$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/3285ADDAA9D911EF9F30DA47C4F9AE02.roa File: 3285ADDAA9D911EF9F30DA47C4F9AE02.roa (raw, json) Hash identifier: 8EM5Tdb1aWYr9WLpldVjADU+t0zk8U3aJcreE19Ronc= Subject key identifier: 41:DF:04:73:60:C4:EA:1E:F8:56:B8:BD:95:49:E8:4E:DB:FA:11:00 Certificate issuer: /CN=A91F9353/serialNumber=ACD047D0D88E2657E12CF91301C160F1D3CD2F33 Certificate serial: F5 Authority key identifier: AC:D0:47:D0:D8:8E:26:57:E1:2C:F9:13:01:C1:60:F1:D3:CD:2F:33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNBH0NiOJlfhLPkTAcFg8dPNLzM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/3285ADDAA9D911EF9F30DA47C4F9AE02.roa Signing time: Sat 17 May 2025 05:56:23 +0000 ROA not before: Sat 17 May 2025 05:56:23 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 152698 IP address blocks: 103.14.23.0/24 maxlen: 24 2001:df3:ad40::/48 maxlen: 48 2001:df3:ad41::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/rNBH0NiOJlfhLPkTAcFg8dPNLzM.crl rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/rNBH0NiOJlfhLPkTAcFg8dPNLzM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNBH0NiOJlfhLPkTAcFg8dPNLzM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 05:23:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 245 (0xf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9353, serialNumber=ACD047D0D88E2657E12CF91301C160F1D3CD2F33 Validity Not Before: May 17 05:56:23 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68282507-e32b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:af:85:03:31:37:f5:ad:b9:26:59:09:c0:18: 6b:6a:69:f2:6f:f4:5a:a8:bc:e8:fb:23:24:4f:50: 76:47:86:e6:7c:39:c4:b9:28:92:89:d9:3d:f0:b4: 2a:bf:bc:fd:ca:c1:14:b5:25:1c:67:64:81:d8:c3: 63:45:2a:63:be:a9:a0:27:d8:39:f9:bf:4c:e9:a0: 8d:0f:1c:d5:36:e1:5a:26:3f:8f:47:13:94:ad:ce: e4:d2:bb:1c:c5:a3:4a:86:65:d5:fc:4d:9e:99:dd: bf:88:23:94:57:48:ba:97:a3:f7:06:ca:bf:dc:23: ce:a2:35:60:66:d7:83:c6:f7:da:4f:3f:d6:60:e2: cb:d2:ed:6c:99:dd:f5:a7:16:30:c1:5f:bf:27:47: 9f:9b:81:41:7b:ec:02:49:f6:56:11:c4:11:15:a2: c7:5d:f4:26:d8:2a:4b:c1:c3:f9:8b:e5:f9:80:87: 86:9e:4f:fc:b9:d9:18:7b:1f:7b:fa:e4:57:e0:83: db:d7:25:82:39:47:aa:b5:8a:b8:05:af:ae:37:63: 27:63:7e:68:a6:2b:97:9f:b9:5e:e6:1d:a7:33:a5: f8:76:c1:f5:b6:24:3a:1c:84:ab:0b:32:d3:4d:fe: e5:c9:e2:f0:31:c2:83:fe:2a:22:89:cd:da:b8:0a: cd:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:DF:04:73:60:C4:EA:1E:F8:56:B8:BD:95:49:E8:4E:DB:FA:11:00 X509v3 Authority Key Identifier: keyid:AC:D0:47:D0:D8:8E:26:57:E1:2C:F9:13:01:C1:60:F1:D3:CD:2F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/rNBH0NiOJlfhLPkTAcFg8dPNLzM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNBH0NiOJlfhLPkTAcFg8dPNLzM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/3285ADDAA9D911EF9F30DA47C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.14.23.0/24 IPv6: 2001:df3:ad40::/47 Signature Algorithm: sha256WithRSAEncryption 56:0e:15:b0:d8:76:04:1f:43:c8:a5:fa:56:c1:e0:be:d8:fa: 8e:57:6f:8e:03:46:ba:49:f3:a5:d6:53:7c:b8:1e:87:12:6f: e1:be:05:26:97:49:63:32:a5:f0:9a:8a:c5:5e:87:24:b9:c9: cc:f6:3c:0e:67:61:98:5f:f7:f5:be:82:67:c0:81:9a:66:c3: 8e:9b:ca:56:e2:1d:91:3c:79:96:e3:6e:20:88:20:4b:a7:52: 3c:bf:28:9e:93:a8:37:1b:56:dc:56:79:48:28:0d:02:b4:99: 11:e0:dd:30:0d:29:8b:6d:2a:70:e0:fa:bd:f3:ce:47:3a:33: 9b:fd:94:c4:9d:60:d2:eb:dc:ee:5f:5d:c6:0a:00:b4:6c:fa: 17:7d:2f:90:9f:05:56:b1:09:7a:29:24:4a:57:eb:df:3c:7d: f7:4c:9e:29:9e:1b:73:cd:51:ba:82:29:7e:2e:ce:85:c4:db: f3:19:2a:ed:73:7e:c9:3c:f8:37:2f:c9:fc:27:f5:9b:e2:1a: 1a:d1:f2:02:56:be:b4:6a:64:d7:99:b8:39:4f:75:8d:c0:2a: ee:c6:26:3e:10:03:6e:29:e8:af:c2:8a:7e:77:5a:ed:41:fe: 5a:e1:6f:db:ff:2a:75:cf:2b:bc:15:5b:b0:e2:3b:f8:d7:8a: b6:75:a2:ea -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAPUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjkzNTMxMTAvBgNVBAUTKEFDRDA0N0QwRDg4RTI2NTdFMTJDRjkxMzAxQzE2MEYx RDNDRDJGMzMwHhcNMjUwNTE3MDU1NjIzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI4MjUwNy1lMzJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAva+FAzE39a25JlkJwBhramnyb/RaqLzo+yMkT1B2R4bmfDnEuSiSidk98LQq v7z9ysEUtSUcZ2SB2MNjRSpjvqmgJ9g5+b9M6aCNDxzVNuFaJj+PRxOUrc7k0rsc xaNKhmXV/E2emd2/iCOUV0i6l6P3Bsq/3CPOojVgZteDxvfaTz/WYOLL0u1smd31 pxYwwV+/J0efm4FBe+wCSfZWEcQRFaLHXfQm2CpLwcP5i+X5gIeGnk/8udkYex97 +uRX4IPb1yWCOUeqtYq4Ba+uN2MnY35opiuXn7le5h2nM6X4dsH1tiQ6HISrCzLT Tf7lyeLwMcKD/ioiic3auArNPwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFEHfBHNg xOoe+Fa4vZVJ6E7b+hEAMB8GA1UdIwQYMBaAFKzQR9DYjiZX4Sz5EwHBYPHTzS8z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOTM1My8wODc1RTY0ODA1 QzYxMUVGODk2MjBBMjZDNEY5QUUwMi9yTkJIME5pT0psZmhMUGtUQWNGZzhkUE5M ek0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JOQkgwTmlPSmxmaExQa1RBY0ZnOGRQTkx6TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjkzNTMvMDg3NUU2NDgwNUM2MTFFRjg5NjIwQTI2QzRGOUFFMDIvMzI4NUFEREFB OUQ5MTFFRjlGMzBEQTQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnDhcwDwQCAAIwCQMHASABDfOtQDANBgkqhkiG9w0BAQsF AAOCAQEAVg4VsNh2BB9DyKX6VsHgvtj6jldvjgNGuknzpdZTfLgehxJv4b4FJpdJ YzKl8JqKxV6HJLnJzPY8DmdhmF/39b6CZ8CBmmbDjpvKVuIdkTx5luNuIIggS6dS PL8onpOoNxtW3FZ5SCgNArSZEeDdMA0pi20qcOD6vfPORzozm/2UxJ1g0uvc7l9d xgoAtGz6F30vkJ8FVrEJeikkSlfr3zx990yeKZ4bc81RuoIpfi7OhcTb8xkq7XN+ yTz4Ny/J/Cf1m+IaGtHyAla+tGpk15m4OU91jcAq7sYmPhADbinor8KKfnda7UH+ WuFv2/8qdc8rvBVbsOI7+NeKtnWi6g== -----END CERTIFICATE-----Generated at Mon Jun 2 07:12:39 2025 by rpki-client