$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5EF2/DA47E560944811EBA5AE3609C4F9AE02/3520A4C0DDA711EBA436967CC4F9AE02.roa File: 3520A4C0DDA711EBA436967CC4F9AE02.roa (raw, json) Hash identifier: TACWMKsVmIF+DWEhLbG6Mmy8oK2ZJgn16SR/MDsvAC8= Subject key identifier: A0:9B:A9:6B:A4:D0:95:7F:97:53:9B:D6:C7:FD:05:0E:12:6D:7D:B8 Certificate issuer: /CN=A91A5EF2/serialNumber=7BF180CEAC476DBD18392910FA22DAA1EF5BA6D5 Certificate serial: 062D Authority key identifier: 7B:F1:80:CE:AC:47:6D:BD:18:39:29:10:FA:22:DA:A1:EF:5B:A6:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e_GAzqxHbb0YOSkQ-iLaoe9bptU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5EF2/DA47E560944811EBA5AE3609C4F9AE02/3520A4C0DDA711EBA436967CC4F9AE02.roa Signing time: Mon 14 Apr 2025 22:33:29 +0000 ROA not before: Mon 14 Apr 2025 22:33:29 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 141731 IP address blocks: 103.162.228.0/23 maxlen: 24 2001:df6:180::/48 maxlen: 56 2001:df6:180:fffe::/64 maxlen: 64 2001:df6:180:ffff::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5EF2/DA47E560944811EBA5AE3609C4F9AE02/e_GAzqxHbb0YOSkQ-iLaoe9bptU.crl rsync://rpki.apnic.net/member_repository/A91A5EF2/DA47E560944811EBA5AE3609C4F9AE02/e_GAzqxHbb0YOSkQ-iLaoe9bptU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e_GAzqxHbb0YOSkQ-iLaoe9bptU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:31:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1581 (0x62d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5EF2, serialNumber=7BF180CEAC476DBD18392910FA22DAA1EF5BA6D5 Validity Not Before: Apr 14 22:33:29 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67fd8d39-2982 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:ec:bf:92:91:af:4f:19:a9:c7:f3:63:2b:17: ef:4b:be:89:d3:38:b9:11:07:f3:68:17:c8:48:95: b3:95:40:3e:18:b8:15:a8:3a:fd:fd:ac:97:ca:fd: 86:88:e9:30:1d:82:e2:17:69:09:76:2b:4b:17:30: d4:37:a6:82:18:e5:17:5d:79:28:d1:9c:7f:4a:43: 0a:48:e6:65:f7:71:b6:42:d6:d3:4b:a8:d0:f7:fa: 35:83:91:17:30:fa:a6:9c:8b:ca:f1:11:bd:9d:2c: 7e:76:bb:38:ea:55:ff:8a:7f:42:35:43:b8:b2:79: e8:0c:92:38:24:9e:7c:01:fe:bf:74:03:a2:c8:86: 67:da:c9:80:dc:9c:c3:89:8a:c9:28:e0:ef:d6:98: 3c:17:c6:4a:47:72:2f:d0:d0:6d:d4:f6:1b:f7:f9: 2d:36:88:d7:c7:9a:29:c0:02:91:54:48:ef:0e:ed: a8:fd:0e:34:9f:11:a4:ce:f4:54:ee:71:94:25:dc: b7:33:e7:67:88:22:17:d6:ac:96:fc:65:b8:b8:b1: 30:18:cb:e6:e4:6d:49:ea:20:1c:4e:fe:60:99:e1: 29:eb:cb:87:4f:30:62:fd:e6:b8:69:07:55:a6:b0: 70:e1:63:aa:ee:13:97:f3:02:d0:29:1d:b6:ab:42: bd:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:9B:A9:6B:A4:D0:95:7F:97:53:9B:D6:C7:FD:05:0E:12:6D:7D:B8 X509v3 Authority Key Identifier: keyid:7B:F1:80:CE:AC:47:6D:BD:18:39:29:10:FA:22:DA:A1:EF:5B:A6:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5EF2/DA47E560944811EBA5AE3609C4F9AE02/e_GAzqxHbb0YOSkQ-iLaoe9bptU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e_GAzqxHbb0YOSkQ-iLaoe9bptU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5EF2/DA47E560944811EBA5AE3609C4F9AE02/3520A4C0DDA711EBA436967CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.162.228.0/23 IPv6: 2001:df6:180::/48 Signature Algorithm: sha256WithRSAEncryption 79:ed:6d:e0:27:d7:ed:e5:ed:c3:90:83:d7:ce:3f:e0:f1:41: 66:67:77:77:e8:ea:62:4b:84:3f:75:97:7b:7b:87:af:68:18: cc:bc:3c:3d:88:62:83:56:a2:93:3b:c4:87:2a:04:51:ad:bf: ac:23:54:ae:d0:57:73:55:29:6f:56:cf:24:ec:c5:79:8a:ee: f4:f5:8d:65:c9:e4:6b:30:f8:30:58:89:68:95:1b:bd:e2:83: e0:77:74:ad:f9:64:e3:4e:87:d1:90:58:30:9f:d4:d0:a9:bf: 95:8e:cb:f6:a0:72:73:bd:1e:39:45:53:6d:e2:46:52:6e:6f: 67:62:45:98:74:d4:89:cc:3f:0f:b2:98:6b:c2:8b:47:bc:06: 07:56:86:88:97:b9:06:e1:0d:db:e1:18:95:88:5c:8d:28:78: 81:7d:2d:fb:60:c6:6e:19:01:10:f4:ff:a0:76:64:0e:2a:d2: 9c:62:6e:13:48:9a:85:25:79:b9:a2:e8:91:ee:28:5f:c1:ab: 91:71:e0:ad:5f:d8:45:5e:da:85:db:35:65:84:6b:a5:40:f2: 2c:f4:68:18:e8:7e:2f:80:11:f0:e0:40:7e:0d:15:7c:1e:85: 1a:fa:b5:5a:89:db:bb:98:1e:93:7d:4d:bd:f1:9c:90:dd:2b: 5d:f6:f7:89 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBi0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVFRjIxMTAvBgNVBAUTKDdCRjE4MENFQUM0NzZEQkQxODM5MjkxMEZBMjJEQUEx RUY1QkE2RDUwHhcNMjUwNDE0MjIzMzI5WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2ZkOGQzOS0yOTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm+y/kpGvTxmpx/NjKxfvS76J0zi5EQfzaBfISJWzlUA+GLgVqDr9/ayXyv2G iOkwHYLiF2kJditLFzDUN6aCGOUXXXko0Zx/SkMKSOZl93G2QtbTS6jQ9/o1g5EX MPqmnIvK8RG9nSx+drs46lX/in9CNUO4snnoDJI4JJ58Af6/dAOiyIZn2smA3JzD iYrJKODv1pg8F8ZKR3Iv0NBt1PYb9/ktNojXx5opwAKRVEjvDu2o/Q40nxGkzvRU 7nGUJdy3M+dniCIX1qyW/GW4uLEwGMvm5G1J6iAcTv5gmeEp68uHTzBi/ea4aQdV prBw4WOq7hOX8wLQKR22q0K9PwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFKCbqWuk 0JV/l1Ob1sf9BQ4SbX24MB8GA1UdIwQYMBaAFHvxgM6sR229GDkpEPoi2qHvW6bV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUVGMi9EQTQ3RTU2MDk0 NDgxMUVCQTVBRTM2MDlDNEY5QUUwMi9lX0dBenF4SGJiMFlPU2tRLWlMYW9lOWJw dFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VfR0F6cXhIYmIwWU9Ta1EtaUxhb2U5YnB0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTVFRjIvREE0N0U1NjA5NDQ4MTFFQkE1QUUzNjA5QzRGOUFFMDIvMzUyMEE0QzBE REE3MTFFQkE0MzY5NjdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnouQwDwQCAAIwCQMHACABDfYBgDANBgkqhkiG9w0BAQsF AAOCAQEAee1t4CfX7eXtw5CD184/4PFBZmd3d+jqYkuEP3WXe3uHr2gYzLw8PYhi g1aikzvEhyoEUa2/rCNUrtBXc1Upb1bPJOzFeYru9PWNZcnkazD4MFiJaJUbveKD 4Hd0rflk406H0ZBYMJ/U0Km/lY7L9qByc70eOUVTbeJGUm5vZ2JFmHTUicw/D7KY a8KLR7wGB1aGiJe5BuEN2+EYlYhcjSh4gX0t+2DGbhkBEPT/oHZkDirSnGJuE0ia hSV5uaLoke4oX8GrkXHgrV/YRV7ahds1ZYRrpUDyLPRoGOh+L4AR8OBAfg0VfB6F Gvq1Wonbu5gek31NvfGckN0rXfb3iQ== -----END CERTIFICATE-----Generated at Sat Apr 26 16:55:31 2025 by rpki-client