$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0848/64D8B1DE77E411ED97F5934DC4F9AE02/0FBB769A5DDB11EEAEEA437DC4F9AE02.roa File: 0FBB769A5DDB11EEAEEA437DC4F9AE02.roa (raw, json) Hash identifier: uKjzis/CrgsSg2LUM/lsbZTCdaGZHhh4O1b0+pc2P3M= Subject key identifier: FB:8D:0A:CA:7D:21:10:44:31:7F:CB:83:AC:CE:27:20:3F:73:1E:7F Certificate issuer: /CN=A91A0848/serialNumber=024229C81AC3535A21D60E2DC32A9B88BD6AD81F Certificate serial: 01B4 Authority key identifier: 02:42:29:C8:1A:C3:53:5A:21:D6:0E:2D:C3:2A:9B:88:BD:6A:D8:1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AkIpyBrDU1oh1g4twyqbiL1q2B8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0848/64D8B1DE77E411ED97F5934DC4F9AE02/0FBB769A5DDB11EEAEEA437DC4F9AE02.roa Signing time: Wed 05 Feb 2025 02:27:32 +0000 ROA not before: Wed 05 Feb 2025 02:27:32 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 38264 IP address blocks: 103.52.34.0/24 maxlen: 24 103.52.35.0/24 maxlen: 24 2001:df1:ac40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0848/64D8B1DE77E411ED97F5934DC4F9AE02/AkIpyBrDU1oh1g4twyqbiL1q2B8.crl rsync://rpki.apnic.net/member_repository/A91A0848/64D8B1DE77E411ED97F5934DC4F9AE02/AkIpyBrDU1oh1g4twyqbiL1q2B8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AkIpyBrDU1oh1g4twyqbiL1q2B8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:37:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 436 (0x1b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0848 Validity Not Before: Feb 5 02:27:32 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67a2cc93-4085 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:4b:e1:0f:07:0d:2f:46:47:d6:01:c4:2e:3f: fa:3f:8c:02:2b:64:59:0e:48:d4:6a:d8:fc:1f:57: ee:1d:55:83:78:a3:79:aa:c7:35:8b:49:d3:bf:57: 07:b6:03:3e:8e:64:10:64:97:6c:ed:be:8e:94:ea: 7a:5c:7b:21:eb:d6:a7:1e:88:85:94:c5:ba:2e:75: 46:51:09:7e:c6:87:ca:07:bb:78:b0:c1:05:65:34: 1e:bb:ae:9e:14:06:07:0b:1e:47:6f:ab:64:b8:84: 11:84:03:d0:7e:d2:c3:16:4e:ec:eb:34:72:5d:c6: b2:04:90:ec:e5:a6:86:de:56:25:50:24:ab:06:11: 0d:bc:65:4c:4a:85:c6:ba:b7:2d:82:98:8f:f0:b9: 06:d1:cd:fd:92:3a:96:b5:fa:0e:f1:67:99:42:20: 45:ea:f0:8e:7a:cb:f4:c9:f4:fd:1d:ee:d1:91:9f: 8c:8a:bf:3b:38:47:fc:cc:8f:43:e4:03:50:b7:94: c3:84:08:e0:09:cf:22:27:46:f7:d7:49:8a:60:13: 83:63:f1:7d:eb:7f:ea:a5:98:5d:c0:f8:1e:38:7f: d6:ca:e1:64:38:4e:9e:3b:5b:12:f7:7f:ab:cc:8a: 1f:00:f8:16:94:3b:d3:fd:2e:7e:55:1a:87:74:fb: f4:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:8D:0A:CA:7D:21:10:44:31:7F:CB:83:AC:CE:27:20:3F:73:1E:7F X509v3 Authority Key Identifier: keyid:02:42:29:C8:1A:C3:53:5A:21:D6:0E:2D:C3:2A:9B:88:BD:6A:D8:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0848/64D8B1DE77E411ED97F5934DC4F9AE02/AkIpyBrDU1oh1g4twyqbiL1q2B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AkIpyBrDU1oh1g4twyqbiL1q2B8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0848/64D8B1DE77E411ED97F5934DC4F9AE02/0FBB769A5DDB11EEAEEA437DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.52.34.0/23 IPv6: 2001:df1:ac40::/48 Signature Algorithm: sha256WithRSAEncryption 0c:af:fb:d3:a1:ba:ce:93:4b:10:a7:f1:96:48:3b:5b:24:5b: d1:11:e4:46:ac:10:91:b1:8c:19:9c:cb:72:5b:a0:3c:58:ed: 7f:2d:b8:91:70:84:37:8d:c7:7b:b9:be:c7:56:e5:97:33:e8: 12:16:a5:09:4e:db:93:f9:85:e5:8c:69:94:6d:2c:51:57:c6: ae:31:bc:20:13:52:f2:2f:1f:a2:d0:89:07:2d:eb:fe:6b:68: d6:e4:1d:05:a2:c6:9c:c1:3e:2f:af:54:1a:8f:8c:15:63:2e: c4:9f:d3:b1:39:de:95:68:2e:40:b2:b9:5e:34:7c:cf:20:47: 2c:9a:c4:33:e3:13:d9:f1:a0:95:74:c3:fc:69:28:6b:4e:7f: 75:69:cd:2c:c3:32:3a:29:bc:d9:3c:b9:c5:d0:aa:07:fe:19: 79:54:78:c4:ef:81:87:22:b8:45:59:ee:83:bc:b6:81:5e:e2: 54:ba:6e:c6:c1:d0:a9:8d:64:3b:e1:80:53:00:3b:a8:28:8e: 7b:70:59:c5:33:43:bf:12:9e:98:3e:dc:98:16:a8:b4:57:48: 74:ac:eb:7b:36:1b:c8:2e:22:4f:d3:74:3f:51:7b:a6:ce:34: 6b:cc:bd:e1:96:bf:c7:dc:df:0f:d9:5a:b9:58:a4:fe:ce:40: bd:ad:d1:50 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4NDgxMTAvBgNVBAUTKDAyNDIyOUM4MUFDMzUzNUEyMUQ2MEUyREMzMkE5Qjg4 QkQ2QUQ4MUYwHhcNMjUwMjA1MDIyNzMyWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2EyY2M5My00MDg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn0vhDwcNL0ZH1gHELj/6P4wCK2RZDkjUatj8H1fuHVWDeKN5qsc1i0nTv1cH tgM+jmQQZJds7b6OlOp6XHsh69anHoiFlMW6LnVGUQl+xofKB7t4sMEFZTQeu66e FAYHCx5Hb6tkuIQRhAPQftLDFk7s6zRyXcayBJDs5aaG3lYlUCSrBhENvGVMSoXG urctgpiP8LkG0c39kjqWtfoO8WeZQiBF6vCOesv0yfT9He7RkZ+Mir87OEf8zI9D 5ANQt5TDhAjgCc8iJ0b310mKYBODY/F963/qpZhdwPgeOH/WyuFkOE6eO1sS93+r zIofAPgWlDvT/S5+VRqHdPv0zQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFPuNCsp9 IRBEMX/Lg6zOJyA/cx5/MB8GA1UdIwQYMBaAFAJCKcgaw1NaIdYOLcMqm4i9atgf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDg0OC82NEQ4QjFERTc3 RTQxMUVEOTdGNTkzNERDNEY5QUUwMi9Ba0lweUJyRFUxb2gxZzR0d3lxYmlMMXEy QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FrSXB5QnJEVTFvaDFnNHR3eXFiaUwxcTJCOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA4NDgvNjREOEIxREU3N0U0MTFFRDk3RjU5MzREQzRGOUFFMDIvMEZCQjc2OUE1 RERCMTFFRUFFRUE0MzdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnNCIwDwQCAAIwCQMHACABDfGsQDANBgkqhkiG9w0BAQsF AAOCAQEADK/706G6zpNLEKfxlkg7WyRb0RHkRqwQkbGMGZzLclugPFjtfy24kXCE N43He7m+x1bllzPoEhalCU7bk/mF5YxplG0sUVfGrjG8IBNS8i8fotCJBy3r/mto 1uQdBaLGnME+L69UGo+MFWMuxJ/TsTnelWguQLK5XjR8zyBHLJrEM+MT2fGglXTD /Gkoa05/dWnNLMMyOim82Ty5xdCqB/4ZeVR4xO+BhyK4RVnug7y2gV7iVLpuxsHQ qY1kO+GAUwA7qCiOe3BZxTNDvxKemD7cmBaotFdIdKzrezYbyC4iT9N0P1F7ps40 a8y94Za/x9zfD9lauVik/s5Ava3RUA== -----END CERTIFICATE-----Generated at Sat Apr 5 07:18:25 2025 by rpki-client