$ rpki-client -vvf rpki.apnic.net/member_repository/A91D359E/6A4988B60DEB11EAB8E60B25C4F9AE02/606EE7BC0DED11EA88AC0A29C4F9AE02.roa File: 606EE7BC0DED11EA88AC0A29C4F9AE02.roa (raw, json) Hash identifier: WgtMqOXutoCTVgnfA2uL+HiTE6KoWpCNsapDLYeBrco= Subject key identifier: 5A:B4:B8:C2:52:82:4D:6B:11:2A:7E:26:50:97:C2:A4:C9:FC:49:1A Certificate issuer: /CN=A91D359E/serialNumber=EFB69070E2C401A5F77133D2DBB1BA341D17E61E Certificate serial: 0C0B Authority key identifier: EF:B6:90:70:E2:C4:01:A5:F7:71:33:D2:DB:B1:BA:34:1D:17:E6:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/77aQcOLEAaX3cTPS27G6NB0X5h4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D359E/6A4988B60DEB11EAB8E60B25C4F9AE02/606EE7BC0DED11EA88AC0A29C4F9AE02.roa Signing time: Mon 28 Apr 2025 19:27:57 +0000 ROA not before: Mon 28 Apr 2025 19:27:57 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 138697 IP address blocks: 103.136.62.0/23 maxlen: 23 103.136.62.0/24 maxlen: 24 103.136.63.0/24 maxlen: 24 2404:9c40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D359E/6A4988B60DEB11EAB8E60B25C4F9AE02/77aQcOLEAaX3cTPS27G6NB0X5h4.crl rsync://rpki.apnic.net/member_repository/A91D359E/6A4988B60DEB11EAB8E60B25C4F9AE02/77aQcOLEAaX3cTPS27G6NB0X5h4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/77aQcOLEAaX3cTPS27G6NB0X5h4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 18:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3083 (0xc0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D359E, serialNumber=EFB69070E2C401A5F77133D2DBB1BA341D17E61E Validity Not Before: Apr 28 19:27:57 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=680fd6bd-31fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:06:17:5e:76:33:dc:e6:1e:55:0d:cc:05:0e: bd:25:df:ec:ad:63:19:b5:30:c4:2b:a8:38:d2:1b: 0c:5f:7e:5e:c2:ed:7d:fc:fd:36:22:3b:e1:8c:ca: 89:c0:f8:85:65:a5:1b:83:cb:b2:c4:80:5a:b4:d8: 11:f7:03:74:0d:03:93:45:ee:db:20:50:9c:23:34: c7:8a:1c:de:19:c3:17:cf:27:8f:26:5f:b0:af:cc: e1:17:54:52:3c:51:3a:1f:c6:7c:37:57:6a:60:67: f7:49:ac:8e:2b:cf:c1:30:40:e2:3b:a8:33:bf:01: e4:0b:e3:b1:67:9a:95:fc:ef:27:9e:5a:32:80:17: ae:93:db:cf:8b:33:9b:7e:0a:fa:ec:f4:70:24:62: b1:f9:36:dd:ad:69:a0:bb:48:fa:83:81:11:23:ed: 49:2f:8b:28:31:f3:41:e9:f6:54:bc:d4:fe:b1:2f: 20:ea:b6:0f:f3:63:24:81:19:55:93:26:9d:43:28: 85:c6:92:b6:78:ec:ef:10:a4:45:28:91:8b:54:3e: a8:7a:e8:1a:00:1c:70:2b:cc:6a:7c:37:06:b6:c3: 2a:f4:8c:15:aa:08:22:78:91:3f:b0:74:2d:31:9b: 7f:17:dc:cf:74:13:5b:e5:eb:4c:9b:7e:76:34:87: 89:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:B4:B8:C2:52:82:4D:6B:11:2A:7E:26:50:97:C2:A4:C9:FC:49:1A X509v3 Authority Key Identifier: keyid:EF:B6:90:70:E2:C4:01:A5:F7:71:33:D2:DB:B1:BA:34:1D:17:E6:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D359E/6A4988B60DEB11EAB8E60B25C4F9AE02/77aQcOLEAaX3cTPS27G6NB0X5h4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/77aQcOLEAaX3cTPS27G6NB0X5h4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D359E/6A4988B60DEB11EAB8E60B25C4F9AE02/606EE7BC0DED11EA88AC0A29C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.136.62.0/23 IPv6: 2404:9c40::/32 Signature Algorithm: sha256WithRSAEncryption 8a:74:38:ba:09:7f:59:8a:ba:ea:c1:b0:ec:17:98:11:62:f4: 03:3b:8a:9b:3b:07:62:21:94:8b:be:5a:13:32:10:c8:11:75: 8f:8b:6f:a9:fd:c5:8c:a1:a3:39:e9:60:67:00:bf:cd:1b:63: 26:37:df:09:f6:c2:c4:9c:aa:da:6c:71:8f:27:86:eb:8b:0d: 06:e5:ca:da:2d:68:05:e7:d5:49:9e:89:d5:ab:e0:be:9c:81: df:89:95:a3:42:64:17:64:fc:6d:67:6c:b5:58:3d:83:cb:0f: 5b:97:30:e2:44:86:57:c0:ff:55:07:57:0b:5f:80:93:e9:97: 37:69:33:77:5a:f3:f4:79:8d:66:d7:5c:88:12:e1:ae:fe:aa: 44:b2:bf:4e:82:2e:6c:cc:70:4e:ab:98:42:ae:3b:53:d6:e7: 08:02:6b:08:b5:68:14:9d:7c:f8:4d:db:7a:36:f1:8f:af:16: 6f:7a:60:2f:98:67:8c:18:90:91:7d:5b:b0:b8:9b:c9:87:ca: 8d:d4:f7:a4:a2:cd:40:9c:14:97:d9:4f:1b:9e:9d:0d:6a:92: 47:2d:10:7f:06:c3:33:36:f1:17:97:59:3a:b9:5f:e7:d5:fa: c6:14:f5:7d:55:2a:44:cc:50:4d:63:41:13:80:c2:32:93:00: fa:83:36:23 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDAswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM1OUUxMTAvBgNVBAUTKEVGQjY5MDcwRTJDNDAxQTVGNzcxMzNEMkRCQjFCQTM0 MUQxN0U2MUUwHhcNMjUwNDI4MTkyNzU3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODBmZDZiZC0zMWZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqwYXXnYz3OYeVQ3MBQ69Jd/srWMZtTDEK6g40hsMX35ewu19/P02IjvhjMqJ wPiFZaUbg8uyxIBatNgR9wN0DQOTRe7bIFCcIzTHihzeGcMXzyePJl+wr8zhF1RS PFE6H8Z8N1dqYGf3SayOK8/BMEDiO6gzvwHkC+OxZ5qV/O8nnloygBeuk9vPizOb fgr67PRwJGKx+TbdrWmgu0j6g4ERI+1JL4soMfNB6fZUvNT+sS8g6rYP82MkgRlV kyadQyiFxpK2eOzvEKRFKJGLVD6oeugaABxwK8xqfDcGtsMq9IwVqggieJE/sHQt MZt/F9zPdBNb5etMm352NIeJhwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFFq0uMJS gk1rESp+JlCXwqTJ/EkaMB8GA1UdIwQYMBaAFO+2kHDixAGl93Ez0tuxujQdF+Ye MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzU5RS82QTQ5ODhCNjBE RUIxMUVBQjhFNjBCMjVDNEY5QUUwMi83N2FRY09MRUFhWDNjVFBTMjdHNk5CMFg1 aDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc3YVFjT0xFQWFYM2NUUFMyN0c2TkIwWDVoNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDM1OUUvNkE0OTg4QjYwREVCMTFFQUI4RTYwQjI1QzRGOUFFMDIvNjA2RUU3QkMw REVEMTFFQTg4QUMwQTI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFniD4wDQQCAAIwBwMFACQEnEAwDQYJKoZIhvcNAQELBQAD ggEBAIp0OLoJf1mKuurBsOwXmBFi9AM7ips7B2IhlIu+WhMyEMgRdY+Lb6n9xYyh oznpYGcAv80bYyY33wn2wsScqtpscY8nhuuLDQblytotaAXn1UmeidWr4L6cgd+J laNCZBdk/G1nbLVYPYPLD1uXMOJEhlfA/1UHVwtfgJPplzdpM3da8/R5jWbXXIgS 4a7+qkSyv06CLmzMcE6rmEKuO1PW5wgCawi1aBSdfPhN23o28Y+vFm96YC+YZ4wY kJF9W7C4m8mHyo3U96SizUCcFJfZTxuenQ1qkkctEH8GwzM28ReXWTq5X+fV+sYU 9X1VKkTMUE1jQROAwjKTAPqDNiM= -----END CERTIFICATE-----Generated at Sat May 17 03:40:42 2025 by rpki-client