$ rpki-client -vvf rpki.apnic.net/member_repository/A91493FC/A96F4B789AF311ED901AE45AC4F9AE02/38702E769AF611ED8D41985BC4F9AE02.roa File: 38702E769AF611ED8D41985BC4F9AE02.roa (raw, json) Hash identifier: ZhWBxmhvIB+43KRBVHlsXZ7qRlNDQ90SpnXAY8rEx0A= Subject key identifier: 59:5A:50:D8:B8:85:0E:60:3E:3B:F6:97:3C:5C:35:07:77:DA:11:34 Certificate issuer: /CN=A91493FC/serialNumber=E1C1C72B6793A903BA3DE031027519B43021756A Certificate serial: 019B Authority key identifier: E1:C1:C7:2B:67:93:A9:03:BA:3D:E0:31:02:75:19:B4:30:21:75:6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4cHHK2eTqQO6PeAxAnUZtDAhdWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91493FC/A96F4B789AF311ED901AE45AC4F9AE02/38702E769AF611ED8D41985BC4F9AE02.roa Signing time: Tue 25 Mar 2025 02:38:39 +0000 ROA not before: Tue 25 Mar 2025 02:38:39 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 134732 IP address blocks: 103.72.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91493FC/A96F4B789AF311ED901AE45AC4F9AE02/4cHHK2eTqQO6PeAxAnUZtDAhdWo.crl rsync://rpki.apnic.net/member_repository/A91493FC/A96F4B789AF311ED901AE45AC4F9AE02/4cHHK2eTqQO6PeAxAnUZtDAhdWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4cHHK2eTqQO6PeAxAnUZtDAhdWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:26:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 411 (0x19b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91493FC, serialNumber=E1C1C72B6793A903BA3DE031027519B43021756A Validity Not Before: Mar 25 02:38:39 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67e2172f-8b41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:23:01:39:1c:8d:14:e1:4e:5e:69:5b:38:72: 35:4c:d8:49:a6:50:c8:9c:58:2b:ca:2e:4f:ac:f8: e9:12:64:47:c6:39:69:3b:65:37:89:3e:12:0d:3e: eb:e7:a6:d0:1d:0f:90:bf:c3:c9:db:be:8e:91:35: b3:f8:1a:74:ad:b6:5b:9e:d2:11:e9:24:85:ec:0b: 5a:5e:39:10:da:e4:76:a7:ff:24:b0:5c:18:c1:d8: f4:ba:75:84:82:9f:f2:d9:57:2d:b8:0e:51:ce:6f: 75:d4:ef:94:92:da:b5:ec:cc:54:a2:44:1f:83:20: 2c:77:95:c8:b2:b2:ff:d0:20:76:58:68:36:23:e9: 7d:f8:c8:5e:e4:07:cc:1d:e0:b5:a9:f2:53:f6:72: 5f:91:ae:50:c8:2f:af:e3:c7:bc:16:20:44:e3:ae: 04:0d:fe:72:ba:8c:1f:34:13:38:c3:6b:da:5d:90: 4a:24:15:e5:0d:8b:5b:64:cd:90:36:00:ea:3b:a9: c8:38:f6:56:13:09:06:10:d1:c1:1b:74:39:78:8d: 7a:b7:d6:ac:7a:af:d4:25:c1:f9:75:b5:54:94:70: e1:90:d9:dd:1f:f8:60:48:18:d7:3b:22:09:f9:f5: a5:98:b3:81:42:54:59:1f:7e:31:ec:15:ef:93:39: be:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:5A:50:D8:B8:85:0E:60:3E:3B:F6:97:3C:5C:35:07:77:DA:11:34 X509v3 Authority Key Identifier: keyid:E1:C1:C7:2B:67:93:A9:03:BA:3D:E0:31:02:75:19:B4:30:21:75:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91493FC/A96F4B789AF311ED901AE45AC4F9AE02/4cHHK2eTqQO6PeAxAnUZtDAhdWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4cHHK2eTqQO6PeAxAnUZtDAhdWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91493FC/A96F4B789AF311ED901AE45AC4F9AE02/38702E769AF611ED8D41985BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.72.212.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:ab:97:67:7c:ec:51:98:2b:4c:2d:05:47:1f:4a:e5:b8:86: 20:0e:05:51:df:25:d8:39:ea:8b:b6:f6:66:23:15:6c:fc:31: cb:17:b7:dd:f8:2a:76:f8:06:a1:b2:51:83:a3:64:cd:44:19: 97:86:c1:cc:e9:50:97:e4:67:cf:a9:d6:1b:22:bd:5d:82:7f: 9b:a8:d9:8a:3a:f7:52:d3:3c:f4:2e:51:23:8c:6d:f3:91:79: 4b:2f:2e:2f:ea:ae:06:7c:ac:27:0c:bc:cc:62:a8:6f:a6:47: d8:fb:0d:5f:14:3a:f1:8d:75:b9:20:46:53:ff:19:cd:e0:88: bb:ce:b3:4c:c7:e6:08:b9:22:9d:4c:e3:f9:ef:d5:4f:7f:d9: cc:c3:f6:16:06:10:5b:52:b0:be:97:fb:9a:bf:1a:4e:00:ce: 6d:67:dd:3f:70:6b:c9:1c:d5:db:27:3f:ef:12:39:d7:e2:a2: a9:0b:30:98:1d:20:43:f2:d1:0f:76:57:11:a5:10:7b:71:62: 9e:ca:4a:b5:7a:12:07:1d:72:1f:42:28:4f:28:e5:c5:79:36: 46:fc:93:01:41:dd:38:0b:3c:db:a7:4b:11:b3:50:ae:30:53: cd:39:e0:92:75:9d:24:2f:42:4d:32:f2:e2:b4:f3:60:0b:1d: a1:11:1d:a1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAZswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDkzRkMxMTAvBgNVBAUTKEUxQzFDNzJCNjc5M0E5MDNCQTNERTAzMTAyNzUxOUI0 MzAyMTc1NkEwHhcNMjUwMzI1MDIzODM5WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2UyMTcyZi04YjQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0yMBORyNFOFOXmlbOHI1TNhJplDInFgryi5PrPjpEmRHxjlpO2U3iT4SDT7r 56bQHQ+Qv8PJ276OkTWz+Bp0rbZbntIR6SSF7AtaXjkQ2uR2p/8ksFwYwdj0unWE gp/y2VctuA5Rzm911O+Uktq17MxUokQfgyAsd5XIsrL/0CB2WGg2I+l9+Mhe5AfM HeC1qfJT9nJfka5QyC+v48e8FiBE464EDf5yuowfNBM4w2vaXZBKJBXlDYtbZM2Q NgDqO6nIOPZWEwkGENHBG3Q5eI16t9aseq/UJcH5dbVUlHDhkNndH/hgSBjXOyIJ +fWlmLOBQlRZH34x7BXvkzm+pQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFlaUNi4 hQ5gPjv2lzxcNQd32hE0MB8GA1UdIwQYMBaAFOHBxytnk6kDuj3gMQJ1GbQwIXVq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OTNGQy9BOTZGNEI3ODlB RjMxMUVEOTAxQUU0NUFDNEY5QUUwMi80Y0hISzJlVHFRTzZQZUF4QW5VWnREQWhk V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRjSEhLMmVUcVFPNlBlQXhBblVadERBaGRXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDkzRkMvQTk2RjRCNzg5QUYzMTFFRDkwMUFFNDVBQzRGOUFFMDIvMzg3MDJFNzY5 QUY2MTFFRDhENDE5ODVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnSNQwDQYJKoZIhvcNAQELBQADggEBAE2rl2d87FGYK0wt BUcfSuW4hiAOBVHfJdg56ou29mYjFWz8McsXt934Knb4BqGyUYOjZM1EGZeGwczp UJfkZ8+p1hsivV2Cf5uo2Yo691LTPPQuUSOMbfOReUsvLi/qrgZ8rCcMvMxiqG+m R9j7DV8UOvGNdbkgRlP/Gc3giLvOs0zH5gi5Ip1M4/nv1U9/2czD9hYGEFtSsL6X +5q/Gk4Azm1n3T9wa8kc1dsnP+8SOdfioqkLMJgdIEPy0Q92VxGlEHtxYp7KSrV6 Egcdch9CKE8o5cV5Nkb8kwFB3TgLPNunSxGzUK4wU8054JJ1nSQvQk0y8uK082AL HaERHaE= -----END CERTIFICATE-----Generated at Sat Apr 26 16:56:55 2025 by rpki-client