$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3277/C1B02296C6C011ECA854D627C4F9AE02/F52D264EC6C211EC87251528C4F9AE02.roa File: F52D264EC6C211EC87251528C4F9AE02.roa (raw, json) Hash identifier: o082/qE7KnRTR5fE6jGL87EK8Un5n2KKqzOv1p2PmKE= Subject key identifier: 51:D2:A2:1A:D3:57:A3:15:3E:D1:C4:D9:ED:B9:81:AD:1F:A9:91:D7 Certificate issuer: /CN=A91A3277/serialNumber=52F3E7FB5ED85337F7E19E10733D490C2B1C0B64 Certificate serial: 031C Authority key identifier: 52:F3:E7:FB:5E:D8:53:37:F7:E1:9E:10:73:3D:49:0C:2B:1C:0B:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UvPn-17YUzf34Z4Qcz1JDCscC2Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3277/C1B02296C6C011ECA854D627C4F9AE02/F52D264EC6C211EC87251528C4F9AE02.roa Signing time: Thu 17 Apr 2025 01:06:51 +0000 ROA not before: Thu 17 Apr 2025 01:06:51 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 132531 IP address blocks: 103.135.245.0/24 maxlen: 24 2001:df0:9bc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3277/C1B02296C6C011ECA854D627C4F9AE02/UvPn-17YUzf34Z4Qcz1JDCscC2Q.crl rsync://rpki.apnic.net/member_repository/A91A3277/C1B02296C6C011ECA854D627C4F9AE02/UvPn-17YUzf34Z4Qcz1JDCscC2Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UvPn-17YUzf34Z4Qcz1JDCscC2Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 796 (0x31c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3277, serialNumber=52F3E7FB5ED85337F7E19E10733D490C2B1C0B64 Validity Not Before: Apr 17 01:06:51 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6800542b-23f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:e1:23:3a:c6:cd:b3:79:5e:81:52:a2:83:db: e9:17:68:65:b7:08:fb:48:c3:6b:ba:4d:b7:3b:e4: 90:79:a0:b6:dd:98:49:22:4e:d4:ff:26:ec:83:43: 9b:26:4e:1d:be:d8:9f:91:14:9f:c0:c4:59:30:15: 8e:c0:0f:4f:ad:7d:5c:a5:13:35:8a:d4:ef:8c:77: 7d:f8:06:a7:6d:b6:00:59:cb:7d:e7:d3:89:0f:d8: e6:b4:ae:6f:85:86:59:bd:a5:10:a3:30:70:52:dc: a8:3d:c4:da:0a:c9:b2:c2:e2:94:b5:e9:2a:37:9c: 91:b0:b7:bd:b9:6f:71:bf:ec:61:a9:3c:89:d1:03: 40:dc:d9:fe:5a:2a:fa:7e:14:a1:98:f5:11:ef:f9: 29:bd:54:08:66:7f:04:58:f1:08:69:65:6d:19:a2: 92:e6:80:42:9f:86:77:b0:6c:81:af:52:c3:ac:57: b0:1d:bb:84:75:36:b9:a1:83:4c:ef:f0:62:8c:62: bc:2a:02:f6:f7:4e:a3:51:c2:e1:0f:bf:bc:67:3a: 6c:7b:6f:d2:11:5c:49:83:7b:4a:61:20:49:2d:8d: 14:21:df:3d:0d:a5:9d:62:ee:a8:0b:d4:d2:9f:01: df:b0:11:fa:06:e9:72:a2:08:91:64:d4:ea:3c:ca: 71:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:D2:A2:1A:D3:57:A3:15:3E:D1:C4:D9:ED:B9:81:AD:1F:A9:91:D7 X509v3 Authority Key Identifier: keyid:52:F3:E7:FB:5E:D8:53:37:F7:E1:9E:10:73:3D:49:0C:2B:1C:0B:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3277/C1B02296C6C011ECA854D627C4F9AE02/UvPn-17YUzf34Z4Qcz1JDCscC2Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UvPn-17YUzf34Z4Qcz1JDCscC2Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3277/C1B02296C6C011ECA854D627C4F9AE02/F52D264EC6C211EC87251528C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.135.245.0/24 IPv6: 2001:df0:9bc0::/48 Signature Algorithm: sha256WithRSAEncryption cc:22:36:62:06:a4:ad:e2:14:96:1d:e7:49:3c:47:74:a9:a2: 20:48:06:85:b9:4e:34:fc:3f:3e:6d:ea:08:dc:69:92:64:f4: 0b:81:cd:65:77:06:0d:b8:d7:9d:26:e4:a8:10:2e:bf:f5:8a: c9:47:c7:45:21:cf:49:2e:58:eb:72:d8:57:61:2f:0a:64:09: af:5d:d0:25:ca:eb:92:5e:ab:2f:76:62:91:95:3e:f4:79:c2: 2b:bb:6d:80:bf:51:14:f6:a7:4a:d9:d1:24:6a:17:0a:66:3c: 20:bd:c7:65:63:9b:14:43:ca:c4:d2:87:08:b6:92:5e:81:bc: 06:c8:4b:7d:39:40:e3:07:ba:62:ad:11:93:b0:17:24:6c:37: 62:e0:68:e7:60:34:5d:0c:d5:dc:f2:9e:de:77:35:2f:85:31: 94:23:4e:d8:07:6c:de:57:4e:aa:fe:3d:c9:c2:d7:a8:03:24: 95:4b:6a:cc:c5:46:02:69:4b:e6:24:b6:8f:69:de:b8:7d:93: 93:cd:05:5a:ec:27:2a:4d:68:37:e2:09:b7:5d:23:24:d5:83: d9:eb:12:f2:88:fb:ff:49:0b:4a:a2:8b:cd:95:35:0e:cb:9d: 4a:d2:08:63:c9:91:84:59:d3:7d:7f:b8:af:24:65:0d:da:f5: 25:19:ae:66 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAxwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTMyNzcxMTAvBgNVBAUTKDUyRjNFN0ZCNUVEODUzMzdGN0UxOUUxMDczM0Q0OTBD MkIxQzBCNjQwHhcNMjUwNDE3MDEwNjUxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODAwNTQyYi0yM2YwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzuEjOsbNs3legVKig9vpF2hltwj7SMNruk23O+SQeaC23ZhJIk7U/ybsg0Ob Jk4dvtifkRSfwMRZMBWOwA9PrX1cpRM1itTvjHd9+AanbbYAWct959OJD9jmtK5v hYZZvaUQozBwUtyoPcTaCsmywuKUtekqN5yRsLe9uW9xv+xhqTyJ0QNA3Nn+Wir6 fhShmPUR7/kpvVQIZn8EWPEIaWVtGaKS5oBCn4Z3sGyBr1LDrFewHbuEdTa5oYNM 7/BijGK8KgL2906jUcLhD7+8Zzpse2/SEVxJg3tKYSBJLY0UId89DaWdYu6oC9TS nwHfsBH6BulyogiRZNTqPMpxaQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFFHSohrT V6MVPtHE2e25ga0fqZHXMB8GA1UdIwQYMBaAFFLz5/te2FM39+GeEHM9SQwrHAtk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzI3Ny9DMUIwMjI5NkM2 QzAxMUVDQTg1NEQ2MjdDNEY5QUUwMi9VdlBuLTE3WVV6ZjM0WjRRY3oxSkRDc2ND MlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V2UG4tMTdZVXpmMzRaNFFjejFKRENzY0MyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTMyNzcvQzFCMDIyOTZDNkMwMTFFQ0E4NTRENjI3QzRGOUFFMDIvRjUyRDI2NEVD NkMyMTFFQzg3MjUxNTI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnh/UwDwQCAAIwCQMHACABDfCbwDANBgkqhkiG9w0BAQsF AAOCAQEAzCI2YgakreIUlh3nSTxHdKmiIEgGhblONPw/Pm3qCNxpkmT0C4HNZXcG DbjXnSbkqBAuv/WKyUfHRSHPSS5Y63LYV2EvCmQJr13QJcrrkl6rL3ZikZU+9HnC K7ttgL9RFPanStnRJGoXCmY8IL3HZWObFEPKxNKHCLaSXoG8BshLfTlA4we6Yq0R k7AXJGw3YuBo52A0XQzV3PKe3nc1L4UxlCNO2Ads3ldOqv49ycLXqAMklUtqzMVG AmlL5iS2j2neuH2Tk80FWuwnKk1oN+IJt10jJNWD2esS8oj7/0kLSqKLzZU1Dsud StIIY8mRhFnTfX+4ryRlDdr1JRmuZg== -----END CERTIFICATE-----Generated at Sat Apr 26 17:11:33 2025 by rpki-client