$ rpki-client -vvf rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/B65A4FACE18C11ECB1697F55C4F9AE02.roa File: B65A4FACE18C11ECB1697F55C4F9AE02.roa (raw, json) Hash identifier: 5zkE6RPNVvetKuzik8vsy3mHeLDd3Wj/ciaGchVH9po= Subject key identifier: 49:F1:30:ED:72:83:F8:AF:64:CC:4B:2B:C1:3E:CF:AA:8B:F4:20:BA Certificate issuer: /CN=A91580A1/serialNumber=437FF34EE7BC7050C9C84886AA94CE8CF50C24F9 Certificate serial: 0808 Authority key identifier: 43:7F:F3:4E:E7:BC:70:50:C9:C8:48:86:AA:94:CE:8C:F5:0C:24:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q3_zTue8cFDJyEiGqpTOjPUMJPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/B65A4FACE18C11ECB1697F55C4F9AE02.roa Signing time: Sun 04 May 2025 19:29:18 +0000 ROA not before: Sun 04 May 2025 19:29:18 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 138912 IP address blocks: 103.137.6.0/24 maxlen: 24 103.137.7.0/24 maxlen: 24 2001:df0:19c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.crl rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q3_zTue8cFDJyEiGqpTOjPUMJPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 19:22:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2056 (0x808) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91580A1, serialNumber=437FF34EE7BC7050C9C84886AA94CE8CF50C24F9 Validity Not Before: May 4 19:29:18 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6817c00d-4ac4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:93:72:00:8a:9a:06:77:93:43:ab:4f:9c:07: 4e:48:65:97:05:87:a3:96:52:40:1e:39:00:0d:21: 8f:ed:19:36:ee:28:81:74:fb:f2:4f:8b:0b:6d:10: 97:df:7e:e4:58:27:22:29:d0:d0:fd:8b:63:3d:cd: c0:43:b2:01:ab:77:16:10:eb:10:bd:bd:75:d7:24: 93:1a:fd:76:d9:dc:a2:a8:14:61:72:f8:b4:f0:bc: f6:29:51:22:98:a2:5f:ef:a7:df:27:45:e5:25:bf: 2e:36:15:7b:b0:64:c5:b2:d6:20:51:95:38:74:92: 44:95:e5:2d:66:95:fb:41:2a:37:53:d5:bc:cb:98: 08:8d:be:80:85:65:48:54:3b:5a:d3:f3:9b:36:57: 8d:ae:69:05:2f:d6:89:f5:88:cd:f4:6d:26:ff:7c: 1d:f8:f7:66:79:4a:c5:78:11:ea:c3:ca:b1:14:46: d8:d1:c0:72:04:ed:c0:20:6e:c5:f3:f8:12:3a:c8: 83:0b:e4:55:b7:56:e1:3d:c9:d8:a6:a5:18:68:59: 93:f9:b8:2c:ab:90:b0:f2:72:1d:be:1b:8d:29:dd: 5b:a9:a0:07:19:9a:04:b1:07:32:cb:d9:41:a4:d3: cb:6e:30:fb:bb:1c:df:d2:f3:bf:8c:06:e5:80:ce: fb:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:F1:30:ED:72:83:F8:AF:64:CC:4B:2B:C1:3E:CF:AA:8B:F4:20:BA X509v3 Authority Key Identifier: keyid:43:7F:F3:4E:E7:BC:70:50:C9:C8:48:86:AA:94:CE:8C:F5:0C:24:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q3_zTue8cFDJyEiGqpTOjPUMJPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/B65A4FACE18C11ECB1697F55C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.137.6.0/23 IPv6: 2001:df0:19c0::/48 Signature Algorithm: sha256WithRSAEncryption 51:b8:3f:0e:94:a5:63:d4:48:01:45:a7:49:a4:a4:18:cf:85: 9f:a0:f3:6c:16:d4:e4:32:20:94:31:ad:49:f6:3d:89:f1:61: 7d:4c:2a:34:7a:1e:ce:94:23:fb:ad:cb:2c:b6:1b:aa:9f:ef: d4:d4:1e:fa:fa:8a:24:29:20:9e:9b:6a:1b:2e:56:ef:22:6a: 0f:8c:4f:c1:e9:89:50:e1:37:33:e9:68:83:64:6a:fd:97:dc: 5f:91:38:2e:84:30:e1:3e:9f:44:5c:7d:d2:66:a5:6e:d0:4f: 75:e9:cb:22:ba:ac:33:8f:f6:02:fb:21:f2:9d:38:27:fc:18: 10:73:aa:ad:ee:6d:8d:ff:da:16:6b:51:a3:4e:85:56:d5:b6: 63:e3:05:d0:09:9b:e8:a4:16:db:0b:2f:a9:d6:f5:44:76:97: 3a:a8:74:c0:70:7b:9c:00:f0:80:14:eb:27:c0:83:18:72:db: 7d:28:12:ca:ea:15:78:6f:0f:e8:0a:2a:63:58:dc:4c:eb:b3: fc:39:33:4c:75:38:bf:11:34:a2:b2:8a:11:4b:a4:2d:af:30: 99:ac:a2:de:23:22:83:18:d0:cf:e4:9f:b6:fc:ca:19:93:96: bf:3e:bd:e6:65:0d:73:ae:be:d7:74:63:59:58:78:93:a1:29: d5:d0:80:8e -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCAgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwQTExMTAvBgNVBAUTKDQzN0ZGMzRFRTdCQzcwNTBDOUM4NDg4NkFBOTRDRThD RjUwQzI0RjkwHhcNMjUwNTA0MTkyOTE4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE3YzAwZC00YWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA85NyAIqaBneTQ6tPnAdOSGWXBYejllJAHjkADSGP7Rk27iiBdPvyT4sLbRCX 337kWCciKdDQ/YtjPc3AQ7IBq3cWEOsQvb111ySTGv122dyiqBRhcvi08Lz2KVEi mKJf76ffJ0XlJb8uNhV7sGTFstYgUZU4dJJEleUtZpX7QSo3U9W8y5gIjb6AhWVI VDta0/ObNleNrmkFL9aJ9YjN9G0m/3wd+PdmeUrFeBHqw8qxFEbY0cByBO3AIG7F 8/gSOsiDC+RVt1bhPcnYpqUYaFmT+bgsq5Cw8nIdvhuNKd1bqaAHGZoEsQcyy9lB pNPLbjD7uxzf0vO/jAblgM77EwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFEnxMO1y g/ivZMxLK8E+z6qL9CC6MB8GA1UdIwQYMBaAFEN/807nvHBQychIhqqUzoz1DCT5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODBBMS85MjU2MEE2QTM3 NEQxMUVBQTBBM0JFNTVDNEY5QUUwMi9RM196VHVlOGNGREp5RWlHcXBUT2pQVU1K UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1EzX3pUdWU4Y0ZESnlFaUdxcFRPalBVTUpQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTgwQTEvOTI1NjBBNkEzNzREMTFFQUEwQTNCRTU1QzRGOUFFMDIvQjY1QTRGQUNF MThDMTFFQ0IxNjk3RjU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFniQYwDwQCAAIwCQMHACABDfAZwDANBgkqhkiG9w0BAQsF AAOCAQEAUbg/DpSlY9RIAUWnSaSkGM+Fn6DzbBbU5DIglDGtSfY9ifFhfUwqNHoe zpQj+63LLLYbqp/v1NQe+vqKJCkgnptqGy5W7yJqD4xPwemJUOE3M+log2Rq/Zfc X5E4LoQw4T6fRFx90malbtBPdenLIrqsM4/2Avsh8p04J/wYEHOqre5tjf/aFmtR o06FVtW2Y+MF0Amb6KQW2wsvqdb1RHaXOqh0wHB7nADwgBTrJ8CDGHLbfSgSyuoV eG8P6AoqY1jcTOuz/DkzTHU4vxE0orKKEUukLa8wmayi3iMigxjQz+SftvzKGZOW vz695mUNc66+13RjWVh4k6Ep1dCAjg== -----END CERTIFICATE-----Generated at Sat May 17 13:06:12 2025 by rpki-client