$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC979/ED633E865FD911EBA30EE37BC4F9AE02/956449BEFBF411EDBEAD0A26C4F9AE02.roa File: 956449BEFBF411EDBEAD0A26C4F9AE02.roa (raw, json) Hash identifier: dsXz2lfcHryblqx1Ukw1H9WGMnpRDnzyM9OTmUgJl/0= Subject key identifier: 42:D6:08:3C:18:34:7F:B9:B2:79:72:28:F0:24:BE:D3:AD:D3:51:8B Certificate issuer: /CN=A91EC979/serialNumber=86B2B1D1E782448B84F69818F16A1F707B54C86C Certificate serial: 06C8 Authority key identifier: 86:B2:B1:D1:E7:82:44:8B:84:F6:98:18:F1:6A:1F:70:7B:54:C8:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrKx0eeCRIuE9pgY8WofcHtUyGw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC979/ED633E865FD911EBA30EE37BC4F9AE02/956449BEFBF411EDBEAD0A26C4F9AE02.roa Signing time: Sat 10 May 2025 22:21:07 +0000 ROA not before: Sat 10 May 2025 22:21:07 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 139282 IP address blocks: 103.136.104.0/22 maxlen: 23 103.136.104.0/23 maxlen: 24 103.136.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC979/ED633E865FD911EBA30EE37BC4F9AE02/hrKx0eeCRIuE9pgY8WofcHtUyGw.crl rsync://rpki.apnic.net/member_repository/A91EC979/ED633E865FD911EBA30EE37BC4F9AE02/hrKx0eeCRIuE9pgY8WofcHtUyGw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrKx0eeCRIuE9pgY8WofcHtUyGw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 22:21:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1736 (0x6c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC979, serialNumber=86B2B1D1E782448B84F69818F16A1F707B54C86C Validity Not Before: May 10 22:21:07 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681fd153-7fb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:17:b5:e8:62:c0:1d:c7:84:3d:eb:4b:bb:ca: 24:aa:59:7c:d8:6a:63:6e:6c:19:16:6e:8f:da:79: 61:58:b2:ec:cc:40:7d:c9:4f:1a:cc:5a:8e:88:7b: f1:ea:30:29:2a:4a:96:a5:c5:a9:67:b9:b3:93:bd: 3d:da:5a:3c:30:1c:7c:43:1c:0b:c9:b8:02:17:14: 45:0b:4b:03:dd:c4:8b:ce:f5:a1:6f:aa:50:f2:20: d3:9e:37:c6:d0:91:3f:68:ef:58:db:29:5f:d7:d1: 68:1a:36:d6:b7:a0:c7:6e:86:76:f1:7b:b9:37:15: ad:d7:34:c2:9b:37:af:81:6e:92:2c:69:d7:10:34: 34:38:d3:31:b4:cd:e4:42:60:25:f2:c4:c5:26:e8: 79:83:87:7c:94:d7:32:cd:34:2e:6c:29:4a:7c:c0: e9:1b:39:c6:d6:f6:04:f8:37:2f:76:23:61:4a:72: 6b:77:79:2a:fa:50:18:b2:35:d1:f0:91:a3:89:00: 4d:43:4f:62:10:4c:5b:ed:7b:8d:9f:ae:44:09:2e: 29:6c:10:6b:7e:85:e5:f6:f9:d6:88:54:0a:8e:6c: e1:bd:d0:cb:bd:1c:33:68:0d:61:54:6b:ac:07:09: d3:f0:d0:d1:94:58:ef:f8:db:87:61:18:fc:d9:6f: 90:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:D6:08:3C:18:34:7F:B9:B2:79:72:28:F0:24:BE:D3:AD:D3:51:8B X509v3 Authority Key Identifier: keyid:86:B2:B1:D1:E7:82:44:8B:84:F6:98:18:F1:6A:1F:70:7B:54:C8:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC979/ED633E865FD911EBA30EE37BC4F9AE02/hrKx0eeCRIuE9pgY8WofcHtUyGw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hrKx0eeCRIuE9pgY8WofcHtUyGw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC979/ED633E865FD911EBA30EE37BC4F9AE02/956449BEFBF411EDBEAD0A26C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.136.104.0/22 Signature Algorithm: sha256WithRSAEncryption 66:4c:f3:10:a1:47:2e:6f:01:45:f7:eb:29:65:6a:eb:17:cb: 70:5c:c6:2a:6d:78:97:2c:7c:d7:e2:5b:1e:4f:be:1c:75:72: 39:b9:36:1d:f4:a2:d7:13:81:19:93:1c:eb:30:9d:25:0c:37: 80:b0:df:d5:5a:bd:f7:fe:32:3c:c3:30:8d:c9:12:0b:5a:f1: d4:de:2c:1a:eb:98:4a:0d:f0:bd:cb:4e:d3:6b:26:79:22:77: 48:14:32:e6:bd:f3:b6:5e:fd:0d:cb:06:11:52:1d:a4:cf:71: e8:10:81:d7:d3:9d:be:f9:0d:e4:0e:c4:d5:65:e7:17:22:fb: a9:c3:08:ac:c4:02:38:65:fe:d7:55:bc:b0:04:6c:8f:b4:b7: 1b:fb:bf:30:54:b1:df:c5:e0:70:9c:f4:15:08:55:36:28:5e: 22:93:15:a0:74:42:06:83:0d:1c:1e:b3:eb:6f:59:02:03:ce: 45:56:ac:18:f4:1f:79:4b:9b:1e:96:41:d4:cd:c9:91:1e:1d: b3:cd:31:2a:89:c6:8f:a2:b8:ac:d4:1f:5e:2c:f0:ba:c3:68: 28:7d:f0:24:73:34:a9:a3:24:17:d5:ed:b4:90:2e:59:24:b7: 48:51:af:b1:d3:f8:cf:47:30:ce:84:54:24:ca:5c:f4:68:aa: 20:d4:2c:80 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBsgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM5NzkxMTAvBgNVBAUTKDg2QjJCMUQxRTc4MjQ0OEI4NEY2OTgxOEYxNkExRjcw N0I1NEM4NkMwHhcNMjUwNTEwMjIyMTA3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFmZDE1My03ZmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxRe16GLAHceEPetLu8okqll82GpjbmwZFm6P2nlhWLLszEB9yU8azFqOiHvx 6jApKkqWpcWpZ7mzk7092lo8MBx8QxwLybgCFxRFC0sD3cSLzvWhb6pQ8iDTnjfG 0JE/aO9Y2ylf19FoGjbWt6DHboZ28Xu5NxWt1zTCmzevgW6SLGnXEDQ0ONMxtM3k QmAl8sTFJuh5g4d8lNcyzTQubClKfMDpGznG1vYE+DcvdiNhSnJrd3kq+lAYsjXR 8JGjiQBNQ09iEExb7XuNn65ECS4pbBBrfoXl9vnWiFQKjmzhvdDLvRwzaA1hVGus BwnT8NDRlFjv+NuHYRj82W+QlwIDAQABo4IClTCCApEwHQYDVR0OBBYEFELWCDwY NH+5snlyKPAkvtOt01GLMB8GA1UdIwQYMBaAFIaysdHngkSLhPaYGPFqH3B7VMhs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzk3OS9FRDYzM0U4NjVG RDkxMUVCQTMwRUUzN0JDNEY5QUUwMi9ockt4MGVlQ1JJdUU5cGdZOFdvZmNIdFV5 R3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hyS3gwZWVDUkl1RTlwZ1k4V29mY0h0VXlHdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUM5NzkvRUQ2MzNFODY1RkQ5MTFFQkEzMEVFMzdCQzRGOUFFMDIvOTU2NDQ5QkVG QkY0MTFFREJFQUQwQTI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJniGgwDQYJKoZIhvcNAQELBQADggEBAGZM8xChRy5vAUX3 6yllausXy3BcxipteJcsfNfiWx5Pvhx1cjm5Nh30otcTgRmTHOswnSUMN4Cw39Va vff+MjzDMI3JEgta8dTeLBrrmEoN8L3LTtNrJnkid0gUMua987Ze/Q3LBhFSHaTP cegQgdfTnb75DeQOxNVl5xci+6nDCKzEAjhl/tdVvLAEbI+0txv7vzBUsd/F4HCc 9BUIVTYoXiKTFaB0QgaDDRwes+tvWQIDzkVWrBj0H3lLmx6WQdTNyZEeHbPNMSqJ xo+iuKzUH14s8LrDaCh98CRzNKmjJBfV7bSQLlkkt0hRr7HT+M9HMM6EVCTKXPRo qiDULIA= -----END CERTIFICATE-----Generated at Mon May 12 22:46:32 2025 by rpki-client