$ rpki-client -vvf rpki.apnic.net/member_repository/A919C776/9297C452086B11EF826D3B14C4F9AE02/35A11C66086C11EFB8BD7815C4F9AE02.roa File: 35A11C66086C11EFB8BD7815C4F9AE02.roa (raw, json) Hash identifier: 5SAU/1iHdwmbAl4BLE+wteuzB4BwaZSuEXvHLbOPVjI= Subject key identifier: 43:78:86:65:70:DC:1A:8A:6C:04:92:69:E5:12:F4:17:FD:6E:A4:FF Certificate issuer: /CN=A919C776/serialNumber=D7C4DE13686F4355853683915E541DED753AEB3A Certificate serial: D0 Authority key identifier: D7:C4:DE:13:68:6F:43:55:85:36:83:91:5E:54:1D:ED:75:3A:EB:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/18TeE2hvQ1WFNoORXlQd7XU66zo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C776/9297C452086B11EF826D3B14C4F9AE02/35A11C66086C11EFB8BD7815C4F9AE02.roa Signing time: Sat 31 May 2025 06:06:21 +0000 ROA not before: Sat 31 May 2025 06:06:21 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 152723 IP address blocks: 103.54.108.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C776/9297C452086B11EF826D3B14C4F9AE02/18TeE2hvQ1WFNoORXlQd7XU66zo.crl rsync://rpki.apnic.net/member_repository/A919C776/9297C452086B11EF826D3B14C4F9AE02/18TeE2hvQ1WFNoORXlQd7XU66zo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/18TeE2hvQ1WFNoORXlQd7XU66zo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 05:24:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C776, serialNumber=D7C4DE13686F4355853683915E541DED753AEB3A Validity Not Before: May 31 06:06:21 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683a9c5d-c1fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:fa:cd:8a:da:ca:f3:41:6f:78:e8:dd:28:d5: c0:5e:51:bd:76:46:07:5e:d5:e1:c9:d6:dc:4d:5d: cc:da:5b:b2:a6:a8:46:80:09:ef:df:06:38:ec:16: 38:ae:5e:5f:ba:ee:0e:c0:15:43:6d:55:74:58:93: db:6d:c9:df:ad:86:dc:bf:99:7d:40:17:19:4c:a4: be:e9:81:4b:c2:04:af:e3:bc:ad:bb:6e:c6:d2:3b: 5e:6f:c4:a0:76:48:ea:84:36:87:48:d2:ef:07:ba: 0a:5d:4d:16:2c:77:44:df:c6:d8:93:fe:c2:a5:82: e5:d9:1a:d9:18:ce:95:bd:2b:1a:4e:a6:e8:8a:58: 55:03:b5:02:c5:cb:db:84:4c:6b:ec:5d:d4:66:50: 96:64:a1:14:59:c4:6f:f8:a5:84:17:89:ae:90:63: e9:fd:7c:4f:47:06:a3:b8:8b:db:a6:b8:41:18:f3: b6:45:62:e0:b2:45:8c:12:18:db:ec:f3:09:b6:57: 20:ec:99:83:cb:9b:3a:72:79:89:24:93:f8:ab:0e: 67:9c:f7:47:6a:99:27:a4:51:da:51:a6:72:aa:ca: 63:de:ef:ff:6c:00:7e:6d:6d:69:89:2e:5c:20:ed: 85:b1:68:0c:80:08:a8:a8:35:b6:0e:a6:74:02:d5: e4:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:78:86:65:70:DC:1A:8A:6C:04:92:69:E5:12:F4:17:FD:6E:A4:FF X509v3 Authority Key Identifier: keyid:D7:C4:DE:13:68:6F:43:55:85:36:83:91:5E:54:1D:ED:75:3A:EB:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C776/9297C452086B11EF826D3B14C4F9AE02/18TeE2hvQ1WFNoORXlQd7XU66zo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/18TeE2hvQ1WFNoORXlQd7XU66zo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C776/9297C452086B11EF826D3B14C4F9AE02/35A11C66086C11EFB8BD7815C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.54.108.0/23 Signature Algorithm: sha256WithRSAEncryption 5d:d3:ad:d6:af:cf:df:92:2b:8b:fe:97:69:94:17:df:b8:f3: be:1e:e5:94:b5:14:31:6c:e6:7e:75:a3:3c:d1:d9:b3:1f:c1: fd:54:9c:06:c2:18:70:79:22:7f:b2:d9:b1:5c:eb:9c:a8:1c: d0:76:6c:30:67:d7:ef:1b:18:a5:51:77:f2:8b:cd:9d:17:0e: a8:d0:af:85:36:97:7c:31:c5:7e:29:1c:cb:97:be:12:24:d9: e7:aa:d9:e2:a4:6a:0a:db:ab:d8:94:8b:f0:0e:df:03:d1:17: a0:f3:2c:b5:1f:7c:dc:f0:aa:00:f0:5f:a7:84:60:48:41:21: a7:79:bb:14:dc:58:fa:71:8c:42:d4:87:66:1e:25:7c:a8:94: f8:c6:7a:ac:96:cd:13:34:76:a5:e1:f7:48:51:ce:f7:33:49: d8:ef:95:e5:9c:cd:7a:dc:71:73:80:a2:48:18:1c:75:c3:7b: 14:4f:eb:3a:08:94:a8:27:97:42:60:58:0e:8f:a9:66:1e:02: 17:0c:59:56:3c:a5:9f:cf:b6:2d:eb:a9:f6:a2:47:21:60:05: 04:25:b7:4c:22:a0:5d:0c:cf:a7:e4:8a:5c:71:45:32:5c:ba: 36:d5:85:d1:d8:66:24:2a:f0:82:5d:23:a2:1f:f5:ec:be:47: 8d:fe:78:73 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM3NzYxMTAvBgNVBAUTKEQ3QzRERTEzNjg2RjQzNTU4NTM2ODM5MTVFNTQxREVE NzUzQUVCM0EwHhcNMjUwNTMxMDYwNjIxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNhOWM1ZC1jMWZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyPrNitrK80FveOjdKNXAXlG9dkYHXtXhydbcTV3M2luypqhGgAnv3wY47BY4 rl5fuu4OwBVDbVV0WJPbbcnfrYbcv5l9QBcZTKS+6YFLwgSv47ytu27G0jteb8Sg dkjqhDaHSNLvB7oKXU0WLHdE38bYk/7CpYLl2RrZGM6VvSsaTqboilhVA7UCxcvb hExr7F3UZlCWZKEUWcRv+KWEF4mukGPp/XxPRwajuIvbprhBGPO2RWLgskWMEhjb 7PMJtlcg7JmDy5s6cnmJJJP4qw5nnPdHapknpFHaUaZyqspj3u//bAB+bW1piS5c IO2FsWgMgAioqDW2DqZ0AtXkRQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEN4hmVw 3BqKbASSaeUS9Bf9bqT/MB8GA1UdIwQYMBaAFNfE3hNob0NVhTaDkV5UHe11Ous6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Qzc3Ni85Mjk3QzQ1MjA4 NkIxMUVGODI2RDNCMTRDNEY5QUUwMi8xOFRlRTJodlExV0ZOb09SWGxRZDdYVTY2 em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzE4VGVFMmh2UTFXRk5vT1JYbFFkN1hVNjZ6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUM3NzYvOTI5N0M0NTIwODZCMTFFRjgyNkQzQjE0QzRGOUFFMDIvMzVBMTFDNjYw ODZDMTFFRkI4QkQ3ODE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnNmwwDQYJKoZIhvcNAQELBQADggEBAF3Trdavz9+SK4v+ l2mUF9+4874e5ZS1FDFs5n51ozzR2bMfwf1UnAbCGHB5In+y2bFc65yoHNB2bDBn 1+8bGKVRd/KLzZ0XDqjQr4U2l3wxxX4pHMuXvhIk2eeq2eKkagrbq9iUi/AO3wPR F6DzLLUffNzwqgDwX6eEYEhBIad5uxTcWPpxjELUh2YeJXyolPjGeqyWzRM0dqXh 90hRzvczSdjvleWczXrccXOAokgYHHXDexRP6zoIlKgnl0JgWA6PqWYeAhcMWVY8 pZ/Pti3rqfaiRyFgBQQlt0wioF0Mz6fkilxxRTJcujbVhdHYZiQq8IJdI6If9ey+ R43+eHM= -----END CERTIFICATE-----Generated at Mon Jun 2 07:20:50 2025 by rpki-client