$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC4FF/9C56BE42845511EFB76D2740C4F9AE02/35525B92845611EFB053C341C4F9AE02.roa File: 35525B92845611EFB053C341C4F9AE02.roa (raw, json) Hash identifier: EALyqga77JnqqbNDgpUBBYz9RBMX9a1r4uv6AF60WLk= Subject key identifier: 1D:02:FE:A1:92:A0:AF:34:3A:FC:C8:97:FC:64:D1:4D:A1:4E:72:B6 Certificate issuer: /CN=A91BC4FF/serialNumber=49475B5975F1979895A3C6E44183E4BCA2E8346F Certificate serial: 5E Authority key identifier: 49:47:5B:59:75:F1:97:98:95:A3:C6:E4:41:83:E4:BC:A2:E8:34:6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUdbWXXxl5iVo8bkQYPkvKLoNG8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC4FF/9C56BE42845511EFB76D2740C4F9AE02/35525B92845611EFB053C341C4F9AE02.roa Signing time: Sun 30 Mar 2025 12:44:41 +0000 ROA not before: Sun 30 Mar 2025 12:44:41 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 140133 IP address blocks: 103.13.72.0/24 maxlen: 24 103.13.73.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC4FF/9C56BE42845511EFB76D2740C4F9AE02/SUdbWXXxl5iVo8bkQYPkvKLoNG8.crl rsync://rpki.apnic.net/member_repository/A91BC4FF/9C56BE42845511EFB76D2740C4F9AE02/SUdbWXXxl5iVo8bkQYPkvKLoNG8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUdbWXXxl5iVo8bkQYPkvKLoNG8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:54:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 94 (0x5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC4FF, serialNumber=49475B5975F1979895A3C6E44183E4BCA2E8346F Validity Not Before: Mar 30 12:44:41 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=67e93cb9-f830 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:cd:d4:9f:6d:bb:1c:ad:33:eb:2f:04:71:a3: 94:05:fc:4b:34:3c:c7:28:a6:99:62:ff:1c:89:be: f4:ff:a4:d7:8f:c6:4d:f1:14:6c:f2:e6:2c:1a:b7: ba:f0:5b:fd:51:ea:c6:71:00:ca:73:1a:75:31:77: 4e:8d:a5:54:90:14:fb:fd:5d:ff:6d:9c:20:b0:2a: a6:2d:85:94:b1:ee:5a:ff:91:fe:39:f9:9e:59:f4: 8b:57:57:02:f1:e8:02:bc:39:7e:6b:20:5d:65:3c: 0e:64:0d:9c:3b:0a:76:eb:f6:a0:16:75:8e:96:2f: 36:93:bd:c1:35:6f:25:95:f6:b4:63:7f:5e:b5:ad: 12:49:96:06:ac:cb:9e:c3:70:19:e8:02:6c:6e:b4: 2b:84:e3:56:07:84:fb:fe:ee:4a:3e:59:22:8b:90: 10:a3:30:06:85:38:5f:94:91:93:7f:d5:4b:9d:29: ac:7b:7f:4f:3f:d1:d8:a0:45:93:4c:ab:6e:58:de: 93:48:90:f1:e1:d1:39:18:40:66:68:b9:76:5c:17: 2e:f9:a8:cc:b7:2e:7d:8d:69:c1:8c:8c:b7:e3:96: c0:1f:37:6b:ca:f1:93:4f:44:b5:10:3c:de:fd:f6: 40:f8:ec:74:bc:8c:cc:bc:d8:1c:c5:a3:27:6e:6b: 62:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:02:FE:A1:92:A0:AF:34:3A:FC:C8:97:FC:64:D1:4D:A1:4E:72:B6 X509v3 Authority Key Identifier: keyid:49:47:5B:59:75:F1:97:98:95:A3:C6:E4:41:83:E4:BC:A2:E8:34:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC4FF/9C56BE42845511EFB76D2740C4F9AE02/SUdbWXXxl5iVo8bkQYPkvKLoNG8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUdbWXXxl5iVo8bkQYPkvKLoNG8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC4FF/9C56BE42845511EFB76D2740C4F9AE02/35525B92845611EFB053C341C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.13.72.0/23 Signature Algorithm: sha256WithRSAEncryption 87:40:09:4e:82:26:21:ad:ed:44:ca:3f:f6:de:21:06:75:92: 88:f7:b7:0a:1c:b6:78:62:24:f8:26:e4:2c:fa:c2:b7:c5:32: f2:d4:d7:79:2e:c7:f9:32:d8:c1:3a:45:2a:b5:41:ac:ff:c7: da:ca:4b:d3:8f:63:8b:17:e0:71:33:55:08:f6:63:37:bf:3d: da:fd:64:ac:25:25:aa:8b:3b:de:3b:fd:3e:d9:77:e2:79:dc: bd:02:5a:c7:a6:73:f7:de:ad:a4:28:0c:d6:20:77:4b:27:0b: 4e:37:64:26:ba:a2:6c:83:d5:af:84:36:a3:d1:1f:b0:d9:d9: 77:7a:8c:23:96:93:e5:99:1d:60:a8:aa:49:fb:41:5a:41:fa: 89:b6:bc:fd:83:59:41:58:91:5c:f9:a6:f8:a7:27:c5:55:24: 55:3a:5b:37:2f:bb:45:14:5d:a3:87:5e:c4:1e:1c:16:aa:c2: b1:fa:63:2d:ec:c0:8c:31:34:19:12:dc:0b:6d:3b:73:95:78: d2:1c:76:d3:b0:58:3f:bc:c2:3c:8d:89:51:04:db:90:4d:25: 10:9e:22:d4:28:4f:d9:84:1d:a9:86:d5:9e:fa:24:b7:da:41: a5:e4:24:03:78:cb:8d:cb:38:e7:f3:ec:87:91:5b:47:d7:85: af:14:58:f3 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBXjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QzRGRjExMC8GA1UEBRMoNDk0NzVCNTk3NUYxOTc5ODk1QTNDNkU0NDE4M0U0QkNB MkU4MzQ2RjAeFw0yNTAzMzAxMjQ0NDFaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZTkzY2I5LWY4MzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4zdSfbbscrTPrLwRxo5QF/Es0PMcoppli/xyJvvT/pNePxk3xFGzy5iwat7rw W/1R6sZxAMpzGnUxd06NpVSQFPv9Xf9tnCCwKqYthZSx7lr/kf45+Z5Z9ItXVwLx 6AK8OX5rIF1lPA5kDZw7Cnbr9qAWdY6WLzaTvcE1byWV9rRjf161rRJJlgasy57D cBnoAmxutCuE41YHhPv+7ko+WSKLkBCjMAaFOF+UkZN/1UudKax7f08/0digRZNM q25Y3pNIkPHh0TkYQGZouXZcFy75qMy3Ln2NacGMjLfjlsAfN2vK8ZNPRLUQPN79 9kD47HS8jMy82BzFoydua2L7AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUHQL+oZKg rzQ6/MiX/GTRTaFOcrYwHwYDVR0jBBgwFoAUSUdbWXXxl5iVo8bkQYPkvKLoNG8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJDNEZGLzlDNTZCRTQyODQ1 NTExRUZCNzZEMjc0MEM0RjlBRTAyL1NVZGJXWFh4bDVpVm84YmtRWVBrdktMb05H OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvU1VkYldYWHhsNWlWbzhia1FZUGt2S0xvTkc4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzRGRi85QzU2QkU0Mjg0NTUxMUVGQjc2RDI3NDBDNEY5QUUwMi8zNTUyNUI5Mjg0 NTYxMUVGQjA1M0MzNDFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWcNSDANBgkqhkiG9w0BAQsFAAOCAQEAh0AJToImIa3tRMo/ 9t4hBnWSiPe3Chy2eGIk+CbkLPrCt8Uy8tTXeS7H+TLYwTpFKrVBrP/H2spL049j ixfgcTNVCPZjN7892v1krCUlqos73jv9Ptl34nncvQJax6Zz996tpCgM1iB3SycL TjdkJrqibIPVr4Q2o9EfsNnZd3qMI5aT5ZkdYKiqSftBWkH6iba8/YNZQViRXPmm +KcnxVUkVTpbNy+7RRRdo4dexB4cFqrCsfpjLezAjDE0GRLcC207c5V40hx207BY P7zCPI2JUQTbkE0lEJ4i1ChP2YQdqYbVnvokt9pBpeQkA3jLjcs45/Psh5FbR9eF rxRY8w== -----END CERTIFICATE-----Generated at Sat Apr 26 07:59:40 2025 by rpki-client