$ rpki-client -vvf rpki.apnic.net/member_repository/A91D65C2/76EE795CB06011EEBBBF657CC4F9AE02/C3A53484B06011EEA1D18B7FC4F9AE02.roa File: C3A53484B06011EEA1D18B7FC4F9AE02.roa (raw, json) Hash identifier: 6BXa0l0XZh/eGvl4ynq5V2Aj3lZVf/u92wrWO9e9+lA= Subject key identifier: 46:5F:BA:B7:E9:FB:E8:66:2B:21:C3:6B:3E:F1:24:8D:9B:B3:C4:99 Certificate issuer: /CN=A91D65C2/serialNumber=0913A2E29C24700E21431E04C1E3497FD5F9A800 Certificate serial: F6 Authority key identifier: 09:13:A2:E2:9C:24:70:0E:21:43:1E:04:C1:E3:49:7F:D5:F9:A8:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CROi4pwkcA4hQx4EweNJf9X5qAA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D65C2/76EE795CB06011EEBBBF657CC4F9AE02/C3A53484B06011EEA1D18B7FC4F9AE02.roa Signing time: Sat 05 Apr 2025 05:10:22 +0000 ROA not before: Sat 05 Apr 2025 05:10:22 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 151630 IP address blocks: 103.149.182.0/23 maxlen: 23 103.149.182.0/24 maxlen: 24 103.149.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D65C2/76EE795CB06011EEBBBF657CC4F9AE02/CROi4pwkcA4hQx4EweNJf9X5qAA.crl rsync://rpki.apnic.net/member_repository/A91D65C2/76EE795CB06011EEBBBF657CC4F9AE02/CROi4pwkcA4hQx4EweNJf9X5qAA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CROi4pwkcA4hQx4EweNJf9X5qAA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:19:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 246 (0xf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D65C2, serialNumber=0913A2E29C24700E21431E04C1E3497FD5F9A800 Validity Not Before: Apr 5 05:10:22 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67f0bb3e-71a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:aa:34:48:bc:86:ce:74:1b:40:4e:81:7b:71: 8a:ee:86:12:c6:0b:25:72:a4:c2:6e:62:6c:b1:f0: 2a:a9:47:70:27:fd:00:a2:eb:82:b5:cb:4a:3d:40: 78:ce:c2:b6:38:f0:25:25:9f:9f:d6:c1:7a:b9:19: 90:87:f3:c5:e1:67:06:38:50:0b:50:c6:9b:04:6c: af:38:ca:12:33:c7:73:5a:1a:77:37:3f:27:eb:44: 73:d2:32:1e:35:55:f0:47:ee:36:f3:cf:4d:2f:6a: c7:87:bc:74:a3:21:07:ca:43:bd:cf:04:94:f3:f9: 51:a2:b6:7a:a1:7c:7f:e4:1b:ca:66:73:29:99:97: 6b:a2:64:1b:c1:9f:f4:15:59:42:9b:80:89:51:46: 4a:b2:39:0f:27:44:c3:6d:92:61:8d:c5:a1:29:00: 45:99:b1:f3:96:1f:5d:52:36:46:3d:72:47:74:66: e9:cf:8a:2a:64:e1:b7:a4:5c:ee:a7:e7:de:32:3f: 56:f0:42:4f:5d:9d:65:78:8f:ea:da:7f:18:d3:f5: dc:9b:23:e9:77:02:35:36:b8:de:1a:19:03:01:f6: 1a:31:d4:06:1b:82:51:80:9c:41:4f:89:61:3d:82: de:fa:57:fb:fb:57:f2:d8:1e:62:55:00:3e:02:42: 20:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:5F:BA:B7:E9:FB:E8:66:2B:21:C3:6B:3E:F1:24:8D:9B:B3:C4:99 X509v3 Authority Key Identifier: keyid:09:13:A2:E2:9C:24:70:0E:21:43:1E:04:C1:E3:49:7F:D5:F9:A8:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D65C2/76EE795CB06011EEBBBF657CC4F9AE02/CROi4pwkcA4hQx4EweNJf9X5qAA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CROi4pwkcA4hQx4EweNJf9X5qAA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D65C2/76EE795CB06011EEBBBF657CC4F9AE02/C3A53484B06011EEA1D18B7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.149.182.0/23 Signature Algorithm: sha256WithRSAEncryption 47:a1:7d:03:f5:ce:b0:48:fc:63:74:17:79:7f:eb:6c:76:5b: 86:4d:95:ec:c8:62:3e:28:2b:b7:9a:1f:ec:3f:4c:ce:84:fb: d1:f9:6c:5a:e5:41:5a:b0:8f:3c:a4:92:fb:fd:99:6a:ea:bc: 74:d3:54:50:f8:d6:b9:07:15:5e:15:78:71:7a:d8:8d:60:5d: f8:2e:40:53:c1:55:3c:9b:d5:f8:60:05:a8:a7:fa:1a:f5:63: 34:1a:50:84:4a:47:18:4a:a6:d9:b3:bb:26:28:ab:5a:2f:aa: c0:b2:07:51:5a:8b:bc:80:ea:47:c7:f0:48:65:6a:35:82:02: 90:ad:21:0b:ab:23:18:7b:cb:62:1e:3e:ac:a6:73:a4:e5:f7: 1b:15:dc:83:85:4c:2e:85:53:98:81:68:77:96:45:31:62:2c: f5:a7:a3:e2:d3:46:7d:dc:25:3d:15:31:a7:88:90:dc:95:79: 3f:ce:a6:79:96:43:6b:e1:d5:74:fc:17:5c:ef:87:88:1c:c4: 59:38:25:8d:98:69:58:e7:6f:e4:e2:c7:19:6b:26:8e:61:e5: 84:e5:8b:86:48:53:3c:53:03:29:4f:c3:82:b9:ad:9f:94:7b: a6:df:a1:aa:0e:84:9f:ca:f7:93:49:96:06:a5:09:e8:ff:c6: 6f:f4:98:51 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY1QzIxMTAvBgNVBAUTKDA5MTNBMkUyOUMyNDcwMEUyMTQzMUUwNEMxRTM0OTdG RDVGOUE4MDAwHhcNMjUwNDA1MDUxMDIyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2YwYmIzZS03MWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArKo0SLyGznQbQE6Be3GK7oYSxgslcqTCbmJssfAqqUdwJ/0AouuCtctKPUB4 zsK2OPAlJZ+f1sF6uRmQh/PF4WcGOFALUMabBGyvOMoSM8dzWhp3Nz8n60Rz0jIe NVXwR+42889NL2rHh7x0oyEHykO9zwSU8/lRorZ6oXx/5BvKZnMpmZdromQbwZ/0 FVlCm4CJUUZKsjkPJ0TDbZJhjcWhKQBFmbHzlh9dUjZGPXJHdGbpz4oqZOG3pFzu p+feMj9W8EJPXZ1leI/q2n8Y0/XcmyPpdwI1NrjeGhkDAfYaMdQGG4JRgJxBT4lh PYLe+lf7+1fy2B5iVQA+AkIgRwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEZfurfp ++hmKyHDaz7xJI2bs8SZMB8GA1UdIwQYMBaAFAkTouKcJHAOIUMeBMHjSX/V+agA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjVDMi83NkVFNzk1Q0Iw NjAxMUVFQkJCRjY1N0NDNEY5QUUwMi9DUk9pNHB3a2NBNGhReDRFd2VOSmY5WDVx QUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NST2k0cHdrY0E0aFF4NEV3ZU5KZjlYNXFBQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDY1QzIvNzZFRTc5NUNCMDYwMTFFRUJCQkY2NTdDQzRGOUFFMDIvQzNBNTM0ODRC MDYwMTFFRUExRDE4QjdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnlbYwDQYJKoZIhvcNAQELBQADggEBAEehfQP1zrBI/GN0 F3l/62x2W4ZNlezIYj4oK7eaH+w/TM6E+9H5bFrlQVqwjzykkvv9mWrqvHTTVFD4 1rkHFV4VeHF62I1gXfguQFPBVTyb1fhgBain+hr1YzQaUIRKRxhKptmzuyYoq1ov qsCyB1Fai7yA6kfH8EhlajWCApCtIQurIxh7y2IePqymc6Tl9xsV3IOFTC6FU5iB aHeWRTFiLPWno+LTRn3cJT0VMaeIkNyVeT/OpnmWQ2vh1XT8F1zvh4gcxFk4JY2Y aVjnb+TixxlrJo5h5YTli4ZIUzxTAylPw4K5rZ+Ue6bfoaoOhJ/K95NJlgalCej/ xm/0mFE= -----END CERTIFICATE-----Generated at Sat Apr 26 13:38:34 2025 by rpki-client