$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAFCE/2D34C392B29C11ED98A8314AC4F9AE02/37C8FE80B2A211ED9A5C4B53C4F9AE02.roa File: 37C8FE80B2A211ED9A5C4B53C4F9AE02.roa (raw, json) Hash identifier: RFveBx12nYjQL7C6dI7Z0G+EUk4Kgzyh1OTU3yziD98= Subject key identifier: 3F:17:2C:F0:53:C1:54:A0:CF:70:5C:98:5D:80:CF:5C:B8:A9:2F:3C Certificate issuer: /CN=A91BAFCE/serialNumber=FBD1A848A1F89A8D24DB0B6817A087FB2DF5DF08 Certificate serial: 0188 Authority key identifier: FB:D1:A8:48:A1:F8:9A:8D:24:DB:0B:68:17:A0:87:FB:2D:F5:DF:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-9GoSKH4mo0k2wtoF6CH-y313wg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAFCE/2D34C392B29C11ED98A8314AC4F9AE02/37C8FE80B2A211ED9A5C4B53C4F9AE02.roa Signing time: Fri 21 Mar 2025 03:08:49 +0000 ROA not before: Fri 21 Mar 2025 03:08:49 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 139901 IP address blocks: 103.93.34.0/23 maxlen: 24 2400:e260::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAFCE/2D34C392B29C11ED98A8314AC4F9AE02/-9GoSKH4mo0k2wtoF6CH-y313wg.crl rsync://rpki.apnic.net/member_repository/A91BAFCE/2D34C392B29C11ED98A8314AC4F9AE02/-9GoSKH4mo0k2wtoF6CH-y313wg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-9GoSKH4mo0k2wtoF6CH-y313wg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 03:04:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 392 (0x188) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAFCE Validity Not Before: Mar 21 03:08:49 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67dcd841-181a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:a0:5f:4e:84:5f:4d:1f:d7:82:a7:8f:7b:5c: dd:5b:2c:33:5f:72:22:ed:05:07:ca:15:95:60:6b: a0:a7:e9:0e:3e:ab:c9:36:47:ca:ed:5e:0c:69:51: 2a:1c:3c:ed:36:6d:e1:a5:ce:dc:ed:d4:d0:b3:b1: a6:11:4e:4b:86:db:5a:10:c9:0b:d2:72:dc:9c:70: 04:f3:63:88:ab:60:a0:de:19:dd:ae:d6:65:1e:90: 21:11:c4:0d:16:f5:d4:9b:e8:d5:a7:95:fb:73:d7: 6a:4a:05:ad:e9:3e:e3:65:8b:fc:41:ee:16:97:79: 17:15:fe:1e:58:15:93:62:76:5a:c1:84:b2:9b:03: 76:d8:7b:dd:f3:58:bc:18:bf:d3:25:c9:cd:e9:3c: e4:b1:76:40:b0:13:3a:14:27:0b:79:61:25:91:c0: 7d:78:23:f6:c2:ff:dc:fd:43:a1:6f:6e:91:0b:04: ab:33:93:c9:4a:cd:92:e3:10:1e:36:52:77:53:eb: 75:b3:71:5c:e4:aa:4b:65:63:05:ad:96:8b:6e:8d: 34:14:31:97:84:66:21:a8:c7:38:8e:1a:fb:15:1c: 42:2f:e0:15:f3:30:30:28:a7:65:06:e1:b4:ba:45: c0:51:c8:3f:6c:95:e8:63:04:70:76:e8:ed:56:f0: 4f:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:17:2C:F0:53:C1:54:A0:CF:70:5C:98:5D:80:CF:5C:B8:A9:2F:3C X509v3 Authority Key Identifier: keyid:FB:D1:A8:48:A1:F8:9A:8D:24:DB:0B:68:17:A0:87:FB:2D:F5:DF:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAFCE/2D34C392B29C11ED98A8314AC4F9AE02/-9GoSKH4mo0k2wtoF6CH-y313wg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-9GoSKH4mo0k2wtoF6CH-y313wg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAFCE/2D34C392B29C11ED98A8314AC4F9AE02/37C8FE80B2A211ED9A5C4B53C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.93.34.0/23 IPv6: 2400:e260::/32 Signature Algorithm: sha256WithRSAEncryption 50:7e:03:bd:59:30:a0:b9:44:5f:4f:04:fe:f4:be:2e:fe:c0: 26:65:be:91:41:de:7d:f6:ff:3c:6e:41:08:c7:96:19:18:d1: 16:5f:90:11:51:d0:d0:4d:e8:44:a5:26:ff:3d:fe:62:54:12: d3:b7:ab:06:73:cd:e1:86:6e:bd:de:e5:96:a7:c4:b8:2b:cc: 5b:b4:2e:de:fb:16:94:3e:09:9f:2b:d2:8c:41:b3:af:47:1d: b0:70:f6:f5:86:76:1b:bb:e4:be:5b:59:b2:69:43:0d:d8:9e: 48:48:43:16:84:67:66:f0:4e:a1:f5:f5:d6:ad:4c:9a:8f:34: 73:6d:09:48:09:a9:ed:c9:8a:b3:6a:97:69:12:18:d0:82:49: 02:9b:3d:34:b3:9c:a6:41:49:26:8c:95:22:a5:04:4a:b6:05: 2b:83:e1:94:b4:81:92:5b:2e:3a:be:72:f2:2c:40:0c:ed:1f: 63:fc:b4:a7:2e:02:5d:63:80:34:ca:92:f1:7a:a5:dc:56:4b: f5:2d:d9:c3:be:1c:05:0f:45:43:78:fb:73:54:69:ed:26:0b: 66:f2:09:8a:09:80:c7:da:87:96:11:e4:f4:b6:dc:03:39:d0: 55:fc:81:43:da:ad:2e:26:8b:90:a8:16:28:f5:f2:cb:dd:a3: 9c:24:90:37 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFGQ0UxMTAvBgNVBAUTKEZCRDFBODQ4QTFGODlBOEQyNERCMEI2ODE3QTA4N0ZC MkRGNURGMDgwHhcNMjUwMzIxMDMwODQ5WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2RjZDg0MS0xODFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzqBfToRfTR/XgqePe1zdWywzX3Ii7QUHyhWVYGugp+kOPqvJNkfK7V4MaVEq HDztNm3hpc7c7dTQs7GmEU5LhttaEMkL0nLcnHAE82OIq2Cg3hndrtZlHpAhEcQN FvXUm+jVp5X7c9dqSgWt6T7jZYv8Qe4Wl3kXFf4eWBWTYnZawYSymwN22Hvd81i8 GL/TJcnN6TzksXZAsBM6FCcLeWElkcB9eCP2wv/c/UOhb26RCwSrM5PJSs2S4xAe NlJ3U+t1s3Fc5KpLZWMFrZaLbo00FDGXhGYhqMc4jhr7FRxCL+AV8zAwKKdlBuG0 ukXAUcg/bJXoYwRwdujtVvBPLwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFD8XLPBT wVSgz3BcmF2Az1y4qS88MB8GA1UdIwQYMBaAFPvRqEih+JqNJNsLaBegh/st9d8I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUZDRS8yRDM0QzM5MkIy OUMxMUVEOThBODMxNEFDNEY5QUUwMi8tOUdvU0tING1vMGsyd3RvRjZDSC15MzEz d2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy05R29TS0g0bW8wazJ3dG9GNkNILXkzMTN3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkFGQ0UvMkQzNEMzOTJCMjlDMTFFRDk4QTgzMTRBQzRGOUFFMDIvMzdDOEZFODBC MkEyMTFFRDlBNUM0QjUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnXSIwDQQCAAIwBwMFACQA4mAwDQYJKoZIhvcNAQELBQAD ggEBAFB+A71ZMKC5RF9PBP70vi7+wCZlvpFB3n32/zxuQQjHlhkY0RZfkBFR0NBN 6ESlJv89/mJUEtO3qwZzzeGGbr3e5ZanxLgrzFu0Lt77FpQ+CZ8r0oxBs69HHbBw 9vWGdhu75L5bWbJpQw3YnkhIQxaEZ2bwTqH19datTJqPNHNtCUgJqe3JirNql2kS GNCCSQKbPTSznKZBSSaMlSKlBEq2BSuD4ZS0gZJbLjq+cvIsQAztH2P8tKcuAl1j gDTKkvF6pdxWS/Ut2cO+HAUPRUN4+3NUae0mC2byCYoJgMfah5YR5PS23AM50FX8 gUParS4mi5CoFij18svdo5wkkDc= -----END CERTIFICATE-----Generated at Fri Apr 4 23:55:51 2025 by rpki-client