$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF8D6/4D42F56CF1A311EAB5FD9824C4F9AE02/3DA25C7A036811F0A14CC938C4F9AE02.roa File: 3DA25C7A036811F0A14CC938C4F9AE02.roa (raw, json) Hash identifier: 6wXXxuIxd9enMsyVcB9pxqsVVca0vy4SEk/LuQef8jA= Subject key identifier: 70:0F:05:E3:27:03:E3:F7:C7:75:63:8C:27:0E:25:81:76:5F:FC:A0 Certificate issuer: /CN=A91EF8D6/serialNumber=4B978415E167DB263EF2649A1C3B8BB2D43F61B7 Certificate serial: 07B6 Authority key identifier: 4B:97:84:15:E1:67:DB:26:3E:F2:64:9A:1C:3B:8B:B2:D4:3F:61:B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S5eEFeFn2yY-8mSaHDuLstQ_Ybc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF8D6/4D42F56CF1A311EAB5FD9824C4F9AE02/3DA25C7A036811F0A14CC938C4F9AE02.roa Signing time: Mon 17 Mar 2025 19:44:29 +0000 ROA not before: Mon 17 Mar 2025 19:44:29 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 151648 IP address blocks: 103.147.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF8D6/4D42F56CF1A311EAB5FD9824C4F9AE02/S5eEFeFn2yY-8mSaHDuLstQ_Ybc.crl rsync://rpki.apnic.net/member_repository/A91EF8D6/4D42F56CF1A311EAB5FD9824C4F9AE02/S5eEFeFn2yY-8mSaHDuLstQ_Ybc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S5eEFeFn2yY-8mSaHDuLstQ_Ybc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:16:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1974 (0x7b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF8D6 Validity Not Before: Mar 17 19:44:29 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67d87b9d-3987 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:46:33:4a:69:4b:d0:dc:db:24:cb:91:40:cb: 23:8b:0b:d7:44:38:8e:32:90:e9:81:43:d9:c4:52: 61:e9:9a:2f:fc:47:cf:36:c6:f7:78:ea:39:8a:ec: fc:2e:3c:be:22:4f:5a:d0:0d:41:e9:4d:27:fc:66: 8e:c2:47:8b:27:13:a3:1c:b2:6e:0b:8b:1d:80:1c: b7:84:65:95:a9:0b:53:bf:29:36:92:2d:02:66:61: 42:9d:03:1d:48:d5:94:41:ba:af:81:20:4c:3f:2d: e4:65:aa:b0:3e:5a:ed:bc:61:e9:24:a5:29:87:5a: 91:8e:04:cc:9b:90:8f:ca:21:6f:93:a4:76:b0:8d: fd:f1:74:84:3f:31:60:8d:da:e4:20:dd:b3:3c:ac: 1e:b0:0b:e8:00:24:72:d5:91:35:74:58:8b:d0:10: b5:bd:65:ba:ff:8b:50:7e:30:ac:34:1c:84:92:2b: 91:b0:7b:bf:7e:de:2c:71:bf:9f:fa:8a:54:be:04: 02:1e:22:c1:97:1b:c6:4c:24:8f:cb:24:64:f0:4b: 07:b5:f9:4d:3a:3d:91:fa:70:98:3b:02:66:85:b7: 91:4b:44:7c:c9:04:59:e3:ce:75:fe:1c:e7:60:3c: da:1d:0f:67:37:44:a6:91:d4:69:8b:6c:f1:d4:cf: ba:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:0F:05:E3:27:03:E3:F7:C7:75:63:8C:27:0E:25:81:76:5F:FC:A0 X509v3 Authority Key Identifier: keyid:4B:97:84:15:E1:67:DB:26:3E:F2:64:9A:1C:3B:8B:B2:D4:3F:61:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF8D6/4D42F56CF1A311EAB5FD9824C4F9AE02/S5eEFeFn2yY-8mSaHDuLstQ_Ybc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S5eEFeFn2yY-8mSaHDuLstQ_Ybc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF8D6/4D42F56CF1A311EAB5FD9824C4F9AE02/3DA25C7A036811F0A14CC938C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.147.87.0/24 Signature Algorithm: sha256WithRSAEncryption 31:99:fa:39:80:56:6f:06:ef:a2:94:4f:98:96:d6:15:30:71: 11:09:bc:c5:7b:09:df:d5:76:eb:a3:df:eb:23:f9:54:6c:37: 5c:27:59:d2:4c:1f:04:e5:1f:0d:9a:75:7d:36:6e:9e:b4:21: 36:b7:b3:47:ec:21:53:85:ae:ef:f4:10:43:c3:03:af:a1:c3: 9f:6b:71:a4:67:a9:15:d7:37:98:eb:8c:69:a9:88:d9:d4:ee: 06:eb:3a:3f:62:90:20:93:40:56:e9:a1:2f:48:c3:bc:58:15: 69:45:15:ae:c2:c9:37:fa:1c:b7:e1:09:c7:fb:87:09:23:f8: 1b:0b:d4:f2:40:39:d8:e7:a5:ae:aa:5a:d9:d4:59:ec:16:32: ca:dd:cc:5d:d6:fc:f6:25:62:5d:db:53:29:5b:4e:61:09:df: fe:dc:0a:54:f6:12:06:e5:64:92:5b:d9:f2:a0:96:80:fa:7a: c6:cf:4c:7b:d3:8b:28:8f:c9:ea:90:b4:2f:c9:2a:77:03:fd: 36:be:01:44:41:cb:bd:b4:3e:dc:15:fd:af:b8:4f:93:96:da: 18:75:7f:4d:eb:f3:8f:a5:e9:e8:66:da:8a:17:43:16:a0:bb: ef:eb:10:ff:38:24:b1:4e:2b:26:c4:d4:0e:de:74:45:3a:c1: a4:22:38:c6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB7YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUY4RDYxMTAvBgNVBAUTKDRCOTc4NDE1RTE2N0RCMjYzRUYyNjQ5QTFDM0I4QkIy RDQzRjYxQjcwHhcNMjUwMzE3MTk0NDI5WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Q4N2I5ZC0zOTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAukYzSmlL0NzbJMuRQMsjiwvXRDiOMpDpgUPZxFJh6Zov/EfPNsb3eOo5iuz8 Ljy+Ik9a0A1B6U0n/GaOwkeLJxOjHLJuC4sdgBy3hGWVqQtTvyk2ki0CZmFCnQMd SNWUQbqvgSBMPy3kZaqwPlrtvGHpJKUph1qRjgTMm5CPyiFvk6R2sI398XSEPzFg jdrkIN2zPKwesAvoACRy1ZE1dFiL0BC1vWW6/4tQfjCsNByEkiuRsHu/ft4scb+f +opUvgQCHiLBlxvGTCSPyyRk8EsHtflNOj2R+nCYOwJmhbeRS0R8yQRZ4851/hzn YDzaHQ9nN0SmkdRpi2zx1M+6jQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHAPBeMn A+P3x3VjjCcOJYF2X/ygMB8GA1UdIwQYMBaAFEuXhBXhZ9smPvJkmhw7i7LUP2G3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjhENi80RDQyRjU2Q0Yx QTMxMUVBQjVGRDk4MjRDNEY5QUUwMi9TNWVFRmVGbjJ5WS04bVNhSER1THN0UV9Z YmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1M1ZUVGZUZuMnlZLThtU2FIRHVMc3RRX1liYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUY4RDYvNEQ0MkY1NkNGMUEzMTFFQUI1RkQ5ODI0QzRGOUFFMDIvM0RBMjVDN0Ew MzY4MTFGMEExNENDOTM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnk1cwDQYJKoZIhvcNAQELBQADggEBADGZ+jmAVm8G76KU T5iW1hUwcREJvMV7Cd/Vduuj3+sj+VRsN1wnWdJMHwTlHw2adX02bp60ITa3s0fs IVOFru/0EEPDA6+hw59rcaRnqRXXN5jrjGmpiNnU7gbrOj9ikCCTQFbpoS9Iw7xY FWlFFa7CyTf6HLfhCcf7hwkj+BsL1PJAOdjnpa6qWtnUWewWMsrdzF3W/PYlYl3b UylbTmEJ3/7cClT2EgblZJJb2fKgloD6esbPTHvTiyiPyeqQtC/JKncD/Ta+AURB y720PtwV/a+4T5OW2hh1f03r84+l6ehm2ooXQxagu+/rEP84JLFOKybE1A7edEU6 waQiOMY= -----END CERTIFICATE-----Generated at Sat Apr 5 18:49:10 2025 by rpki-client