$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/03706138786411EC8624EB12C4F9AE02.roa File: 03706138786411EC8624EB12C4F9AE02.roa (raw, json) Hash identifier: qKXv165pzdK/WBxXfxqKy/V+953i+G1rFbe37yvanHk= Subject key identifier: 86:8A:F0:F0:EA:8D:51:86:DF:15:48:51:A7:BC:09:F8:E7:71:F0:A9 Certificate issuer: /CN=A91D83D0/serialNumber=C4E4F0DA010AF58637CC59628471E998B7243C52 Certificate serial: 08E0 Authority key identifier: C4:E4:F0:DA:01:0A:F5:86:37:CC:59:62:84:71:E9:98:B7:24:3C:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/03706138786411EC8624EB12C4F9AE02.roa Signing time: Fri 28 Mar 2025 21:13:49 +0000 ROA not before: Fri 28 Mar 2025 21:13:49 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 34440 IP address blocks: 103.35.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.crl rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 20:39:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2272 (0x8e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D83D0 Validity Not Before: Mar 28 21:13:49 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e7110d-b65c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ae:fa:86:6a:78:c8:62:ae:54:b4:80:f6:89: 91:00:d9:e3:c8:fd:19:e7:0c:f9:86:ab:ad:c6:99: 8d:2b:d1:5c:50:6e:77:9e:9b:38:cb:d1:7c:ed:a7: a8:47:3b:db:6f:99:13:81:b6:94:e6:9e:26:90:a1: c1:11:0d:5c:6a:89:8f:cf:9e:60:f1:b5:a8:24:c6: 9c:dc:20:8f:33:72:74:54:cd:47:08:ea:24:a6:ef: b6:9d:6e:f0:2f:4d:18:fd:a5:8f:89:d8:06:bf:62: f0:37:ae:48:58:49:63:3a:e4:5f:b5:af:5d:27:5b: fb:b2:81:10:99:e6:b4:2b:94:dd:12:85:7d:1b:f4: 6a:7f:26:c8:35:ee:47:41:3c:0e:e5:c5:45:7e:cf: 85:94:3c:80:f1:78:76:64:d6:fa:7f:fb:d3:2c:ff: 99:15:9a:03:b5:70:c6:18:be:08:65:8f:46:14:9d: cf:b6:a6:e9:dd:e7:6f:48:17:e1:c8:17:d1:4f:d2: 64:ed:bd:28:f4:b4:a6:95:af:96:89:23:e0:af:23: e7:73:8a:03:04:51:c9:a0:79:4d:97:b5:00:6a:29: 32:59:37:fd:b8:dc:21:01:d3:ee:85:ad:bf:3a:0c: e9:fe:32:3c:dd:42:c2:b8:93:60:dc:cd:64:20:2c: 1e:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:8A:F0:F0:EA:8D:51:86:DF:15:48:51:A7:BC:09:F8:E7:71:F0:A9 X509v3 Authority Key Identifier: keyid:C4:E4:F0:DA:01:0A:F5:86:37:CC:59:62:84:71:E9:98:B7:24:3C:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/xOTw2gEK9YY3zFlihHHpmLckPFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xOTw2gEK9YY3zFlihHHpmLckPFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/0A16208AAFBC11EAA961CB86C4F9AE02/03706138786411EC8624EB12C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.35.91.0/24 Signature Algorithm: sha256WithRSAEncryption 39:65:40:70:66:b3:18:dd:6b:ac:39:43:f8:a0:31:73:9b:be: fc:4f:d7:c4:a9:30:44:52:5f:08:2c:bd:13:4a:37:d7:42:5f: d9:87:9e:fe:83:12:7f:b9:4e:46:42:0a:cd:a7:d2:44:13:57: 39:35:fa:e4:14:e7:de:10:2a:d3:fa:66:c0:7a:56:2f:8c:35: 88:33:42:2a:56:16:fb:67:2c:32:d2:bc:63:c7:45:7f:ea:d7: 0c:5e:34:a3:28:9c:1d:81:0d:90:2f:79:ee:51:cc:c5:25:48: c6:c6:c6:2f:de:ab:be:72:d2:37:0e:a7:2e:9a:a9:1a:06:83: dc:1f:b1:46:cb:88:b8:4e:65:46:9d:9c:29:63:f0:c4:d4:2f: af:d4:af:79:21:80:fc:c7:e4:e2:7c:e7:20:cd:b4:79:59:0a: 74:7d:85:8e:00:7b:53:cb:d8:2d:24:fb:bc:d1:c3:1e:00:06: 70:11:c4:c0:d8:55:6b:4b:fd:02:5e:b5:47:72:1e:c6:d7:9b: 24:f2:f4:9a:70:41:75:0d:2f:07:d3:37:38:77:70:6f:d1:96: d2:70:bf:e2:03:e5:fa:17:c8:62:ab:c6:b1:76:09:2e:d7:b2: 2d:27:ac:dc:4d:33:9c:45:8b:b8:c5:03:e5:bb:25:89:1f:62: cc:17:47:99 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzRDAxMTAvBgNVBAUTKEM0RTRGMERBMDEwQUY1ODYzN0NDNTk2Mjg0NzFFOTk4 QjcyNDNDNTIwHhcNMjUwMzI4MjExMzQ5WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2U3MTEwZC1iNjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAya76hmp4yGKuVLSA9omRANnjyP0Z5wz5hqutxpmNK9FcUG53nps4y9F87aeo Rzvbb5kTgbaU5p4mkKHBEQ1caomPz55g8bWoJMac3CCPM3J0VM1HCOokpu+2nW7w L00Y/aWPidgGv2LwN65IWEljOuRfta9dJ1v7soEQmea0K5TdEoV9G/RqfybINe5H QTwO5cVFfs+FlDyA8Xh2ZNb6f/vTLP+ZFZoDtXDGGL4IZY9GFJ3Ptqbp3edvSBfh yBfRT9Jk7b0o9LSmla+WiSPgryPnc4oDBFHJoHlNl7UAaikyWTf9uNwhAdPuha2/ Ogzp/jI83ULCuJNg3M1kICweOwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIaK8PDq jVGG3xVIUae8CfjncfCpMB8GA1UdIwQYMBaAFMTk8NoBCvWGN8xZYoRx6Zi3JDxS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODNEMC8wQTE2MjA4QUFG QkMxMUVBQTk2MUNCODZDNEY5QUUwMi94T1R3MmdFSzlZWTN6RmxpaEhIcG1MY2tQ RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hPVHcyZ0VLOVlZM3pGbGloSEhwbUxja1BGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDgzRDAvMEExNjIwOEFBRkJDMTFFQUE5NjFDQjg2QzRGOUFFMDIvMDM3MDYxMzg3 ODY0MTFFQzg2MjRFQjEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnI1swDQYJKoZIhvcNAQELBQADggEBADllQHBmsxjda6w5 Q/igMXObvvxP18SpMERSXwgsvRNKN9dCX9mHnv6DEn+5TkZCCs2n0kQTVzk1+uQU 594QKtP6ZsB6Vi+MNYgzQipWFvtnLDLSvGPHRX/q1wxeNKMonB2BDZAvee5RzMUl SMbGxi/eq75y0jcOpy6aqRoGg9wfsUbLiLhOZUadnClj8MTUL6/Ur3khgPzH5OJ8 5yDNtHlZCnR9hY4Ae1PL2C0k+7zRwx4ABnARxMDYVWtL/QJetUdyHsbXmyTy9Jpw QXUNLwfTNzh3cG/RltJwv+ID5foXyGKrxrF2CS7Xsi0nrNxNM5xFi7jFA+W7JYkf YswXR5k= -----END CERTIFICATE-----Generated at Sun Apr 6 18:36:41 2025 by rpki-client