$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3AF8/48297FEE02FE11EBB706643EC4F9AE02/3791632A030011EB909C3244C4F9AE02.roa File: 3791632A030011EB909C3244C4F9AE02.roa (raw, json) Hash identifier: dB3zmsBTd89CRpUWBbCoSsuPQSrK3XC84t7uk9x1cA8= Subject key identifier: C1:91:F1:A0:58:56:02:B2:56:A4:06:80:9F:B4:35:7E:DE:39:73:B2 Certificate issuer: /CN=A91F3AF8/serialNumber=530D29ADC0FB1CF2837D39BB86343486C1C71682 Certificate serial: 0776 Authority key identifier: 53:0D:29:AD:C0:FB:1C:F2:83:7D:39:BB:86:34:34:86:C1:C7:16:82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Uw0prcD7HPKDfTm7hjQ0hsHHFoI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3AF8/48297FEE02FE11EBB706643EC4F9AE02/3791632A030011EB909C3244C4F9AE02.roa Signing time: Fri 24 Jan 2025 21:11:06 +0000 ROA not before: Fri 24 Jan 2025 21:11:06 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 23838 IP address blocks: 103.254.194.0/23 maxlen: 23 103.254.194.0/24 maxlen: 24 103.254.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3AF8/48297FEE02FE11EBB706643EC4F9AE02/Uw0prcD7HPKDfTm7hjQ0hsHHFoI.crl rsync://rpki.apnic.net/member_repository/A91F3AF8/48297FEE02FE11EBB706643EC4F9AE02/Uw0prcD7HPKDfTm7hjQ0hsHHFoI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Uw0prcD7HPKDfTm7hjQ0hsHHFoI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 21:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1910 (0x776) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3AF8 Validity Not Before: Jan 24 21:11:06 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=679401e9-3027 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:6b:25:a0:b6:7d:92:0c:48:9a:7e:0a:2b:c9: fe:65:d4:8e:ad:69:10:c7:e1:5f:ab:e7:d7:da:7e: 23:91:36:81:94:57:2b:c6:87:8a:16:eb:ff:68:ba: 03:05:32:03:4d:9c:dc:ff:c3:fb:51:41:72:81:59: 19:d6:a7:27:d5:fd:7d:e4:f0:ec:c9:51:37:ee:94: c2:a3:c9:51:33:93:af:53:91:b7:d7:9e:d1:1d:9f: cc:b3:cb:7f:58:61:8b:b7:1d:06:a5:1b:ad:22:29: dc:af:75:65:2e:18:49:95:58:49:a2:6e:3d:25:dd: 63:3e:8c:24:4a:1b:46:ed:4c:e6:26:6a:c6:96:19: d5:77:27:17:5a:65:7d:27:b3:92:e3:bf:f8:2b:67: d2:48:41:fa:c4:a8:dc:5b:d4:f0:49:c9:1a:d4:29: 10:67:15:bd:87:0a:6a:9b:ed:69:24:2f:13:8e:da: 32:28:3b:79:22:e9:7a:ad:b1:10:24:83:93:cb:43: fb:68:ad:f7:59:da:72:b1:c3:bd:78:d2:34:6f:c2: 8d:28:8f:1a:4e:2d:f7:92:a4:64:81:38:4f:ab:0d: 41:1a:71:0e:9b:fd:4f:3b:97:81:2d:67:73:97:15: cb:2a:ab:a3:bc:3f:0b:c7:e6:37:18:1f:e7:4b:f3: 5f:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:91:F1:A0:58:56:02:B2:56:A4:06:80:9F:B4:35:7E:DE:39:73:B2 X509v3 Authority Key Identifier: keyid:53:0D:29:AD:C0:FB:1C:F2:83:7D:39:BB:86:34:34:86:C1:C7:16:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3AF8/48297FEE02FE11EBB706643EC4F9AE02/Uw0prcD7HPKDfTm7hjQ0hsHHFoI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Uw0prcD7HPKDfTm7hjQ0hsHHFoI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3AF8/48297FEE02FE11EBB706643EC4F9AE02/3791632A030011EB909C3244C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.254.194.0/23 Signature Algorithm: sha256WithRSAEncryption 5a:db:30:e6:bd:6c:2a:81:ce:0c:f4:02:29:05:e8:0d:b0:fe: e4:cf:0b:5a:64:ca:60:48:30:84:fd:de:a4:c1:7a:69:66:69: 37:ba:0e:a3:82:e1:3e:29:a5:05:8c:29:9c:f5:35:48:ee:9a: 81:fe:82:3a:bd:0a:f4:d1:9e:02:da:20:1f:96:4b:37:4b:52: a2:3a:cf:83:e2:61:fb:60:56:01:dd:91:d1:a0:96:e4:3f:d0: 6b:ff:f0:91:f8:9d:c3:0d:16:2b:f3:04:ca:b9:c0:cb:0f:c9: aa:23:c5:c7:69:1a:8d:d8:ca:28:eb:01:8a:e9:fa:91:92:e4: 54:bc:ed:24:d9:cb:53:0d:ae:4e:35:e8:9b:10:7e:40:a0:29: 76:4a:86:35:85:67:3f:e8:c1:99:6c:41:57:92:df:b0:a0:f9: 32:d2:ff:43:a4:e3:c6:ea:16:c4:7e:da:7b:b6:8d:d1:0b:ab: 28:05:34:4d:86:6c:26:94:14:77:bf:37:53:ed:2c:3a:2b:c0: 86:ce:b0:58:6e:c2:60:7f:51:a7:45:2d:ef:cf:bf:9c:79:f6: a8:e2:d5:0c:4b:4b:dd:ec:5b:a7:26:32:aa:66:c4:06:b5:0c: 08:dc:aa:21:c0:6e:f5:77:4f:e4:8c:a3:8b:7f:d3:e6:3d:18: 4a:2e:ef:d1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB3YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNBRjgxMTAvBgNVBAUTKDUzMEQyOUFEQzBGQjFDRjI4MzdEMzlCQjg2MzQzNDg2 QzFDNzE2ODIwHhcNMjUwMTI0MjExMTA2WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzk0MDFlOS0zMDI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzWsloLZ9kgxImn4KK8n+ZdSOrWkQx+Ffq+fX2n4jkTaBlFcrxoeKFuv/aLoD BTIDTZzc/8P7UUFygVkZ1qcn1f195PDsyVE37pTCo8lRM5OvU5G3157RHZ/Ms8t/ WGGLtx0GpRutIincr3VlLhhJlVhJom49Jd1jPowkShtG7UzmJmrGlhnVdycXWmV9 J7OS47/4K2fSSEH6xKjcW9TwScka1CkQZxW9hwpqm+1pJC8TjtoyKDt5Iul6rbEQ JIOTy0P7aK33WdpyscO9eNI0b8KNKI8aTi33kqRkgThPqw1BGnEOm/1PO5eBLWdz lxXLKqujvD8Lx+Y3GB/nS/Nf5QIDAQABo4IClTCCApEwHQYDVR0OBBYEFMGR8aBY VgKyVqQGgJ+0NX7eOXOyMB8GA1UdIwQYMBaAFFMNKa3A+xzyg305u4Y0NIbBxxaC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0FGOC80ODI5N0ZFRTAy RkUxMUVCQjcwNjY0M0VDNEY5QUUwMi9VdzBwcmNEN0hQS0RmVG03aGpRMGhzSEhG b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V3MHByY0Q3SFBLRGZUbTdoalEwaHNISEZvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjNBRjgvNDgyOTdGRUUwMkZFMTFFQkI3MDY2NDNFQzRGOUFFMDIvMzc5MTYzMkEw MzAwMTFFQjkwOUMzMjQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn/sIwDQYJKoZIhvcNAQELBQADggEBAFrbMOa9bCqBzgz0 AikF6A2w/uTPC1pkymBIMIT93qTBemlmaTe6DqOC4T4ppQWMKZz1NUjumoH+gjq9 CvTRngLaIB+WSzdLUqI6z4PiYftgVgHdkdGgluQ/0Gv/8JH4ncMNFivzBMq5wMsP yaojxcdpGo3YyijrAYrp+pGS5FS87STZy1MNrk416JsQfkCgKXZKhjWFZz/owZls QVeS37Cg+TLS/0Ok48bqFsR+2nu2jdELqygFNE2GbCaUFHe/N1PtLDorwIbOsFhu wmB/UadFLe/Pv5x59qji1QxLS93sW6cmMqpmxAa1DAjcqiHAbvV3T+SMo4t/0+Y9 GEou79E= -----END CERTIFICATE-----Generated at Thu Mar 13 21:49:55 2025 by rpki-client