$ rpki-client -vvf rpki.apnic.net/member_repository/A91644A4/2D23A4CC020711ED81DF0168C4F9AE02/3B501252140811EDBF3D2F27C4F9AE02.roa File: 3B501252140811EDBF3D2F27C4F9AE02.roa (raw, json) Hash identifier: UP0rzzGm1RNNAwSNVW6RQ9A/3hrn3jElJIPxPVvX0ks= Subject key identifier: 9B:C9:6B:4E:B6:C9:C1:08:9C:A8:38:99:04:5C:C7:91:DC:69:F6:BC Certificate issuer: /CN=A91644A4/serialNumber=8FC661A19332AE864BC87900744DA337F9A700A9 Certificate serial: 0267 Authority key identifier: 8F:C6:61:A1:93:32:AE:86:4B:C8:79:00:74:4D:A3:37:F9:A7:00:A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j8ZhoZMyroZLyHkAdE2jN_mnAKk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91644A4/2D23A4CC020711ED81DF0168C4F9AE02/3B501252140811EDBF3D2F27C4F9AE02.roa Signing time: Wed 05 Feb 2025 01:25:29 +0000 ROA not before: Wed 05 Feb 2025 01:25:29 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 17158 IP address blocks: 103.109.128.0/24 maxlen: 24 103.109.129.0/24 maxlen: 24 103.109.130.0/24 maxlen: 24 103.109.131.0/24 maxlen: 24 203.22.186.0/24 maxlen: 24 203.23.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91644A4/2D23A4CC020711ED81DF0168C4F9AE02/j8ZhoZMyroZLyHkAdE2jN_mnAKk.crl rsync://rpki.apnic.net/member_repository/A91644A4/2D23A4CC020711ED81DF0168C4F9AE02/j8ZhoZMyroZLyHkAdE2jN_mnAKk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j8ZhoZMyroZLyHkAdE2jN_mnAKk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 01:14:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 615 (0x267) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91644A4 Validity Not Before: Feb 5 01:25:29 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67a2be08-2e84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:cd:4a:d3:1f:44:21:19:cc:5f:90:4a:1f:a1: f7:3c:be:94:d9:2a:30:2c:2f:49:58:d9:4b:4f:f9: 34:d6:13:c5:18:3d:a8:83:f0:ff:7d:07:74:7f:1b: a9:be:38:fd:f4:3d:da:dd:1e:f8:6b:50:07:6f:0d: 26:ca:a3:31:b9:b6:a3:bd:f0:9c:41:79:e6:1a:3d: 69:6a:83:74:41:ec:e2:f5:e2:58:05:0d:c3:97:14: c6:7c:39:02:65:2b:fb:01:50:f8:ad:66:26:2d:2e: 3a:bf:52:5a:3f:ed:63:52:c8:f4:f9:2f:da:2a:17: bf:20:75:a3:cc:44:b6:9f:59:26:de:55:a1:ad:b9: 0e:a0:8c:7e:28:de:fe:07:71:ec:ae:8c:fe:4e:49: a5:33:dc:0e:fc:11:b0:c6:70:95:ce:d1:3c:60:fe: 01:22:3e:e4:66:81:53:18:7a:fc:c2:f8:a7:0c:c5: 35:c4:bd:a9:fc:7e:f6:19:2e:5b:62:a6:43:6f:d9: 62:a6:78:e8:2a:11:63:57:ca:cc:08:cc:22:10:6d: c7:ba:52:12:5e:ce:b4:f9:a3:ae:eb:c6:8b:9b:7d: aa:ab:f5:2f:91:e1:4d:98:87:de:cf:74:f0:79:14: fa:8e:6b:58:e0:38:27:02:09:96:0b:6f:6a:36:fb: e1:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:C9:6B:4E:B6:C9:C1:08:9C:A8:38:99:04:5C:C7:91:DC:69:F6:BC X509v3 Authority Key Identifier: keyid:8F:C6:61:A1:93:32:AE:86:4B:C8:79:00:74:4D:A3:37:F9:A7:00:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91644A4/2D23A4CC020711ED81DF0168C4F9AE02/j8ZhoZMyroZLyHkAdE2jN_mnAKk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j8ZhoZMyroZLyHkAdE2jN_mnAKk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91644A4/2D23A4CC020711ED81DF0168C4F9AE02/3B501252140811EDBF3D2F27C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.109.128.0/22 203.22.186.0/24 203.23.127.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:7d:ed:24:4c:dc:68:39:74:92:46:f6:48:a2:db:2e:e8:4d: 35:c3:bd:cd:b7:11:30:de:63:8c:27:44:9c:8c:7c:4b:91:ee: d4:1f:18:35:f7:7a:d1:6a:a1:bc:ca:19:1a:b7:d2:e0:fd:8b: c1:6f:05:39:55:77:f3:05:0a:e0:8f:bd:f5:cf:a2:5d:8c:b3: f7:f5:c2:2e:eb:f1:17:c3:72:e4:ff:b6:e4:4f:21:b7:2d:ec: 2c:39:95:e8:39:19:c9:f9:13:c4:32:97:b4:80:ba:52:d6:70: dc:05:6e:0a:04:4b:d5:6f:d5:90:58:b9:e4:76:dd:27:39:2e: 37:51:f0:9c:dd:98:26:1f:98:06:9d:b0:30:43:f6:95:05:f3: 70:4b:63:01:06:cd:5b:dc:3b:a2:1f:da:6c:73:53:b9:73:e4: 9f:1a:a0:45:8b:fb:79:20:6f:68:b4:87:7d:47:3f:6f:d9:a0: bc:4a:ae:15:86:ec:48:17:4c:1f:64:38:8e:66:82:2c:d6:46: 4e:2f:99:c7:cc:28:25:fa:66:b4:69:54:8b:42:6c:1a:7c:a8: 67:10:d3:3c:63:71:1f:aa:80:28:13:3f:fb:41:d8:d8:92:26: 12:20:d7:30:64:7e:77:8f:c0:39:f9:1f:20:18:77:47:44:93: 25:08:03:98 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAmcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQ0QTQxMTAvBgNVBAUTKDhGQzY2MUExOTMzMkFFODY0QkM4NzkwMDc0NERBMzM3 RjlBNzAwQTkwHhcNMjUwMjA1MDEyNTI5WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2EyYmUwOC0yZTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2s1K0x9EIRnMX5BKH6H3PL6U2SowLC9JWNlLT/k01hPFGD2og/D/fQd0fxup vjj99D3a3R74a1AHbw0myqMxubajvfCcQXnmGj1paoN0Qezi9eJYBQ3DlxTGfDkC ZSv7AVD4rWYmLS46v1JaP+1jUsj0+S/aKhe/IHWjzES2n1km3lWhrbkOoIx+KN7+ B3Hsroz+TkmlM9wO/BGwxnCVztE8YP4BIj7kZoFTGHr8wvinDMU1xL2p/H72GS5b YqZDb9lipnjoKhFjV8rMCMwiEG3HulISXs60+aOu68aLm32qq/UvkeFNmIfez3Tw eRT6jmtY4DgnAgmWC29qNvvhowIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFJvJa062 ycEInKg4mQRcx5Hcafa8MB8GA1UdIwQYMBaAFI/GYaGTMq6GS8h5AHRNozf5pwCp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDRBNC8yRDIzQTRDQzAy MDcxMUVEODFERjAxNjhDNEY5QUUwMi9qOFpob1pNeXJvWkx5SGtBZEUyak5fbW5B S2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2o4WmhvWk15cm9aTHlIa0FkRTJqTl9tbkFLay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjQ0QTQvMkQyM0E0Q0MwMjA3MTFFRDgxREYwMTY4QzRGOUFFMDIvM0I1MDEyNTIx NDA4MTFFREJGM0QyRjI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAJnbYADBADLFroDBADLF38wDQYJKoZIhvcNAQELBQADggEB AHx97SRM3Gg5dJJG9kii2y7oTTXDvc23ETDeY4wnRJyMfEuR7tQfGDX3etFqobzK GRq30uD9i8FvBTlVd/MFCuCPvfXPol2Ms/f1wi7r8RfDcuT/tuRPIbct7Cw5leg5 Gcn5E8Qyl7SAulLWcNwFbgoES9Vv1ZBYueR23Sc5LjdR8JzdmCYfmAadsDBD9pUF 83BLYwEGzVvcO6If2mxzU7lz5J8aoEWL+3kgb2i0h31HP2/ZoLxKrhWG7EgXTB9k OI5mgizWRk4vmcfMKCX6ZrRpVItCbBp8qGcQ0zxjcR+qgCgTP/tB2NiSJhIg1zBk fnePwDn5HyAYd0dEkyUIA5g= -----END CERTIFICATE-----Generated at Mon Apr 7 20:39:10 2025 by rpki-client