$ rpki-client -vvf rpki.apnic.net/member_repository/A91809AD/656DD26AA76811E89333C725C4F9AE02/3DC8B712E14411EFBECFB90BC4F9AE02.roa File: 3DC8B712E14411EFBECFB90BC4F9AE02.roa (raw, json) Hash identifier: 0b7omzeKz4jSfEh3GkF+vZhYJ1Gdf4wavihWtciHsrI= Subject key identifier: 82:24:D2:94:4C:48:13:83:69:78:4E:D1:1C:64:D9:B1:07:E0:77:A2 Certificate issuer: /CN=A91809AD/serialNumber=6D7C226A7DCB85F2F49216B7EBB00D5F03A605C3 Certificate serial: 1384 Authority key identifier: 6D:7C:22:6A:7D:CB:85:F2:F4:92:16:B7:EB:B0:0D:5F:03:A6:05:C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bXwian3LhfL0kha367ANXwOmBcM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91809AD/656DD26AA76811E89333C725C4F9AE02/3DC8B712E14411EFBECFB90BC4F9AE02.roa Signing time: Mon 26 May 2025 12:39:59 +0000 ROA not before: Mon 26 May 2025 12:39:59 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 138039 IP address blocks: 103.120.116.0/24 maxlen: 24 103.120.118.0/24 maxlen: 24 103.120.119.0/24 maxlen: 24 2407:1840::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91809AD/656DD26AA76811E89333C725C4F9AE02/bXwian3LhfL0kha367ANXwOmBcM.crl rsync://rpki.apnic.net/member_repository/A91809AD/656DD26AA76811E89333C725C4F9AE02/bXwian3LhfL0kha367ANXwOmBcM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bXwian3LhfL0kha367ANXwOmBcM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 17:06:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4996 (0x1384) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91809AD, serialNumber=6D7C226A7DCB85F2F49216B7EBB00D5F03A605C3 Validity Not Before: May 26 12:39:59 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6834611e-fd31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:49:b6:58:24:29:a9:37:41:a9:88:f7:ff:55: 56:ee:26:a0:2d:48:d1:43:15:92:53:1e:09:6f:27: 51:49:f2:88:15:ad:d8:a0:75:e6:16:08:a6:a9:9f: 7e:00:3b:52:38:eb:f5:38:a4:f3:2e:92:e9:5e:46: 92:e8:02:c7:87:7c:84:99:eb:6b:cd:2e:64:2e:af: 18:4d:b7:e8:4f:10:f1:a8:be:9e:40:be:a6:5b:21: 03:6e:12:fd:77:10:a9:8e:f2:5c:cf:cf:5b:e6:b8: 32:ea:ba:f6:b9:74:89:b2:56:8b:8c:68:c0:ba:ae: 73:3e:e7:1e:dc:54:fb:9f:c7:a5:5b:1f:dc:7b:b7: 60:cb:9c:c0:da:50:30:a3:92:31:ef:01:05:e4:4d: bb:c6:33:d8:1f:6c:69:65:84:4c:f1:f8:17:cf:0b: 88:e4:5d:4f:55:f6:b2:61:4c:8b:cd:09:9f:a4:73: 2f:c6:3a:0d:64:b7:17:40:f1:ca:c8:59:ed:36:27: 94:e0:46:f1:38:51:6f:d9:06:97:f5:53:25:b2:ce: f3:65:0d:e0:15:2b:81:ae:f3:03:23:c5:ab:4c:56: 76:59:05:c4:d8:ec:79:a3:85:24:cf:00:28:ef:a0: d0:63:70:30:e0:cd:16:63:58:56:0d:d4:6f:4a:9c: 78:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:24:D2:94:4C:48:13:83:69:78:4E:D1:1C:64:D9:B1:07:E0:77:A2 X509v3 Authority Key Identifier: keyid:6D:7C:22:6A:7D:CB:85:F2:F4:92:16:B7:EB:B0:0D:5F:03:A6:05:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91809AD/656DD26AA76811E89333C725C4F9AE02/bXwian3LhfL0kha367ANXwOmBcM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bXwian3LhfL0kha367ANXwOmBcM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91809AD/656DD26AA76811E89333C725C4F9AE02/3DC8B712E14411EFBECFB90BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.116.0/24 103.120.118.0/23 IPv6: 2407:1840::/32 Signature Algorithm: sha256WithRSAEncryption a9:be:3e:b8:9a:48:f1:90:c8:35:26:2a:1e:b7:0d:a2:f9:26: b5:13:e7:9a:79:b6:8d:da:e5:2e:32:c2:9b:28:91:91:dd:1a: bb:b5:cc:0b:67:b3:bd:bc:59:a9:d5:58:31:0b:9e:47:d5:8a: a6:d4:03:ab:4c:45:b9:6d:35:55:94:da:d1:ec:d0:e4:2a:eb: ae:64:fb:34:c0:94:33:8c:1f:06:64:cc:7d:b5:ee:1b:28:e4: e2:8a:1f:c9:6b:cc:71:59:24:d2:04:8b:39:7f:3d:7b:f2:7b: 36:8f:bf:f3:f0:21:01:6e:96:b4:f9:b6:6f:b1:bb:5f:5f:e3: 7b:a1:71:ea:cd:20:85:28:45:21:c4:7c:7e:5b:a8:b6:c9:d9: 00:08:bb:78:5a:cc:07:65:54:dc:6a:62:1b:42:4b:b1:e1:fc: a6:6a:b9:9e:e7:d5:37:47:d3:a6:6f:d2:2e:97:b1:d8:e6:60: 6e:a6:c1:0c:e8:44:73:d4:20:0a:a8:e4:84:d6:ab:44:1c:f6: 30:2a:83:e8:67:5d:b8:c8:40:85:0b:3c:e7:6c:2e:ee:88:fe: af:00:9b:53:33:09:3f:16:39:68:7b:45:d4:9a:75:ff:41:13: 5c:9a:51:3b:42:a2:a8:9f:f6:74:cf:3c:21:b0:30:65:68:10: 2a:82:f7:47 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICE4QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA5QUQxMTAvBgNVBAUTKDZEN0MyMjZBN0RDQjg1RjJGNDkyMTZCN0VCQjAwRDVG MDNBNjA1QzMwHhcNMjUwNTI2MTIzOTU5WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM0NjExZS1mZDMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsEm2WCQpqTdBqYj3/1VW7iagLUjRQxWSUx4JbydRSfKIFa3YoHXmFgimqZ9+ ADtSOOv1OKTzLpLpXkaS6ALHh3yEmetrzS5kLq8YTbfoTxDxqL6eQL6mWyEDbhL9 dxCpjvJcz89b5rgy6rr2uXSJslaLjGjAuq5zPuce3FT7n8elWx/ce7dgy5zA2lAw o5Ix7wEF5E27xjPYH2xpZYRM8fgXzwuI5F1PVfayYUyLzQmfpHMvxjoNZLcXQPHK yFntNieU4EbxOFFv2QaX9VMlss7zZQ3gFSuBrvMDI8WrTFZ2WQXE2Ox5o4UkzwAo 76DQY3Aw4M0WY1hWDdRvSpx4FwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFIIk0pRM SBODaXhO0Rxk2bEH4HeiMB8GA1UdIwQYMBaAFG18Imp9y4Xy9JIWt+uwDV8DpgXD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDlBRC82NTZERDI2QUE3 NjgxMUU4OTMzM0M3MjVDNEY5QUUwMi9iWHdpYW4zTGhmTDBraGEzNjdBTlh3T21C Y00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JYd2lhbjNMaGZMMGtoYTM2N0FOWHdPbUJjTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODA5QUQvNjU2REQyNkFBNzY4MTFFODkzMzNDNzI1QzRGOUFFMDIvM0RDOEI3MTJF MTQ0MTFFRkJFQ0ZCOTBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBABneHQDBAFneHYwDQQCAAIwBwMFACQHGEAwDQYJKoZIhvcN AQELBQADggEBAKm+PriaSPGQyDUmKh63DaL5JrUT55p5to3a5S4ywpsokZHdGru1 zAtns728WanVWDELnkfViqbUA6tMRbltNVWU2tHs0OQq665k+zTAlDOMHwZkzH21 7hso5OKKH8lrzHFZJNIEizl/PXvyezaPv/PwIQFulrT5tm+xu19f43uhcerNIIUo RSHEfH5bqLbJ2QAIu3hazAdlVNxqYhtCS7Hh/KZquZ7n1TdH06Zv0i6XsdjmYG6m wQzoRHPUIAqo5ITWq0Qc9jAqg+hnXbjIQIULPOdsLu6I/q8Am1MzCT8WOWh7RdSa df9BE1yaUTtCoqif9nTPPCGwMGVoECqC90c= -----END CERTIFICATE-----Generated at Mon Jun 2 07:16:49 2025 by rpki-client