$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFA29/0F1A4E641DAA11E28E727DA508B02CD2/3A42DAB8DE6311E8BFB1BF16C4F9AE02.roa File: 3A42DAB8DE6311E8BFB1BF16C4F9AE02.roa (raw, json) Hash identifier: diz+Mu2U4uCFECF4R8aohazh+vKfN3ig2+OPcHe2dC8= Subject key identifier: 84:1C:1C:B8:BE:B3:52:59:64:3A:36:E7:19:A6:48:EC:F8:41:FD:86 Certificate issuer: /CN=A91BFA29/serialNumber=17F33DB826A142D337C5EB9984BE2DC4F9BC6429 Certificate serial: 346F Authority key identifier: 17:F3:3D:B8:26:A1:42:D3:37:C5:EB:99:84:BE:2D:C4:F9:BC:64:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F_M9uCahQtM3xeuZhL4txPm8ZCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFA29/0F1A4E641DAA11E28E727DA508B02CD2/3A42DAB8DE6311E8BFB1BF16C4F9AE02.roa Signing time: Mon 10 Feb 2025 15:30:56 +0000 ROA not before: Mon 10 Feb 2025 15:30:56 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 132125 IP address blocks: 103.247.72.0/22 maxlen: 24 2402:f300::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFA29/0F1A4E641DAA11E28E727DA508B02CD2/F_M9uCahQtM3xeuZhL4txPm8ZCk.crl rsync://rpki.apnic.net/member_repository/A91BFA29/0F1A4E641DAA11E28E727DA508B02CD2/F_M9uCahQtM3xeuZhL4txPm8ZCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F_M9uCahQtM3xeuZhL4txPm8ZCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 15:19:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13423 (0x346f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFA29 Validity Not Before: Feb 10 15:30:56 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67aa1bb0-fe87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:bf:15:5f:82:70:c0:ad:9a:93:cb:c3:bc:d7: ab:d4:bd:6c:ee:af:bc:5d:2e:16:92:eb:06:bc:f7: 77:6e:f2:e8:08:7d:ab:84:b2:04:dc:e0:06:c2:41: 17:37:89:cc:d8:e1:de:ef:f7:86:3f:c9:6d:e0:5d: cd:9d:2b:1a:9b:56:e8:31:e1:87:b0:e4:3e:f1:81: d0:0b:6b:0f:5a:03:2c:1a:49:14:4c:c1:f1:f4:fa: 17:66:6b:86:68:9a:d0:73:a7:d6:14:d0:e2:79:a2: 22:19:83:0d:bd:52:da:d6:59:35:ea:c2:ba:c3:21: c6:34:5b:49:5d:e9:bd:2c:bf:69:e7:fc:d0:f5:11: e0:f3:db:30:74:e7:14:ae:02:8f:cf:9d:80:42:7e: 70:25:00:2d:b2:58:0f:92:e5:96:52:3b:43:24:ea: c8:3a:ab:99:ee:12:0a:a8:18:d9:6a:40:7e:ad:5b: c2:ae:a3:ee:7d:95:44:af:72:32:84:1a:50:0d:aa: c9:35:24:19:29:4f:43:60:ef:c3:94:67:c5:a5:ea: f2:d6:46:ea:ca:fa:11:07:36:90:e1:e3:cc:c5:97: 00:bb:63:47:b8:82:cc:e3:9e:42:79:e2:d3:ab:68: e2:58:97:04:27:26:a8:b8:46:81:3c:fa:77:97:7c: 17:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:1C:1C:B8:BE:B3:52:59:64:3A:36:E7:19:A6:48:EC:F8:41:FD:86 X509v3 Authority Key Identifier: keyid:17:F3:3D:B8:26:A1:42:D3:37:C5:EB:99:84:BE:2D:C4:F9:BC:64:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFA29/0F1A4E641DAA11E28E727DA508B02CD2/F_M9uCahQtM3xeuZhL4txPm8ZCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F_M9uCahQtM3xeuZhL4txPm8ZCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFA29/0F1A4E641DAA11E28E727DA508B02CD2/3A42DAB8DE6311E8BFB1BF16C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.247.72.0/22 IPv6: 2402:f300::/32 Signature Algorithm: sha256WithRSAEncryption d0:b9:cb:f2:26:1a:28:86:44:11:a9:26:68:29:9e:31:e7:7c: 94:20:b0:3b:61:09:a0:93:5b:20:4f:2f:a3:b2:dc:8a:b0:1f: ce:57:d6:8d:c5:48:8b:49:46:98:48:84:9f:08:ec:e7:75:98: fd:7f:cf:41:68:d1:93:37:d9:02:6d:9c:5c:d9:00:09:ef:67: 64:37:e3:a5:5f:00:18:e7:5e:07:7c:28:b8:3d:25:18:c7:93: 9e:b5:98:20:a0:d6:b9:a4:96:9a:bf:25:3f:28:64:18:70:4a: e1:01:38:86:9e:40:3f:03:86:6d:bf:92:17:94:54:e6:1d:74: bf:3b:12:a4:96:95:98:a3:70:b3:2c:f3:c3:73:6e:83:a2:f4: 21:ec:3d:04:d3:cf:63:03:09:f7:56:b3:7a:de:17:37:74:fd: c4:7a:7f:51:e9:01:3d:b3:d4:e8:5a:3a:1b:b6:d8:41:09:a2: a5:e4:d0:28:f9:64:fd:b3:59:8d:28:3f:56:98:37:f0:31:05: 36:72:1e:89:13:2e:af:49:6d:26:0e:68:ed:24:a3:c2:91:e2: b0:60:5a:42:d8:a7:ee:2e:ad:24:a3:c6:9e:f4:98:3d:2f:9a: 3f:0d:65:37:56:5f:2b:31:d8:53:2e:09:d7:e4:16:a6:90:c7: 49:69:57:8c -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICNG8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkZBMjkxMTAvBgNVBAUTKDE3RjMzREI4MjZBMTQyRDMzN0M1RUI5OTg0QkUyREM0 RjlCQzY0MjkwHhcNMjUwMjEwMTUzMDU2WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2FhMWJiMC1mZTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApr8VX4JwwK2ak8vDvNer1L1s7q+8XS4WkusGvPd3bvLoCH2rhLIE3OAGwkEX N4nM2OHe7/eGP8lt4F3NnSsam1boMeGHsOQ+8YHQC2sPWgMsGkkUTMHx9PoXZmuG aJrQc6fWFNDieaIiGYMNvVLa1lk16sK6wyHGNFtJXem9LL9p5/zQ9RHg89swdOcU rgKPz52AQn5wJQAtslgPkuWWUjtDJOrIOquZ7hIKqBjZakB+rVvCrqPufZVEr3Iy hBpQDarJNSQZKU9DYO/DlGfFpery1kbqyvoRBzaQ4ePMxZcAu2NHuILM455CeeLT q2jiWJcEJyaouEaBPPp3l3wXHwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFIQcHLi+ s1JZZDo25xmmSOz4Qf2GMB8GA1UdIwQYMBaAFBfzPbgmoULTN8XrmYS+LcT5vGQp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRkEyOS8wRjFBNEU2NDFE QUExMUUyOEU3MjdEQTUwOEIwMkNEMi9GX005dUNhaFF0TTN4ZXVaaEw0dHhQbTha Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZfTTl1Q2FoUXRNM3hldVpoTDR0eFBtOFpDay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkZBMjkvMEYxQTRFNjQxREFBMTFFMjhFNzI3REE1MDhCMDJDRDIvM0E0MkRBQjhE RTYzMTFFOEJGQjFCRjE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJn90gwDQQCAAIwBwMFACQC8wAwDQYJKoZIhvcNAQELBQAD ggEBANC5y/ImGiiGRBGpJmgpnjHnfJQgsDthCaCTWyBPL6Oy3IqwH85X1o3FSItJ RphIhJ8I7Od1mP1/z0Fo0ZM32QJtnFzZAAnvZ2Q346VfABjnXgd8KLg9JRjHk561 mCCg1rmklpq/JT8oZBhwSuEBOIaeQD8Dhm2/kheUVOYddL87EqSWlZijcLMs88Nz boOi9CHsPQTTz2MDCfdWs3reFzd0/cR6f1HpAT2z1OhaOhu22EEJoqXk0Cj5ZP2z WY0oP1aYN/AxBTZyHokTLq9JbSYOaO0ko8KR4rBgWkLYp+4urSSjxp70mD0vmj8N ZTdWXysx2FMuCdfkFqaQx0lpV4w= -----END CERTIFICATE-----Generated at Sat Apr 5 15:07:34 2025 by rpki-client