$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9C42/24A65EBE20D011EE90084F5CC4F9AE02/3A7527ECC1F711EF8B510B86C4F9AE02.roa File: 3A7527ECC1F711EF8B510B86C4F9AE02.roa (raw, json) Hash identifier: PSPyDidUc2Ysk1Zzt/hq/yHS8xGylcttSXcqtY7zcuE= Subject key identifier: FA:6D:B6:48:0C:58:B3:E3:1C:D4:F5:43:DA:73:10:47:A1:1D:FE:A9 Certificate issuer: /CN=A91F9C42/serialNumber=8379D747F74A55EDC73A0E0421C79B5EC0E4DE76 Certificate serial: 0118 Authority key identifier: 83:79:D7:47:F7:4A:55:ED:C7:3A:0E:04:21:C7:9B:5E:C0:E4:DE:76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3nXR_dKVe3HOg4EIcebXsDk3nY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9C42/24A65EBE20D011EE90084F5CC4F9AE02/3A7527ECC1F711EF8B510B86C4F9AE02.roa Signing time: Tue 24 Dec 2024 13:01:45 +0000 ROA not before: Tue 24 Dec 2024 13:01:45 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 141778 IP address blocks: 103.229.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9C42/24A65EBE20D011EE90084F5CC4F9AE02/g3nXR_dKVe3HOg4EIcebXsDk3nY.crl rsync://rpki.apnic.net/member_repository/A91F9C42/24A65EBE20D011EE90084F5CC4F9AE02/g3nXR_dKVe3HOg4EIcebXsDk3nY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3nXR_dKVe3HOg4EIcebXsDk3nY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 03:33:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 280 (0x118) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9C42 Validity Not Before: Dec 24 13:01:45 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=676ab0b9-0ea6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:30:cf:b3:1e:f2:0e:1a:8b:aa:42:d3:ff:38: 76:a6:47:d6:a6:35:2b:1c:e0:d2:29:98:b6:60:3c: 61:04:2a:50:1e:ce:af:be:f3:ad:2c:fb:f6:21:62: 3f:92:c0:79:7d:8f:5e:5f:ab:fd:29:c6:fe:39:a3: d8:0b:a0:20:8b:d1:4d:61:94:37:39:ce:7e:d8:6f: 3c:66:07:a8:42:54:c7:40:4f:2d:7e:34:88:b4:6e: eb:7f:29:0d:b6:1b:33:8f:1b:f7:24:1d:83:03:eb: 96:c6:54:21:f0:90:79:14:5a:4e:5d:5a:40:6d:9c: 7f:ce:df:0d:be:ad:1f:47:62:86:61:16:42:32:78: 50:17:ae:0c:be:e0:dc:8c:92:a1:a8:d6:7c:f5:dd: 93:60:7d:ef:49:1b:b6:b2:67:41:5a:5a:2e:6d:03: a8:d9:af:e4:09:df:ca:5f:f1:a1:5a:89:1a:51:de: eb:ab:93:e4:83:43:6b:a1:ec:61:74:ca:f0:5b:97: 39:91:88:f9:8d:ca:05:71:d5:dd:b9:b6:f2:b1:f0: 37:c8:78:e0:86:4b:6a:45:5d:4a:fe:d7:3a:35:b6: d6:58:fd:02:60:d3:c7:31:80:09:77:3b:d9:e5:5f: 06:2b:ec:9f:02:40:3b:86:57:f6:ec:72:18:2e:6c: 94:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:6D:B6:48:0C:58:B3:E3:1C:D4:F5:43:DA:73:10:47:A1:1D:FE:A9 X509v3 Authority Key Identifier: keyid:83:79:D7:47:F7:4A:55:ED:C7:3A:0E:04:21:C7:9B:5E:C0:E4:DE:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9C42/24A65EBE20D011EE90084F5CC4F9AE02/g3nXR_dKVe3HOg4EIcebXsDk3nY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3nXR_dKVe3HOg4EIcebXsDk3nY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9C42/24A65EBE20D011EE90084F5CC4F9AE02/3A7527ECC1F711EF8B510B86C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.229.190.0/24 Signature Algorithm: sha256WithRSAEncryption 19:c5:be:09:19:8e:8c:2c:1e:6f:78:a1:d6:42:8b:65:74:cc: cc:f9:29:1b:b0:b7:43:99:e5:c2:21:21:42:aa:9c:5b:29:cf: e2:22:5f:6b:48:3a:ca:48:c6:c9:3e:84:ad:d0:81:55:9e:b6: bc:e9:2a:31:c0:94:90:9a:38:94:ac:f5:17:a7:19:29:6d:a7: 6c:8e:37:d1:29:18:be:da:6b:8e:26:c5:fb:af:03:f4:4a:7e: 04:b1:5b:f7:94:e2:f1:e6:f2:2d:04:d2:80:50:d8:89:5a:97: 38:28:a2:77:94:05:ab:f1:0b:20:22:79:2d:98:a2:80:28:c0: 68:36:22:03:ea:6a:83:6a:52:e0:0f:c5:4d:a2:82:b9:2e:b5: dc:32:65:29:d5:a0:c5:0c:ef:04:6b:13:c2:6a:c0:9d:24:3f: 68:f8:54:b9:f4:86:68:50:5d:72:ef:0a:6a:67:62:2f:85:da: 72:c2:67:2f:ba:7a:84:b8:01:b4:44:8b:a6:d4:5c:2d:18:d3: b1:b2:7d:42:72:b1:b9:34:4d:17:52:13:7d:61:2c:c4:59:88: dc:23:fa:5c:f1:f5:e8:31:c1:80:55:50:ec:e6:59:c8:a9:a2: 71:50:4f:45:b7:af:cf:54:a0:a3:0c:42:16:47:86:80:31:5e: c6:1e:82:97 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICARgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlDNDIxMTAvBgNVBAUTKDgzNzlENzQ3Rjc0QTU1RURDNzNBMEUwNDIxQzc5QjVF QzBFNERFNzYwHhcNMjQxMjI0MTMwMTQ1WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzZhYjBiOS0wZWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwTDPsx7yDhqLqkLT/zh2pkfWpjUrHODSKZi2YDxhBCpQHs6vvvOtLPv2IWI/ ksB5fY9eX6v9Kcb+OaPYC6Agi9FNYZQ3Oc5+2G88ZgeoQlTHQE8tfjSItG7rfykN thszjxv3JB2DA+uWxlQh8JB5FFpOXVpAbZx/zt8Nvq0fR2KGYRZCMnhQF64MvuDc jJKhqNZ89d2TYH3vSRu2smdBWloubQOo2a/kCd/KX/GhWokaUd7rq5Pkg0Nroexh dMrwW5c5kYj5jcoFcdXdubbysfA3yHjghktqRV1K/tc6NbbWWP0CYNPHMYAJdzvZ 5V8GK+yfAkA7hlf27HIYLmyUuwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPpttkgM WLPjHNT1Q9pzEEehHf6pMB8GA1UdIwQYMBaAFIN510f3SlXtxzoOBCHHm17A5N52 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUM0Mi8yNEE2NUVCRTIw RDAxMUVFOTAwODRGNUNDNEY5QUUwMi9nM25YUl9kS1ZlM0hPZzRFSWNlYlhzRGsz blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2czblhSX2RLVmUzSE9nNEVJY2ViWHNEazNuWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjlDNDIvMjRBNjVFQkUyMEQwMTFFRTkwMDg0RjVDQzRGOUFFMDIvM0E3NTI3RUND MUY3MTFFRjhCNTEwQjg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn5b4wDQYJKoZIhvcNAQELBQADggEBABnFvgkZjowsHm94 odZCi2V0zMz5KRuwt0OZ5cIhIUKqnFspz+IiX2tIOspIxsk+hK3QgVWetrzpKjHA lJCaOJSs9RenGSltp2yON9EpGL7aa44mxfuvA/RKfgSxW/eU4vHm8i0E0oBQ2Ila lzgooneUBavxCyAieS2YooAowGg2IgPqaoNqUuAPxU2igrkutdwyZSnVoMUM7wRr E8JqwJ0kP2j4VLn0hmhQXXLvCmpnYi+F2nLCZy+6eoS4AbREi6bUXC0Y07GyfUJy sbk0TRdSE31hLMRZiNwj+lzx9egxwYBVUOzmWciponFQT0W3r89UoKMMQhZHhoAx XsYegpc= -----END CERTIFICATE-----Generated at Sat Apr 5 02:20:20 2025 by rpki-client