$ rpki-client -vvf rpki.apnic.net/member_repository/A9136429/E80FFB488A3211ECB08D900AC4F9AE02/3A51C4061DF211ED95A51A3EC4F9AE02.roa File: 3A51C4061DF211ED95A51A3EC4F9AE02.roa (raw, json) Hash identifier: h8JGD2TX2zCZAvoeCATDFLy5kT17CJ7zwhERt61Mof0= Subject key identifier: 7B:65:77:E8:5F:A7:CC:33:3D:42:20:09:F1:5F:05:B8:E9:02:8E:BF Certificate issuer: /CN=A9136429/serialNumber=989319F56A7AE24208D13624DD69D8E4091B7C24 Certificate serial: 03A3 Authority key identifier: 98:93:19:F5:6A:7A:E2:42:08:D1:36:24:DD:69:D8:E4:09:1B:7C:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mJMZ9Wp64kII0TYk3WnY5AkbfCQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136429/E80FFB488A3211ECB08D900AC4F9AE02/3A51C4061DF211ED95A51A3EC4F9AE02.roa Signing time: Fri 07 Mar 2025 00:46:29 +0000 ROA not before: Fri 07 Mar 2025 00:46:29 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 137967 IP address blocks: 103.181.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136429/E80FFB488A3211ECB08D900AC4F9AE02/mJMZ9Wp64kII0TYk3WnY5AkbfCQ.crl rsync://rpki.apnic.net/member_repository/A9136429/E80FFB488A3211ECB08D900AC4F9AE02/mJMZ9Wp64kII0TYk3WnY5AkbfCQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mJMZ9Wp64kII0TYk3WnY5AkbfCQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 00:21:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 931 (0x3a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136429 Validity Not Before: Mar 7 00:46:29 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67ca41e4-f506 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:a9:16:76:1e:d1:34:52:aa:3d:89:c4:9e:75: 3c:57:0a:66:2b:15:20:5f:73:94:08:b4:87:91:4b: b0:d0:df:1f:1d:69:85:4a:1f:0f:71:2d:63:d3:73: d6:30:c6:c7:d6:42:49:b5:3b:b7:54:dc:d9:0f:f0: 67:b1:d1:14:cb:06:43:25:5f:1a:e0:11:af:10:83: f5:d5:11:bf:93:07:75:c5:88:0b:7a:d4:c6:96:43: 76:fa:ae:7a:ec:47:de:7f:6b:e2:e7:44:18:10:eb: 7a:f7:45:43:8e:6e:ef:fb:ca:b1:d3:e3:63:1e:5f: 18:db:aa:1f:1d:ee:2e:55:bb:21:7d:16:b4:01:f3: a0:0b:e0:9b:02:a9:cc:c3:77:f3:b9:d5:0e:cb:f1: b4:33:7a:15:4e:b4:0d:ce:26:a9:61:a0:ea:57:62: 92:21:7c:00:6d:f8:9c:df:3a:24:10:5c:0a:05:7e: f2:02:d9:8c:53:82:61:2c:f8:39:65:08:9b:56:4b: 31:6c:20:a2:b9:f5:6d:9e:fd:c4:bc:ad:54:fe:dc: 99:d7:c1:e2:04:fb:1f:15:a3:c6:7a:be:6e:de:04: 12:e0:83:15:92:b9:67:af:58:ce:c0:f3:84:a5:00: ad:7c:82:87:fd:59:2e:aa:2e:33:69:5e:2e:80:6e: c3:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:65:77:E8:5F:A7:CC:33:3D:42:20:09:F1:5F:05:B8:E9:02:8E:BF X509v3 Authority Key Identifier: keyid:98:93:19:F5:6A:7A:E2:42:08:D1:36:24:DD:69:D8:E4:09:1B:7C:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136429/E80FFB488A3211ECB08D900AC4F9AE02/mJMZ9Wp64kII0TYk3WnY5AkbfCQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mJMZ9Wp64kII0TYk3WnY5AkbfCQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136429/E80FFB488A3211ECB08D900AC4F9AE02/3A51C4061DF211ED95A51A3EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.181.69.0/24 Signature Algorithm: sha256WithRSAEncryption a4:7a:c6:3f:aa:b2:7d:80:ee:87:34:9d:38:a0:d4:ab:63:d2: 71:31:a0:94:78:67:5f:c4:c8:42:b5:31:cc:7c:7b:04:02:64: eb:60:2a:19:b2:12:64:f8:d5:ac:76:0b:e6:48:78:2a:95:4c: 40:7b:1d:b8:33:fd:ee:13:d2:09:78:70:ce:b9:21:39:e4:d9: d8:e2:02:3c:ff:91:d7:13:f5:2e:a2:90:d8:9e:ca:09:84:0b: 7f:14:1e:d2:6c:72:dc:3f:1e:ef:c9:43:1f:9d:22:91:96:28: fb:bb:9a:03:88:e8:02:4b:a1:46:13:8b:e2:08:66:88:4b:c1: 05:1f:f4:ee:6c:00:75:db:ba:f6:5c:03:55:1d:eb:cf:a0:55: fc:cc:9a:6d:ac:09:33:31:fb:eb:97:73:4f:77:ef:cc:d4:c0: 14:ad:ea:fe:a0:b9:9f:b9:58:ac:35:89:a7:25:fe:ff:c6:da: e9:dc:91:9f:26:96:90:db:db:78:db:32:95:38:2b:46:4c:5a: 85:5d:36:cb:b9:b1:97:8c:12:c5:5d:ee:de:f9:3c:9e:4d:ef: 27:6c:55:e2:1e:1c:80:77:ad:cc:92:27:3b:78:3f:5e:62:e2: 78:d8:a1:04:73:fa:68:c5:c7:73:c3:39:60:73:04:91:02:57: 3b:80:a8:97 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA6MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzY0MjkxMTAvBgNVBAUTKDk4OTMxOUY1NkE3QUUyNDIwOEQxMzYyNERENjlEOEU0 MDkxQjdDMjQwHhcNMjUwMzA3MDA0NjI5WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2NhNDFlNC1mNTA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5qkWdh7RNFKqPYnEnnU8VwpmKxUgX3OUCLSHkUuw0N8fHWmFSh8PcS1j03PW MMbH1kJJtTu3VNzZD/BnsdEUywZDJV8a4BGvEIP11RG/kwd1xYgLetTGlkN2+q56 7Efef2vi50QYEOt690VDjm7v+8qx0+NjHl8Y26ofHe4uVbshfRa0AfOgC+CbAqnM w3fzudUOy/G0M3oVTrQNziapYaDqV2KSIXwAbfic3zokEFwKBX7yAtmMU4JhLPg5 ZQibVksxbCCiufVtnv3EvK1U/tyZ18HiBPsfFaPGer5u3gQS4IMVkrlnr1jOwPOE pQCtfIKH/Vkuqi4zaV4ugG7DnwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHtld+hf p8wzPUIgCfFfBbjpAo6/MB8GA1UdIwQYMBaAFJiTGfVqeuJCCNE2JN1p2OQJG3wk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjQyOS9FODBGRkI0ODhB MzIxMUVDQjA4RDkwMEFDNEY5QUUwMi9tSk1aOVdwNjRrSUkwVFlrM1duWTVBa2Jm Q1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21KTVo5V3A2NGtJSTBUWWszV25ZNUFrYmZDUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzY0MjkvRTgwRkZCNDg4QTMyMTFFQ0IwOEQ5MDBBQzRGOUFFMDIvM0E1MUM0MDYx REYyMTFFRDk1QTUxQTNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABntUUwDQYJKoZIhvcNAQELBQADggEBAKR6xj+qsn2A7oc0 nTig1Ktj0nExoJR4Z1/EyEK1Mcx8ewQCZOtgKhmyEmT41ax2C+ZIeCqVTEB7Hbgz /e4T0gl4cM65ITnk2djiAjz/kdcT9S6ikNieygmEC38UHtJsctw/Hu/JQx+dIpGW KPu7mgOI6AJLoUYTi+IIZohLwQUf9O5sAHXbuvZcA1Ud68+gVfzMmm2sCTMx++uX c09378zUwBSt6v6guZ+5WKw1iacl/v/G2unckZ8mlpDb23jbMpU4K0ZMWoVdNsu5 sZeMEsVd7t75PJ5N7ydsVeIeHIB3rcySJzt4P15i4njYoQRz+mjFx3PDOWBzBJEC VzuAqJc= -----END CERTIFICATE-----Generated at Thu Mar 13 21:49:23 2025 by rpki-client