$ rpki-client -vvf rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/3E4B01008BDA11EFA4A11684C4F9AE02.roa File: 3E4B01008BDA11EFA4A11684C4F9AE02.roa (raw, json) Hash identifier: m+cTvWrh74cJIwtxb5YNKAjFtv2dZKfs+BjQs+Q2hMI= Subject key identifier: DC:2C:34:72:A1:84:B1:B9:62:7B:3D:C2:6F:C4:10:D0:51:C4:25:34 Certificate issuer: /CN=A91B37C4/serialNumber=B276F15A6D4A97C48191E92BD1661F368BEF21E4 Certificate serial: 7B Authority key identifier: B2:76:F1:5A:6D:4A:97:C4:81:91:E9:2B:D1:66:1F:36:8B:EF:21:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/snbxWm1Kl8SBkekr0WYfNovvIeQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/3E4B01008BDA11EFA4A11684C4F9AE02.roa Signing time: Sun 25 May 2025 06:28:44 +0000 ROA not before: Sun 25 May 2025 06:28:44 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 137186 IP address blocks: 103.166.22.0/23 maxlen: 23 103.166.22.0/24 maxlen: 24 103.166.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.crl rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/snbxWm1Kl8SBkekr0WYfNovvIeQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 06:33:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 123 (0x7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B37C4, serialNumber=B276F15A6D4A97C48191E92BD1661F368BEF21E4 Validity Not Before: May 25 06:28:44 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6832b89c-bb24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:df:5f:38:60:a5:8a:fe:c5:b2:0b:69:5b:dd: 9f:b9:f9:17:af:f6:dd:32:26:f4:37:6e:3b:a6:f2: fc:fe:60:fc:45:84:70:5e:13:f4:44:43:81:b1:0f: 3c:c4:08:4a:3d:ec:a3:00:cc:c0:41:eb:7a:4e:fd: 56:b5:de:49:f8:55:23:80:a1:d2:42:6b:f3:9a:14: 1d:cf:16:5a:8e:bc:b8:27:c4:77:8d:ac:59:d0:62: c2:1b:cd:dd:43:5d:e1:3f:76:46:c8:84:e6:be:95: aa:2b:e3:e8:bb:0d:77:42:72:08:03:84:ae:03:9d: 0b:2d:60:d3:da:d2:fe:32:a3:14:bb:1f:5d:8f:ae: b2:42:d8:c2:09:a0:ab:78:72:20:9d:86:49:aa:b7: 77:1a:03:fc:c1:88:46:1b:44:c0:a4:b9:ff:c6:71: 63:28:0d:fa:19:56:4a:ec:f7:db:e2:0c:ae:e6:a2: 7e:c4:0a:99:a8:f9:2e:41:de:1c:2e:2d:2c:6b:ec: 8d:44:4d:3c:b3:9a:97:91:5e:48:27:f4:ef:3d:d9: b3:d1:38:c7:a2:6e:98:33:7a:b0:09:c7:36:96:9e: 3a:0d:07:05:e9:63:51:4b:1d:c7:be:02:30:b8:e8: d5:9c:6d:62:b2:c1:9d:57:4e:52:a2:95:6b:4d:3b: 94:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:2C:34:72:A1:84:B1:B9:62:7B:3D:C2:6F:C4:10:D0:51:C4:25:34 X509v3 Authority Key Identifier: keyid:B2:76:F1:5A:6D:4A:97:C4:81:91:E9:2B:D1:66:1F:36:8B:EF:21:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/snbxWm1Kl8SBkekr0WYfNovvIeQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/3E4B01008BDA11EFA4A11684C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.166.22.0/23 Signature Algorithm: sha256WithRSAEncryption 33:ca:93:d4:a3:40:aa:0f:74:50:60:df:75:9e:d2:58:6f:82: c8:2f:c3:6e:72:e7:5b:a2:91:55:88:6c:25:18:83:6e:08:00: 52:49:1d:b3:0c:d9:b9:a0:45:38:f4:36:65:f6:69:da:e8:fa: 23:af:d4:60:c7:62:4f:26:43:95:da:64:fd:3a:15:74:52:91: 89:80:7c:58:a0:7d:39:e5:56:ab:48:2c:a5:d5:20:ec:69:7b: d9:76:01:dd:79:a3:f9:87:3c:f6:bd:80:01:df:49:92:c6:08: ff:c0:18:ff:d9:13:63:02:8f:a1:20:b1:35:70:b7:8b:a2:da: 6b:00:00:91:ec:7f:f7:32:00:1d:19:f2:59:cc:0b:59:6b:bf: 9d:64:72:eb:f4:d7:3c:c6:05:cd:b2:ec:81:14:0c:99:20:d1: 07:02:d0:bb:2f:b8:ff:4c:93:ad:b8:e3:48:b8:78:d2:9f:51: 8d:b3:34:83:34:dc:72:44:33:72:c7:6c:bc:40:50:22:89:ed: a7:c8:bc:88:0d:0a:45:a3:23:18:2b:63:5a:79:34:81:9b:c1: 19:63:0e:8d:44:2e:16:5c:59:79:ce:79:a4:50:62:ad:84:3c: ef:59:51:4c:a8:e4:1e:1e:f8:01:7d:f6:82:7c:ce:e1:f0:49: df:fd:e1:ae -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBezANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MzdDNDExMC8GA1UEBRMoQjI3NkYxNUE2RDRBOTdDNDgxOTFFOTJCRDE2NjFGMzY4 QkVGMjFFNDAeFw0yNTA1MjUwNjI4NDRaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MzJiODljLWJiMjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDj3184YKWK/sWyC2lb3Z+5+Rev9t0yJvQ3bjum8vz+YPxFhHBeE/REQ4GxDzzE CEo97KMAzMBB63pO/Va13kn4VSOAodJCa/OaFB3PFlqOvLgnxHeNrFnQYsIbzd1D XeE/dkbIhOa+laor4+i7DXdCcggDhK4DnQstYNPa0v4yoxS7H12PrrJC2MIJoKt4 ciCdhkmqt3caA/zBiEYbRMCkuf/GcWMoDfoZVkrs99viDK7mon7ECpmo+S5B3hwu LSxr7I1ETTyzmpeRXkgn9O892bPROMeibpgzerAJxzaWnjoNBwXpY1FLHce+AjC4 6NWcbWKywZ1XTlKilWtNO5QXAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU3Cw0cqGE sbliez3Cb8QQ0FHEJTQwHwYDVR0jBBgwFoAUsnbxWm1Kl8SBkekr0WYfNovvIeQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIzN0M0L0EyQUJBNzJDOEJE OTExRUY5Rjk2QkE0RUM0RjlBRTAyL3NuYnhXbTFLbDhTQmtla3IwV1lmTm92dkll US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc25ieFdtMUtsOFNCa2VrcjBXWWZOb3Z2SWVRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzdDNC9BMkFCQTcyQzhCRDkxMUVGOUY5NkJBNEVDNEY5QUUwMi8zRTRCMDEwMDhC REExMUVGQTRBMTE2ODRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWemFjANBgkqhkiG9w0BAQsFAAOCAQEAM8qT1KNAqg90UGDf dZ7SWG+CyC/DbnLnW6KRVYhsJRiDbggAUkkdswzZuaBFOPQ2ZfZp2uj6I6/UYMdi TyZDldpk/ToVdFKRiYB8WKB9OeVWq0gspdUg7Gl72XYB3Xmj+Yc89r2AAd9JksYI /8AY/9kTYwKPoSCxNXC3i6LaawAAkex/9zIAHRnyWcwLWWu/nWRy6/TXPMYFzbLs gRQMmSDRBwLQuy+4/0yTrbjjSLh40p9RjbM0gzTcckQzcsdsvEBQIontp8i8iA0K RaMjGCtjWnk0gZvBGWMOjUQuFlxZec55pFBirYQ871lRTKjkHh74AX32gnzO4fBJ 3/3hrg== -----END CERTIFICATE-----Generated at Tue Jun 3 23:36:54 2025 by rpki-client