$ rpki-client -vvf rpki.apnic.net/member_repository/A919D3F9/122236E618C711F08054177EC4F9AE02/35C008E818C811F0BF9E881FC4F9AE02.roa File: 35C008E818C811F0BF9E881FC4F9AE02.roa (raw, json) Hash identifier: dO3tBpPXfUSx2n1k3cMhWuGnqgEV9qYaUcicUOmxL84= Subject key identifier: 3D:9F:82:C6:A0:98:63:76:A1:AF:BC:2D:6C:30:25:32:A3:EF:F8:9C Certificate issuer: /CN=A919D3F9/serialNumber=3362AC58EDB189CF25783C27D90A7D2FA32977C5 Certificate serial: 02 Authority key identifier: 33:62:AC:58:ED:B1:89:CF:25:78:3C:27:D9:0A:7D:2F:A3:29:77:C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M2KsWO2xic8leDwn2Qp9L6Mpd8U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D3F9/122236E618C711F08054177EC4F9AE02/35C008E818C811F0BF9E881FC4F9AE02.roa Signing time: Mon 14 Apr 2025 00:34:22 +0000 ROA not before: Mon 14 Apr 2025 00:34:22 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 149872 IP address blocks: 203.4.164.0/22 maxlen: 22 203.4.164.0/24 maxlen: 24 203.4.165.0/24 maxlen: 24 203.4.166.0/24 maxlen: 24 203.4.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D3F9/122236E618C711F08054177EC4F9AE02/M2KsWO2xic8leDwn2Qp9L6Mpd8U.crl rsync://rpki.apnic.net/member_repository/A919D3F9/122236E618C711F08054177EC4F9AE02/M2KsWO2xic8leDwn2Qp9L6Mpd8U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M2KsWO2xic8leDwn2Qp9L6Mpd8U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:08:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D3F9, serialNumber=3362AC58EDB189CF25783C27D90A7D2FA32977C5 Validity Not Before: Apr 14 00:34:22 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=67fc580e-c59e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:04:56:1d:9d:49:84:dc:53:01:91:44:56:9c: 82:e1:a3:9c:00:76:5d:00:af:4e:77:aa:1c:7a:43: aa:41:da:9b:1d:40:2c:58:e0:37:61:89:b6:9f:4d: e9:00:21:ee:bb:bf:06:09:8a:bb:55:ff:cb:d8:a4: bb:4e:e5:ea:96:30:9d:bd:a3:c3:d8:35:97:9b:e5: 28:8a:bd:e5:f4:6d:e8:48:09:94:bb:f1:95:62:97: 7a:7c:1f:03:3b:b6:26:73:eb:08:3c:ad:f6:5c:ac: 8f:d3:fb:50:67:4d:7f:71:8a:b8:54:72:33:ce:07: 8a:f1:be:a6:01:83:8f:10:46:4f:94:e1:8e:73:87: 70:3a:0f:94:2c:34:e3:ad:49:a4:7a:8f:eb:c0:af: c5:67:e5:0e:ee:c2:be:7d:91:83:94:5a:f4:5a:ad: ae:5f:8b:9e:ef:ac:0e:9f:76:53:e5:af:ff:ad:6d: 87:7b:89:98:ac:d4:05:f3:22:0b:ec:1c:b5:a7:06: 09:ba:48:88:01:9f:e1:63:67:7c:d8:8c:9e:6c:2b: d6:0f:c2:78:b9:27:b3:08:bd:ab:53:a0:73:0d:bd: 1e:63:16:1b:9e:b4:f0:13:c5:87:4e:52:c4:c4:be: e3:bb:d4:25:6b:92:21:a3:be:b4:97:bd:23:87:e9: e4:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:9F:82:C6:A0:98:63:76:A1:AF:BC:2D:6C:30:25:32:A3:EF:F8:9C X509v3 Authority Key Identifier: keyid:33:62:AC:58:ED:B1:89:CF:25:78:3C:27:D9:0A:7D:2F:A3:29:77:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D3F9/122236E618C711F08054177EC4F9AE02/M2KsWO2xic8leDwn2Qp9L6Mpd8U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M2KsWO2xic8leDwn2Qp9L6Mpd8U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D3F9/122236E618C711F08054177EC4F9AE02/35C008E818C811F0BF9E881FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.4.164.0/22 Signature Algorithm: sha256WithRSAEncryption 8d:91:e2:dd:db:38:26:53:f9:00:69:1b:3b:6c:56:4a:67:5f: 46:5b:0c:cc:b6:df:fe:85:24:5c:43:d7:38:bf:56:25:53:86: 0e:32:7f:36:37:c2:4c:47:11:f5:ec:16:b0:14:da:03:c7:be: 95:50:6e:27:a3:7c:15:b1:fb:3d:81:26:48:9b:ef:ec:55:39: e1:79:58:0d:7d:a8:0c:44:e2:ff:ba:89:67:02:42:8d:0b:97: ce:c8:09:c5:08:3e:30:fb:5e:e7:2e:59:18:85:27:7b:c8:f5: 10:2b:a4:b3:32:54:f0:22:41:eb:a9:7d:63:bc:2c:13:91:2b: 65:18:fe:48:28:8d:3c:f8:c4:e9:4b:3e:9b:de:37:19:f3:86: 05:be:72:70:5a:e1:69:76:b3:0c:b8:fe:d4:7b:99:61:e5:2a: fc:3a:11:fa:9f:97:db:9b:97:68:57:6b:e7:4a:75:5a:df:c6: f1:af:f6:8f:95:f9:86:02:57:90:38:8a:28:45:15:9e:a4:08: ba:60:47:3a:39:af:99:7b:c0:08:ae:c3:4c:17:40:10:f0:b0: 97:dd:d1:74:f8:a5:b3:ff:18:e1:d8:70:4e:61:cb:a3:50:33: a0:ab:21:f2:f0:72:54:74:f3:87:ab:88:4e:ca:30:cd:60:72: dc:2f:06:64 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RDNGOTExMC8GA1UEBRMoMzM2MkFDNThFREIxODlDRjI1NzgzQzI3RDkwQTdEMkZB MzI5NzdDNTAeFw0yNTA0MTQwMDM0MjJaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZmM1ODBlLWM1OWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9BFYdnUmE3FMBkURWnILho5wAdl0Ar053qhx6Q6pB2psdQCxY4DdhibafTekA Ie67vwYJirtV/8vYpLtO5eqWMJ29o8PYNZeb5SiKveX0behICZS78ZVil3p8HwM7 tiZz6wg8rfZcrI/T+1BnTX9xirhUcjPOB4rxvqYBg48QRk+U4Y5zh3A6D5QsNOOt SaR6j+vAr8Vn5Q7uwr59kYOUWvRara5fi57vrA6fdlPlr/+tbYd7iZis1AXzIgvs HLWnBgm6SIgBn+FjZ3zYjJ5sK9YPwni5J7MIvatToHMNvR5jFhuetPATxYdOUsTE vuO71CVrkiGjvrSXvSOH6eRhAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUPZ+CxqCY Y3ahr7wtbDAlMqPv+JwwHwYDVR0jBBgwFoAUM2KsWO2xic8leDwn2Qp9L6Mpd8Uw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlEM0Y5LzEyMjIzNkU2MThD NzExRjA4MDU0MTc3RUM0RjlBRTAyL00yS3NXTzJ4aWM4bGVEd24yUXA5TDZNcGQ4 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTTJLc1dPMnhpYzhsZUR3bjJRcDlMNk1wZDhVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDNGOS8xMjIyMzZFNjE4QzcxMUYwODA1NDE3N0VDNEY5QUUwMi8zNUMwMDhFODE4 QzgxMUYwQkY5RTg4MUZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAssEpDANBgkqhkiG9w0BAQsFAAOCAQEAjZHi3ds4JlP5AGkb O2xWSmdfRlsMzLbf/oUkXEPXOL9WJVOGDjJ/NjfCTEcR9ewWsBTaA8e+lVBuJ6N8 FbH7PYEmSJvv7FU54XlYDX2oDETi/7qJZwJCjQuXzsgJxQg+MPte5y5ZGIUne8j1 ECukszJU8CJB66l9Y7wsE5ErZRj+SCiNPPjE6Us+m943GfOGBb5ycFrhaXazDLj+ 1HuZYeUq/DoR+p+X25uXaFdr50p1Wt/G8a/2j5X5hgJXkDiKKEUVnqQIumBHOjmv mXvACK7DTBdAEPCwl93RdPils/8Y4dhwTmHLo1AzoKsh8vByVHTzh6uITsowzWBy 3C8GZA== -----END CERTIFICATE-----Generated at Sat Apr 26 08:10:19 2025 by rpki-client