$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1461/FCE9A680BDF511E28A904FB468865CEE/33B0CCAEBCE311EA953FBB5EC4F9AE02.roa File: 33B0CCAEBCE311EA953FBB5EC4F9AE02.roa (raw, json) Hash identifier: ErhPkGRbX8uOsiv8BWxLJU0CPTjQbpalIipsBEye//M= Subject key identifier: 87:AA:FF:74:99:C9:36:66:4B:C4:AC:4C:B2:A1:E5:C9:0F:41:6F:67 Certificate issuer: /CN=A91B1461/serialNumber=637ED141FFE025FD0519945CED48E74F8BD0F5C9 Certificate serial: 3172 Authority key identifier: 63:7E:D1:41:FF:E0:25:FD:05:19:94:5C:ED:48:E7:4F:8B:D0:F5:C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y37RQf_gJf0FGZRc7UjnT4vQ9ck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1461/FCE9A680BDF511E28A904FB468865CEE/33B0CCAEBCE311EA953FBB5EC4F9AE02.roa Signing time: Mon 02 Jun 2025 15:32:26 +0000 ROA not before: Mon 02 Jun 2025 15:32:26 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 9919 IP address blocks: 103.10.37.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1461/FCE9A680BDF511E28A904FB468865CEE/Y37RQf_gJf0FGZRc7UjnT4vQ9ck.crl rsync://rpki.apnic.net/member_repository/A91B1461/FCE9A680BDF511E28A904FB468865CEE/Y37RQf_gJf0FGZRc7UjnT4vQ9ck.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y37RQf_gJf0FGZRc7UjnT4vQ9ck.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 15:32:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12658 (0x3172) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1461, serialNumber=637ED141FFE025FD0519945CED48E74F8BD0F5C9 Validity Not Before: Jun 2 15:32:26 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=683dc40a-42c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e5:53:03:03:c8:35:86:bd:1a:33:2d:ce:4b: d9:d9:25:35:10:08:83:72:95:37:74:16:60:b4:81: 69:56:4c:59:d3:85:4d:84:6f:e6:74:13:7d:9c:89: 88:03:c9:08:76:60:37:a1:8b:71:f5:30:2c:42:79: 48:ce:9e:55:f2:6a:ae:7f:e1:6f:77:8c:28:53:98: e6:56:35:05:68:bb:44:0d:bc:4f:5f:f5:4f:e9:56: 14:31:9a:9a:bc:59:bc:ce:a1:ff:f9:a6:ca:25:d5: 29:59:83:80:28:f1:4c:e0:e4:db:35:79:ca:94:dc: 46:04:6f:3f:1c:7f:5d:81:0e:e5:3b:74:02:a1:43: f4:9a:02:47:0d:da:14:d6:47:4b:3e:a6:83:1c:fb: 8c:9a:88:19:02:fd:54:43:da:da:e8:c4:f6:82:24: 92:78:c8:b0:43:f5:29:87:e2:62:c2:60:de:fb:a5: 45:b2:2f:75:75:d4:bb:8d:47:96:b4:54:a2:38:76: 6d:89:e5:c8:8f:97:dd:34:26:70:db:25:30:77:c7: 7d:e1:6b:06:f4:98:90:3a:21:dc:fc:14:58:b1:a4: e4:4d:05:a0:72:ef:ac:fa:ef:58:81:32:12:af:db: 3b:ac:34:77:2d:86:95:82:ca:00:0e:4a:82:92:dd: 90:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:AA:FF:74:99:C9:36:66:4B:C4:AC:4C:B2:A1:E5:C9:0F:41:6F:67 X509v3 Authority Key Identifier: keyid:63:7E:D1:41:FF:E0:25:FD:05:19:94:5C:ED:48:E7:4F:8B:D0:F5:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1461/FCE9A680BDF511E28A904FB468865CEE/Y37RQf_gJf0FGZRc7UjnT4vQ9ck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y37RQf_gJf0FGZRc7UjnT4vQ9ck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1461/FCE9A680BDF511E28A904FB468865CEE/33B0CCAEBCE311EA953FBB5EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.10.37.0/24 Signature Algorithm: sha256WithRSAEncryption af:9f:ea:02:fe:59:a1:90:99:c8:b2:88:0d:78:34:0d:4d:90: 87:2f:3b:ac:72:0b:59:00:34:35:70:5e:60:52:c2:db:df:78: 58:98:50:cc:a3:45:dd:f9:8d:af:ad:85:b6:da:db:70:a4:1b: 0d:4d:50:05:f4:79:5a:6a:7d:33:91:93:04:40:3e:3c:ca:e2: 45:aa:e7:b1:bb:26:21:99:00:d6:b2:a9:49:b4:fe:a1:5e:ce: a5:86:cd:3c:23:36:29:96:ba:46:0f:ef:98:84:78:df:d9:57: 24:90:18:bd:91:43:b6:b8:bd:86:67:5d:fe:02:07:f6:4d:0c: da:d2:3b:fe:49:23:c0:e5:b0:1c:b7:9d:f2:25:29:c8:cb:a0: e9:e2:40:df:86:e8:bd:ae:de:39:36:b6:d1:18:f3:0e:77:da: d6:c4:e9:ed:f0:80:e0:d4:e5:76:a5:5c:33:b8:52:71:cf:12: ce:51:e6:83:a5:b9:d9:4e:b3:cd:28:9e:94:74:33:38:2d:a0: e8:37:b9:90:ef:d8:9b:72:47:1d:44:32:7f:e9:6a:18:8c:a6: 9e:8b:fe:00:42:3c:fd:0f:0f:dc:8c:5b:8d:8d:3b:29:b2:c2: ff:fd:3d:80:c5:f1:7b:5b:d9:c3:1e:56:79:8e:59:63:16:b4: 2e:8f:e7:16 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICMXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE0NjExMTAvBgNVBAUTKDYzN0VEMTQxRkZFMDI1RkQwNTE5OTQ1Q0VENDhFNzRG OEJEMEY1QzkwHhcNMjUwNjAyMTUzMjI2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNkYzQwYS00MmM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0uVTAwPINYa9GjMtzkvZ2SU1EAiDcpU3dBZgtIFpVkxZ04VNhG/mdBN9nImI A8kIdmA3oYtx9TAsQnlIzp5V8mquf+Fvd4woU5jmVjUFaLtEDbxPX/VP6VYUMZqa vFm8zqH/+abKJdUpWYOAKPFM4OTbNXnKlNxGBG8/HH9dgQ7lO3QCoUP0mgJHDdoU 1kdLPqaDHPuMmogZAv1UQ9ra6MT2giSSeMiwQ/Uph+JiwmDe+6VFsi91ddS7jUeW tFSiOHZtieXIj5fdNCZw2yUwd8d94WsG9JiQOiHc/BRYsaTkTQWgcu+s+u9YgTIS r9s7rDR3LYaVgsoADkqCkt2QOQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIeq/3SZ yTZmS8SsTLKh5ckPQW9nMB8GA1UdIwQYMBaAFGN+0UH/4CX9BRmUXO1I50+L0PXJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTQ2MS9GQ0U5QTY4MEJE RjUxMUUyOEE5MDRGQjQ2ODg2NUNFRS9ZMzdSUWZfZ0pmMEZHWlJjN1VqblQ0dlE5 Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kzN1JRZl9nSmYwRkdaUmM3VWpuVDR2UTljay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjE0NjEvRkNFOUE2ODBCREY1MTFFMjhBOTA0RkI0Njg4NjVDRUUvMzNCMENDQUVC Q0UzMTFFQTk1M0ZCQjVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnCiUwDQYJKoZIhvcNAQELBQADggEBAK+f6gL+WaGQmciy iA14NA1NkIcvO6xyC1kANDVwXmBSwtvfeFiYUMyjRd35ja+thbba23CkGw1NUAX0 eVpqfTORkwRAPjzK4kWq57G7JiGZANayqUm0/qFezqWGzTwjNimWukYP75iEeN/Z VySQGL2RQ7a4vYZnXf4CB/ZNDNrSO/5JI8DlsBy3nfIlKcjLoOniQN+G6L2u3jk2 ttEY8w532tbE6e3wgODU5XalXDO4UnHPEs5R5oOludlOs80onpR0MzgtoOg3uZDv 2JtyRx1EMn/pahiMpp6L/gBCPP0PD9yMW42NOymywv/9PYDF8Xtb2cMeVnmOWWMW tC6P5xY= -----END CERTIFICATE-----Generated at Wed Jun 4 00:00:25 2025 by rpki-client