$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/0F3F5C24FF0E11EFB7B9A13CC4F9AE02.roa File: 0F3F5C24FF0E11EFB7B9A13CC4F9AE02.roa (raw, json) Hash identifier: /p/aYFDXmU+p5r2x/x59lnZ8e1gVGwdb3q9zI0rbkwk= Subject key identifier: 01:35:3C:B6:DC:52:FD:3C:EC:BB:3F:9C:D4:25:2D:1C:F5:27:6E:6E Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Certificate serial: 36BA Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/0F3F5C24FF0E11EFB7B9A13CC4F9AE02.roa Signing time: Sat 22 Mar 2025 15:01:00 +0000 ROA not before: Sat 22 Mar 2025 15:01:00 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 139820 IP address blocks: 59.103.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:46:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14010 (0x36ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0832, serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Validity Not Before: Mar 22 15:01:00 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67ded0ac-e3be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:76:05:b8:96:a6:3f:5e:f5:ad:16:61:26:c8: a1:4c:49:52:8e:35:7c:e8:a7:9d:b6:69:6d:09:36: 39:33:d7:04:25:1e:b7:28:63:5f:da:75:96:32:1f: 4a:71:e9:10:ba:9a:be:db:b2:06:4e:58:51:b2:58: c3:6d:9a:63:a0:7e:e7:bb:17:94:ff:53:1c:ea:33: a0:8d:8b:53:eb:3e:49:cb:42:b6:41:b1:d2:9f:3c: 68:be:2c:da:66:10:11:cd:05:c2:8b:9d:6f:45:19: d8:f2:7f:d2:ca:f0:c6:f5:1c:c5:33:c0:5a:6a:69: 0c:7e:26:cc:7c:27:05:49:d8:08:eb:12:87:e7:ad: 70:ce:35:e4:f2:fb:0d:cb:cf:6e:42:be:98:4e:b0: 52:3b:c8:bc:18:5d:2f:34:1b:1b:78:cf:11:a3:d7: 2b:cc:49:db:27:08:25:34:58:d5:83:53:a7:ae:61: ad:4e:c5:2a:23:e8:53:fe:06:4f:8d:8f:f4:da:1f: d5:e2:8c:fa:d9:82:0e:75:78:ed:22:25:8c:27:b6: 63:e0:0f:51:8e:5d:04:0c:8a:fa:07:b1:7e:a4:d3: b9:59:bb:b1:5e:b8:75:ee:16:bb:29:c8:97:54:86: d5:d4:0d:c0:48:36:b7:1b:49:bf:13:03:de:01:fa: 26:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:35:3C:B6:DC:52:FD:3C:EC:BB:3F:9C:D4:25:2D:1C:F5:27:6E:6E X509v3 Authority Key Identifier: keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/0F3F5C24FF0E11EFB7B9A13CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.103.32.0/19 Signature Algorithm: sha256WithRSAEncryption 35:b0:a0:85:bf:4f:b2:98:91:23:4a:06:43:7e:fb:67:7a:24: 12:4f:77:16:d6:db:f0:bb:d4:10:5c:bd:41:ea:24:f6:99:dd: 25:3f:28:58:fa:4d:c6:4c:2a:00:86:9f:eb:37:67:00:da:84: bf:51:62:03:9a:47:5c:75:c6:77:d1:12:e3:8d:42:8c:0e:8e: 85:89:5b:75:aa:9c:69:f5:fb:e7:02:4c:81:b5:34:bb:94:4c: e1:42:64:b4:f5:43:b3:9d:df:92:b3:72:97:07:40:9a:29:31: 26:7d:ed:e8:28:40:9d:31:bf:20:0f:76:ec:90:bd:fa:81:85: 8d:bb:bd:51:ba:c3:e7:c1:c9:e3:99:fc:6c:91:26:11:e5:e7: d1:f6:c5:41:15:16:14:60:e3:2f:b1:8e:47:d4:0a:e4:0a:6c: f0:5f:e5:e5:10:f2:63:0a:a3:0f:76:6b:52:d1:68:72:6a:d4: 77:04:1e:88:f2:51:b2:93:6d:bf:6f:10:49:01:74:72:38:e0: 9b:b4:2a:34:8a:8a:2d:94:2d:16:e9:8c:48:e7:ce:79:61:1b: 7d:40:16:6c:83:4c:3d:b1:2d:fe:dd:c3:01:72:b7:68:64:cb: d8:8f:6c:4f:c3:7d:56:c0:85:5e:f1:fa:81:d1:cd:07:a1:65: d4:6f:b2:74 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNrowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4MzIxMTAvBgNVBAUTKDlFRDkwNTUxMDdDNzBGODVCQjkxQThEQTAyNzBCNUNB NzYwQUVCNTQwHhcNMjUwMzIyMTUwMTAwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2RlZDBhYy1lM2JlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxXYFuJamP171rRZhJsihTElSjjV86KedtmltCTY5M9cEJR63KGNf2nWWMh9K cekQupq+27IGTlhRsljDbZpjoH7nuxeU/1Mc6jOgjYtT6z5Jy0K2QbHSnzxoviza ZhARzQXCi51vRRnY8n/SyvDG9RzFM8BaamkMfibMfCcFSdgI6xKH561wzjXk8vsN y89uQr6YTrBSO8i8GF0vNBsbeM8Ro9crzEnbJwglNFjVg1OnrmGtTsUqI+hT/gZP jY/02h/V4oz62YIOdXjtIiWMJ7Zj4A9Rjl0EDIr6B7F+pNO5WbuxXrh17ha7KciX VIbV1A3ASDa3G0m/EwPeAfom9QIDAQABo4IClTCCApEwHQYDVR0OBBYEFAE1PLbc Uv087Ls/nNQlLRz1J25uMB8GA1UdIwQYMBaAFJ7ZBVEHxw+Fu5Go2gJwtcp2CutU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDgzMi85REFGNzgwRTFE OTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0VzdrYWphQW5DMXluWUs2 MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250a0ZVUWZIRDRXN2thamFBbkMxeW5ZSzYxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA4MzIvOURBRjc4MEUxRDk0MTFFMjk5MDFGM0Y4MDhCMDJDRDIvMEYzRjVDMjRG RjBFMTFFRkI3QjlBMTNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAU7ZyAwDQYJKoZIhvcNAQELBQADggEBADWwoIW/T7KYkSNK BkN++2d6JBJPdxbW2/C71BBcvUHqJPaZ3SU/KFj6TcZMKgCGn+s3ZwDahL9RYgOa R1x1xnfREuONQowOjoWJW3WqnGn1++cCTIG1NLuUTOFCZLT1Q7Od35KzcpcHQJop MSZ97egoQJ0xvyAPduyQvfqBhY27vVG6w+fByeOZ/GyRJhHl59H2xUEVFhRg4y+x jkfUCuQKbPBf5eUQ8mMKow92a1LRaHJq1HcEHojyUbKTbb9vEEkBdHI44Ju0KjSK ii2ULRbpjEjnznlhG31AFmyDTD2xLf7dwwFyt2hky9iPbE/DfVbAhV7x+oHRzQeh ZdRvsnQ= -----END CERTIFICATE-----Generated at Sat Apr 26 09:08:02 2025 by rpki-client