$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/6DEA717805F811F0833EAC2FC4F9AE02.roa File: 6DEA717805F811F0833EAC2FC4F9AE02.roa (raw, json) Hash identifier: DAioXo/KNuNcmqyW96uuzjyUWF2bt3R49b66l3Uq514= Subject key identifier: 06:FB:36:E7:AB:D0:87:32:5D:76:7A:66:5F:8A:1A:D3:DA:A3:43:18 Certificate issuer: /CN=A91EBB5B/serialNumber=95C13A3CC7EC270B7E5F19F3CD4F3B50DFDF62E4 Certificate serial: 0B1F Authority key identifier: 95:C1:3A:3C:C7:EC:27:0B:7E:5F:19:F3:CD:4F:3B:50:DF:DF:62:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lcE6PMfsJwt-XxnzzU87UN_fYuQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/6DEA717805F811F0833EAC2FC4F9AE02.roa Signing time: Mon 05 May 2025 05:57:09 +0000 ROA not before: Mon 05 May 2025 05:57:09 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 9311 IP address blocks: 103.231.36.0/24 maxlen: 24 103.231.37.0/24 maxlen: 24 103.231.38.0/24 maxlen: 24 103.231.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/lcE6PMfsJwt-XxnzzU87UN_fYuQ.crl rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/lcE6PMfsJwt-XxnzzU87UN_fYuQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lcE6PMfsJwt-XxnzzU87UN_fYuQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 19:25:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2847 (0xb1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBB5B, serialNumber=95C13A3CC7EC270B7E5F19F3CD4F3B50DFDF62E4 Validity Not Before: May 5 05:57:09 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=68185335-3360 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:31:2c:01:73:33:6b:42:58:20:21:de:7d:5d: cd:68:ad:94:5b:e5:b6:49:7e:c5:ec:82:01:c8:6b: 9b:08:af:c4:a4:25:95:8c:7c:5d:e2:ec:70:65:c9: b5:dc:9a:28:09:2c:00:2b:96:37:1b:37:f6:d1:0f: 49:fb:c2:3b:1f:81:52:57:a6:2e:fd:31:d3:35:c0: 50:f9:5e:10:e3:a0:dc:92:05:b4:3d:93:aa:de:9b: 77:3e:90:09:ff:d3:72:f3:1f:00:54:51:69:6b:f9: 7f:d8:ec:f8:6f:b0:d9:84:b9:f0:9a:82:ea:1e:07: 86:0f:c7:59:08:32:ac:a9:18:5c:1e:95:d4:ce:00: 9f:98:d6:ea:2f:86:a0:bf:34:5e:01:de:54:87:9f: 5c:d8:c9:a8:30:2a:78:1b:fd:d6:2f:59:84:b5:16: b6:56:97:39:67:8a:60:f8:d6:23:16:13:f1:5c:5d: 3c:84:44:c2:ce:95:5d:13:d7:8c:cc:97:aa:e9:7d: a0:65:78:ec:6f:4f:a9:1a:f5:bc:93:d0:79:d1:9d: 37:75:0b:5f:5f:a3:c4:49:a9:fb:a3:f0:68:d4:d5: 35:6e:a8:b4:e7:48:a8:c6:53:3b:f4:b0:93:aa:45: 27:93:8b:8e:1d:b0:00:cb:49:cb:ff:e7:da:48:44: bf:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:FB:36:E7:AB:D0:87:32:5D:76:7A:66:5F:8A:1A:D3:DA:A3:43:18 X509v3 Authority Key Identifier: keyid:95:C1:3A:3C:C7:EC:27:0B:7E:5F:19:F3:CD:4F:3B:50:DF:DF:62:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/lcE6PMfsJwt-XxnzzU87UN_fYuQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lcE6PMfsJwt-XxnzzU87UN_fYuQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/6DEA717805F811F0833EAC2FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.231.36.0/22 Signature Algorithm: sha256WithRSAEncryption bf:fc:f2:b8:98:5f:78:4b:01:68:8b:03:02:57:f1:47:c4:b4: 0d:b7:91:b7:e0:e2:06:f4:d5:cc:aa:89:fc:ce:75:67:4b:2d: 83:63:8d:04:b9:37:31:c2:ec:38:8b:f8:f4:6f:73:44:f8:b4: 7f:4f:6e:fa:96:b5:db:7b:8b:b4:02:eb:a0:d0:4c:df:62:19: df:9a:34:0f:71:57:aa:e5:44:8f:5f:2b:c9:94:9f:64:3b:e6: 97:40:06:c8:c6:1e:dd:a5:1b:78:5f:96:bc:8b:67:cc:ac:69: e4:33:41:a9:b5:57:3b:ae:ff:b3:90:3d:26:73:4f:de:58:fd: b9:90:0b:6f:7d:16:bd:c3:8a:17:a4:53:d4:2d:11:c2:e2:1d: ec:2a:a8:58:d4:c8:62:00:10:03:86:8f:3c:35:2a:aa:84:d3: 8d:c3:7c:aa:c7:ba:d0:17:f6:3b:65:9b:3e:c9:50:56:c4:ea: cc:8e:5f:71:63:0c:a3:a7:ee:d3:c2:85:98:9c:c4:80:5e:6c: 1b:22:88:3a:43:cf:13:0b:67:18:1d:46:7b:b2:50:dd:a8:c1: 67:e7:61:a9:5e:29:75:33:b4:05:28:60:6d:eb:24:4e:0d:25: 35:b6:67:56:e2:5c:9a:cd:1b:c4:91:0f:ae:aa:8f:23:1a:95: a1:9e:07:3a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCx8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJCNUIxMTAvBgNVBAUTKDk1QzEzQTNDQzdFQzI3MEI3RTVGMTlGM0NENEYzQjUw REZERjYyRTQwHhcNMjUwNTA1MDU1NzA5WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE4NTMzNS0zMzYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyDEsAXMza0JYICHefV3NaK2UW+W2SX7F7IIByGubCK/EpCWVjHxd4uxwZcm1 3JooCSwAK5Y3Gzf20Q9J+8I7H4FSV6Yu/THTNcBQ+V4Q46DckgW0PZOq3pt3PpAJ /9Ny8x8AVFFpa/l/2Oz4b7DZhLnwmoLqHgeGD8dZCDKsqRhcHpXUzgCfmNbqL4ag vzReAd5Uh59c2MmoMCp4G/3WL1mEtRa2Vpc5Z4pg+NYjFhPxXF08hETCzpVdE9eM zJeq6X2gZXjsb0+pGvW8k9B50Z03dQtfX6PESan7o/Bo1NU1bqi050ioxlM79LCT qkUnk4uOHbAAy0nL/+faSES/AQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAb7Nuer 0IcyXXZ6Zl+KGtPao0MYMB8GA1UdIwQYMBaAFJXBOjzH7CcLfl8Z881PO1Df32Lk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkI1Qi8yOURFNzQ4QTQx OUUxMUVBQjg2NkU3N0FDNEY5QUUwMi9sY0U2UE1mc0p3dC1YeG56elU4N1VOX2ZZ dVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xjRTZQTWZzSnd0LVh4bnp6VTg3VU5fZll1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUJCNUIvMjlERTc0OEE0MTlFMTFFQUI4NjZFNzdBQzRGOUFFMDIvNkRFQTcxNzgw NUY4MTFGMDgzM0VBQzJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn5yQwDQYJKoZIhvcNAQELBQADggEBAL/88riYX3hLAWiL AwJX8UfEtA23kbfg4gb01cyqifzOdWdLLYNjjQS5NzHC7DiL+PRvc0T4tH9PbvqW tdt7i7QC66DQTN9iGd+aNA9xV6rlRI9fK8mUn2Q75pdABsjGHt2lG3hflryLZ8ys aeQzQam1Vzuu/7OQPSZzT95Y/bmQC299Fr3DihekU9QtEcLiHewqqFjUyGIAEAOG jzw1KqqE043DfKrHutAX9jtlmz7JUFbE6syOX3FjDKOn7tPChZicxIBebBsiiDpD zxMLZxgdRnuyUN2owWfnYaleKXUztAUoYG3rJE4NJTW2Z1biXJrNG8SRD66qjyMa laGeBzo= -----END CERTIFICATE-----Generated at Fri May 16 09:48:21 2025 by rpki-client