$ rpki-client -vvf rpki.apnic.net/member_repository/A91D92FB/327FC6B21D8811E298F3A3E008B02CD2/3712E24075D911E8A722EC33C4F9AE02.roa File: 3712E24075D911E8A722EC33C4F9AE02.roa (raw, json) Hash identifier: FdTUsXBXGlULvnBF3k+ULhUtZ8ZP1Y0Le1mnqhZZpPY= Subject key identifier: 4F:19:D8:7D:75:73:4B:E7:53:16:7C:82:B9:B0:91:7C:7E:DA:18:67 Certificate issuer: /CN=A91D92FB/serialNumber=4C36F812E76D827ECE6E59BD1560585C51ECD992 Certificate serial: 3489 Authority key identifier: 4C:36:F8:12:E7:6D:82:7E:CE:6E:59:BD:15:60:58:5C:51:EC:D9:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TDb4Eudtgn7Oblm9FWBYXFHs2ZI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D92FB/327FC6B21D8811E298F3A3E008B02CD2/3712E24075D911E8A722EC33C4F9AE02.roa Signing time: Fri 24 Jan 2025 14:50:44 +0000 ROA not before: Fri 24 Jan 2025 14:50:44 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 131584 IP address blocks: 103.226.212.0/23 maxlen: 24 103.226.214.0/24 maxlen: 24 103.226.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D92FB/327FC6B21D8811E298F3A3E008B02CD2/TDb4Eudtgn7Oblm9FWBYXFHs2ZI.crl rsync://rpki.apnic.net/member_repository/A91D92FB/327FC6B21D8811E298F3A3E008B02CD2/TDb4Eudtgn7Oblm9FWBYXFHs2ZI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TDb4Eudtgn7Oblm9FWBYXFHs2ZI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:29:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13449 (0x3489) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D92FB, serialNumber=4C36F812E76D827ECE6E59BD1560585C51ECD992 Validity Not Before: Jan 24 14:50:44 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6793a8c4-05ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:96:af:44:a7:c5:b0:06:e3:da:2e:47:16:14: ce:18:ea:07:32:97:38:35:f9:fe:45:7a:6f:c5:b3: 3b:b9:1f:3b:4f:4c:cb:51:92:3d:1c:79:cc:85:47: 4c:af:69:0a:09:74:dd:3d:54:2e:be:92:1f:7d:68: 01:06:d3:49:e1:41:78:43:c4:95:bc:70:81:cb:e2: b5:70:4a:8a:f0:e0:45:c9:31:46:99:77:b8:1d:b5: ba:ad:b4:14:b9:69:93:06:f9:8b:f4:8e:d5:86:f7: eb:06:12:a7:04:76:5f:fa:e6:e5:98:34:06:fc:9b: 3b:7e:45:1e:9b:d5:f7:f8:e1:69:a5:ad:83:8f:98: 3d:18:98:c2:cf:ba:fe:66:6d:68:00:c1:e9:20:2a: eb:1d:8d:5a:c0:99:c6:17:fa:f7:03:b4:5c:e3:0f: 44:04:90:70:b6:3a:8d:b2:46:fa:c2:cf:de:27:ae: b4:79:a0:2a:b0:b6:69:3f:3c:2e:4c:99:87:d6:08: 6f:35:df:45:63:c1:e6:e0:fb:68:62:56:65:86:ca: 25:0e:38:ff:28:6e:6a:d3:7b:2a:0a:d6:c1:e8:33: 91:cf:b0:89:ec:2b:92:91:90:b4:8d:4c:3a:33:5f: ba:62:5f:91:e7:01:b2:70:ec:87:6b:27:6a:ff:74: 87:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:19:D8:7D:75:73:4B:E7:53:16:7C:82:B9:B0:91:7C:7E:DA:18:67 X509v3 Authority Key Identifier: keyid:4C:36:F8:12:E7:6D:82:7E:CE:6E:59:BD:15:60:58:5C:51:EC:D9:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D92FB/327FC6B21D8811E298F3A3E008B02CD2/TDb4Eudtgn7Oblm9FWBYXFHs2ZI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TDb4Eudtgn7Oblm9FWBYXFHs2ZI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D92FB/327FC6B21D8811E298F3A3E008B02CD2/3712E24075D911E8A722EC33C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.226.212.0/22 Signature Algorithm: sha256WithRSAEncryption 98:aa:e6:29:f1:31:cc:01:db:b8:e1:9f:5d:d2:ec:64:9f:d3: e4:36:ff:18:aa:dc:a5:30:35:31:0e:67:19:0b:f1:04:42:ee: 38:e1:d9:2e:d1:3f:2c:a7:d6:67:3e:a9:8a:34:98:21:91:b4: 6f:04:7b:60:e6:08:b3:64:ea:c8:f3:81:0d:b8:3d:25:e5:45: e8:d0:bf:03:0e:d4:b7:95:ce:2c:75:62:83:d4:01:5e:9e:c9: 9d:d8:45:13:b8:c2:2d:de:d7:c7:37:b2:e9:bb:b6:3b:26:48: 34:f1:4b:07:75:d4:ba:0b:8e:b9:1d:82:e6:25:3c:6d:2e:43: 86:f7:77:bc:15:76:78:8a:dd:37:97:5a:0a:52:aa:79:84:fc: 78:85:2e:41:00:93:01:75:85:1e:8f:c1:dc:c0:d7:5c:98:f5: 2c:55:b2:4b:32:39:57:02:27:03:e6:b9:5c:82:47:49:69:e7: 9c:dd:d7:2f:88:ae:be:e7:bb:44:2a:ae:d0:6f:53:8b:c7:91: e4:04:6c:27:66:fd:6c:b3:b8:87:cf:05:90:7f:24:f9:a7:63: 4d:55:15:d7:ec:08:99:12:9a:68:66:9e:8e:62:c8:fb:ae:58: ec:9e:67:f3:4a:a3:dc:30:70:08:b9:98:84:6b:35:e3:f4:a4: 13:5b:96:6e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDkyRkIxMTAvBgNVBAUTKDRDMzZGODEyRTc2RDgyN0VDRTZFNTlCRDE1NjA1ODVD NTFFQ0Q5OTIwHhcNMjUwMTI0MTQ1MDQ0WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzkzYThjNC0wNWVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzJavRKfFsAbj2i5HFhTOGOoHMpc4Nfn+RXpvxbM7uR87T0zLUZI9HHnMhUdM r2kKCXTdPVQuvpIffWgBBtNJ4UF4Q8SVvHCBy+K1cEqK8OBFyTFGmXe4HbW6rbQU uWmTBvmL9I7VhvfrBhKnBHZf+ublmDQG/Js7fkUem9X3+OFppa2Dj5g9GJjCz7r+ Zm1oAMHpICrrHY1awJnGF/r3A7Rc4w9EBJBwtjqNskb6ws/eJ660eaAqsLZpPzwu TJmH1ghvNd9FY8Hm4PtoYlZlhsolDjj/KG5q03sqCtbB6DORz7CJ7CuSkZC0jUw6 M1+6Yl+R5wGycOyHaydq/3SHOQIDAQABo4IClTCCApEwHQYDVR0OBBYEFE8Z2H11 c0vnUxZ8grmwkXx+2hhnMB8GA1UdIwQYMBaAFEw2+BLnbYJ+zm5ZvRVgWFxR7NmS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOTJGQi8zMjdGQzZCMjFE ODgxMUUyOThGM0EzRTAwOEIwMkNEMi9URGI0RXVkdGduN09ibG05RldCWVhGSHMy WkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1REYjRFdWR0Z243T2JsbTlGV0JZWEZIczJaSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDkyRkIvMzI3RkM2QjIxRDg4MTFFMjk4RjNBM0UwMDhCMDJDRDIvMzcxMkUyNDA3 NUQ5MTFFOEE3MjJFQzMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn4tQwDQYJKoZIhvcNAQELBQADggEBAJiq5inxMcwB27jh n13S7GSf0+Q2/xiq3KUwNTEOZxkL8QRC7jjh2S7RPyyn1mc+qYo0mCGRtG8Ee2Dm CLNk6sjzgQ24PSXlRejQvwMO1LeVzix1YoPUAV6eyZ3YRRO4wi3e18c3sum7tjsm SDTxSwd11LoLjrkdguYlPG0uQ4b3d7wVdniK3TeXWgpSqnmE/HiFLkEAkwF1hR6P wdzA11yY9SxVsksyOVcCJwPmuVyCR0lp55zd1y+Irr7nu0QqrtBvU4vHkeQEbCdm /WyzuIfPBZB/JPmnY01VFdfsCJkSmmhmno5iyPuuWOyeZ/NKo9wwcAi5mIRrNeP0 pBNblm4= -----END CERTIFICATE-----Generated at Sat Apr 26 08:15:43 2025 by rpki-client