$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/3C3F21BAD6F011EE9B38B67DC4F9AE02.roa File: 3C3F21BAD6F011EE9B38B67DC4F9AE02.roa (raw, json) Hash identifier: w/43LlQIYPABEvYlfxDIIPmu3emguiTlymMjfBLzQJU= Subject key identifier: 67:CF:B9:BD:F6:51:24:9A:92:22:5A:F3:B6:DF:7C:D9:96:DC:AA:9E Certificate issuer: /CN=A91B3CA4/serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Certificate serial: 0857 Authority key identifier: B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/3C3F21BAD6F011EE9B38B67DC4F9AE02.roa Signing time: Thu 22 May 2025 20:57:58 +0000 ROA not before: Thu 22 May 2025 20:57:58 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 150774 IP address blocks: 103.138.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:56:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2135 (0x857) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3CA4, serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Validity Not Before: May 22 20:57:58 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682f8fd6-a5e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:70:9a:2b:c6:29:8b:78:66:e0:b9:19:f5:32: 44:68:93:8f:3c:cc:a5:10:f0:0d:34:8f:8b:1e:49: a4:b3:9a:c9:a8:ae:75:bf:ea:ed:4b:81:09:14:f8: 7e:99:49:d6:4f:48:56:07:f8:62:be:04:1a:1c:da: 4e:9e:32:e5:b3:ff:48:e2:3a:f6:bb:e9:d3:56:70: a9:ec:ff:0d:53:17:cb:a6:bb:c5:98:e2:e0:9a:b2: 4a:9e:ba:49:f2:69:34:e9:c5:ec:ba:6c:ec:c1:f2: a7:f9:88:a3:6e:af:57:98:59:65:3d:29:ab:a1:03: 9c:44:4d:3f:a4:86:9d:06:37:25:01:88:32:91:1c: a5:2f:93:1a:6c:d3:dc:a2:00:bd:73:b8:dc:a5:88: c0:b5:7f:ec:10:b2:d5:72:86:8d:42:2d:0b:31:73: 5a:cd:33:dd:8c:2c:54:b9:8d:b6:42:6e:79:f7:c6: f4:f0:bc:18:6e:24:96:5f:80:c9:ae:6c:41:d1:66: 36:02:71:1a:42:a5:13:e7:39:c0:4b:74:35:ad:c8: 94:d5:9f:b5:79:07:4f:3e:14:39:1f:0b:19:7c:36: d1:90:93:e3:c6:f6:ea:d4:ab:9d:bb:0e:e5:46:e3: 17:75:6a:fe:40:47:7e:64:b4:8c:35:4f:a0:13:44: b8:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:CF:B9:BD:F6:51:24:9A:92:22:5A:F3:B6:DF:7C:D9:96:DC:AA:9E X509v3 Authority Key Identifier: keyid:B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/3C3F21BAD6F011EE9B38B67DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.215.0/24 Signature Algorithm: sha256WithRSAEncryption 48:51:56:7f:c7:08:23:61:da:3c:0d:53:3b:e8:87:8d:e0:1e: 15:48:07:cf:08:ab:f0:fd:d2:d3:d5:84:99:00:55:c1:3c:83: d3:a6:3c:30:5c:3b:01:4a:8c:21:be:55:10:9a:b0:c0:cb:cf: 47:45:fc:64:ff:88:38:9e:31:8e:c5:c0:eb:5b:22:b6:f9:e8: 44:a5:a1:18:b6:d0:5c:fc:c4:37:3d:ea:e3:e2:9c:28:ad:64: d4:1c:72:7e:2b:41:d1:57:d3:8e:0e:ed:b3:43:13:6b:53:aa: 7e:44:73:e2:f2:e6:79:26:1a:62:c2:db:7a:85:9c:79:72:d5: 5a:e1:12:eb:6b:01:2d:d0:06:29:46:88:26:bc:82:51:42:9d: 76:71:cb:21:bf:d6:ff:cd:49:39:fd:df:38:04:2a:ed:63:2e: 2e:4a:a6:25:06:97:ab:8b:8a:80:2a:df:51:81:c2:f4:ff:94: 69:fc:ed:70:c2:f2:b5:a2:10:2a:0c:db:13:dd:43:31:7e:d7: c4:38:b2:0f:c9:82:29:92:70:57:06:c3:21:54:2c:e1:b3:a0: d0:2d:96:e3:e3:68:22:aa:d6:a2:10:79:4b:e9:35:3b:3d:06: a2:a5:d9:d8:5c:37:3b:bf:6f:d4:35:a0:60:a6:86:51:a7:4b: b2:19:e9:2a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCFcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNDQTQxMTAvBgNVBAUTKEI1OEQyOUY3QjgxMDdGMTU4NUI1RkZFNzBDNTAyQzZD OEY1RDMzMDIwHhcNMjUwNTIyMjA1NzU4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmOGZkNi1hNWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0nCaK8Ypi3hm4LkZ9TJEaJOPPMylEPANNI+LHkmks5rJqK51v+rtS4EJFPh+ mUnWT0hWB/hivgQaHNpOnjLls/9I4jr2u+nTVnCp7P8NUxfLprvFmOLgmrJKnrpJ 8mk06cXsumzswfKn+Yijbq9XmFllPSmroQOcRE0/pIadBjclAYgykRylL5MabNPc ogC9c7jcpYjAtX/sELLVcoaNQi0LMXNazTPdjCxUuY22Qm5598b08LwYbiSWX4DJ rmxB0WY2AnEaQqUT5znAS3Q1rciU1Z+1eQdPPhQ5HwsZfDbRkJPjxvbq1Kuduw7l RuMXdWr+QEd+ZLSMNU+gE0S4SwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGfPub32 USSakiJa87bffNmW3KqeMB8GA1UdIwQYMBaAFLWNKfe4EH8VhbX/5wxQLGyPXTMC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0NBNC8xNUY2OEI1Q0NG MTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4V0Z0Zl9uREZBc2JJOWRN d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RZMHA5N2dRZnhXRnRmX25ERkFzYkk5ZE13SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjNDQTQvMTVGNjhCNUNDRjE5MTFFQUFFRjYwQjFFQzRGOUFFMDIvM0MzRjIxQkFE NkYwMTFFRTlCMzhCNjdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnitcwDQYJKoZIhvcNAQELBQADggEBAEhRVn/HCCNh2jwN Uzvoh43gHhVIB88Iq/D90tPVhJkAVcE8g9OmPDBcOwFKjCG+VRCasMDLz0dF/GT/ iDieMY7FwOtbIrb56ESloRi20Fz8xDc96uPinCitZNQccn4rQdFX044O7bNDE2tT qn5Ec+Ly5nkmGmLC23qFnHly1VrhEutrAS3QBilGiCa8glFCnXZxyyG/1v/NSTn9 3zgEKu1jLi5KpiUGl6uLioAq31GBwvT/lGn87XDC8rWiECoM2xPdQzF+18Q4sg/J gimScFcGwyFULOGzoNAtluPjaCKq1qIQeUvpNTs9BqKl2dhcNzu/b9Q1oGCmhlGn S7IZ6So= -----END CERTIFICATE-----Generated at Tue Jun 3 23:59:29 2025 by rpki-client