$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEBCA/B588B4A61D8811E28CAE8FE108B02CD2/9954B962F02D11EFBA26B94FC4F9AE02.roa File: 9954B962F02D11EFBA26B94FC4F9AE02.roa (raw, json) Hash identifier: RnZPWsP3pFbLAskD17dhi3cAiJf7pCQ+1pJMd+7uFJQ= Subject key identifier: 23:9F:37:43:30:C6:71:49:08:AF:ED:F1:E0:97:5C:AD:1B:31:79:D2 Certificate issuer: /CN=A91CEBCA/serialNumber=FE826EE9BC12DAAD3B197471B0413F1EB2082635 Certificate serial: 3487 Authority key identifier: FE:82:6E:E9:BC:12:DA:AD:3B:19:74:71:B0:41:3F:1E:B2:08:26:35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_oJu6bwS2q07GXRxsEE_HrIIJjU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEBCA/B588B4A61D8811E28CAE8FE108B02CD2/9954B962F02D11EFBA26B94FC4F9AE02.roa Signing time: Fri 28 Mar 2025 06:13:53 +0000 ROA not before: Fri 28 Mar 2025 06:13:53 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 147040 IP address blocks: 103.35.136.0/22 maxlen: 24 202.87.100.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEBCA/B588B4A61D8811E28CAE8FE108B02CD2/_oJu6bwS2q07GXRxsEE_HrIIJjU.crl rsync://rpki.apnic.net/member_repository/A91CEBCA/B588B4A61D8811E28CAE8FE108B02CD2/_oJu6bwS2q07GXRxsEE_HrIIJjU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_oJu6bwS2q07GXRxsEE_HrIIJjU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 14:30:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13447 (0x3487) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEBCA Validity Not Before: Mar 28 06:13:53 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e63e21-b581 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:30:9f:d7:f5:b8:ac:7d:0b:46:b4:de:36:67: 7d:39:58:54:f6:5f:bc:5b:a4:c1:e1:d8:7c:81:81: 90:29:63:7c:d3:ad:5a:42:5c:8c:6b:6b:cb:3b:24: 5c:22:cf:b6:c8:6e:e7:8b:43:86:84:6c:2b:4f:ed: 22:93:85:00:9a:de:4d:b6:c2:91:6a:8e:35:ab:8c: 70:85:77:2d:85:f8:e8:91:11:2b:b6:41:0f:a8:b8: 03:05:af:64:1c:31:b3:10:3e:36:62:f6:df:13:62: c6:44:a8:a2:04:2a:d3:41:ad:0c:29:a3:a1:bc:3c: da:15:6c:ea:4c:47:49:1e:28:1e:2c:6a:1f:6d:ba: 73:4a:e3:2e:a1:f6:77:dd:5e:97:b4:a9:1a:d4:5a: 9b:e5:65:94:b6:9f:63:20:d5:a7:80:25:1e:aa:8f: 24:67:cb:83:72:99:23:66:70:81:4d:3c:cd:31:61: 49:2e:55:96:f7:ac:4a:cc:a2:57:7e:91:7d:1d:93: 9a:42:71:11:b8:aa:bc:b9:38:69:ec:b2:60:54:e5: eb:0c:39:01:9a:3c:65:3b:c2:e8:78:e7:a8:17:d7: ee:68:e2:cd:ec:de:52:54:09:ea:9b:60:61:6f:53: 7b:51:35:dc:51:13:40:8f:d6:03:e3:da:6f:1c:9e: 69:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:9F:37:43:30:C6:71:49:08:AF:ED:F1:E0:97:5C:AD:1B:31:79:D2 X509v3 Authority Key Identifier: keyid:FE:82:6E:E9:BC:12:DA:AD:3B:19:74:71:B0:41:3F:1E:B2:08:26:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEBCA/B588B4A61D8811E28CAE8FE108B02CD2/_oJu6bwS2q07GXRxsEE_HrIIJjU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_oJu6bwS2q07GXRxsEE_HrIIJjU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEBCA/B588B4A61D8811E28CAE8FE108B02CD2/9954B962F02D11EFBA26B94FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.35.136.0/22 202.87.100.0/22 Signature Algorithm: sha256WithRSAEncryption 4c:07:79:39:bc:af:23:ed:50:c9:ff:18:f6:8b:15:bc:be:5b: 6c:8f:af:8d:fe:7d:ea:99:50:4b:0e:3d:b3:5b:cd:5a:b5:77: 04:9c:29:d3:19:e8:ee:5e:58:94:f6:eb:16:2a:48:57:97:68: ca:87:7a:30:0d:55:32:4e:4a:1f:ed:fe:95:ef:ff:1f:8f:3b: 3f:7b:66:5f:c5:ac:15:b1:e2:30:ac:4c:a8:bc:64:ba:ce:ae: c3:1c:1f:71:92:2e:b4:eb:ba:a2:74:8d:32:f0:cb:fe:51:3a: 9a:ed:57:57:bf:fc:6e:a8:84:e4:7f:97:13:b1:6b:c6:f7:84: 79:9b:77:6d:c0:1d:83:49:41:6d:23:bb:c4:03:9e:c5:e8:cf: 52:af:d1:a3:34:a5:ca:67:a5:6d:2e:66:e2:ba:31:40:bc:f2: ef:2a:19:66:c0:c3:97:d5:60:f7:da:90:88:40:8c:e2:ff:d0: 2d:7e:98:e7:dd:82:c8:10:38:df:a3:85:e9:47:7a:b8:b1:b6: 66:a4:c3:26:38:2d:14:45:ce:bd:6d:d4:f5:3c:2b:5a:3b:38: 02:40:78:72:33:d6:fa:88:ee:6b:33:b1:35:04:38:43:5a:cf: 0b:cf:95:a6:f6:51:61:a7:96:de:3c:69:32:2e:dc:90:07:a2: c5:64:1e:59 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICNIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VCQ0ExMTAvBgNVBAUTKEZFODI2RUU5QkMxMkRBQUQzQjE5NzQ3MUIwNDEzRjFF QjIwODI2MzUwHhcNMjUwMzI4MDYxMzUzWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2U2M2UyMS1iNTgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwTCf1/W4rH0LRrTeNmd9OVhU9l+8W6TB4dh8gYGQKWN8061aQlyMa2vLOyRc Is+2yG7ni0OGhGwrT+0ik4UAmt5NtsKRao41q4xwhXcthfjokRErtkEPqLgDBa9k HDGzED42YvbfE2LGRKiiBCrTQa0MKaOhvDzaFWzqTEdJHigeLGofbbpzSuMuofZ3 3V6XtKka1Fqb5WWUtp9jINWngCUeqo8kZ8uDcpkjZnCBTTzNMWFJLlWW96xKzKJX fpF9HZOaQnERuKq8uThp7LJgVOXrDDkBmjxlO8LoeOeoF9fuaOLN7N5SVAnqm2Bh b1N7UTXcURNAj9YD49pvHJ5pNwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCOfN0Mw xnFJCK/t8eCXXK0bMXnSMB8GA1UdIwQYMBaAFP6Cbum8EtqtOxl0cbBBPx6yCCY1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUJDQS9CNTg4QjRBNjFE ODgxMUUyOENBRThGRTEwOEIwMkNEMi9fb0p1NmJ3UzJxMDdHWFJ4c0VFX0hySUlK alUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19vSnU2YndTMnEwN0dYUnhzRUVfSHJJSUpqVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0VCQ0EvQjU4OEI0QTYxRDg4MTFFMjhDQUU4RkUxMDhCMDJDRDIvOTk1NEI5NjJG MDJEMTFFRkJBMjZCOTRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnI4gDBALKV2QwDQYJKoZIhvcNAQELBQADggEBAEwHeTm8 ryPtUMn/GPaLFby+W2yPr43+feqZUEsOPbNbzVq1dwScKdMZ6O5eWJT26xYqSFeX aMqHejANVTJOSh/t/pXv/x+POz97Zl/FrBWx4jCsTKi8ZLrOrsMcH3GSLrTruqJ0 jTLwy/5ROprtV1e//G6ohOR/lxOxa8b3hHmbd23AHYNJQW0ju8QDnsXoz1Kv0aM0 pcpnpW0uZuK6MUC88u8qGWbAw5fVYPfakIhAjOL/0C1+mOfdgsgQON+jhelHerix tmakwyY4LRRFzr1t1PU8K1o7OAJAeHIz1vqI7mszsTUEOENazwvPlab2UWGnlt48 aTIu3JAHosVkHlk= -----END CERTIFICATE-----Generated at Sun Apr 6 06:29:13 2025 by rpki-client