$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/7A35195A0A1811F0ADFE8D2DC4F9AE02.roa File: 7A35195A0A1811F0ADFE8D2DC4F9AE02.roa (raw, json) Hash identifier: v7a8mfF3h31GCsCJZpFRMXIizyqFSSZDbzl2Xz8kpqA= Subject key identifier: F1:DB:83:F2:AC:95:8D:C9:8F:1F:DF:AD:8E:C8:6C:1A:2B:2B:75:01 Certificate issuer: /CN=A91A4402/serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Certificate serial: 0BA1 Authority key identifier: B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/7A35195A0A1811F0ADFE8D2DC4F9AE02.roa Signing time: Wed 02 Apr 2025 05:30:08 +0000 ROA not before: Wed 02 Apr 2025 05:30:08 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 5065 IP address blocks: 103.13.19.0/24 maxlen: 24 103.15.32.0/24 maxlen: 24 103.15.33.0/24 maxlen: 24 103.15.34.0/24 maxlen: 24 103.248.150.0/24 maxlen: 24 103.248.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:23:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2977 (0xba1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4402 Validity Not Before: Apr 2 05:30:08 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67eccb60-18c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:e8:1f:3f:7d:ee:18:eb:77:33:af:e3:75:9f: ee:c8:a1:f6:c8:7b:dc:81:50:4f:de:1a:6f:5e:23: c6:31:d1:58:04:cf:4f:c9:e7:fe:1d:b8:6b:6e:c4: 37:41:34:6f:60:80:17:fa:81:1a:00:4e:b8:97:b5: 68:71:55:6a:26:f2:20:f8:6e:9b:f0:3e:6f:ab:51: 9b:47:25:36:10:bc:35:bf:b7:2b:83:46:82:5a:76: 18:41:98:b9:be:76:d2:2b:39:33:a7:f5:d2:6d:28: 64:0f:cf:ee:7f:a5:56:71:af:36:58:19:ef:a4:3b: 17:26:77:a7:ea:71:b7:c7:27:55:ee:9b:3c:53:47: 2a:9a:78:84:51:07:17:9c:9f:e8:3c:2c:58:c1:33: 3d:ef:fb:d5:77:7b:f8:96:1c:db:64:2c:c9:e0:0d: 10:af:dd:fb:69:08:1a:c6:47:8c:62:f0:3c:83:ee: a7:54:48:31:a6:09:ef:73:95:f2:79:a3:c2:87:a0: 88:b4:cd:0e:1e:70:29:cd:5c:cc:6d:5f:5a:e0:cc: 5a:a9:2b:f9:a7:b2:37:94:39:11:15:7c:f1:1d:e0: 38:25:a1:df:1b:85:63:26:7b:f8:cc:49:84:7b:0d: 8a:bf:d4:49:af:30:80:50:23:d3:f0:ac:bc:99:2b: 42:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:DB:83:F2:AC:95:8D:C9:8F:1F:DF:AD:8E:C8:6C:1A:2B:2B:75:01 X509v3 Authority Key Identifier: keyid:B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/7A35195A0A1811F0ADFE8D2DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.13.19.0/24 103.15.32.0-103.15.34.255 103.248.150.0/23 Signature Algorithm: sha256WithRSAEncryption 9a:92:c2:6a:63:01:38:73:79:64:47:72:50:e0:58:3f:d0:b9: 48:03:09:43:ff:fc:fe:6a:82:2b:47:dc:8d:4c:6b:08:9e:f7: 9b:8f:af:58:78:9d:be:2b:06:3c:9f:d0:b5:4f:0b:cf:a6:e5: ad:5a:15:93:c1:cf:1a:ae:83:13:ad:df:a0:da:76:7b:a1:e9: d9:01:36:cf:a4:25:5d:d3:35:9f:a7:3a:d1:36:ad:b2:f1:16: 87:eb:82:d4:8d:e2:a4:25:88:6c:2e:e8:57:c4:bc:67:bc:ae: 2c:5e:1a:64:23:bd:62:ef:47:1f:92:02:24:46:c5:8e:19:fd: 72:18:90:40:03:11:4f:fe:0b:8f:fc:97:d6:97:80:4c:a1:60: dd:1c:98:11:a1:bf:86:f1:be:74:fe:3f:e0:b0:93:e3:a9:d8: 40:56:ab:43:a5:ee:a1:54:6f:b4:74:63:8d:a0:c8:5c:8e:7c: 94:ad:20:9b:f7:d5:dd:e6:e9:4c:11:d7:b8:bd:fa:ca:ce:97: dc:3a:ae:5e:63:23:a6:f4:c1:29:f8:c2:da:50:80:5b:25:73: f4:5d:17:ff:12:71:e2:9b:ef:f9:74:6e:f3:44:e2:54:0a:33: 6f:2c:e6:83:52:0d:46:ee:6c:db:8c:66:16:83:dd:d6:1d:6c: 74:16:eb:e4 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICC6EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0MDIxMTAvBgNVBAUTKEI0MTE2QThFNkRBOTkxRkRDRjcxNjI2RTdCRUExMUZG NjlDQkE4NDYwHhcNMjUwNDAyMDUzMDA4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2VjY2I2MC0xOGM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ugfP33uGOt3M6/jdZ/uyKH2yHvcgVBP3hpvXiPGMdFYBM9Pyef+HbhrbsQ3 QTRvYIAX+oEaAE64l7VocVVqJvIg+G6b8D5vq1GbRyU2ELw1v7crg0aCWnYYQZi5 vnbSKzkzp/XSbShkD8/uf6VWca82WBnvpDsXJnen6nG3xydV7ps8U0cqmniEUQcX nJ/oPCxYwTM97/vVd3v4lhzbZCzJ4A0Qr937aQgaxkeMYvA8g+6nVEgxpgnvc5Xy eaPCh6CItM0OHnApzVzMbV9a4MxaqSv5p7I3lDkRFXzxHeA4JaHfG4VjJnv4zEmE ew2Kv9RJrzCAUCPT8Ky8mStClwIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFPHbg/Ks lY3Jjx/frY7IbBorK3UBMB8GA1UdIwQYMBaAFLQRao5tqZH9z3FibnvqEf9py6hG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQwMi9GREJGRDAyMDNE OTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtmM1BjV0p1ZS1vUl8ybkxx RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RCRnFqbTJwa2YzUGNXSnVlLW9SXzJuTHFFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ0MDIvRkRCRkQwMjAzRDk2MTFFQThFQTA3MDJGQzRGOUFFMDIvN0EzNTE5NUEw QTE4MTFGMEFERkU4RDJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBoDBABnDRMwDAMEBWcPIAMEAGcPIgMEAWf4ljANBgkqhkiG9w0B AQsFAAOCAQEAmpLCamMBOHN5ZEdyUOBYP9C5SAMJQ//8/mqCK0fcjUxrCJ73m4+v WHidvisGPJ/QtU8Lz6blrVoVk8HPGq6DE63foNp2e6Hp2QE2z6QlXdM1n6c60Tat svEWh+uC1I3ipCWIbC7oV8S8Z7yuLF4aZCO9Yu9HH5ICJEbFjhn9chiQQAMRT/4L j/yX1peATKFg3RyYEaG/hvG+dP4/4LCT46nYQFarQ6XuoVRvtHRjjaDIXI58lK0g m/fV3ebpTBHXuL36ys6X3DquXmMjpvTBKfjC2lCAWyVz9F0X/xJx4pvv+XRu80Ti VAozbyzmg1INRu5s24xmFoPd1h1sdBbr5A== -----END CERTIFICATE-----Generated at Sat Apr 5 07:03:27 2025 by rpki-client