$ rpki-client -vvf rpki.apnic.net/member_repository/A91D26C6/58E99E946F7911EBA4D22287C4F9AE02/3B03239684CE11EF9D90A966C4F9AE02.roa File: 3B03239684CE11EF9D90A966C4F9AE02.roa (raw, json) Hash identifier: 0+CvQqBA1GWK9uAje6YI9ltQjscAcIJ8/LtX4JAvJgQ= Subject key identifier: B5:6D:7C:4C:5E:CA:83:D1:09:47:D1:CB:DE:57:FB:A5:56:F4:9B:79 Certificate issuer: /CN=A91D26C6/serialNumber=D29B64E634465AB4132054BB7E83C9D5F18349F7 Certificate serial: 0699 Authority key identifier: D2:9B:64:E6:34:46:5A:B4:13:20:54:BB:7E:83:C9:D5:F1:83:49:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ptk5jRGWrQTIFS7foPJ1fGDSfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D26C6/58E99E946F7911EBA4D22287C4F9AE02/3B03239684CE11EF9D90A966C4F9AE02.roa Signing time: Mon 24 Mar 2025 22:33:24 +0000 ROA not before: Mon 24 Mar 2025 22:33:24 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 150178 IP address blocks: 103.162.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D26C6/58E99E946F7911EBA4D22287C4F9AE02/0ptk5jRGWrQTIFS7foPJ1fGDSfc.crl rsync://rpki.apnic.net/member_repository/A91D26C6/58E99E946F7911EBA4D22287C4F9AE02/0ptk5jRGWrQTIFS7foPJ1fGDSfc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ptk5jRGWrQTIFS7foPJ1fGDSfc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:04:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1689 (0x699) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D26C6, serialNumber=D29B64E634465AB4132054BB7E83C9D5F18349F7 Validity Not Before: Mar 24 22:33:24 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67e1ddb4-3fef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:f5:48:94:97:36:a1:b9:da:d4:26:a6:88:4b: f3:93:84:a1:9f:a7:2a:48:41:aa:fb:6f:49:58:af: b4:a5:94:8f:1a:b0:07:09:5c:ca:d3:89:e1:75:3c: 22:46:dd:5c:8a:97:30:a9:17:b7:76:ae:3d:54:e4: 9c:82:2c:9a:0f:94:f4:28:66:47:87:70:ce:ff:fc: c3:16:6c:69:5d:a4:6b:d8:48:bf:12:ae:97:05:02: 20:a0:d8:cc:89:6d:5a:15:86:76:ed:a6:7a:74:36: 51:30:aa:b8:56:8e:d3:b0:64:27:d0:41:e7:89:ce: b3:a0:8d:b8:34:49:a3:98:32:5b:cd:38:cf:63:7d: 27:85:8c:4a:69:9d:4e:01:82:62:c1:19:49:1b:d4: a4:5d:55:b7:27:50:6a:02:13:44:4f:2c:98:4b:a8: cf:97:1f:03:49:74:91:9a:dd:9e:c5:e7:ec:a5:59: c2:eb:ed:2f:f0:b5:c2:59:05:38:c9:c5:52:bd:58: 12:98:a9:7c:35:cd:07:b2:d9:71:60:eb:9c:47:ba: d2:df:4f:86:56:85:d8:92:cd:b7:bd:9c:a8:f6:1c: 6e:0a:60:c5:73:e2:ef:f0:c6:8e:c3:46:94:df:ae: a1:17:0f:98:1a:9a:6a:8a:0a:68:e5:bb:ab:25:8d: 53:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:6D:7C:4C:5E:CA:83:D1:09:47:D1:CB:DE:57:FB:A5:56:F4:9B:79 X509v3 Authority Key Identifier: keyid:D2:9B:64:E6:34:46:5A:B4:13:20:54:BB:7E:83:C9:D5:F1:83:49:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D26C6/58E99E946F7911EBA4D22287C4F9AE02/0ptk5jRGWrQTIFS7foPJ1fGDSfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ptk5jRGWrQTIFS7foPJ1fGDSfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D26C6/58E99E946F7911EBA4D22287C4F9AE02/3B03239684CE11EF9D90A966C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.162.57.0/24 Signature Algorithm: sha256WithRSAEncryption 27:07:00:0d:bd:24:86:a9:48:28:66:07:17:a8:80:2b:61:6e: 0b:38:89:0b:6f:86:04:4d:39:77:cd:d3:b9:65:83:cd:67:4f: 59:47:20:4c:2b:a0:0e:1f:12:c7:e4:21:18:6c:1d:ca:9f:a1: 2a:66:68:8f:a6:31:1c:6d:fb:fc:69:29:3b:da:b3:67:aa:33: eb:08:36:3f:1c:54:96:b2:c7:53:1b:32:1f:cf:7d:22:78:87: 35:c2:97:62:2c:94:cf:68:66:7e:32:f2:4f:5e:d3:ff:58:e4: 95:cb:d4:0f:55:f6:b7:af:e4:81:6a:2b:15:6a:76:02:0d:98: 73:e8:56:85:6f:7b:56:8d:7b:ca:6e:93:98:f1:d5:8a:d0:39: 8d:b3:41:02:32:bd:c7:41:a7:94:cb:eb:0f:0d:d0:01:f0:1d: 4e:72:7e:84:67:96:07:19:27:dc:cc:8f:1e:5f:04:bb:63:18: a7:1e:4c:ec:76:6b:8f:8f:12:c0:12:a8:98:ed:95:f2:52:35: 73:67:65:93:66:69:40:dd:22:7d:d3:40:f2:45:97:ae:fc:30: 66:1a:cd:29:96:31:b5:4f:70:1b:37:b7:15:08:b1:ad:32:6e: d1:00:6f:e9:f3:76:16:be:e3:e3:d1:64:01:88:e2:b0:00:a3: 21:2a:17:d0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBpkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI2QzYxMTAvBgNVBAUTKEQyOUI2NEU2MzQ0NjVBQjQxMzIwNTRCQjdFODNDOUQ1 RjE4MzQ5RjcwHhcNMjUwMzI0MjIzMzI0WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2UxZGRiNC0zZmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5PVIlJc2obna1CamiEvzk4Shn6cqSEGq+29JWK+0pZSPGrAHCVzK04nhdTwi Rt1cipcwqRe3dq49VOScgiyaD5T0KGZHh3DO//zDFmxpXaRr2Ei/Eq6XBQIgoNjM iW1aFYZ27aZ6dDZRMKq4Vo7TsGQn0EHnic6zoI24NEmjmDJbzTjPY30nhYxKaZ1O AYJiwRlJG9SkXVW3J1BqAhNETyyYS6jPlx8DSXSRmt2exefspVnC6+0v8LXCWQU4 ycVSvVgSmKl8Nc0HstlxYOucR7rS30+GVoXYks23vZyo9hxuCmDFc+Lv8MaOw0aU 366hFw+YGppqigpo5burJY1TCQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLVtfExe yoPRCUfRy95X+6VW9Jt5MB8GA1UdIwQYMBaAFNKbZOY0Rlq0EyBUu36DydXxg0n3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjZDNi81OEU5OUU5NDZG NzkxMUVCQTREMjIyODdDNEY5QUUwMi8wcHRrNWpSR1dyUVRJRlM3Zm9QSjFmR0RT ZmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBwdGs1alJHV3JRVElGUzdmb1BKMWZHRFNmYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDI2QzYvNThFOTlFOTQ2Rjc5MTFFQkE0RDIyMjg3QzRGOUFFMDIvM0IwMzIzOTY4 NENFMTFFRjlEOTBBOTY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnojkwDQYJKoZIhvcNAQELBQADggEBACcHAA29JIapSChm BxeogCthbgs4iQtvhgRNOXfN07llg81nT1lHIEwroA4fEsfkIRhsHcqfoSpmaI+m MRxt+/xpKTvas2eqM+sINj8cVJayx1MbMh/PfSJ4hzXCl2IslM9oZn4y8k9e0/9Y 5JXL1A9V9rev5IFqKxVqdgINmHPoVoVve1aNe8puk5jx1YrQOY2zQQIyvcdBp5TL 6w8N0AHwHU5yfoRnlgcZJ9zMjx5fBLtjGKceTOx2a4+PEsASqJjtlfJSNXNnZZNm aUDdIn3TQPJFl678MGYazSmWMbVPcBs3txUIsa0ybtEAb+nzdha+4+PRZAGI4rAA oyEqF9A= -----END CERTIFICATE-----Generated at Sat Apr 26 15:07:02 2025 by rpki-client