$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDA00/7DD750DC1CE211EB9AAB4977C4F9AE02/3E8742D63F5911F09438792BC4F9AE02.roa File: 3E8742D63F5911F09438792BC4F9AE02.roa (raw, json) Hash identifier: KRqaCDUz3xDXSJIF8H5ZMsARRFjF1KlUr9/szS6ztXQ= Subject key identifier: DD:54:23:61:09:A1:B0:04:6F:EA:B5:A6:19:F1:19:5A:54:A2:EC:A1 Certificate issuer: /CN=A91FDA00/serialNumber=B1EEC59ED561A0DB3D7D40C30AF2AB6FED297A98 Certificate serial: 077F Authority key identifier: B1:EE:C5:9E:D5:61:A0:DB:3D:7D:40:C3:0A:F2:AB:6F:ED:29:7A:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/se7FntVhoNs9fUDDCvKrb-0pepg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDA00/7DD750DC1CE211EB9AAB4977C4F9AE02/3E8742D63F5911F09438792BC4F9AE02.roa Signing time: Mon 02 Jun 2025 02:28:18 +0000 ROA not before: Mon 02 Jun 2025 02:28:18 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 834 IP address blocks: 103.158.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDA00/7DD750DC1CE211EB9AAB4977C4F9AE02/se7FntVhoNs9fUDDCvKrb-0pepg.crl rsync://rpki.apnic.net/member_repository/A91FDA00/7DD750DC1CE211EB9AAB4977C4F9AE02/se7FntVhoNs9fUDDCvKrb-0pepg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/se7FntVhoNs9fUDDCvKrb-0pepg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 21:27:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1919 (0x77f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDA00, serialNumber=B1EEC59ED561A0DB3D7D40C30AF2AB6FED297A98 Validity Not Before: Jun 2 02:28:18 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=683d0c42-3ead Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:f5:dd:07:c3:0e:5a:6d:08:4f:c9:81:cb:ac: e9:a0:47:e6:26:d0:03:4e:57:75:12:8f:77:f2:07: 84:81:15:16:4d:88:c3:df:f4:eb:b8:99:62:67:ea: d8:6d:bd:a3:eb:72:db:c7:72:a3:4e:18:ba:64:6d: c4:ff:04:d0:ad:36:a3:1d:31:55:6a:a1:ce:d1:a8: d7:4e:cb:20:e1:0d:b9:40:db:89:7f:11:5a:48:12: 6a:76:f7:9b:88:0a:0d:fd:6d:b7:8e:09:39:ce:1f: 14:45:0c:1d:5f:3f:d0:1e:c6:98:5c:70:94:24:7c: 73:44:60:25:f3:cd:40:74:e0:be:3c:5e:fe:4f:70: 1b:d8:92:21:a9:bb:12:92:e2:51:d5:9d:9f:da:a0: a9:33:d7:22:64:19:de:43:8a:30:45:a8:ad:73:dc: b1:52:96:74:da:d2:c4:b0:17:67:4b:ca:82:4c:b2: 86:14:7e:be:74:2e:5d:1b:55:68:e8:47:14:15:12: 9a:cc:e4:17:ba:d1:2d:5a:1d:aa:1d:7d:59:62:d7: 3a:0b:48:fc:63:cc:79:b9:8e:e1:34:b6:fc:4c:0e: 8b:69:37:75:bd:05:1f:92:e4:ea:77:fe:cb:4c:83: c2:81:4c:23:85:57:fb:a9:f3:0c:96:ad:3a:21:60: 40:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:54:23:61:09:A1:B0:04:6F:EA:B5:A6:19:F1:19:5A:54:A2:EC:A1 X509v3 Authority Key Identifier: keyid:B1:EE:C5:9E:D5:61:A0:DB:3D:7D:40:C3:0A:F2:AB:6F:ED:29:7A:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDA00/7DD750DC1CE211EB9AAB4977C4F9AE02/se7FntVhoNs9fUDDCvKrb-0pepg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/se7FntVhoNs9fUDDCvKrb-0pepg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDA00/7DD750DC1CE211EB9AAB4977C4F9AE02/3E8742D63F5911F09438792BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.158.5.0/24 Signature Algorithm: sha256WithRSAEncryption ca:f5:c8:34:15:4f:1d:db:ad:ed:0b:ad:50:73:a0:2b:b6:69: 25:91:b2:64:82:67:54:a9:cb:79:00:60:55:7c:ad:26:ff:7d: 22:09:c2:4e:08:74:e8:72:f8:05:43:9e:5b:01:d9:1c:50:de: 11:25:04:03:11:85:23:0e:4c:72:c1:cb:40:1f:79:9c:be:2a: 07:b1:06:40:a1:66:e1:fc:83:8a:0f:18:2b:ac:82:73:f0:ee: 29:b5:4d:6d:3d:9b:32:5f:db:fb:94:26:2b:93:d0:1a:90:2c: 46:55:38:ca:ee:89:93:30:b4:c3:63:03:02:44:4e:70:49:f9: 2f:07:ce:6f:3b:7d:b7:ea:4b:aa:5b:47:e5:18:37:b5:62:bc: 3b:af:2f:b6:ef:28:1e:99:a5:eb:c7:7a:95:5b:4e:75:a2:92: 64:eb:77:48:f3:92:66:74:fe:49:36:66:d9:23:ce:00:0d:c6: 8f:57:c8:1b:c0:19:d7:87:65:64:f5:4f:ed:cc:ed:74:5b:42: 6c:bc:4e:e4:1c:5d:6a:54:d7:23:58:9c:4d:38:e8:ef:44:05: 8b:24:31:be:1f:ec:ec:3d:12:e8:20:75:a6:1c:c3:55:79:8a: 21:90:d1:da:25:94:b4:ff:4f:fa:25:00:16:24:89:75:76:7b: 11:4c:1a:a8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB38wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRBMDAxMTAvBgNVBAUTKEIxRUVDNTlFRDU2MUEwREIzRDdENDBDMzBBRjJBQjZG RUQyOTdBOTgwHhcNMjUwNjAyMDIyODE4WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNkMGM0Mi0zZWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyPXdB8MOWm0IT8mBy6zpoEfmJtADTld1Eo938geEgRUWTYjD3/TruJliZ+rY bb2j63Lbx3KjThi6ZG3E/wTQrTajHTFVaqHO0ajXTssg4Q25QNuJfxFaSBJqdveb iAoN/W23jgk5zh8URQwdXz/QHsaYXHCUJHxzRGAl881AdOC+PF7+T3Ab2JIhqbsS kuJR1Z2f2qCpM9ciZBneQ4owRaitc9yxUpZ02tLEsBdnS8qCTLKGFH6+dC5dG1Vo 6EcUFRKazOQXutEtWh2qHX1ZYtc6C0j8Y8x5uY7hNLb8TA6LaTd1vQUfkuTqd/7L TIPCgUwjhVf7qfMMlq06IWBAzwIDAQABo4IClTCCApEwHQYDVR0OBBYEFN1UI2EJ obAEb+q1phnxGVpUouyhMB8GA1UdIwQYMBaAFLHuxZ7VYaDbPX1Awwryq2/tKXqY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREEwMC83REQ3NTBEQzFD RTIxMUVCOUFBQjQ5NzdDNEY5QUUwMi9zZTdGbnRWaG9OczlmVUREQ3ZLcmItMHBl cGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NlN0ZudFZob05zOWZVRERDdktyYi0wcGVwZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkRBMDAvN0RENzUwREMxQ0UyMTFFQjlBQUI0OTc3QzRGOUFFMDIvM0U4NzQyRDYz RjU5MTFGMDk0Mzg3OTJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnngUwDQYJKoZIhvcNAQELBQADggEBAMr1yDQVTx3bre0L rVBzoCu2aSWRsmSCZ1Spy3kAYFV8rSb/fSIJwk4IdOhy+AVDnlsB2RxQ3hElBAMR hSMOTHLBy0AfeZy+KgexBkChZuH8g4oPGCusgnPw7im1TW09mzJf2/uUJiuT0BqQ LEZVOMruiZMwtMNjAwJETnBJ+S8Hzm87fbfqS6pbR+UYN7VivDuvL7bvKB6ZpevH epVbTnWikmTrd0jzkmZ0/kk2ZtkjzgANxo9XyBvAGdeHZWT1T+3M7XRbQmy8TuQc XWpU1yNYnE046O9EBYskMb4f7Ow9EuggdaYcw1V5iiGQ0dollLT/T/olABYkiXV2 exFMGqg= -----END CERTIFICATE-----Generated at Fri Jun 6 17:14:58 2025 by rpki-client