$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3B8A/08C43924384D11EAA4F55B73C4F9AE02/3C726724C06211EC93514712C4F9AE02.roa File: 3C726724C06211EC93514712C4F9AE02.roa (raw, json) Hash identifier: XklDOLYMfLViKkHUeT6z/7hV3PEW4lkSoZ2mUu3ko0Y= Subject key identifier: 2F:72:FA:C0:9E:D2:1F:AD:EA:A0:DB:A9:20:94:E6:DB:ED:67:AD:F7 Certificate issuer: /CN=A91C3B8A/serialNumber=4550C69051BAA18AF112DC76B5F5DF9E6B7940D5 Certificate serial: 0B42 Authority key identifier: 45:50:C6:90:51:BA:A1:8A:F1:12:DC:76:B5:F5:DF:9E:6B:79:40:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RVDGkFG6oYrxEtx2tfXfnmt5QNU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3B8A/08C43924384D11EAA4F55B73C4F9AE02/3C726724C06211EC93514712C4F9AE02.roa Signing time: Tue 04 Mar 2025 20:27:55 +0000 ROA not before: Tue 04 Mar 2025 20:27:55 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 397373 IP address blocks: 103.229.198.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3B8A/08C43924384D11EAA4F55B73C4F9AE02/RVDGkFG6oYrxEtx2tfXfnmt5QNU.crl rsync://rpki.apnic.net/member_repository/A91C3B8A/08C43924384D11EAA4F55B73C4F9AE02/RVDGkFG6oYrxEtx2tfXfnmt5QNU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RVDGkFG6oYrxEtx2tfXfnmt5QNU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2882 (0xb42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3B8A Validity Not Before: Mar 4 20:27:55 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c7624b-221f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:5f:d0:fb:51:cd:a0:78:34:b9:80:e9:20:c8: b1:da:a4:f6:8d:a9:6d:57:86:b1:a4:a0:9f:f1:c5: b1:3f:cd:82:33:ab:49:74:bf:e3:45:c0:62:94:29: a5:b3:1b:52:50:d7:9c:00:d6:78:4e:fe:c5:cb:9a: 1c:a9:ff:af:11:36:de:d8:fd:9b:41:3c:e1:0f:fc: a8:6f:e4:be:39:6f:e7:9f:35:a2:60:2e:3e:9b:f7: 21:ed:c3:27:f3:2d:d9:43:87:24:52:81:cf:5a:45: e0:09:9a:ba:61:39:66:b8:0e:3c:38:c5:7d:a2:cd: 42:1f:2a:4d:07:24:7b:a1:a3:03:92:7d:b5:3e:54: 3d:b2:8b:ca:9f:60:b9:1b:68:6a:2a:16:60:a2:ac: 70:33:93:0c:40:12:fc:21:3f:f7:9f:84:34:2e:9d: 74:02:08:4f:bd:9d:b8:c5:e7:76:54:6b:27:03:23: 8b:e4:99:17:da:94:b9:03:1c:29:41:81:e7:c4:5c: c5:8a:f8:75:54:ea:0e:36:37:98:e2:dd:44:cb:2e: 2f:8f:3f:0d:5e:6c:a0:08:00:ad:c0:5a:54:c6:f0: ea:86:42:96:d4:93:32:f4:15:d7:02:a4:c3:fe:82: a4:77:95:a3:12:18:ee:55:c4:37:77:9d:61:35:4f: d1:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:72:FA:C0:9E:D2:1F:AD:EA:A0:DB:A9:20:94:E6:DB:ED:67:AD:F7 X509v3 Authority Key Identifier: keyid:45:50:C6:90:51:BA:A1:8A:F1:12:DC:76:B5:F5:DF:9E:6B:79:40:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3B8A/08C43924384D11EAA4F55B73C4F9AE02/RVDGkFG6oYrxEtx2tfXfnmt5QNU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RVDGkFG6oYrxEtx2tfXfnmt5QNU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3B8A/08C43924384D11EAA4F55B73C4F9AE02/3C726724C06211EC93514712C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.229.198.0/23 Signature Algorithm: sha256WithRSAEncryption 60:64:c8:82:3e:e3:c1:9e:29:e2:1b:a5:63:b0:fc:70:d2:9e: 2f:40:e2:90:49:0e:ef:d7:aa:75:1b:a8:c9:14:74:bc:bd:06: d2:71:9a:39:58:30:f8:b8:65:c3:b8:8c:ba:b5:76:82:7a:b0: 62:77:bc:45:d3:9f:04:81:e4:85:90:4c:1c:9b:96:07:2e:4e: e4:59:aa:b3:cc:d2:cb:2b:6e:8d:14:fd:68:2e:2d:5b:81:b8: 92:5f:3e:48:38:08:78:47:b5:f4:ad:44:40:47:73:02:3f:9a: c6:0d:d7:f2:79:b6:6a:39:75:39:93:9b:b1:0a:9b:c6:06:e9: 46:5c:27:f9:44:3b:fd:84:e2:ae:7c:54:bb:c8:e4:0e:bb:61: f2:be:ed:b3:49:f6:8d:9d:7b:e5:8f:ac:79:54:e0:a2:14:8b: ac:39:f1:8e:0a:bc:b6:82:bc:e2:a9:10:83:fc:82:ed:40:d7: a9:f1:e4:d6:33:85:5a:c4:21:51:73:47:b6:45:96:44:1c:07: b7:34:b3:a9:17:44:47:49:1e:32:cb:18:5e:40:61:2c:79:59: a5:29:85:88:23:ca:c5:e1:41:64:a5:99:26:09:59:50:5e:1d: c4:e2:93:90:60:77:e7:ba:a5:39:7b:bc:b4:8f:1f:dc:ae:9f: b7:6f:72:44 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC0IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzNCOEExMTAvBgNVBAUTKDQ1NTBDNjkwNTFCQUExOEFGMTEyREM3NkI1RjVERjlF NkI3OTQwRDUwHhcNMjUwMzA0MjAyNzU1WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2M3NjI0Yi0yMjFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA01/Q+1HNoHg0uYDpIMix2qT2jaltV4axpKCf8cWxP82CM6tJdL/jRcBilCml sxtSUNecANZ4Tv7Fy5ocqf+vETbe2P2bQTzhD/yob+S+OW/nnzWiYC4+m/ch7cMn 8y3ZQ4ckUoHPWkXgCZq6YTlmuA48OMV9os1CHypNByR7oaMDkn21PlQ9sovKn2C5 G2hqKhZgoqxwM5MMQBL8IT/3n4Q0Lp10AghPvZ24xed2VGsnAyOL5JkX2pS5Axwp QYHnxFzFivh1VOoONjeY4t1Eyy4vjz8NXmygCACtwFpUxvDqhkKW1JMy9BXXAqTD /oKkd5WjEhjuVcQ3d51hNU/RYQIDAQABo4IClTCCApEwHQYDVR0OBBYEFC9y+sCe 0h+t6qDbqSCU5tvtZ633MB8GA1UdIwQYMBaAFEVQxpBRuqGK8RLcdrX1355reUDV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDM0I4QS8wOEM0MzkyNDM4 NEQxMUVBQTRGNTVCNzNDNEY5QUUwMi9SVkRHa0ZHNm9ZcnhFdHgydGZYZm5tdDVR TlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JWREdrRkc2b1lyeEV0eDJ0Zlhmbm10NVFOVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzNCOEEvMDhDNDM5MjQzODREMTFFQUE0RjU1QjczQzRGOUFFMDIvM0M3MjY3MjRD MDYyMTFFQzkzNTE0NzEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn5cYwDQYJKoZIhvcNAQELBQADggEBAGBkyII+48GeKeIb pWOw/HDSni9A4pBJDu/XqnUbqMkUdLy9BtJxmjlYMPi4ZcO4jLq1doJ6sGJ3vEXT nwSB5IWQTByblgcuTuRZqrPM0ssrbo0U/WguLVuBuJJfPkg4CHhHtfStREBHcwI/ msYN1/J5tmo5dTmTm7EKm8YG6UZcJ/lEO/2E4q58VLvI5A67YfK+7bNJ9o2de+WP rHlU4KIUi6w58Y4KvLaCvOKpEIP8gu1A16nx5NYzhVrEIVFzR7ZFlkQcB7c0s6kX REdJHjLLGF5AYSx5WaUphYgjysXhQWSlmSYJWVBeHcTik5Bgd+e6pTl7vLSPH9yu n7dvckQ= -----END CERTIFICATE-----Generated at Sun Apr 6 17:57:46 2025 by rpki-client