$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4413/20002C12236711ED97C2EF27C4F9AE02/3D3C7DC8236A11ED8018D62BC4F9AE02.roa File: 3D3C7DC8236A11ED8018D62BC4F9AE02.roa (raw, json) Hash identifier: ulvwJEE9TrSCR3alPiPFyCbLR3kKPVNTCzyUzxRhzpM= Subject key identifier: C8:1B:85:89:FB:25:39:03:60:48:41:1C:67:FB:65:3B:48:29:0A:89 Certificate issuer: /CN=A91A4413/serialNumber=BB883E681C96222543060E979D3E8286EAB68A89 Certificate serial: 0218 Authority key identifier: BB:88:3E:68:1C:96:22:25:43:06:0E:97:9D:3E:82:86:EA:B6:8A:89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u4g-aByWIiVDBg6XnT6Chuq2iok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4413/20002C12236711ED97C2EF27C4F9AE02/3D3C7DC8236A11ED8018D62BC4F9AE02.roa Signing time: Fri 07 Mar 2025 01:47:45 +0000 ROA not before: Fri 07 Mar 2025 01:47:45 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 139710 IP address blocks: 103.176.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4413/20002C12236711ED97C2EF27C4F9AE02/u4g-aByWIiVDBg6XnT6Chuq2iok.crl rsync://rpki.apnic.net/member_repository/A91A4413/20002C12236711ED97C2EF27C4F9AE02/u4g-aByWIiVDBg6XnT6Chuq2iok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u4g-aByWIiVDBg6XnT6Chuq2iok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 01:56:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 536 (0x218) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4413 Validity Not Before: Mar 7 01:47:45 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67ca5041-8961 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:3f:d6:02:70:37:57:42:cb:d4:7e:a6:57:3e: e2:9c:25:9a:46:5d:7d:79:6a:16:b6:70:3b:89:18: d7:ea:84:09:07:18:c0:5f:16:9b:20:48:be:33:22: d2:43:cc:5c:85:7a:04:d7:b9:7b:79:90:2e:e2:51: fb:2c:2b:00:ff:f4:fc:79:67:32:f2:cc:c3:4a:cf: b3:48:b3:aa:ff:25:69:5c:5a:4e:67:4f:55:b8:21: 70:36:8c:07:75:42:f6:c4:62:8f:68:fb:9a:29:d9: a5:af:a6:85:98:83:ab:24:76:98:fe:27:09:95:dd: da:3e:b7:d8:89:3b:c4:e5:45:a3:92:8d:7f:2d:f8: f3:9b:97:f8:93:39:fd:05:a6:fb:f7:99:6e:17:fc: 80:84:a0:3a:c2:58:46:5b:23:3a:db:bb:54:e9:6f: 1d:3a:c9:95:cf:d0:a5:7c:c7:0c:61:83:4a:65:a4: 5a:e3:ea:6b:03:ba:cb:2d:c6:84:69:09:15:c8:95: 45:e1:b7:15:4e:28:22:c8:dc:73:22:21:56:af:dd: 1a:06:5b:4f:1c:46:f9:78:1e:af:4c:32:30:06:6c: 0a:da:50:ba:6c:1d:af:1c:d1:e7:44:67:f9:1b:8e: 4a:a2:cb:6f:f8:3a:5d:e6:0f:c9:55:b7:28:78:5f: f9:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:1B:85:89:FB:25:39:03:60:48:41:1C:67:FB:65:3B:48:29:0A:89 X509v3 Authority Key Identifier: keyid:BB:88:3E:68:1C:96:22:25:43:06:0E:97:9D:3E:82:86:EA:B6:8A:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4413/20002C12236711ED97C2EF27C4F9AE02/u4g-aByWIiVDBg6XnT6Chuq2iok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u4g-aByWIiVDBg6XnT6Chuq2iok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4413/20002C12236711ED97C2EF27C4F9AE02/3D3C7DC8236A11ED8018D62BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.176.114.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:1e:0a:18:1b:99:e7:01:ac:61:00:34:c7:4d:94:8b:06:db: e3:e1:3d:85:b8:12:c9:c5:77:07:5f:ce:05:df:25:83:48:c1: 19:30:93:c8:57:1b:3f:9e:f4:26:b7:b4:70:3e:e8:4a:07:65: a9:fa:d0:c7:ab:d7:02:69:78:7b:a5:37:15:8d:0f:75:bf:a3: 59:a9:00:04:d5:ac:6d:db:6b:ea:23:36:0b:26:fe:f3:b8:08: bd:c4:96:25:9f:48:03:05:77:9d:3e:b6:03:77:e3:77:db:60: 96:07:78:35:a4:46:07:ee:2d:c8:0f:88:14:91:25:c1:6b:0d: ae:1e:ad:36:1b:21:80:0a:96:c0:1d:9d:4f:f0:f4:5b:6c:3a: a5:6d:72:f0:cf:23:76:a5:4a:1d:68:b0:57:ae:e4:b1:36:6a: 69:7d:c4:2c:09:8c:18:66:a9:79:bc:7a:84:14:b3:7e:0b:45: 3a:ec:5f:74:6e:d3:e0:c5:6c:1f:b9:9d:85:d1:23:2f:2e:6a: 0d:2a:5a:66:4b:6b:8a:6f:96:a7:03:7c:09:85:f8:65:58:0b: 0c:19:1c:0e:93:2f:53:a9:83:11:4a:55:e6:a6:fd:2a:60:74: fe:ce:61:a2:6a:f4:f8:4a:cd:e7:45:56:d2:9d:98:ba:6c:64: 25:04:76:99 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAhgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0MTMxMTAvBgNVBAUTKEJCODgzRTY4MUM5NjIyMjU0MzA2MEU5NzlEM0U4Mjg2 RUFCNjhBODkwHhcNMjUwMzA3MDE0NzQ1WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2NhNTA0MS04OTYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2D/WAnA3V0LL1H6mVz7inCWaRl19eWoWtnA7iRjX6oQJBxjAXxabIEi+MyLS Q8xchXoE17l7eZAu4lH7LCsA//T8eWcy8szDSs+zSLOq/yVpXFpOZ09VuCFwNowH dUL2xGKPaPuaKdmlr6aFmIOrJHaY/icJld3aPrfYiTvE5UWjko1/Lfjzm5f4kzn9 Bab795luF/yAhKA6wlhGWyM627tU6W8dOsmVz9ClfMcMYYNKZaRa4+prA7rLLcaE aQkVyJVF4bcVTigiyNxzIiFWr90aBltPHEb5eB6vTDIwBmwK2lC6bB2vHNHnRGf5 G45Kostv+Dpd5g/JVbcoeF/5OQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMgbhYn7 JTkDYEhBHGf7ZTtIKQqJMB8GA1UdIwQYMBaAFLuIPmgcliIlQwYOl50+gobqtoqJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQxMy8yMDAwMkMxMjIz NjcxMUVEOTdDMkVGMjdDNEY5QUUwMi91NGctYUJ5V0lpVkRCZzZYblQ2Q2h1cTJp b2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U0Zy1hQnlXSWlWREJnNlhuVDZDaHVxMmlvay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ0MTMvMjAwMDJDMTIyMzY3MTFFRDk3QzJFRjI3QzRGOUFFMDIvM0QzQzdEQzgy MzZBMTFFRDgwMThENjJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnsHIwDQYJKoZIhvcNAQELBQADggEBAHoeChgbmecBrGEA NMdNlIsG2+PhPYW4EsnFdwdfzgXfJYNIwRkwk8hXGz+e9Ca3tHA+6EoHZan60Mer 1wJpeHulNxWND3W/o1mpAATVrG3ba+ojNgsm/vO4CL3EliWfSAMFd50+tgN343fb YJYHeDWkRgfuLcgPiBSRJcFrDa4erTYbIYAKlsAdnU/w9FtsOqVtcvDPI3alSh1o sFeu5LE2aml9xCwJjBhmqXm8eoQUs34LRTrsX3Ru0+DFbB+5nYXRIy8uag0qWmZL a4pvlqcDfAmF+GVYCwwZHA6TL1OpgxFKVeam/SpgdP7OYaJq9PhKzedFVtKdmLps ZCUEdpk= -----END CERTIFICATE-----Generated at Sat Apr 5 01:47:52 2025 by rpki-client