$ rpki-client -vvf rpki.apnic.net/member_repository/A911FABE/A3F509F20C4F11EAA8C6B13CC4F9AE02/3E51F73E0C5111EAAF46A23FC4F9AE02.roa File: 3E51F73E0C5111EAAF46A23FC4F9AE02.roa (raw, json) Hash identifier: pTtLtXiP6+lMZs1IbS5QyauPkH+CLmMvProexjSKJSs= Subject key identifier: 79:B7:32:5D:5E:3B:4C:03:C9:67:3B:7B:79:2A:0C:5E:EF:E3:78:CE Certificate issuer: /CN=A911FABE/serialNumber=A74605CB9D5071CA1729D9087834407F14EA8570 Certificate serial: 0C27 Authority key identifier: A7:46:05:CB:9D:50:71:CA:17:29:D9:08:78:34:40:7F:14:EA:85:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0YFy51QccoXKdkIeDRAfxTqhXA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911FABE/A3F509F20C4F11EAA8C6B13CC4F9AE02/3E51F73E0C5111EAAF46A23FC4F9AE02.roa Signing time: Thu 22 May 2025 19:13:14 +0000 ROA not before: Thu 22 May 2025 19:13:14 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 137815 IP address blocks: 103.114.168.0/22 maxlen: 22 103.114.168.0/23 maxlen: 23 103.114.168.0/24 maxlen: 24 103.114.169.0/24 maxlen: 24 103.114.170.0/23 maxlen: 23 103.114.170.0/24 maxlen: 24 103.114.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911FABE/A3F509F20C4F11EAA8C6B13CC4F9AE02/p0YFy51QccoXKdkIeDRAfxTqhXA.crl rsync://rpki.apnic.net/member_repository/A911FABE/A3F509F20C4F11EAA8C6B13CC4F9AE02/p0YFy51QccoXKdkIeDRAfxTqhXA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0YFy51QccoXKdkIeDRAfxTqhXA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 18:45:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3111 (0xc27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911FABE, serialNumber=A74605CB9D5071CA1729D9087834407F14EA8570 Validity Not Before: May 22 19:13:14 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f774a-4cee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:44:7d:6d:ad:79:46:9a:ea:6b:f0:d5:3e:60: b2:f9:4e:f8:b3:31:5f:bd:42:d0:cc:34:54:c2:d6: 12:55:2e:e7:f7:5f:f2:0f:16:5b:97:5d:f1:09:03: d6:0e:89:5c:6f:7b:b7:ab:ab:f0:d2:08:bb:91:71: 34:32:65:98:6f:1a:4e:78:39:de:c4:98:41:83:5d: ff:53:26:fe:8d:9d:0a:5f:6e:9c:9f:37:c3:c7:3b: ca:31:dc:5b:a6:33:e6:5c:80:c7:11:3e:86:56:04: 8c:24:6c:03:6f:22:1d:24:9b:f1:3a:74:81:50:ce: 93:2f:06:80:23:91:da:48:f5:27:ee:1c:c0:e1:a4: 80:84:6e:6e:ba:e4:ff:0f:3f:4a:1c:81:ba:78:a4: 71:e5:e1:39:c5:8e:37:c5:98:23:0d:a5:94:5a:a4: 16:5b:1d:fa:c8:84:63:15:9c:05:c1:4a:67:91:52: cb:7a:cd:93:56:dd:a1:b4:63:39:e4:a9:97:2c:d2: 43:3f:d9:6e:19:8e:61:18:30:e9:71:c1:c0:0e:a9: ed:90:a5:df:ce:1b:fb:8f:3e:4e:56:48:3a:b2:6d: 0c:32:b8:03:e7:ae:8b:f3:ce:91:31:1a:08:a4:af: 40:9b:6a:2b:f2:93:24:af:1b:46:92:76:67:af:55: b9:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:B7:32:5D:5E:3B:4C:03:C9:67:3B:7B:79:2A:0C:5E:EF:E3:78:CE X509v3 Authority Key Identifier: keyid:A7:46:05:CB:9D:50:71:CA:17:29:D9:08:78:34:40:7F:14:EA:85:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911FABE/A3F509F20C4F11EAA8C6B13CC4F9AE02/p0YFy51QccoXKdkIeDRAfxTqhXA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0YFy51QccoXKdkIeDRAfxTqhXA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911FABE/A3F509F20C4F11EAA8C6B13CC4F9AE02/3E51F73E0C5111EAAF46A23FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.114.168.0/22 Signature Algorithm: sha256WithRSAEncryption 0f:7a:66:15:41:6a:bb:3d:42:e8:2f:45:26:3f:85:e3:93:87: 24:d4:52:04:08:1b:b5:cb:16:a1:7c:a7:25:a4:25:6d:6e:ac: 80:60:59:ca:21:2d:1a:47:7e:23:32:db:85:e8:05:7c:ef:b1: 63:6c:36:ea:12:bd:79:fb:48:f3:a7:90:33:6f:0c:72:c7:47: cf:b6:31:e9:4f:12:48:2e:fc:aa:64:4f:d8:d1:60:7a:28:14: 95:83:5e:de:60:bc:07:25:93:9c:83:86:b0:a0:8b:04:b7:2b: bb:c9:4b:3a:62:cf:f7:47:05:a7:a6:4e:34:1c:ce:db:cf:a1: 8c:3b:e0:93:ab:07:1c:65:61:da:96:c6:41:ff:39:d2:5f:bb: a3:52:a8:29:a6:ad:0a:22:26:9b:95:a7:41:c9:4f:60:c8:79: a7:c5:de:7f:99:2c:b0:ad:b7:73:34:15:ec:86:7b:97:08:a0: 16:5d:f9:4c:07:d3:d2:f1:61:64:38:db:06:32:de:9d:2b:1e: aa:56:ea:3f:72:9b:b2:ef:95:23:61:f6:9c:56:bd:41:b9:53: c7:9e:28:17:80:79:b2:4e:aa:95:5a:19:17:7b:30:e9:d4:f0: 8f:8a:fa:1d:ea:9f:9b:42:1c:f1:ea:f1:67:47:c2:47:f1:2f: fa:15:7c:f9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDCcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUZBQkUxMTAvBgNVBAUTKEE3NDYwNUNCOUQ1MDcxQ0ExNzI5RDkwODc4MzQ0MDdG MTRFQTg1NzAwHhcNMjUwNTIyMTkxMzE0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmNzc0YS00Y2VlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArER9ba15Rprqa/DVPmCy+U74szFfvULQzDRUwtYSVS7n91/yDxZbl13xCQPW Dolcb3u3q6vw0gi7kXE0MmWYbxpOeDnexJhBg13/Uyb+jZ0KX26cnzfDxzvKMdxb pjPmXIDHET6GVgSMJGwDbyIdJJvxOnSBUM6TLwaAI5HaSPUn7hzA4aSAhG5uuuT/ Dz9KHIG6eKRx5eE5xY43xZgjDaWUWqQWWx36yIRjFZwFwUpnkVLLes2TVt2htGM5 5KmXLNJDP9luGY5hGDDpccHADqntkKXfzhv7jz5OVkg6sm0MMrgD566L886RMRoI pK9Am2or8pMkrxtGknZnr1W54wIDAQABo4IClTCCApEwHQYDVR0OBBYEFHm3Ml1e O0wDyWc7e3kqDF7v43jOMB8GA1UdIwQYMBaAFKdGBcudUHHKFynZCHg0QH8U6oVw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRkFCRS9BM0Y1MDlGMjBD NEYxMUVBQThDNkIxM0NDNEY5QUUwMi9wMFlGeTUxUWNjb1hLZGtJZURSQWZ4VHFo WEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3AwWUZ5NTFRY2NvWEtka0llRFJBZnhUcWhYQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUZBQkUvQTNGNTA5RjIwQzRGMTFFQUE4QzZCMTNDQzRGOUFFMDIvM0U1MUY3M0Uw QzUxMTFFQUFGNDZBMjNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJncqgwDQYJKoZIhvcNAQELBQADggEBAA96ZhVBars9Qugv RSY/heOThyTUUgQIG7XLFqF8pyWkJW1urIBgWcohLRpHfiMy24XoBXzvsWNsNuoS vXn7SPOnkDNvDHLHR8+2MelPEkgu/KpkT9jRYHooFJWDXt5gvAclk5yDhrCgiwS3 K7vJSzpiz/dHBaemTjQcztvPoYw74JOrBxxlYdqWxkH/OdJfu6NSqCmmrQoiJpuV p0HJT2DIeafF3n+ZLLCtt3M0FeyGe5cIoBZd+UwH09LxYWQ42wYy3p0rHqpW6j9y m7LvlSNh9pxWvUG5U8eeKBeAebJOqpVaGRd7MOnU8I+K+h3qn5tCHPHq8WdHwkfx L/oVfPk= -----END CERTIFICATE-----Generated at Wed Jun 4 00:02:31 2025 by rpki-client