$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6940/E0D06B82D77E11EA8EE61B32C4F9AE02/153BEF1EE34A11EFA6960F0CC4F9AE02.roa File: 153BEF1EE34A11EFA6960F0CC4F9AE02.roa (raw, json) Hash identifier: kkpip1TEWWFNH1mROSk1fuufLAg/gIfzk1gjTV7g7jw= Subject key identifier: D9:28:5C:D9:51:53:D5:48:0B:63:38:60:D1:B2:26:DC:E1:CF:D6:CA Certificate issuer: /CN=A91D6940/serialNumber=BD7568DC449372FE22C2EC9EB772B7D6E82D2A80 Certificate serial: 0818 Authority key identifier: BD:75:68:DC:44:93:72:FE:22:C2:EC:9E:B7:72:B7:D6:E8:2D:2A:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vXVo3ESTcv4iwuyet3K31ugtKoA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6940/E0D06B82D77E11EA8EE61B32C4F9AE02/153BEF1EE34A11EFA6960F0CC4F9AE02.roa Signing time: Tue 06 May 2025 21:01:42 +0000 ROA not before: Tue 06 May 2025 21:01:42 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 139077 IP address blocks: 103.181.224.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6940/E0D06B82D77E11EA8EE61B32C4F9AE02/vXVo3ESTcv4iwuyet3K31ugtKoA.crl rsync://rpki.apnic.net/member_repository/A91D6940/E0D06B82D77E11EA8EE61B32C4F9AE02/vXVo3ESTcv4iwuyet3K31ugtKoA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vXVo3ESTcv4iwuyet3K31ugtKoA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 20:57:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2072 (0x818) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6940, serialNumber=BD7568DC449372FE22C2EC9EB772B7D6E82D2A80 Validity Not Before: May 6 21:01:42 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681a78b6-e989 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:5e:ab:10:ba:ed:f5:aa:77:56:63:80:5f:de: 9d:97:f8:58:35:b5:4f:8c:e6:32:d2:3e:70:c5:7a: 4b:4a:0a:38:38:99:af:51:28:ee:6b:db:d4:21:9d: 91:fb:82:7f:8f:30:16:e8:16:f8:11:ef:d8:00:b4: 11:98:c5:38:55:5d:97:ec:42:57:b8:8f:19:01:92: 8d:7f:25:62:ea:72:c4:17:19:18:12:eb:6f:80:53: 02:5b:29:f0:9b:74:af:a9:07:0d:17:68:fa:93:20: 5a:95:a8:13:c4:38:4a:4a:27:84:d8:45:91:1f:75: 6c:e6:34:94:4a:b8:ee:ef:a3:77:34:64:fe:31:1d: 53:1f:c0:17:1d:03:cb:6d:03:2e:d7:64:b3:4d:55: f7:93:58:dc:34:11:b9:28:57:d7:77:f7:5a:e8:b1: bb:da:8d:bd:b9:33:31:9c:25:14:06:19:a9:91:3e: a3:79:fd:cd:51:47:db:a5:5f:66:7d:5b:10:32:ab: 1f:a8:0a:3c:f0:f1:e4:4e:45:e8:8e:f0:82:dc:6d: 50:bd:26:83:ce:ca:63:50:06:16:c3:69:e3:57:e4: 44:81:f0:50:dc:53:84:c7:e4:0d:45:f1:14:22:eb: db:de:3e:af:99:f2:27:1e:da:d8:ea:14:5b:eb:a6: 5f:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:28:5C:D9:51:53:D5:48:0B:63:38:60:D1:B2:26:DC:E1:CF:D6:CA X509v3 Authority Key Identifier: keyid:BD:75:68:DC:44:93:72:FE:22:C2:EC:9E:B7:72:B7:D6:E8:2D:2A:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6940/E0D06B82D77E11EA8EE61B32C4F9AE02/vXVo3ESTcv4iwuyet3K31ugtKoA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vXVo3ESTcv4iwuyet3K31ugtKoA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6940/E0D06B82D77E11EA8EE61B32C4F9AE02/153BEF1EE34A11EFA6960F0CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.181.224.0/23 Signature Algorithm: sha256WithRSAEncryption 9d:03:92:ab:74:58:de:99:bd:3c:0e:bc:bc:19:e4:6f:47:5b: b3:54:bd:7e:f5:94:a0:da:c3:b8:46:ad:8d:62:da:04:23:70: 3e:46:23:91:37:8f:42:d6:1c:8b:ca:92:8f:f4:b4:95:b2:93: ed:d0:0c:0a:bb:90:65:d9:5a:34:02:c9:a3:a1:a0:8a:37:42: 8d:c5:97:79:7c:4a:d2:79:f0:ed:2a:bd:3d:7c:fa:c1:7a:0b: c3:4a:35:28:46:5a:8b:45:93:24:83:e9:80:5f:83:34:3c:32: 4c:aa:dd:7d:2b:21:7e:64:1b:a8:a8:47:fa:67:14:4e:3a:af: f3:6e:78:1c:fa:76:fc:8b:19:ff:49:29:e4:3b:56:75:28:97: 4c:8f:a6:78:3f:c2:93:b9:3a:b9:ea:84:90:cb:cf:9f:eb:7e: 91:33:07:38:98:6d:19:e1:79:8d:60:7c:ff:78:c9:67:ba:ff: ed:77:e9:be:68:38:62:29:8a:c6:4a:ce:c0:22:90:36:5a:bb: 2c:df:c4:fe:31:47:4d:96:e6:69:1c:18:bb:68:3b:46:f9:d4: 26:68:17:82:cf:a4:1d:61:c7:0f:0a:43:4a:a3:f6:f5:b5:62: 95:08:c7:15:a1:75:54:2f:13:23:87:6f:2b:49:1c:8f:4f:33: 56:6e:88:9d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCBgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY5NDAxMTAvBgNVBAUTKEJENzU2OERDNDQ5MzcyRkUyMkMyRUM5RUI3NzJCN0Q2 RTgyRDJBODAwHhcNMjUwNTA2MjEwMTQyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFhNzhiNi1lOTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo16rELrt9ap3VmOAX96dl/hYNbVPjOYy0j5wxXpLSgo4OJmvUSjua9vUIZ2R +4J/jzAW6Bb4Ee/YALQRmMU4VV2X7EJXuI8ZAZKNfyVi6nLEFxkYEutvgFMCWynw m3SvqQcNF2j6kyBalagTxDhKSieE2EWRH3Vs5jSUSrju76N3NGT+MR1TH8AXHQPL bQMu12SzTVX3k1jcNBG5KFfXd/da6LG72o29uTMxnCUUBhmpkT6jef3NUUfbpV9m fVsQMqsfqAo88PHkTkXojvCC3G1QvSaDzspjUAYWw2njV+REgfBQ3FOEx+QNRfEU Iuvb3j6vmfInHtrY6hRb66Zf/QIDAQABo4IClTCCApEwHQYDVR0OBBYEFNkoXNlR U9VIC2M4YNGyJtzhz9bKMB8GA1UdIwQYMBaAFL11aNxEk3L+IsLsnrdyt9boLSqA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjk0MC9FMEQwNkI4MkQ3 N0UxMUVBOEVFNjFCMzJDNEY5QUUwMi92WFZvM0VTVGN2NGl3dXlldDNLMzF1Z3RL b0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZYVm8zRVNUY3Y0aXd1eWV0M0szMXVndEtvQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDY5NDAvRTBEMDZCODJENzdFMTFFQThFRTYxQjMyQzRGOUFFMDIvMTUzQkVGMUVF MzRBMTFFRkE2OTYwRjBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnteAwDQYJKoZIhvcNAQELBQADggEBAJ0Dkqt0WN6ZvTwO vLwZ5G9HW7NUvX71lKDaw7hGrY1i2gQjcD5GI5E3j0LWHIvKko/0tJWyk+3QDAq7 kGXZWjQCyaOhoIo3Qo3Fl3l8StJ58O0qvT18+sF6C8NKNShGWotFkySD6YBfgzQ8 Mkyq3X0rIX5kG6ioR/pnFE46r/NueBz6dvyLGf9JKeQ7VnUol0yPpng/wpO5Ornq hJDLz5/rfpEzBziYbRnheY1gfP94yWe6/+136b5oOGIpisZKzsAikDZauyzfxP4x R02W5mkcGLtoO0b51CZoF4LPpB1hxw8KQ0qj9vW1YpUIxxWhdVQvEyOHbytJHI9P M1ZuiJ0= -----END CERTIFICATE-----Generated at Fri May 16 02:45:47 2025 by rpki-client