$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5832/6D60F9D8879711EE9F3ED44FC4F9AE02/3E6CF84C883311EE8822D90BC4F9AE02.roa File: 3E6CF84C883311EE8822D90BC4F9AE02.roa (raw, json) Hash identifier: gchZs9w0rw9TlztTLiN3YxQhLwyUQamaOc4Ws69TNxo= Subject key identifier: 3B:FF:FE:A9:72:73:56:FF:E0:56:F2:FD:D1:C9:0D:1C:B7:BE:54:F9 Certificate issuer: /CN=A91C5832/serialNumber=75D1C7A33303DA8DC6422AE351703F2A528DF3BE Certificate serial: EB Authority key identifier: 75:D1:C7:A3:33:03:DA:8D:C6:42:2A:E3:51:70:3F:2A:52:8D:F3:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ddHHozMD2o3GQirjUXA_KlKN874.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5832/6D60F9D8879711EE9F3ED44FC4F9AE02/3E6CF84C883311EE8822D90BC4F9AE02.roa Signing time: Tue 21 Jan 2025 03:47:31 +0000 ROA not before: Tue 21 Jan 2025 03:47:31 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 137085 IP address blocks: 103.106.20.0/24 maxlen: 24 103.106.21.0/24 maxlen: 24 103.106.22.0/24 maxlen: 24 103.106.23.0/24 maxlen: 24 2402:37c0::/48 maxlen: 48 2402:37c0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5832/6D60F9D8879711EE9F3ED44FC4F9AE02/ddHHozMD2o3GQirjUXA_KlKN874.crl rsync://rpki.apnic.net/member_repository/A91C5832/6D60F9D8879711EE9F3ED44FC4F9AE02/ddHHozMD2o3GQirjUXA_KlKN874.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ddHHozMD2o3GQirjUXA_KlKN874.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 04:30:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 235 (0xeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5832 Validity Not Before: Jan 21 03:47:31 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=678f18d3-2e3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:cf:50:7f:3e:d9:8a:fd:8e:cf:0c:df:2f:38: 2e:a9:4a:36:2d:61:b2:34:7f:42:ec:4e:20:8e:de: 2b:d6:4f:0f:44:20:cb:ec:87:3f:84:15:de:9e:bc: 67:0b:9e:6a:0c:a2:a4:bc:d8:c4:d2:60:23:c1:18: c4:c6:01:2f:a5:e1:ca:6e:83:cb:06:b6:df:58:27: fa:a0:9a:ba:06:45:6f:ec:27:76:91:fb:94:ec:15: 12:87:7e:74:01:92:80:46:19:e9:56:80:fe:fb:04: 94:9f:d4:4b:f9:05:af:3e:f8:54:7a:68:0d:07:5a: 6b:c5:4d:dd:6a:70:2c:72:ef:23:19:bb:98:ac:79: 55:c3:2c:0d:db:9d:74:13:b9:bc:41:77:bf:03:ae: 7b:3e:42:3d:c5:6b:49:92:7a:de:70:5a:c3:0c:dc: 2e:29:53:78:ff:96:90:65:ed:a1:09:72:7d:b2:a8: 52:3a:f1:91:5a:c5:5d:9b:8c:c4:39:c5:4c:da:76: 07:c5:54:37:cb:22:3f:4c:7d:19:97:86:75:29:4c: a5:4f:e7:7c:e0:a2:37:2f:f3:e4:9f:d5:44:c4:18: 0c:7a:44:15:06:69:93:5d:24:f2:74:26:e1:9c:d5: b3:0d:7c:f1:b9:58:67:be:00:aa:b1:f7:b7:c4:82: 44:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:FF:FE:A9:72:73:56:FF:E0:56:F2:FD:D1:C9:0D:1C:B7:BE:54:F9 X509v3 Authority Key Identifier: keyid:75:D1:C7:A3:33:03:DA:8D:C6:42:2A:E3:51:70:3F:2A:52:8D:F3:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5832/6D60F9D8879711EE9F3ED44FC4F9AE02/ddHHozMD2o3GQirjUXA_KlKN874.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ddHHozMD2o3GQirjUXA_KlKN874.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5832/6D60F9D8879711EE9F3ED44FC4F9AE02/3E6CF84C883311EE8822D90BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.106.20.0/22 IPv6: 2402:37c0::/47 Signature Algorithm: sha256WithRSAEncryption a8:5c:21:a8:d0:66:ac:a6:58:d4:15:1e:f7:9e:98:a2:13:21: 8b:35:e9:8f:b2:40:2a:0c:27:f3:c3:61:33:f7:33:44:07:04: 8a:9f:f6:7d:ab:e2:39:6e:b7:6c:6f:df:6d:74:86:92:e4:f6: 0e:76:b8:a4:a1:6e:eb:3a:57:cc:35:fb:61:c3:7c:9f:40:98: 04:d5:63:19:eb:09:b1:38:39:cd:d1:c8:20:ed:48:2f:01:df: 79:ee:7a:d2:0e:13:f0:c7:e0:d5:12:39:d5:8f:4d:b3:80:fa: cf:5c:28:37:a6:18:02:9f:84:f1:b9:15:ff:47:d2:b8:95:91: 4c:e9:f4:7e:4c:89:46:54:60:ab:39:1e:60:4d:92:43:5e:b9: e2:dc:b5:76:d9:94:4f:9d:4e:81:e4:d2:e1:6e:3a:1f:55:17: ce:f0:f0:7b:fb:8a:ac:3a:cc:cc:4d:69:b5:2b:da:f4:cb:9d: b1:22:b1:a1:e8:48:cb:41:d8:8d:52:7c:2a:c6:50:bf:c0:c8: 18:81:c2:9b:a6:2a:82:38:84:1d:06:ef:d8:39:5f:34:b7:95: e5:7d:c9:d9:2c:ce:61:4a:75:9f:b6:58:e2:f1:60:54:0d:05: 91:33:7a:03:72:69:88:af:e1:2f:a9:64:2a:a4:57:b0:eb:de: 3a:35:3a:7c -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzU4MzIxMTAvBgNVBAUTKDc1RDFDN0EzMzMwM0RBOERDNjQyMkFFMzUxNzAzRjJB NTI4REYzQkUwHhcNMjUwMTIxMDM0NzMxWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzhmMThkMy0yZTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs89Qfz7Ziv2OzwzfLzguqUo2LWGyNH9C7E4gjt4r1k8PRCDL7Ic/hBXenrxn C55qDKKkvNjE0mAjwRjExgEvpeHKboPLBrbfWCf6oJq6BkVv7Cd2kfuU7BUSh350 AZKARhnpVoD++wSUn9RL+QWvPvhUemgNB1prxU3danAscu8jGbuYrHlVwywN2510 E7m8QXe/A657PkI9xWtJknrecFrDDNwuKVN4/5aQZe2hCXJ9sqhSOvGRWsVdm4zE OcVM2nYHxVQ3yyI/TH0Zl4Z1KUylT+d84KI3L/Pkn9VExBgMekQVBmmTXSTydCbh nNWzDXzxuVhnvgCqsfe3xIJE+wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDv//qly c1b/4Fby/dHJDRy3vlT5MB8GA1UdIwQYMBaAFHXRx6MzA9qNxkIq41FwPypSjfO+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTgzMi82RDYwRjlEODg3 OTcxMUVFOUYzRUQ0NEZDNEY5QUUwMi9kZEhIb3pNRDJvM0dRaXJqVVhBX0tsS044 NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RkSEhvek1EMm8zR1FpcmpVWEFfS2xLTjg3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzU4MzIvNkQ2MEY5RDg4Nzk3MTFFRTlGM0VENDRGQzRGOUFFMDIvM0U2Q0Y4NEM4 ODMzMTFFRTg4MjJEOTBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAJnahQwDwQCAAIwCQMHASQCN8AAADANBgkqhkiG9w0BAQsF AAOCAQEAqFwhqNBmrKZY1BUe956YohMhizXpj7JAKgwn88NhM/czRAcEip/2favi OW63bG/fbXSGkuT2Dna4pKFu6zpXzDX7YcN8n0CYBNVjGesJsTg5zdHIIO1ILwHf ee560g4T8Mfg1RI51Y9Ns4D6z1woN6YYAp+E8bkV/0fSuJWRTOn0fkyJRlRgqzke YE2SQ1654ty1dtmUT51OgeTS4W46H1UXzvDwe/uKrDrMzE1ptSva9MudsSKxoehI y0HYjVJ8KsZQv8DIGIHCm6YqgjiEHQbv2DlfNLeV5X3J2SzOYUp1n7ZY4vFgVA0F kTN6A3JpiK/hL6lkKqRXsOveOjU6fA== -----END CERTIFICATE-----Generated at Sat Apr 5 01:47:55 2025 by rpki-client