$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7B34/DECE3EBA06C611EAA51A6021C4F9AE02/52E56FA806C711EA84978821C4F9AE02.roa File: 52E56FA806C711EA84978821C4F9AE02.roa (raw, json) Hash identifier: pC6YASmlOW3gbC5Njuzzo1yhASqi/WroinaiHpfVYXQ= Subject key identifier: FD:F4:8F:BE:E8:4A:56:D5:41:C7:A4:82:93:4E:22:8D:15:8C:10:33 Certificate issuer: /CN=A91B7B34/serialNumber=BA382DEA3A2F5B8C4C2205EC929F601BE34FE77F Certificate serial: 0C1C Authority key identifier: BA:38:2D:EA:3A:2F:5B:8C:4C:22:05:EC:92:9F:60:1B:E3:4F:E7:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ujgt6jovW4xMIgXskp9gG-NP538.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7B34/DECE3EBA06C611EAA51A6021C4F9AE02/52E56FA806C711EA84978821C4F9AE02.roa Signing time: Sat 08 Mar 2025 18:37:51 +0000 ROA not before: Sat 08 Mar 2025 18:37:51 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 137492 IP address blocks: 103.110.112.0/24 maxlen: 24 103.110.113.0/24 maxlen: 24 103.110.114.0/24 maxlen: 24 103.110.115.0/24 maxlen: 24 2402:88c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7B34/DECE3EBA06C611EAA51A6021C4F9AE02/ujgt6jovW4xMIgXskp9gG-NP538.crl rsync://rpki.apnic.net/member_repository/A91B7B34/DECE3EBA06C611EAA51A6021C4F9AE02/ujgt6jovW4xMIgXskp9gG-NP538.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ujgt6jovW4xMIgXskp9gG-NP538.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:27:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3100 (0xc1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7B34, serialNumber=BA382DEA3A2F5B8C4C2205EC929F601BE34FE77F Validity Not Before: Mar 8 18:37:51 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67cc8e7f-fe3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e5:75:d8:de:f8:2a:d3:68:27:8c:c5:98:61: fc:5b:72:5e:c5:bf:ac:e1:6f:8b:81:19:39:51:f3: 6f:e2:77:6a:ae:a6:48:64:4d:f8:bd:8f:f4:fc:f7: 3c:7f:28:7b:0a:6c:4f:dc:9a:d4:49:fb:c5:e6:4a: 6a:81:39:23:27:80:9b:c8:5c:e0:ce:1f:f1:47:6c: bb:9e:e6:cd:8a:3c:05:12:6c:81:fc:a1:5d:7f:08: 56:60:28:15:20:68:e6:82:2a:50:d9:14:e4:32:93: 8c:a3:54:9f:c4:9d:7f:02:f6:0a:de:7c:48:11:bf: 34:c7:3d:20:2c:26:04:50:f0:f0:88:4c:47:c0:a6: 8b:db:0c:fb:33:7c:2e:bf:6a:74:1c:4a:99:1a:9b: f7:72:aa:09:57:da:eb:e9:16:21:8c:9d:7d:b8:56: 52:c1:03:b4:fb:81:d0:02:15:dc:67:fa:f3:33:bc: 00:f1:7a:7e:01:97:a5:42:38:e3:aa:9d:90:82:b8: eb:97:03:44:a1:65:bb:4b:17:a8:ff:78:f6:4a:91: e3:92:bc:59:e2:17:28:b8:86:41:62:ae:e9:1f:b3: 63:02:a4:07:f2:90:e6:ff:9f:15:22:7c:b3:e7:d4: 73:5d:16:2a:ec:c3:5b:f4:a9:3e:22:96:56:95:41: 23:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:F4:8F:BE:E8:4A:56:D5:41:C7:A4:82:93:4E:22:8D:15:8C:10:33 X509v3 Authority Key Identifier: keyid:BA:38:2D:EA:3A:2F:5B:8C:4C:22:05:EC:92:9F:60:1B:E3:4F:E7:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7B34/DECE3EBA06C611EAA51A6021C4F9AE02/ujgt6jovW4xMIgXskp9gG-NP538.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ujgt6jovW4xMIgXskp9gG-NP538.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7B34/DECE3EBA06C611EAA51A6021C4F9AE02/52E56FA806C711EA84978821C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.110.112.0/22 IPv6: 2402:88c0::/32 Signature Algorithm: sha256WithRSAEncryption 16:d7:f4:6e:f4:99:0d:5b:43:f9:2e:64:30:71:0a:24:18:6b: 6e:12:0f:4a:e7:67:1e:90:51:e0:c2:31:57:27:aa:9d:2a:ee: 4f:eb:23:b7:3d:17:e9:52:24:ef:1b:36:45:75:70:d7:41:b3: 42:51:b4:d3:0e:34:c6:66:84:85:bd:52:4c:6f:9e:2a:32:e9: 35:a2:c2:b0:5b:fd:78:fb:44:4b:ee:3a:05:3a:cc:81:94:33: e2:63:64:fb:c3:bc:1a:90:7b:73:bf:53:ee:8e:48:37:e5:3d: 58:fc:58:6e:65:36:b3:64:86:d3:22:de:b0:d6:a4:36:36:d2: bb:6d:10:e6:8c:24:d6:c0:d7:f7:52:5f:18:71:39:96:50:ee: 1e:d6:c7:b7:f5:03:af:58:5d:b2:be:95:50:ae:85:88:47:68: 5a:ad:d7:c0:33:6b:7a:71:72:3c:cd:4d:bd:d1:85:f9:04:9a: 2c:0d:f2:1d:74:bb:f1:7d:b9:43:af:49:3d:ad:bd:5e:93:97: e6:b9:a8:2a:67:72:bb:ef:8f:86:c6:06:7b:43:57:e4:30:19: a1:41:a6:0d:1b:b7:cf:04:cc:c6:e0:41:bd:b8:39:36:04:66: 86:f6:f6:ef:7d:dc:05:47:84:2a:90:b7:91:35:44:96:00:8f: 25:e8:be:af -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDBwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdCMzQxMTAvBgNVBAUTKEJBMzgyREVBM0EyRjVCOEM0QzIyMDVFQzkyOUY2MDFC RTM0RkU3N0YwHhcNMjUwMzA4MTgzNzUxWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2NjOGU3Zi1mZTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyeV12N74KtNoJ4zFmGH8W3Jexb+s4W+LgRk5UfNv4ndqrqZIZE34vY/0/Pc8 fyh7CmxP3JrUSfvF5kpqgTkjJ4CbyFzgzh/xR2y7nubNijwFEmyB/KFdfwhWYCgV IGjmgipQ2RTkMpOMo1SfxJ1/AvYK3nxIEb80xz0gLCYEUPDwiExHwKaL2wz7M3wu v2p0HEqZGpv3cqoJV9rr6RYhjJ19uFZSwQO0+4HQAhXcZ/rzM7wA8Xp+AZelQjjj qp2QgrjrlwNEoWW7Sxeo/3j2SpHjkrxZ4hcouIZBYq7pH7NjAqQH8pDm/58VInyz 59RzXRYq7MNb9Kk+IpZWlUEjowIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFP30j77o SlbVQcekgpNOIo0VjBAzMB8GA1UdIwQYMBaAFLo4Leo6L1uMTCIF7JKfYBvjT+d/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0IzNC9ERUNFM0VCQTA2 QzYxMUVBQTUxQTYwMjFDNEY5QUUwMi91amd0Nmpvdlc0eE1JZ1hza3A5Z0ctTlA1 MzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VqZ3Q2am92VzR4TUlnWHNrcDlnRy1OUDUzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjdCMzQvREVDRTNFQkEwNkM2MTFFQUE1MUE2MDIxQzRGOUFFMDIvNTJFNTZGQTgw NkM3MTFFQTg0OTc4ODIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnbnAwDQQCAAIwBwMFACQCiMAwDQYJKoZIhvcNAQELBQAD ggEBABbX9G70mQ1bQ/kuZDBxCiQYa24SD0rnZx6QUeDCMVcnqp0q7k/rI7c9F+lS JO8bNkV1cNdBs0JRtNMONMZmhIW9Ukxvnioy6TWiwrBb/Xj7REvuOgU6zIGUM+Jj ZPvDvBqQe3O/U+6OSDflPVj8WG5lNrNkhtMi3rDWpDY20rttEOaMJNbA1/dSXxhx OZZQ7h7Wx7f1A69YXbK+lVCuhYhHaFqt18Aza3pxcjzNTb3RhfkEmiwN8h10u/F9 uUOvST2tvV6Tl+a5qCpncrvvj4bGBntDV+QwGaFBpg0bt88EzMbgQb24OTYEZob2 9u993AVHhCqQt5E1RJYAjyXovq8= -----END CERTIFICATE-----Generated at Sat Apr 26 05:57:29 2025 by rpki-client