$ rpki-client -vvf rpki.apnic.net/member_repository/A916D29F/691F74C4988811E991AF6636C4F9AE02/34DCFB18C94E11E9A4F6FE21C4F9AE02.roa File: 34DCFB18C94E11E9A4F6FE21C4F9AE02.roa (raw, json) Hash identifier: PQRWtI7uNa0DrowLXSGG8eKzHjE+mScrhL8bc6GhWo0= Subject key identifier: 62:49:DA:AF:2B:C8:9B:C0:A2:42:CD:20:DB:5C:79:66:16:E3:34:97 Certificate issuer: /CN=A916D29F/serialNumber=AA85CCD2DD3E1C003BF72FF53E58C7200E7CF0A8 Certificate serial: 0E54 Authority key identifier: AA:85:CC:D2:DD:3E:1C:00:3B:F7:2F:F5:3E:58:C7:20:0E:7C:F0:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qoXM0t0-HAA79y_1PljHIA588Kg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D29F/691F74C4988811E991AF6636C4F9AE02/34DCFB18C94E11E9A4F6FE21C4F9AE02.roa Signing time: Wed 22 Jan 2025 17:56:07 +0000 ROA not before: Wed 22 Jan 2025 17:56:07 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 9009 IP address blocks: 103.105.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D29F/691F74C4988811E991AF6636C4F9AE02/qoXM0t0-HAA79y_1PljHIA588Kg.crl rsync://rpki.apnic.net/member_repository/A916D29F/691F74C4988811E991AF6636C4F9AE02/qoXM0t0-HAA79y_1PljHIA588Kg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qoXM0t0-HAA79y_1PljHIA588Kg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:51:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3668 (0xe54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D29F Validity Not Before: Jan 22 17:56:07 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67913136-176e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e7:6e:cd:bc:c3:ef:73:79:73:d0:09:15:e1: 63:35:f3:b7:67:f7:d3:ca:ec:59:a0:3a:45:23:dc: 5a:43:dc:c6:2f:c1:f7:55:90:e3:f6:ff:68:51:11: e8:e5:7f:76:83:b1:a7:47:a8:9b:ff:d9:db:75:82: 43:c5:67:c4:fe:98:17:db:68:55:27:27:af:76:8d: 0d:3c:e4:fc:e4:f6:1a:4e:32:cc:a5:f8:42:fd:18: 8a:96:2d:af:c6:6c:00:c9:29:b2:ad:61:e1:09:8b: 0d:6d:3d:ae:1d:d1:c4:23:f2:3a:6a:1b:0d:6c:76: b7:72:68:74:c2:fc:04:7c:a0:b2:ad:71:9b:db:7a: c0:62:fc:67:2b:9d:38:18:97:1f:96:f0:19:1e:94: 07:2b:a9:6f:e2:7f:a2:ee:ab:3d:a1:66:6e:84:00: 13:f8:73:28:55:85:a5:f7:09:7e:fb:72:3e:ac:01: 9f:d0:75:91:7c:89:0b:23:0f:fd:d8:d8:78:ab:47: fe:86:e0:46:29:81:35:d3:df:23:78:ee:6f:88:05: af:0d:6b:2b:2f:db:28:12:5b:ed:34:74:1e:9c:28: 8a:ae:86:32:06:6a:56:8c:f5:67:28:53:da:1c:57: 7e:18:85:88:ab:4f:80:82:d1:b8:54:27:5f:9a:62: a1:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:49:DA:AF:2B:C8:9B:C0:A2:42:CD:20:DB:5C:79:66:16:E3:34:97 X509v3 Authority Key Identifier: keyid:AA:85:CC:D2:DD:3E:1C:00:3B:F7:2F:F5:3E:58:C7:20:0E:7C:F0:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D29F/691F74C4988811E991AF6636C4F9AE02/qoXM0t0-HAA79y_1PljHIA588Kg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qoXM0t0-HAA79y_1PljHIA588Kg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D29F/691F74C4988811E991AF6636C4F9AE02/34DCFB18C94E11E9A4F6FE21C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.105.164.0/24 Signature Algorithm: sha256WithRSAEncryption c4:24:bf:fd:db:08:81:fe:90:f2:7e:e1:a5:bb:bb:f0:e9:2a: 41:d1:24:06:e5:2b:73:20:7f:f1:14:66:0f:d4:89:6f:c6:63: 8e:33:ba:8d:8a:4d:45:61:bd:bf:58:85:95:00:05:e5:7a:03: 94:de:4e:ce:fb:cc:24:15:02:9e:3a:1d:3f:8c:56:28:be:a9: ae:1d:19:4c:fc:7e:26:42:1f:7f:65:9b:51:3c:1b:e3:ed:01: 97:db:f3:fb:14:d6:25:24:e8:ac:b9:7c:be:d8:b6:e2:10:c9: d1:16:b5:b7:1b:b8:d4:ff:84:d7:7a:ac:84:41:d4:9d:1a:5d: 84:81:85:8d:02:92:09:14:e7:37:32:a6:e1:fb:49:5a:38:fa: 0d:99:58:fe:7b:c3:6e:3b:30:12:08:fb:a5:12:32:4b:73:af: 8c:89:8c:8c:63:2e:c6:c4:7e:61:3f:ea:ec:20:38:8f:a3:63: fa:03:3b:d7:f4:53:68:b2:06:3a:ac:25:18:16:7a:68:52:98: 17:0e:d7:42:d8:48:4d:ae:be:84:8f:53:c2:4a:d2:8e:f6:88: 5a:e8:b8:db:02:cf:94:ba:c1:f0:84:c5:b9:ac:15:6c:5a:dd: ed:d6:e7:fd:78:ed:a2:dc:ef:1c:a0:b1:7b:d9:f6:a9:4d:05: a5:06:bc:ba -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDlQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQyOUYxMTAvBgNVBAUTKEFBODVDQ0QyREQzRTFDMDAzQkY3MkZGNTNFNThDNzIw MEU3Q0YwQTgwHhcNMjUwMTIyMTc1NjA3WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzkxMzEzNi0xNzZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsuduzbzD73N5c9AJFeFjNfO3Z/fTyuxZoDpFI9xaQ9zGL8H3VZDj9v9oURHo 5X92g7GnR6ib/9nbdYJDxWfE/pgX22hVJyevdo0NPOT85PYaTjLMpfhC/RiKli2v xmwAySmyrWHhCYsNbT2uHdHEI/I6ahsNbHa3cmh0wvwEfKCyrXGb23rAYvxnK504 GJcflvAZHpQHK6lv4n+i7qs9oWZuhAAT+HMoVYWl9wl++3I+rAGf0HWRfIkLIw/9 2Nh4q0f+huBGKYE1098jeO5viAWvDWsrL9soElvtNHQenCiKroYyBmpWjPVnKFPa HFd+GIWIq0+AgtG4VCdfmmKhMQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGJJ2q8r yJvAokLNINtceWYW4zSXMB8GA1UdIwQYMBaAFKqFzNLdPhwAO/cv9T5YxyAOfPCo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDI5Ri82OTFGNzRDNDk4 ODgxMUU5OTFBRjY2MzZDNEY5QUUwMi9xb1hNMHQwLUhBQTc5eV8xUGxqSElBNTg4 S2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FvWE0wdDAtSEFBNzl5XzFQbGpISUE1ODhLZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkQyOUYvNjkxRjc0QzQ5ODg4MTFFOTkxQUY2NjM2QzRGOUFFMDIvMzREQ0ZCMThD OTRFMTFFOUE0RjZGRTIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnaaQwDQYJKoZIhvcNAQELBQADggEBAMQkv/3bCIH+kPJ+ 4aW7u/DpKkHRJAblK3Mgf/EUZg/UiW/GY44zuo2KTUVhvb9YhZUABeV6A5TeTs77 zCQVAp46HT+MVii+qa4dGUz8fiZCH39lm1E8G+PtAZfb8/sU1iUk6Ky5fL7YtuIQ ydEWtbcbuNT/hNd6rIRB1J0aXYSBhY0CkgkU5zcypuH7SVo4+g2ZWP57w247MBII +6USMktzr4yJjIxjLsbEfmE/6uwgOI+jY/oDO9f0U2iyBjqsJRgWemhSmBcO10LY SE2uvoSPU8JK0o72iFrouNsCz5S6wfCExbmsFWxa3e3W5/147aLc7xygsXvZ9qlN BaUGvLo= -----END CERTIFICATE-----Generated at Sat Apr 5 02:23:06 2025 by rpki-client