$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB095/AABEB56A1A5311EEA4608814C4F9AE02/35A46D4E1A5611EE93742844C4F9AE02.roa File: 35A46D4E1A5611EE93742844C4F9AE02.roa (raw, json) Hash identifier: d+JJ+I8S/10V6aRjr1ig3NwOOf5vZtvPjsJauOreVMs= Subject key identifier: 64:67:C6:15:85:7A:8E:8E:AA:68:4C:06:3C:C6:12:B3:CE:EB:7F:06 Certificate issuer: /CN=A91FB095/serialNumber=B291102154472183CF50D2AE6FA30E1BDE342BF4 Certificate serial: 0144 Authority key identifier: B2:91:10:21:54:47:21:83:CF:50:D2:AE:6F:A3:0E:1B:DE:34:2B:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/spEQIVRHIYPPUNKub6MOG940K_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB095/AABEB56A1A5311EEA4608814C4F9AE02/35A46D4E1A5611EE93742844C4F9AE02.roa Signing time: Sun 23 Feb 2025 05:36:39 +0000 ROA not before: Sun 23 Feb 2025 05:36:39 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 142647 IP address blocks: 103.66.148.0/24 maxlen: 24 103.66.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB095/AABEB56A1A5311EEA4608814C4F9AE02/spEQIVRHIYPPUNKub6MOG940K_Q.crl rsync://rpki.apnic.net/member_repository/A91FB095/AABEB56A1A5311EEA4608814C4F9AE02/spEQIVRHIYPPUNKub6MOG940K_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/spEQIVRHIYPPUNKub6MOG940K_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 03:43:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 324 (0x144) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB095 Validity Not Before: Feb 23 05:36:39 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67bab3e7-01e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f5:9a:dc:fe:dc:e5:7a:55:88:3d:fe:9c:65: 33:82:d7:ae:f7:eb:8a:4a:bb:63:b0:cd:47:e1:7a: e5:c5:b2:ed:31:e4:17:2d:66:83:b8:0b:b4:b2:a4: 32:8b:d5:58:3d:e6:19:8a:e7:21:02:19:78:b6:b1: 5a:c7:bd:80:24:18:56:3e:f4:7a:6b:17:b7:7d:6a: 82:26:92:05:3e:0c:41:79:20:e3:63:7f:75:5c:9a: 6e:bc:4a:31:44:a3:c7:a0:43:2d:3f:76:2e:d4:ab: ac:76:a5:78:33:37:60:c8:06:e1:da:c8:84:c9:79: 31:e0:80:4f:7e:8b:e5:70:63:d0:2c:2d:84:39:b8: 74:0b:bc:95:5c:fd:fe:29:d5:a3:c6:d8:db:2d:5c: c1:d2:69:6b:94:07:a7:2f:8e:e0:dd:96:a6:68:8c: b1:4b:55:8b:e6:e6:8f:aa:29:49:1d:ba:bc:70:64: ef:78:e0:62:e1:c2:1d:9d:30:4f:4e:1a:dc:9e:5f: ac:0f:f8:d4:27:26:3a:d0:18:23:9d:42:d5:60:72: 4a:1b:a6:b0:bb:88:18:39:e0:5d:a7:bd:00:2e:04: 65:97:08:3d:18:52:0e:58:99:e5:05:fb:61:6f:e3: a8:9c:d8:fd:8b:45:51:56:49:59:e9:8c:8a:b7:0e: 11:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:67:C6:15:85:7A:8E:8E:AA:68:4C:06:3C:C6:12:B3:CE:EB:7F:06 X509v3 Authority Key Identifier: keyid:B2:91:10:21:54:47:21:83:CF:50:D2:AE:6F:A3:0E:1B:DE:34:2B:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB095/AABEB56A1A5311EEA4608814C4F9AE02/spEQIVRHIYPPUNKub6MOG940K_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/spEQIVRHIYPPUNKub6MOG940K_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB095/AABEB56A1A5311EEA4608814C4F9AE02/35A46D4E1A5611EE93742844C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.66.148.0/23 Signature Algorithm: sha256WithRSAEncryption 43:17:d4:99:43:fc:e7:99:ac:a9:39:89:cd:cf:bf:0e:f8:8e: af:1c:c6:23:37:8e:85:58:c6:1c:d9:66:9b:57:41:c6:e0:82: 19:cc:80:d0:b8:f8:32:a8:8b:4e:c9:7b:0a:79:fb:d3:19:05: 9c:42:1f:ff:cb:90:56:39:c8:de:7c:c6:03:71:17:3d:29:63: 88:13:61:9e:1e:9f:20:63:9b:39:1a:9a:1c:38:f3:ef:68:c2: f9:76:58:30:e0:1b:71:7e:f1:2e:a5:30:11:9d:1a:e9:bd:bf: 25:11:65:29:01:73:a7:38:d8:99:a8:2e:87:92:f0:6f:1d:43: e4:7d:46:1a:9a:55:3f:c1:05:c8:12:34:c8:65:2e:6e:d8:c0: 3e:8c:6b:51:43:f3:17:0d:e5:87:52:9a:a4:1e:37:6c:47:14: 6b:72:1d:7e:33:7b:b3:1c:1d:38:2c:d6:5f:cf:97:02:f3:17: 36:fc:f4:e6:ee:8f:95:16:31:cf:04:50:a1:d9:d7:87:2f:e4: 5b:7e:99:28:44:07:56:b2:e4:6d:28:b7:f0:c6:e2:12:81:1b: a8:30:b9:31:62:d3:59:fc:9c:c0:fe:90:84:c9:d5:88:4c:9d: c8:92:e6:4e:f4:80:f3:36:ac:e7:2a:63:08:16:f3:d5:34:99: 1b:f1:c2:3e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkIwOTUxMTAvBgNVBAUTKEIyOTExMDIxNTQ0NzIxODNDRjUwRDJBRTZGQTMwRTFC REUzNDJCRjQwHhcNMjUwMjIzMDUzNjM5WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2JhYjNlNy0wMWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwvWa3P7c5XpViD3+nGUzgteu9+uKSrtjsM1H4XrlxbLtMeQXLWaDuAu0sqQy i9VYPeYZiuchAhl4trFax72AJBhWPvR6axe3fWqCJpIFPgxBeSDjY391XJpuvEox RKPHoEMtP3Yu1KusdqV4MzdgyAbh2siEyXkx4IBPfovlcGPQLC2EObh0C7yVXP3+ KdWjxtjbLVzB0mlrlAenL47g3ZamaIyxS1WL5uaPqilJHbq8cGTveOBi4cIdnTBP Thrcnl+sD/jUJyY60BgjnULVYHJKG6awu4gYOeBdp70ALgRllwg9GFIOWJnlBfth b+OonNj9i0VRVklZ6YyKtw4RKQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGRnxhWF eo6OqmhMBjzGErPO638GMB8GA1UdIwQYMBaAFLKRECFURyGDz1DSrm+jDhveNCv0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjA5NS9BQUJFQjU2QTFB NTMxMUVFQTQ2MDg4MTRDNEY5QUUwMi9zcEVRSVZSSElZUFBVTkt1YjZNT0c5NDBL X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NwRVFJVlJISVlQUFVOS3ViNk1PRzk0MEtfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkIwOTUvQUFCRUI1NkExQTUzMTFFRUE0NjA4ODE0QzRGOUFFMDIvMzVBNDZENEUx QTU2MTFFRTkzNzQyODQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnQpQwDQYJKoZIhvcNAQELBQADggEBAEMX1JlD/OeZrKk5 ic3Pvw74jq8cxiM3joVYxhzZZptXQcbgghnMgNC4+DKoi07Jewp5+9MZBZxCH//L kFY5yN58xgNxFz0pY4gTYZ4enyBjmzkamhw48+9owvl2WDDgG3F+8S6lMBGdGum9 vyURZSkBc6c42JmoLoeS8G8dQ+R9RhqaVT/BBcgSNMhlLm7YwD6Ma1FD8xcN5YdS mqQeN2xHFGtyHX4ze7McHTgs1l/PlwLzFzb89Obuj5UWMc8EUKHZ14cv5Ft+mShE B1ay5G0ot/DG4hKBG6gwuTFi01n8nMD+kITJ1YhMnciS5k70gPM2rOcqYwgW89U0 mRvxwj4= -----END CERTIFICATE-----Generated at Sat Apr 5 02:13:18 2025 by rpki-client