$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/F3B716768F2F11EE86964D62C4F9AE02.roa File: F3B716768F2F11EE86964D62C4F9AE02.roa (raw, json) Hash identifier: ha92JVkNr7PUBbGWqelnj/HD1On/JDH9j7luLKpb+Ec= Subject key identifier: 85:A1:81:05:4A:CF:6B:85:60:EE:6D:52:2B:B7:79:20:FD:D8:1E:9A Certificate issuer: /CN=A91DE2AE/serialNumber=697620515E7B1EE8AC7F3F6D13BEAEBA62C4EDA9 Certificate serial: 01D1 Authority key identifier: 69:76:20:51:5E:7B:1E:E8:AC:7F:3F:6D:13:BE:AE:BA:62:C4:ED:A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aXYgUV57Huisfz9tE76uumLE7ak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/F3B716768F2F11EE86964D62C4F9AE02.roa Signing time: Fri 25 Apr 2025 02:29:12 +0000 ROA not before: Fri 25 Apr 2025 02:29:12 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 140721 IP address blocks: 103.152.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/aXYgUV57Huisfz9tE76uumLE7ak.crl rsync://rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/aXYgUV57Huisfz9tE76uumLE7ak.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aXYgUV57Huisfz9tE76uumLE7ak.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:29:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 465 (0x1d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE2AE, serialNumber=697620515E7B1EE8AC7F3F6D13BEAEBA62C4EDA9 Validity Not Before: Apr 25 02:29:12 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=680af377-cd82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:99:12:1b:89:58:06:cd:54:b6:95:cd:5b:c0: 5f:d2:1c:31:63:de:fe:24:41:eb:22:3d:1b:a2:41: 36:ca:4b:6d:56:7d:d2:2d:e7:3a:aa:70:1a:cf:6f: ab:9f:de:59:e2:fa:fc:4a:21:d6:4a:67:87:c7:2a: 3f:66:ae:11:c9:ca:ab:e3:f1:7f:a4:f7:fa:4a:a5: 41:ee:0f:6c:a4:c5:fd:e1:34:5f:03:f7:d1:19:0e: 3c:23:3d:bc:1b:37:e1:22:4b:6e:c0:16:20:b0:aa: ff:28:66:19:0b:de:86:c2:7f:47:f2:e9:0b:da:cf: a2:8f:d3:5f:a5:3c:bd:5b:59:38:37:40:5e:dc:00: 8c:75:ba:1f:68:42:bb:05:f9:3d:68:75:1e:3e:c2: 4a:5d:f9:95:c1:9e:78:54:46:41:1b:a0:fc:c2:f8: 5d:3f:0e:cc:bf:cc:77:a2:38:90:d5:83:5d:26:87: 35:d0:86:d2:29:f0:02:94:19:da:65:99:8e:ab:77: 02:95:33:84:20:cc:03:96:70:ba:50:a1:8e:f0:43: 3a:a7:7f:81:44:df:6f:ec:4d:38:73:4c:c9:8e:b0: 66:cb:85:f2:af:c7:e2:23:f7:b8:d4:b7:87:59:3e: 35:e2:4f:a1:3c:55:e9:95:7c:8a:61:29:c3:05:c1: 75:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:A1:81:05:4A:CF:6B:85:60:EE:6D:52:2B:B7:79:20:FD:D8:1E:9A X509v3 Authority Key Identifier: keyid:69:76:20:51:5E:7B:1E:E8:AC:7F:3F:6D:13:BE:AE:BA:62:C4:ED:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/aXYgUV57Huisfz9tE76uumLE7ak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aXYgUV57Huisfz9tE76uumLE7ak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/F3B716768F2F11EE86964D62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.43.0/24 Signature Algorithm: sha256WithRSAEncryption 42:99:e9:d0:d5:e8:62:7e:00:da:2a:63:eb:51:e9:dc:f4:7a: b4:9d:30:ca:96:a6:80:dc:30:8d:2d:0e:d1:9b:48:de:4b:fe: 45:24:10:6d:25:9e:33:02:fa:59:a1:b8:48:dc:77:33:4a:39: fb:80:c6:10:3d:09:3a:96:8d:e3:0f:5b:67:50:5b:2c:58:de: d7:be:71:6d:83:b6:b3:0f:31:03:07:61:3d:c4:e1:92:96:a3: fb:89:2e:13:17:a7:7a:bb:4e:f2:31:b8:bf:ff:3d:ff:52:dc: 81:77:2b:64:12:b2:61:4f:22:1f:2c:92:ac:0b:03:f1:74:8c: f9:89:41:24:fe:f9:ab:08:7e:48:4f:b7:d2:d7:73:fa:ee:64: 28:36:1f:57:29:09:09:66:d7:d4:d6:0d:b8:83:fb:6d:7e:57: 06:53:03:62:88:50:d9:d2:e5:6e:bd:53:5d:16:dd:38:55:57: 4e:a5:ec:7a:2f:da:c3:ca:92:e8:a5:8b:6a:6e:d1:9e:f4:aa: 82:06:93:39:e6:98:68:04:45:2d:ee:29:d5:bf:4a:2b:c4:14: cd:9d:b0:0a:f5:8f:91:bf:8d:19:95:29:a7:b3:66:e4:09:39: ac:8b:c9:eb:aa:0f:17:40:82:d2:27:22:c8:ed:03:75:ad:f0: f9:17:09:5b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAdEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REUyQUUxMTAvBgNVBAUTKDY5NzYyMDUxNUU3QjFFRThBQzdGM0Y2RDEzQkVBRUJB NjJDNEVEQTkwHhcNMjUwNDI1MDIyOTEyWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODBhZjM3Ny1jZDgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvZkSG4lYBs1UtpXNW8Bf0hwxY97+JEHrIj0bokE2ykttVn3SLec6qnAaz2+r n95Z4vr8SiHWSmeHxyo/Zq4Rycqr4/F/pPf6SqVB7g9spMX94TRfA/fRGQ48Iz28 GzfhIktuwBYgsKr/KGYZC96Gwn9H8ukL2s+ij9NfpTy9W1k4N0Be3ACMdbofaEK7 Bfk9aHUePsJKXfmVwZ54VEZBG6D8wvhdPw7Mv8x3ojiQ1YNdJoc10IbSKfAClBna ZZmOq3cClTOEIMwDlnC6UKGO8EM6p3+BRN9v7E04c0zJjrBmy4Xyr8fiI/e41LeH WT414k+hPFXplXyKYSnDBcF18QIDAQABo4IClTCCApEwHQYDVR0OBBYEFIWhgQVK z2uFYO5tUiu3eSD92B6aMB8GA1UdIwQYMBaAFGl2IFFeex7orH8/bRO+rrpixO2p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTJBRS9DNzBGRUEyQThD MjAxMUVEQURENUM4MDlDNEY5QUUwMi9hWFlnVVY1N0h1aXNmejl0RTc2dXVtTEU3 YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FYWWdVVjU3SHVpc2Z6OXRFNzZ1dW1MRTdhay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REUyQUUvQzcwRkVBMkE4QzIwMTFFREFERDVDODA5QzRGOUFFMDIvRjNCNzE2NzY4 RjJGMTFFRTg2OTY0RDYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnmCswDQYJKoZIhvcNAQELBQADggEBAEKZ6dDV6GJ+ANoq Y+tR6dz0erSdMMqWpoDcMI0tDtGbSN5L/kUkEG0lnjMC+lmhuEjcdzNKOfuAxhA9 CTqWjeMPW2dQWyxY3te+cW2DtrMPMQMHYT3E4ZKWo/uJLhMXp3q7TvIxuL//Pf9S 3IF3K2QSsmFPIh8skqwLA/F0jPmJQST++asIfkhPt9LXc/ruZCg2H1cpCQlm19TW DbiD+21+VwZTA2KIUNnS5W69U10W3ThVV06l7Hov2sPKkuili2pu0Z70qoIGkznm mGgERS3uKdW/SivEFM2dsAr1j5G/jRmVKaezZuQJOayLyeuqDxdAgtInIsjtA3Wt 8PkXCVs= -----END CERTIFICATE-----Generated at Sat Apr 26 08:00:25 2025 by rpki-client