$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6EA0/F91400C28C2C11ED9638E672C4F9AE02/35CFAB068C4111ED8E01DF60C4F9AE02.roa File: 35CFAB068C4111ED8E01DF60C4F9AE02.roa (raw, json) Hash identifier: s2ufqDtIL2LcUO3l3IJXmwdiZKcS7NlwuSG6RgI0b0c= Subject key identifier: 56:04:8F:3C:F0:F2:7E:FC:7F:F1:54:24:56:D9:45:AE:67:B4:37:31 Certificate issuer: /CN=A91A6EA0/serialNumber=0CCAB9447A17AC3C8A787BE947EC5D6F4A895CE9 Certificate serial: 0173 Authority key identifier: 0C:CA:B9:44:7A:17:AC:3C:8A:78:7B:E9:47:EC:5D:6F:4A:89:5C:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DMq5RHoXrDyKeHvpR-xdb0qJXOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6EA0/F91400C28C2C11ED9638E672C4F9AE02/35CFAB068C4111ED8E01DF60C4F9AE02.roa Signing time: Fri 13 Dec 2024 02:36:34 +0000 ROA not before: Fri 13 Dec 2024 02:36:34 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 134330 IP address blocks: 103.30.72.0/23 maxlen: 23 103.30.72.0/24 maxlen: 24 103.30.73.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6EA0/F91400C28C2C11ED9638E672C4F9AE02/DMq5RHoXrDyKeHvpR-xdb0qJXOk.crl rsync://rpki.apnic.net/member_repository/A91A6EA0/F91400C28C2C11ED9638E672C4F9AE02/DMq5RHoXrDyKeHvpR-xdb0qJXOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DMq5RHoXrDyKeHvpR-xdb0qJXOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:44:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 371 (0x173) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6EA0 Validity Not Before: Dec 13 02:36:34 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=675b9db2-54c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:7d:44:d9:65:af:e6:19:91:5e:a7:f8:b9:57: 98:2c:ff:da:89:ec:66:ed:1f:47:a6:9b:24:9f:68: b3:5a:a1:57:c1:76:91:75:2c:8f:dc:f8:b6:ce:4d: 29:76:84:9d:1e:5c:35:f4:9b:9c:dc:29:45:5f:d5: 23:9f:ce:64:59:f5:18:0f:9c:90:ad:e7:d7:c1:30: bc:ec:b8:47:d7:e5:e4:0b:06:8d:39:b6:39:b2:be: 70:b5:a9:c2:26:7a:1e:b0:02:dd:ec:0b:a2:08:44: ff:c5:87:37:6f:11:de:3d:95:df:cb:9d:5e:df:eb: 44:69:66:43:43:ba:20:51:0d:d7:b4:94:47:3a:d7: d3:08:e2:95:10:13:85:02:b3:bd:7c:d1:0b:9f:60: 31:e1:43:47:28:d0:63:cf:bc:48:41:8b:42:2f:a7: 30:7f:fb:bf:a6:44:f8:20:90:8e:8b:b2:6c:28:11: a6:b6:88:b2:75:bf:37:29:64:b3:0e:4b:23:fe:33: 4c:6f:27:51:2d:95:29:2e:d2:db:15:e4:30:10:63: 2e:29:9d:f8:7f:0b:e8:5a:06:5a:a1:00:8e:e3:37: d7:2b:04:fe:de:85:07:1d:be:89:0e:96:c6:95:d0: d2:3d:5c:e2:6e:ea:1b:65:a8:b6:42:b8:a4:aa:cf: bb:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:04:8F:3C:F0:F2:7E:FC:7F:F1:54:24:56:D9:45:AE:67:B4:37:31 X509v3 Authority Key Identifier: keyid:0C:CA:B9:44:7A:17:AC:3C:8A:78:7B:E9:47:EC:5D:6F:4A:89:5C:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6EA0/F91400C28C2C11ED9638E672C4F9AE02/DMq5RHoXrDyKeHvpR-xdb0qJXOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DMq5RHoXrDyKeHvpR-xdb0qJXOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6EA0/F91400C28C2C11ED9638E672C4F9AE02/35CFAB068C4111ED8E01DF60C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.30.72.0/23 Signature Algorithm: sha256WithRSAEncryption aa:bd:ee:c5:d3:f5:20:e0:05:fc:ac:34:87:3e:74:55:2f:98: 00:00:eb:bb:a1:43:5e:12:04:e8:c5:9a:ef:44:2b:f4:d5:32: 3c:0e:98:4a:93:8d:b0:dd:71:db:b4:05:f5:99:77:46:86:ae: 0b:15:b8:3a:ba:bd:94:d5:67:72:34:42:17:9b:cf:a1:6f:a1: ed:34:b1:22:57:0c:14:61:7e:be:3b:7f:06:87:d8:15:6a:44: d3:43:17:3f:3d:cd:6e:70:ec:c5:d1:13:88:e5:c1:0d:19:27: dc:61:c5:23:b7:ea:26:98:7f:13:5a:49:26:5b:73:07:86:68: b8:a1:15:33:3a:6b:48:67:dd:28:3b:c3:be:f0:b6:23:f3:bc: 7b:d8:3b:fa:24:f9:35:d8:79:84:5d:f6:0b:d6:f6:a5:52:84: dc:b0:85:31:c2:ed:cf:0d:6b:95:38:98:18:f8:17:5d:01:90: 88:06:3b:e6:6d:61:41:68:eb:0f:26:e1:49:6a:32:71:10:5c: 00:91:d9:05:45:13:ba:7e:99:ae:0f:01:2d:85:33:50:c8:9f: ef:29:19:ec:60:31:9e:e3:5e:39:bc:7e:27:08:3e:36:19:9f: 15:b6:a8:12:e3:ad:3d:96:d7:12:b4:fe:44:f4:dd:78:54:b4: 69:d2:6d:2d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZFQTAxMTAvBgNVBAUTKDBDQ0FCOTQ0N0ExN0FDM0M4QTc4N0JFOTQ3RUM1RDZG NEE4OTVDRTkwHhcNMjQxMjEzMDIzNjM0WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzViOWRiMi01NGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvX1E2WWv5hmRXqf4uVeYLP/aiexm7R9Hppskn2izWqFXwXaRdSyP3Pi2zk0p doSdHlw19Juc3ClFX9Ujn85kWfUYD5yQrefXwTC87LhH1+XkCwaNObY5sr5wtanC JnoesALd7AuiCET/xYc3bxHePZXfy51e3+tEaWZDQ7ogUQ3XtJRHOtfTCOKVEBOF ArO9fNELn2Ax4UNHKNBjz7xIQYtCL6cwf/u/pkT4IJCOi7JsKBGmtoiydb83KWSz Dksj/jNMbydRLZUpLtLbFeQwEGMuKZ34fwvoWgZaoQCO4zfXKwT+3oUHHb6JDpbG ldDSPVzibuobZai2Qrikqs+74QIDAQABo4IClTCCApEwHQYDVR0OBBYEFFYEjzzw 8n78f/FUJFbZRa5ntDcxMB8GA1UdIwQYMBaAFAzKuUR6F6w8inh76UfsXW9KiVzp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkVBMC9GOTE0MDBDMjhD MkMxMUVEOTYzOEU2NzJDNEY5QUUwMi9ETXE1UkhvWHJEeUtlSHZwUi14ZGIwcUpY T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RNcTVSSG9YckR5S2VIdnBSLXhkYjBxSlhPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTZFQTAvRjkxNDAwQzI4QzJDMTFFRDk2MzhFNjcyQzRGOUFFMDIvMzVDRkFCMDY4 QzQxMTFFRDhFMDFERjYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnHkgwDQYJKoZIhvcNAQELBQADggEBAKq97sXT9SDgBfys NIc+dFUvmAAA67uhQ14SBOjFmu9EK/TVMjwOmEqTjbDdcdu0BfWZd0aGrgsVuDq6 vZTVZ3I0Qhebz6Fvoe00sSJXDBRhfr47fwaH2BVqRNNDFz89zW5w7MXRE4jlwQ0Z J9xhxSO36iaYfxNaSSZbcweGaLihFTM6a0hn3Sg7w77wtiPzvHvYO/ok+TXYeYRd 9gvW9qVShNywhTHC7c8Na5U4mBj4F10BkIgGO+ZtYUFo6w8m4UlqMnEQXACR2QVF E7p+ma4PAS2FM1DIn+8pGexgMZ7jXjm8ficIPjYZnxW2qBLjrT2W1xK0/kT03XhU tGnSbS0= -----END CERTIFICATE-----Generated at Sat Apr 5 07:18:37 2025 by rpki-client