$ rpki-client -vvf rpki.apnic.net/member_repository/A91689C8/38B38E5E8DD711ED85225A7EC4F9AE02/3BB70A86092211F08BA72686C4F9AE02.roa File: 3BB70A86092211F08BA72686C4F9AE02.roa (raw, json) Hash identifier: 2J/4S4P7iHBoNIa8ALxa/H8YBNXVUqoF1W5QLX0G6vs= Subject key identifier: 51:0A:C0:8E:63:02:29:E6:D2:93:9A:1C:73:E0:8A:43:C9:0F:E8:84 Certificate issuer: /CN=A91689C8/serialNumber=ADDB2BF3C41826D6D0FBE8D2BF2F052D98A5D949 Certificate serial: 02 Authority key identifier: AD:DB:2B:F3:C4:18:26:D6:D0:FB:E8:D2:BF:2F:05:2D:98:A5:D9:49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdsr88QYJtbQ--jSvy8FLZil2Uk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91689C8/38B38E5E8DD711ED85225A7EC4F9AE02/3BB70A86092211F08BA72686C4F9AE02.roa Signing time: Tue 25 Mar 2025 02:38:28 +0000 ROA not before: Tue 25 Mar 2025 02:38:28 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 150309 IP address blocks: 103.244.188.0/23 maxlen: 24 2400:a9e0::/32 maxlen: 32 2400:a9e0::/36 maxlen: 36 2400:a9e0:1000::/36 maxlen: 36 2400:a9e0:2000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91689C8/38B38E5E8DD711ED85225A7EC4F9AE02/rdsr88QYJtbQ--jSvy8FLZil2Uk.crl rsync://rpki.apnic.net/member_repository/A91689C8/38B38E5E8DD711ED85225A7EC4F9AE02/rdsr88QYJtbQ--jSvy8FLZil2Uk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdsr88QYJtbQ--jSvy8FLZil2Uk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:45:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91689C8 Validity Not Before: Mar 25 02:38:28 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67e21724-aadb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:23:eb:52:c5:ab:ff:30:82:fe:37:dd:f9:cd: d4:44:51:54:77:04:93:b4:e5:10:cd:ca:11:04:05: 4c:8d:e9:91:a6:81:b6:8d:ff:78:62:fe:cc:06:7e: a3:c8:44:d6:03:56:b6:b2:9e:94:65:d3:5d:b7:0e: 26:ef:0e:c3:18:70:63:f3:7a:72:9c:43:16:59:23: ca:d5:42:7f:2a:b3:aa:41:9b:87:21:cd:0c:b9:cf: 71:3f:b0:15:ae:6d:fd:df:57:e3:b0:bc:c3:1a:b2: ba:c1:2c:23:11:02:6a:7c:63:54:ef:51:ae:28:3e: 5e:54:61:2a:4d:ea:48:1e:46:70:fc:c2:c4:2d:0e: 03:55:0d:cb:f6:b7:db:3f:a2:4f:2b:5c:a0:61:57: 0e:c4:9a:8c:49:37:af:61:5f:89:2b:78:c4:71:73: 1b:13:0e:b1:24:a7:75:02:57:aa:59:17:48:1c:99: e0:f7:76:92:76:4b:04:bb:9e:ed:0f:88:7a:be:ea: 8f:3c:73:cb:12:8b:ce:26:9f:71:03:b0:ed:61:a5: 11:17:04:bc:21:5d:5d:f1:6b:f9:ed:f0:b6:4e:0e: a9:e3:96:4d:1c:5c:f5:33:93:e1:d4:24:b2:d1:04: 4a:1c:fc:9c:9d:71:27:d5:d9:ac:ec:4c:50:aa:26: 02:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:0A:C0:8E:63:02:29:E6:D2:93:9A:1C:73:E0:8A:43:C9:0F:E8:84 X509v3 Authority Key Identifier: keyid:AD:DB:2B:F3:C4:18:26:D6:D0:FB:E8:D2:BF:2F:05:2D:98:A5:D9:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91689C8/38B38E5E8DD711ED85225A7EC4F9AE02/rdsr88QYJtbQ--jSvy8FLZil2Uk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdsr88QYJtbQ--jSvy8FLZil2Uk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91689C8/38B38E5E8DD711ED85225A7EC4F9AE02/3BB70A86092211F08BA72686C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.244.188.0/23 IPv6: 2400:a9e0::/32 Signature Algorithm: sha256WithRSAEncryption ca:b2:0a:4d:8c:30:4c:07:1c:50:f2:fc:70:51:4c:aa:d5:3b: 4f:16:75:a4:f5:bf:57:f4:06:e9:91:43:9f:de:a6:aa:60:26: 38:57:14:20:17:bf:dc:39:d3:1b:a7:4b:1d:00:04:19:25:88: 55:9d:d9:6d:85:da:b4:fc:23:55:2c:74:62:4a:8f:d9:c9:e4: 9d:48:e7:f6:a6:fc:63:47:13:0e:d0:c2:da:2f:f1:36:d5:e9: 8c:74:8f:66:02:23:f2:ed:da:c4:2a:fa:ba:e4:99:10:82:68: ee:7b:e3:a0:46:d1:d1:12:f2:af:96:e9:05:fc:0b:61:0a:de: 4c:55:5a:40:ee:47:d2:fe:a2:90:43:b8:4e:91:42:13:86:47: cd:bb:49:12:ea:d4:25:78:de:fc:e1:d1:f6:d1:81:46:52:2d: b8:3b:0a:c5:6c:ef:00:8e:78:1d:90:84:f0:fc:cd:aa:9e:e2: 6a:c4:f6:31:aa:66:a7:c2:ee:a5:3f:83:cd:d0:af:ec:c0:94: 50:97:93:5d:fc:8f:a6:68:c0:60:d5:5d:bf:73:fe:ee:fe:57: af:32:9d:b9:63:80:50:e6:7c:67:1b:22:b9:e8:93:42:e0:ea: 8b:8c:9e:9f:bb:ed:03:0d:9f:44:c1:db:1b:8f:31:dc:c2:4b: 5f:d6:44:3d -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 ODlDODExMC8GA1UEBRMoQUREQjJCRjNDNDE4MjZENkQwRkJFOEQyQkYyRjA1MkQ5 OEE1RDk0OTAeFw0yNTAzMjUwMjM4MjhaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZTIxNzI0LWFhZGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4I+tSxav/MIL+N935zdREUVR3BJO05RDNyhEEBUyN6ZGmgbaN/3hi/swGfqPI RNYDVraynpRl0123DibvDsMYcGPzenKcQxZZI8rVQn8qs6pBm4chzQy5z3E/sBWu bf3fV+OwvMMasrrBLCMRAmp8Y1TvUa4oPl5UYSpN6kgeRnD8wsQtDgNVDcv2t9s/ ok8rXKBhVw7EmoxJN69hX4kreMRxcxsTDrEkp3UCV6pZF0gcmeD3dpJ2SwS7nu0P iHq+6o88c8sSi84mn3EDsO1hpREXBLwhXV3xa/nt8LZODqnjlk0cXPUzk+HUJLLR BEoc/JydcSfV2azsTFCqJgI5AgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUUQrAjmMC KebSk5occ+CKQ8kP6IQwHwYDVR0jBBgwFoAUrdsr88QYJtbQ++jSvy8FLZil2Ukw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY4OUM4LzM4QjM4RTVFOERE NzExRUQ4NTIyNUE3RUM0RjlBRTAyL3Jkc3I4OFFZSnRiUS0talN2eThGTFppbDJV ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcmRzcjg4UVlKdGJRLS1qU3Z5OEZMWmlsMlVrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODlDOC8zOEIzOEU1RThERDcxMUVEODUyMjVBN0VDNEY5QUUwMi8zQkI3MEE4NjA5 MjIxMUYwOEJBNzI2ODZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAWf0vDANBAIAAjAHAwUAJACp4DANBgkqhkiG9w0BAQsFAAOC AQEAyrIKTYwwTAccUPL8cFFMqtU7TxZ1pPW/V/QG6ZFDn96mqmAmOFcUIBe/3DnT G6dLHQAEGSWIVZ3ZbYXatPwjVSx0YkqP2cnknUjn9qb8Y0cTDtDC2i/xNtXpjHSP ZgIj8u3axCr6uuSZEIJo7nvjoEbR0RLyr5bpBfwLYQreTFVaQO5H0v6ikEO4TpFC E4ZHzbtJEurUJXje/OHR9tGBRlItuDsKxWzvAI54HZCE8PzNqp7iasT2Mapmp8Lu pT+DzdCv7MCUUJeTXfyPpmjAYNVdv3P+7v5XrzKduWOAUOZ8ZxsiueiTQuDqi4ye n7vtAw2fRMHbG48x3MJLX9ZEPQ== -----END CERTIFICATE-----Generated at Sun Apr 6 01:17:05 2025 by rpki-client