c:7c:ef:d8:aa:cf:73:ba:3e:18: ba:8a:5b:53:b9:40:de:10:de:c7:34:e6:7a:b8:4f: ff:91:3a:5b:d7:1f:e5:76:ff:51:5a:44:d1:91:66: 23:3a:28:4a:ab:8d:84:85:51:9c:9b:72:61:3c:d1: 8f:ca:26:77:f7:c0:d2:1d:06:55:8f:1b:f8:5d:f8: 85:6c:c9:ff:96:83:00:27:8f:57:02:58:65:d0:43: 6e:99:5c:38:bf:3c:d7:cf:ca:b6:cf:a4:24:62:34: e5:83:a7:ea:26:ee:8e:1a:c5:2e:17:1f:44:07:d8: c5:2b:6d:6d:86:89:fa:28:36:da:0d:f3:41:61:71: 71:70:3d:15:34:b1:89:4a:5e:ea:85:08:0b:35:42: 91:53:bf:47:74:88:92:f9:f1:7d:3c:b9:3a:b5:36: 46:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:E5:63:7A:B7:82:43:35:76:69:D0:45:BC:2B:A6:E9:95:13:62:05 X509v3 Authority Key Identifier: keyid:1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/79B042BAF3BD11EE961D7A7AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.154.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:94:65:90:4e:9b:8e:33:41:e5:e4:16:da:bb:13:42:f6:5e: a3:ee:22:41:9e:de:f1:3b:59:07:a8:fc:85:55:9e:60:8d:2f: 16:29:54:03:1e:78:d8:69:e8:90:27:bf:84:e4:8b:ce:83:0d: 13:a6:e3:49:5f:70:da:f0:34:1f:cd:0d:e6:34:7a:09:c1:83: 35:5b:b8:0b:ab:de:7b:25:13:2c:8b:11:12:54:69:74:94:40: 80:c4:ed:fc:96:15:f1:30:ec:c3:c5:8d:a6:fe:60:84:c1:51: 96:fd:61:99:c4:66:53:99:7e:47:fb:ab:8e:42:d4:11:ce:36: 9c:c7:39:88:8a:d1:31:35:bc:8b:53:d5:35:a6:38:9c:c6:35: 18:66:60:0c:c1:da:c2:94:ee:cf:40:a3:21:a4:b5:94:9b:a1: d8:f3:c7:bb:9c:f0:0f:dd:3f:26:00:94:76:f3:dd:90:78:d4: 78:39:87:9c:b5:36:43:55:76:cc:b7:5e:57:6d:09:3e:bb:cd: 98:47:d0:a0:90:c8:18:8a:bd:fa:5a:58:f9:26:44:87:f9:98: c8:87:cf:2b:c6:c0:4c:78:8f:33:fd:36:b0:a4:d5:93:16:8d: 44:68:e0:33:2d:7c:52:6f:96:1a:87:92:4f:53:55:14:66:b7: 7b:f8:c8:8c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY4RjYxMTAvBgNVBAUTKDFFMzI5RTk4RjY3NjkyRTlCNTc2MDIzQTJGQkM1NTdE NTdERDU1NkMwHhcNMjUwNTA2MTgyNzMyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFhNTQ5NC0wZDA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyyEIzZBK+VZ1snvQUi/1hv79mqS8yWAZeP8mrr/k7no+nkGu7oiQpgFlqAam jsiNcpN7XHbDuFXV0v6bzwhXFLZOUyewvjMp7jCq51A2XGDhDHDF+IfSjWhxVlvW SZx879iqz3O6Phi6iltTuUDeEN7HNOZ6uE//kTpb1x/ldv9RWkTRkWYjOihKq42E hVGcm3JhPNGPyiZ398DSHQZVjxv4XfiFbMn/loMAJ49XAlhl0ENumVw4vzzXz8q2 z6QkYjTlg6fqJu6OGsUuFx9EB9jFK21thon6KDbaDfNBYXFxcD0VNLGJSl7qhQgL NUKRU79HdIiS+fF9PLk6tTZGTwIDAQABo4IClTCCApEwHQYDVR0OBBYEFN3lY3q3 gkM1dmnQRbwrpumVE2IFMB8GA1UdIwQYMBaAFB4ynpj2dpLptXYCOi+8VX1X3VVs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjhGNi8zN0QwM0RGNkNF MjgxMUU5QTZCNkMxN0JDNEY5QUUwMi9IaktlbVBaMmt1bTFkZ0k2TDd4VmZWZmRW V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hqS2VtUFoya3VtMWRnSTZMN3hWZlZmZFZXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTY4RjYvMzdEMDNERjZDRTI4MTFFOUE2QjZDMTdCQzRGOUFFMDIvNzlCMDQyQkFG M0JEMTFFRTk2MUQ3QTdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnjJowDQYJKoZIhvcNAQELBQADggEBADqUZZBOm44zQeXk Ftq7E0L2XqPuIkGe3vE7WQeo/IVVnmCNLxYpVAMeeNhp6JAnv4Tki86DDROm40lf cNrwNB/NDeY0egnBgzVbuAur3nslEyyLERJUaXSUQIDE7fyWFfEw7MPFjab+YITB UZb9YZnEZlOZfkf7q45C1BHONpzHOYiK0TE1vItT1TWmOJzGNRhmYAzB2sKU7s9A oyGktZSbodjzx7uc8A/dPyYAlHbz3ZB41Hg5h5y1NkNVdsy3XldtCT67zZhH0KCQ yBiKvfpaWPkmRIf5mMiHzyvGwEx4jzP9NrCk1ZMWjURo4DMtfFJvlhqHkk9TVRRm t3v4yIw= -----END CERTIFICATE-----Generated at Thu May 15 07:10:41 2025 by rpki-client