$ rpki-client -vvf rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/902F47663C0111EAB6CB9936C4F9AE02.roa File: 902F47663C0111EAB6CB9936C4F9AE02.roa (raw, json) Hash identifier: W5+kOWbZGS14ELyZcRgsnHDoDEprTMY6BAsrjTgD1lM= Subject key identifier: 05:5E:28:BF:00:6A:00:4A:0C:DD:8F:DF:47:4B:38:40:DF:3A:A5:38 Certificate issuer: /CN=A91B35BB/serialNumber=35F58D861C41BDFEA46B8C7290B1AAC670E7CC1B Certificate serial: 0B2B Authority key identifier: 35:F5:8D:86:1C:41:BD:FE:A4:6B:8C:72:90:B1:AA:C6:70:E7:CC:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfWNhhxBvf6ka4xykLGqxnDnzBs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/902F47663C0111EAB6CB9936C4F9AE02.roa Signing time: Fri 02 May 2025 19:27:52 +0000 ROA not before: Fri 02 May 2025 19:27:52 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 16509 IP address blocks: 103.136.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.crl rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfWNhhxBvf6ka4xykLGqxnDnzBs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 19:25:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2859 (0xb2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B35BB, serialNumber=35F58D861C41BDFEA46B8C7290B1AAC670E7CC1B Validity Not Before: May 2 19:27:52 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68151cb7-3c47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:20:a8:c9:7e:d7:22:97:c6:12:9a:b3:8f:e4: 2d:55:c8:e1:3d:49:5b:ce:90:6c:0c:62:6b:54:ee: af:64:3c:b4:1d:a0:6a:fc:b8:11:dd:ad:22:40:24: f8:3d:d6:f3:af:27:11:44:ed:ed:3d:6f:d7:e0:0c: 16:73:06:2d:d8:b4:12:7c:fb:ad:a0:25:5c:fb:a5: f7:fb:07:f8:68:d3:5a:21:51:45:a4:09:87:4a:6d: e3:fe:c7:55:e2:aa:2b:90:e5:3e:f1:73:60:5e:0e: 56:eb:0d:32:7e:27:62:a6:6a:3c:e9:6f:57:a1:5e: 09:05:a1:15:e1:f9:ae:ba:2c:4d:4a:60:ba:ea:d7: ab:40:93:b3:a9:a0:26:4d:82:43:34:97:a9:55:6d: 67:9e:13:8e:76:d3:44:a9:79:f3:37:ed:47:d7:46: cb:99:0a:e5:5e:e8:d2:ba:6f:f2:14:94:b2:91:e2: b3:0b:54:a2:86:2f:3c:e3:15:5d:c1:69:e8:a1:82: 0e:43:1c:25:70:59:90:ca:93:41:48:c4:12:43:d4: 39:f2:19:87:f8:62:b9:0f:c8:24:58:0e:6d:71:68: b3:6b:5a:7d:fb:61:78:3b:2d:8f:37:40:66:88:88: 82:b2:61:08:19:ad:9c:dc:3f:a9:8f:f3:67:b9:92: d8:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:5E:28:BF:00:6A:00:4A:0C:DD:8F:DF:47:4B:38:40:DF:3A:A5:38 X509v3 Authority Key Identifier: keyid:35:F5:8D:86:1C:41:BD:FE:A4:6B:8C:72:90:B1:AA:C6:70:E7:CC:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/NfWNhhxBvf6ka4xykLGqxnDnzBs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NfWNhhxBvf6ka4xykLGqxnDnzBs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B35BB/5789B1A43C0011EAB8179734C4F9AE02/902F47663C0111EAB6CB9936C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.136.10.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:2e:41:fc:6d:b4:09:62:41:8a:d3:ba:3b:e4:56:56:3d:ae: 88:9d:ae:76:82:4d:58:57:c0:e1:5e:9b:2a:d4:0f:81:fb:5c: c7:40:ab:37:a4:16:b7:5a:60:fe:6a:61:8a:35:80:c7:84:b6: bd:35:52:71:ff:e8:80:15:d8:a2:d0:93:66:5d:d5:9e:17:58: 05:d3:9d:df:80:d5:65:c5:dc:78:d7:8d:61:f7:a8:31:41:dd: 32:08:a4:db:73:85:e5:de:f9:b5:7c:1b:29:1d:bc:36:a6:2e: 3c:35:2b:d9:f7:b3:e8:e9:2e:9c:83:ef:c2:10:a1:8a:89:49: 96:27:cc:fc:93:be:cf:77:64:81:ca:70:b5:2f:24:32:6e:11: d3:de:9d:30:7c:b3:e0:89:0c:ac:78:f3:b4:8b:fc:79:fe:bd: e8:7a:2e:bc:64:61:b4:10:97:3c:48:7f:13:58:d4:a9:b7:ff: 9a:e9:e7:89:7f:8f:37:c9:e4:05:df:8d:cf:bc:76:eb:88:ae: 20:91:71:9d:0f:8c:0d:33:e4:83:f2:20:d1:d4:1d:b6:a1:23: 5c:fe:fe:3f:ac:43:84:27:b7:8b:4c:74:86:0d:0f:ba:88:85: e3:0a:cd:17:0f:49:3c:1c:56:3f:cc:44:9a:8f:f0:e4:cd:55: 24:d8:8f:e7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCyswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM1QkIxMTAvBgNVBAUTKDM1RjU4RDg2MUM0MUJERkVBNDZCOEM3MjkwQjFBQUM2 NzBFN0NDMUIwHhcNMjUwNTAyMTkyNzUyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1MWNiNy0zYzQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsyCoyX7XIpfGEpqzj+QtVcjhPUlbzpBsDGJrVO6vZDy0HaBq/LgR3a0iQCT4 PdbzrycRRO3tPW/X4AwWcwYt2LQSfPutoCVc+6X3+wf4aNNaIVFFpAmHSm3j/sdV 4qorkOU+8XNgXg5W6w0yfidipmo86W9XoV4JBaEV4fmuuixNSmC66terQJOzqaAm TYJDNJepVW1nnhOOdtNEqXnzN+1H10bLmQrlXujSum/yFJSykeKzC1Sihi884xVd wWnooYIOQxwlcFmQypNBSMQSQ9Q58hmH+GK5D8gkWA5tcWiza1p9+2F4Oy2PN0Bm iIiCsmEIGa2c3D+pj/NnuZLYywIDAQABo4IClTCCApEwHQYDVR0OBBYEFAVeKL8A agBKDN2P30dLOEDfOqU4MB8GA1UdIwQYMBaAFDX1jYYcQb3+pGuMcpCxqsZw58wb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzVCQi81Nzg5QjFBNDND MDAxMUVBQjgxNzk3MzRDNEY5QUUwMi9OZldOaGh4QnZmNmthNHh5a0xHcXhuRG56 QnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05mV05oaHhCdmY2a2E0eHlrTEdxeG5EbnpCcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjM1QkIvNTc4OUIxQTQzQzAwMTFFQUI4MTc5NzM0QzRGOUFFMDIvOTAyRjQ3NjYz QzAxMTFFQUI2Q0I5OTM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABniAowDQYJKoZIhvcNAQELBQADggEBAEwuQfxttAliQYrT ujvkVlY9roidrnaCTVhXwOFemyrUD4H7XMdAqzekFrdaYP5qYYo1gMeEtr01UnH/ 6IAV2KLQk2Zd1Z4XWAXTnd+A1WXF3HjXjWH3qDFB3TIIpNtzheXe+bV8GykdvDam Ljw1K9n3s+jpLpyD78IQoYqJSZYnzPyTvs93ZIHKcLUvJDJuEdPenTB8s+CJDKx4 87SL/Hn+veh6LrxkYbQQlzxIfxNY1Km3/5rp54l/jzfJ5AXfjc+8duuIriCRcZ0P jA0z5IPyINHUHbahI1z+/j+sQ4Qnt4tMdIYND7qIheMKzRcPSTwcVj/MRJqP8OTN VSTYj+c= -----END CERTIFICATE-----Generated at Sat May 17 14:15:28 2025 by rpki-client