$ rpki-client -vvf rpki.apnic.net/member_repository/A91145A9/EBAC8238785911EDB2FC220EC4F9AE02/34AB7E9098E311EDBDD55016C4F9AE02.roa File: 34AB7E9098E311EDBDD55016C4F9AE02.roa (raw, json) Hash identifier: xfkl8skdiPHTBgxKlmUOk4AXlxxNWByBJaAARzV7VLE= Subject key identifier: 33:54:B9:35:90:22:B8:CD:7A:10:56:2E:5A:04:FF:C5:EB:1F:D9:39 Certificate issuer: /CN=A91145A9/serialNumber=1C71D63EDAECB10F53141E8A308943959A7C575A Certificate serial: 01A8 Authority key identifier: 1C:71:D6:3E:DA:EC:B1:0F:53:14:1E:8A:30:89:43:95:9A:7C:57:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HHHWPtrssQ9TFB6KMIlDlZp8V1o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91145A9/EBAC8238785911EDB2FC220EC4F9AE02/34AB7E9098E311EDBDD55016C4F9AE02.roa Signing time: Tue 25 Feb 2025 04:35:50 +0000 ROA not before: Tue 25 Feb 2025 04:35:50 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 150669 IP address blocks: 103.51.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91145A9/EBAC8238785911EDB2FC220EC4F9AE02/HHHWPtrssQ9TFB6KMIlDlZp8V1o.crl rsync://rpki.apnic.net/member_repository/A91145A9/EBAC8238785911EDB2FC220EC4F9AE02/HHHWPtrssQ9TFB6KMIlDlZp8V1o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HHHWPtrssQ9TFB6KMIlDlZp8V1o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 02:30:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 424 (0x1a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91145A9 Validity Not Before: Feb 25 04:35:50 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67bd48a6-1881 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:7e:05:85:15:fc:33:2d:63:b1:87:a9:bc:4c: 06:b0:3d:76:77:00:75:99:72:ff:df:14:25:88:dd: 42:64:66:c9:13:40:6d:ba:46:67:d4:de:6a:d0:ab: f0:c1:a6:89:f1:39:6d:f2:2a:18:34:14:1b:cf:96: 08:3a:35:cb:b7:7a:1f:b1:15:50:55:ac:33:e1:18: cd:9d:ed:24:17:c5:6e:64:90:0f:5e:ae:bd:e9:59: 52:83:9f:f8:32:fa:53:6c:9b:3f:ed:26:59:f1:41: d1:5e:c4:1c:90:55:66:49:9e:52:36:77:75:3d:5b: a9:d3:61:90:73:40:6b:99:4f:17:c3:d1:5f:49:78: b9:12:0f:bf:8b:4d:9f:ba:d6:78:48:3f:ca:33:1d: dd:65:5d:eb:b8:f3:33:52:2f:a5:6a:9a:0b:a3:d4: a9:6c:d3:5f:8f:1b:c3:e5:56:8d:35:62:06:a3:2f: 3c:ef:eb:0d:b5:6b:92:4d:df:5d:9b:9a:c3:ea:ff: 5a:96:94:96:eb:e1:e4:72:4e:8f:c0:6f:51:27:58: 6c:8b:20:24:4c:f1:30:a1:2b:40:12:9c:f8:b6:bf: cc:58:19:8b:09:7a:e3:a6:70:c1:0c:c2:d8:6b:77: df:fc:a5:d7:1b:ac:9c:e6:be:c7:0c:26:ee:a5:62: cc:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:54:B9:35:90:22:B8:CD:7A:10:56:2E:5A:04:FF:C5:EB:1F:D9:39 X509v3 Authority Key Identifier: keyid:1C:71:D6:3E:DA:EC:B1:0F:53:14:1E:8A:30:89:43:95:9A:7C:57:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91145A9/EBAC8238785911EDB2FC220EC4F9AE02/HHHWPtrssQ9TFB6KMIlDlZp8V1o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HHHWPtrssQ9TFB6KMIlDlZp8V1o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91145A9/EBAC8238785911EDB2FC220EC4F9AE02/34AB7E9098E311EDBDD55016C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.51.52.0/24 Signature Algorithm: sha256WithRSAEncryption 47:bb:7d:4b:c7:00:c2:3d:65:34:78:06:b7:ff:a7:98:7e:90: b9:4d:18:bb:f8:2c:5c:c8:af:99:62:34:f9:74:9c:2e:e8:42: 9b:95:22:66:2f:ec:9d:ff:92:a9:39:ca:44:8d:24:e6:fa:81: 0a:c1:85:1e:e6:23:0f:78:b7:76:b8:ac:c3:44:db:e0:11:5a: 0f:02:53:8f:b1:2d:25:c0:74:16:48:31:90:0b:42:6f:f7:75: 51:91:13:2d:89:ec:7c:31:b5:49:78:43:40:46:fe:00:d1:be: 72:6b:14:ff:8b:70:fd:9f:08:c4:b7:f9:b6:1b:a0:da:c8:53: 60:44:3f:f1:27:eb:29:b2:5d:7b:75:eb:c7:ba:06:23:06:7c: a4:73:69:ac:96:db:f3:58:fa:ff:b5:ce:fd:8d:7c:3f:84:36: bb:d8:c3:5a:07:6e:88:18:be:d7:94:a7:5f:05:22:9f:85:23: 55:e1:31:f9:60:61:8d:0e:90:e3:6d:3a:ee:7f:df:fd:eb:b5: f7:ee:27:e5:2f:e0:78:8e:69:ce:7c:4a:d9:38:2f:1c:4f:81: f5:ec:54:4e:82:cb:a9:f4:f4:3a:20:40:5e:95:f9:76:c5:b0: 3d:a3:5e:20:e4:5a:06:a3:0d:41:8b:cc:16:4c:98:de:e2:09: 1a:8a:f9:1f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTQ1QTkxMTAvBgNVBAUTKDFDNzFENjNFREFFQ0IxMEY1MzE0MUU4QTMwODk0Mzk1 OUE3QzU3NUEwHhcNMjUwMjI1MDQzNTUwWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2JkNDhhNi0xODgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnX4FhRX8My1jsYepvEwGsD12dwB1mXL/3xQliN1CZGbJE0BtukZn1N5q0Kvw waaJ8Tlt8ioYNBQbz5YIOjXLt3ofsRVQVawz4RjNne0kF8VuZJAPXq696VlSg5/4 MvpTbJs/7SZZ8UHRXsQckFVmSZ5SNnd1PVup02GQc0BrmU8Xw9FfSXi5Eg+/i02f utZ4SD/KMx3dZV3ruPMzUi+lapoLo9SpbNNfjxvD5VaNNWIGoy887+sNtWuSTd9d m5rD6v9alpSW6+Hkck6PwG9RJ1hsiyAkTPEwoStAEpz4tr/MWBmLCXrjpnDBDMLY a3ff/KXXG6yc5r7HDCbupWLMTwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDNUuTWQ IrjNehBWLloE/8XrH9k5MB8GA1UdIwQYMBaAFBxx1j7a7LEPUxQeijCJQ5WafFda MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNDVBOS9FQkFDODIzODc4 NTkxMUVEQjJGQzIyMEVDNEY5QUUwMi9ISEhXUHRyc3NROVRGQjZLTUlsRGxacDhW MW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hISFdQdHJzc1E5VEZCNktNSWxEbFpwOFYxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTQ1QTkvRUJBQzgyMzg3ODU5MTFFREIyRkMyMjBFQzRGOUFFMDIvMzRBQjdFOTA5 OEUzMTFFREJERDU1MDE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnMzQwDQYJKoZIhvcNAQELBQADggEBAEe7fUvHAMI9ZTR4 Brf/p5h+kLlNGLv4LFzIr5liNPl0nC7oQpuVImYv7J3/kqk5ykSNJOb6gQrBhR7m Iw94t3a4rMNE2+ARWg8CU4+xLSXAdBZIMZALQm/3dVGREy2J7HwxtUl4Q0BG/gDR vnJrFP+LcP2fCMS3+bYboNrIU2BEP/En6ymyXXt168e6BiMGfKRzaayW2/NY+v+1 zv2NfD+ENrvYw1oHbogYvteUp18FIp+FI1XhMflgYY0OkONtOu5/3/3rtffuJ+Uv 4HiOac58Stk4LxxPgfXsVE6Cy6n09DogQF6V+XbFsD2jXiDkWgajDUGLzBZMmN7i CRqK+R8= -----END CERTIFICATE-----Generated at Sat Apr 5 02:18:12 2025 by rpki-client