$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/3AB9E692C0D211EEB7BBBE4FC4F9AE02.roa File: 3AB9E692C0D211EEB7BBBE4FC4F9AE02.roa (raw, json) Hash identifier: A0mC9X2UnmVuFudZOyuXLKDdp8UzNcimAQJMyA4hcow= Subject key identifier: D1:6A:1C:3A:71:8D:CB:F5:A0:14:F7:82:CD:C9:91:C0:C9:15:CF:50 Certificate issuer: /CN=A91DE323/serialNumber=9304234E739049143A8591A3745A53E4B92AD8D8 Certificate serial: 0111 Authority key identifier: 93:04:23:4E:73:90:49:14:3A:85:91:A3:74:5A:53:E4:B9:2A:D8:D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/3AB9E692C0D211EEB7BBBE4FC4F9AE02.roa Signing time: Sat 25 Jan 2025 03:27:11 +0000 ROA not before: Sat 25 Jan 2025 03:27:11 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 18155 IP address blocks: 103.161.216.0/23 maxlen: 23 103.161.216.0/24 maxlen: 24 103.161.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.crl rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 273 (0x111) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE323 Validity Not Before: Jan 25 03:27:11 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67945a0f-7312 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:c9:68:55:f5:cb:83:75:b9:fc:5e:e3:03:3a: 97:7a:75:26:56:e4:64:fc:89:5d:44:97:9f:c9:dc: cd:d8:81:0d:37:de:01:81:0b:d5:f9:39:6a:93:da: 55:81:7f:04:55:93:28:4c:44:90:7f:10:42:b5:47: cd:60:da:97:e2:30:65:bd:a2:b8:87:90:2c:42:f7: 9b:6e:85:90:70:ef:63:0e:c4:c4:8c:c2:64:ae:79: 79:ac:82:36:75:e3:d5:3b:aa:69:2e:ff:d8:0e:85: 76:cd:18:47:90:dc:f0:82:30:30:cd:b6:61:2c:9e: 7f:f8:f1:6b:1c:f3:06:67:7d:ce:e3:be:09:9f:e8: de:df:92:f9:e2:42:7d:e3:db:4d:6b:5f:4f:6f:b3: fb:89:3a:e3:09:9b:57:00:94:46:7a:65:be:32:c9: c4:d5:8f:86:8e:e8:cf:67:6a:f1:05:08:18:e2:aa: 86:b4:eb:76:10:2c:c5:69:f5:d4:37:54:9b:e5:83: 1f:39:18:c3:6d:75:b3:41:da:73:85:60:9b:d8:70: 87:e7:bb:23:24:c1:af:ba:a5:b5:96:29:24:17:d1: 68:8c:09:81:c7:c4:07:dc:72:20:6c:c9:a3:4b:ce: c4:8b:bd:49:15:f9:37:88:e0:4a:9f:7b:a2:83:4e: 46:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:6A:1C:3A:71:8D:CB:F5:A0:14:F7:82:CD:C9:91:C0:C9:15:CF:50 X509v3 Authority Key Identifier: keyid:93:04:23:4E:73:90:49:14:3A:85:91:A3:74:5A:53:E4:B9:2A:D8:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/3AB9E692C0D211EEB7BBBE4FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.161.216.0/23 Signature Algorithm: sha256WithRSAEncryption 15:ea:82:f9:d9:8c:ec:9c:00:a1:d2:78:e5:84:56:26:10:41: 47:26:94:f8:95:d0:6e:ca:6e:3a:01:c6:52:59:2a:1f:95:ee: f3:91:d7:52:ec:a4:eb:40:51:58:1e:ad:8f:ba:06:1c:30:53: b8:0c:84:cd:df:f8:dc:bc:ed:b6:5d:d7:ae:25:a6:80:32:1e: 62:ae:a3:75:31:df:b3:ca:08:65:04:80:ae:0c:22:15:f5:7a: c4:d6:71:54:8e:4b:e0:12:dc:d5:8f:88:4d:92:3f:dd:65:c0: 41:25:28:bc:36:5c:77:6b:95:74:16:9e:6b:4f:a1:d1:e1:7d: ae:85:fb:25:70:fa:7e:4d:29:f7:4f:cc:63:ec:16:f6:c9:39: c1:d5:9a:2a:dd:28:fb:71:59:73:29:ee:b2:42:f8:3c:bb:16: 04:d3:34:d4:7c:1e:d6:a3:1a:16:25:c3:81:96:e8:15:ae:89: ed:3b:5c:1a:3d:ef:6d:2e:2b:8e:46:6f:e7:db:66:0b:9e:fb: ee:90:b9:22:69:de:68:78:57:7a:9e:6d:a9:8a:a9:fb:82:0c: 08:6e:b6:6b:d9:1d:9d:fa:ca:4c:4c:ce:58:80:14:ae:af:7b: 55:f6:30:ab:d7:eb:ff:bf:73:b5:a4:c8:b8:84:90:4f:2b:45: 58:40:a7:c7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REUzMjMxMTAvBgNVBAUTKDkzMDQyMzRFNzM5MDQ5MTQzQTg1OTFBMzc0NUE1M0U0 QjkyQUQ4RDgwHhcNMjUwMTI1MDMyNzExWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzk0NWEwZi03MzEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3sloVfXLg3W5/F7jAzqXenUmVuRk/IldRJefydzN2IENN94BgQvV+Tlqk9pV gX8EVZMoTESQfxBCtUfNYNqX4jBlvaK4h5AsQvebboWQcO9jDsTEjMJkrnl5rII2 dePVO6ppLv/YDoV2zRhHkNzwgjAwzbZhLJ5/+PFrHPMGZ33O474Jn+je35L54kJ9 49tNa19Pb7P7iTrjCZtXAJRGemW+MsnE1Y+GjujPZ2rxBQgY4qqGtOt2ECzFafXU N1Sb5YMfORjDbXWzQdpzhWCb2HCH57sjJMGvuqW1likkF9FojAmBx8QH3HIgbMmj S87Ei71JFfk3iOBKn3uig05GhwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNFqHDpx jcv1oBT3gs3JkcDJFc9QMB8GA1UdIwQYMBaAFJMEI05zkEkUOoWRo3RaU+S5KtjY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTMyMy85RTYxRTQyNDUy NUYxMUVFODBCQTBENzRDNEY5QUUwMi9rd1FqVG5PUVNSUTZoWkdqZEZwVDVMa3Ey TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t3UWpUbk9RU1JRNmhaR2pkRnBUNUxrcTJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REUzMjMvOUU2MUU0MjQ1MjVGMTFFRTgwQkEwRDc0QzRGOUFFMDIvM0FCOUU2OTJD MEQyMTFFRUI3QkJCRTRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnodgwDQYJKoZIhvcNAQELBQADggEBABXqgvnZjOycAKHS eOWEViYQQUcmlPiV0G7KbjoBxlJZKh+V7vOR11LspOtAUVgerY+6BhwwU7gMhM3f +Ny87bZd164lpoAyHmKuo3Ux37PKCGUEgK4MIhX1esTWcVSOS+AS3NWPiE2SP91l wEElKLw2XHdrlXQWnmtPodHhfa6F+yVw+n5NKfdPzGPsFvbJOcHVmirdKPtxWXMp 7rJC+Dy7FgTTNNR8HtajGhYlw4GW6BWuie07XBo9720uK45Gb+fbZgue++6QuSJp 3mh4V3qebamKqfuCDAhutmvZHZ36ykxMzliAFK6ve1X2MKvX6/+/c7WkyLiEkE8r RVhAp8c= -----END CERTIFICATE-----Generated at Sat Apr 5 08:21:27 2025 by rpki-client