$ rpki-client -vvf rpki.apnic.net/member_repository/A918233C/E6491FE2621411ECB006712CC4F9AE02/34E594A215C511F09562D30FC4F9AE02.roa File: 34E594A215C511F09562D30FC4F9AE02.roa (raw, json) Hash identifier: hO8cBpPkkXeK8WAFYmWHFGS1BpcqmFyN9GM5+DFTdqE= Subject key identifier: 25:55:8C:E0:C4:82:D7:AE:5C:D8:63:85:15:B2:E8:41:D0:D6:91:95 Certificate issuer: /CN=A918233C/serialNumber=FCD4DF8EB4AA64AF56B7D0C7326E29104543CC55 Certificate serial: 03 Authority key identifier: FC:D4:DF:8E:B4:AA:64:AF:56:B7:D0:C7:32:6E:29:10:45:43:CC:55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_NTfjrSqZK9Wt9DHMm4pEEVDzFU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918233C/E6491FE2621411ECB006712CC4F9AE02/34E594A215C511F09562D30FC4F9AE02.roa Signing time: Thu 10 Apr 2025 04:35:19 +0000 ROA not before: Thu 10 Apr 2025 04:35:19 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 147182 IP address blocks: 103.174.48.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918233C/E6491FE2621411ECB006712CC4F9AE02/_NTfjrSqZK9Wt9DHMm4pEEVDzFU.crl rsync://rpki.apnic.net/member_repository/A918233C/E6491FE2621411ECB006712CC4F9AE02/_NTfjrSqZK9Wt9DHMm4pEEVDzFU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_NTfjrSqZK9Wt9DHMm4pEEVDzFU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 00:23:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918233C, serialNumber=FCD4DF8EB4AA64AF56B7D0C7326E29104543CC55 Validity Not Before: Apr 10 04:35:19 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67f74a87-6f5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:4e:3b:9a:bc:3a:6a:99:30:c1:75:9c:dc:68: cc:a5:3a:0e:4b:67:7e:fc:2e:74:aa:6b:65:4e:2b: c1:6e:55:5b:00:a4:ce:06:24:0b:18:ab:30:44:21: b9:08:7c:d7:ce:ce:cc:d1:1b:02:bd:ee:e0:7b:1d: ef:ac:b1:e5:4e:34:87:1a:57:63:5f:2c:1d:e4:93: 61:26:66:0e:60:0c:89:e0:a0:66:68:75:94:a9:5a: 29:00:ae:6b:ad:a7:2e:39:fd:99:ef:39:ba:da:52: a0:e1:9a:f9:b6:cd:c2:3a:e5:50:32:fd:cd:68:e6: 73:5c:d6:dc:a3:3c:6f:12:31:1e:f1:36:b8:10:29: ca:40:75:e9:e0:cc:ab:04:64:6d:af:29:15:60:95: 57:27:a2:6a:3e:e9:44:c6:a3:88:58:7a:46:39:8d: 17:77:e3:5d:30:2c:d6:71:43:4f:36:dc:0c:f3:c6: c8:2f:5b:83:8a:28:e6:ca:8b:36:d3:03:f1:2a:f1: c6:ca:6c:71:01:ae:6b:26:fc:d1:20:81:a1:0f:b8: a9:16:92:e2:e4:64:c9:21:b1:74:78:7f:58:81:24: ba:02:4d:22:3a:ae:65:73:17:ac:41:51:b2:33:61: 04:9f:1f:5f:1e:54:ef:2d:8a:21:e7:77:8e:be:57: 0b:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:55:8C:E0:C4:82:D7:AE:5C:D8:63:85:15:B2:E8:41:D0:D6:91:95 X509v3 Authority Key Identifier: keyid:FC:D4:DF:8E:B4:AA:64:AF:56:B7:D0:C7:32:6E:29:10:45:43:CC:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918233C/E6491FE2621411ECB006712CC4F9AE02/_NTfjrSqZK9Wt9DHMm4pEEVDzFU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_NTfjrSqZK9Wt9DHMm4pEEVDzFU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918233C/E6491FE2621411ECB006712CC4F9AE02/34E594A215C511F09562D30FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.174.48.0/23 Signature Algorithm: sha256WithRSAEncryption 6f:80:14:19:0f:dd:cf:02:4c:8f:ff:9a:6f:5d:91:f3:43:84: b2:c4:cb:6e:30:1c:ec:85:cc:32:93:20:64:e2:7e:55:a9:19: b0:20:2f:fb:4b:0a:69:6a:6c:da:a2:5d:fb:2f:a1:2e:49:f8: 95:72:d5:be:64:6e:f8:9a:ed:d8:cd:69:2f:16:76:71:88:51: 55:42:90:91:e5:9c:36:7c:06:c1:96:6b:bb:42:e7:12:77:57: d9:19:0a:cb:ce:94:a7:47:0b:3a:45:1d:45:f8:f4:da:0f:a4: 59:82:fd:c0:91:0b:35:7b:6d:8a:b3:b5:84:10:56:f2:8d:f1: 1d:81:ea:33:7d:ec:38:04:42:86:44:ab:e3:cd:27:d4:33:25: 69:c7:2c:e6:47:e2:8a:b3:61:20:f3:57:6d:ac:f1:7a:80:82: f7:6b:71:22:78:fe:1d:59:74:53:b6:e9:67:80:0e:84:6d:be: 3c:1f:b4:67:a0:b2:64:b6:65:f7:7c:99:96:99:5e:4f:40:d0: 3b:e8:61:37:db:17:9a:80:b6:b2:ec:ef:f0:cc:f6:70:b5:83: df:8a:f5:6a:1f:95:c1:d1:84:a4:91:1a:5e:32:c0:9b:f2:9b: 5b:d7:4f:13:1a:a5:cf:b9:99:9f:37:af:b1:82:2e:27:91:0c: e2:c1:0b:11 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MjMzQzExMC8GA1UEBRMoRkNENERGOEVCNEFBNjRBRjU2QjdEMEM3MzI2RTI5MTA0 NTQzQ0M1NTAeFw0yNTA0MTAwNDM1MTlaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3Zjc0YTg3LTZmNWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1TjuavDpqmTDBdZzcaMylOg5LZ378LnSqa2VOK8FuVVsApM4GJAsYqzBEIbkI fNfOzszRGwK97uB7He+sseVONIcaV2NfLB3kk2EmZg5gDIngoGZodZSpWikArmut py45/ZnvObraUqDhmvm2zcI65VAy/c1o5nNc1tyjPG8SMR7xNrgQKcpAdengzKsE ZG2vKRVglVcnomo+6UTGo4hYekY5jRd3410wLNZxQ0823AzzxsgvW4OKKObKizbT A/Eq8cbKbHEBrmsm/NEggaEPuKkWkuLkZMkhsXR4f1iBJLoCTSI6rmVzF6xBUbIz YQSfH18eVO8tiiHnd46+VwsDAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUJVWM4MSC 165c2GOFFbLoQdDWkZUwHwYDVR0jBBgwFoAU/NTfjrSqZK9Wt9DHMm4pEEVDzFUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgyMzNDL0U2NDkxRkUyNjIx NDExRUNCMDA2NzEyQ0M0RjlBRTAyL19OVGZqclNxWks5V3Q5REhNbTRwRUVWRHpG VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvX05UZmpyU3FaSzlXdDlESE1tNHBFRVZEekZVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjMzQy9FNjQ5MUZFMjYyMTQxMUVDQjAwNjcxMkNDNEY5QUUwMi8zNEU1OTRBMjE1 QzUxMUYwOTU2MkQzMEZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWeuMDANBgkqhkiG9w0BAQsFAAOCAQEAb4AUGQ/dzwJMj/+a b12R80OEssTLbjAc7IXMMpMgZOJ+VakZsCAv+0sKaWps2qJd+y+hLkn4lXLVvmRu +Jrt2M1pLxZ2cYhRVUKQkeWcNnwGwZZru0LnEndX2RkKy86Up0cLOkUdRfj02g+k WYL9wJELNXttirO1hBBW8o3xHYHqM33sOARChkSr480n1DMlaccs5kfiirNhIPNX bazxeoCC92txInj+HVl0U7bpZ4AOhG2+PB+0Z6CyZLZl93yZlpleT0DQO+hhN9sX moC2suzv8Mz2cLWD34r1ah+VwdGEpJEaXjLAm/KbW9dPExqlz7mZnzevsYIuJ5EM 4sELEQ== -----END CERTIFICATE-----Generated at Sat Apr 19 08:28:32 2025 by rpki-client