$ rpki-client -vvf rpki.apnic.net/member_repository/A91F37AB/2648459021F311F0A281357AC4F9AE02/3B5A1BBA21F411F0848CDE7EC4F9AE02.roa File: 3B5A1BBA21F411F0848CDE7EC4F9AE02.roa (raw, json) Hash identifier: gGLpwNDKILKj8KiWuRMqmJ+fLEpRADmW87NfmWpK6sE= Subject key identifier: D3:1A:02:6A:7C:17:AA:4D:FD:53:EA:76:75:A8:82:DD:3E:6A:6A:A7 Certificate issuer: /CN=A91F37AB/serialNumber=94C8EF3F2A922EE144AA6F0B66436CA466CC4B0A Certificate serial: 04 Authority key identifier: 94:C8:EF:3F:2A:92:2E:E1:44:AA:6F:0B:66:43:6C:A4:66:CC:4B:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMjvPyqSLuFEqm8LZkNspGbMSwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F37AB/2648459021F311F0A281357AC4F9AE02/3B5A1BBA21F411F0848CDE7EC4F9AE02.roa Signing time: Fri 25 Apr 2025 16:42:10 +0000 ROA not before: Fri 25 Apr 2025 16:42:10 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 396982 IP address blocks: 203.25.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F37AB/2648459021F311F0A281357AC4F9AE02/lMjvPyqSLuFEqm8LZkNspGbMSwo.crl rsync://rpki.apnic.net/member_repository/A91F37AB/2648459021F311F0A281357AC4F9AE02/lMjvPyqSLuFEqm8LZkNspGbMSwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMjvPyqSLuFEqm8LZkNspGbMSwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 16:42:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F37AB, serialNumber=94C8EF3F2A922EE144AA6F0B66436CA466CC4B0A Validity Not Before: Apr 25 16:42:10 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=680bbb62-4be1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ac:33:49:24:3e:b6:b4:ad:b4:a0:47:12:05: 4b:65:3e:9a:40:80:fa:f1:14:98:02:c3:55:2b:b1: cd:3a:6c:27:16:9c:6b:3b:46:d9:6d:10:58:b4:19: a3:9c:49:85:e3:1e:e0:6c:15:67:1d:33:1b:a1:98: 28:88:55:5c:63:b9:82:36:08:65:8e:3d:83:10:d2: c5:83:0b:c9:14:ba:d9:6a:42:ea:f3:95:9b:e0:9d: ff:74:62:97:94:2c:01:d3:d1:5b:8c:06:96:99:ee: 6e:85:76:9b:dc:03:5a:8f:6d:91:ec:3f:1b:5d:35: 8c:b3:90:fa:91:e8:a5:ef:d6:0e:d4:39:8f:e6:fb: 07:ca:e9:c9:59:37:b7:7d:a9:5d:7d:fd:dc:f3:6f: ba:e6:8f:0f:8c:e0:c4:e9:01:43:4e:5e:37:ef:99: 93:d2:a8:f6:5a:1d:64:a4:f8:32:d3:c3:97:f2:11: c6:12:e9:b6:51:b7:89:b6:d8:3a:62:c6:4f:89:12: 5b:69:ef:f0:36:ee:57:e2:0d:85:ee:52:61:e1:15: 6c:16:52:6e:8b:df:04:48:af:cf:a1:a9:02:98:07: 01:ea:80:02:d3:45:08:3c:e6:a8:ec:0c:ed:a8:d9: 2f:a6:9c:7e:07:ba:9f:e5:bb:da:b5:d0:97:da:16: 04:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:1A:02:6A:7C:17:AA:4D:FD:53:EA:76:75:A8:82:DD:3E:6A:6A:A7 X509v3 Authority Key Identifier: keyid:94:C8:EF:3F:2A:92:2E:E1:44:AA:6F:0B:66:43:6C:A4:66:CC:4B:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F37AB/2648459021F311F0A281357AC4F9AE02/lMjvPyqSLuFEqm8LZkNspGbMSwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMjvPyqSLuFEqm8LZkNspGbMSwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F37AB/2648459021F311F0A281357AC4F9AE02/3B5A1BBA21F411F0848CDE7EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.25.240.0/24 Signature Algorithm: sha256WithRSAEncryption 34:4e:70:19:9d:af:6f:22:04:d3:eb:35:4c:08:7f:4f:74:dd: e8:3e:b7:8b:f6:0c:68:72:a7:cc:1a:38:04:ab:8c:fe:1a:c1: 2f:f7:89:99:29:64:98:5b:cf:6b:6c:2f:7c:ca:c5:9e:d2:74: c2:29:d0:d1:ab:6c:cd:d9:e6:a8:9c:fa:ce:09:7d:c4:76:db: 4e:16:5a:f0:bf:60:fd:14:37:37:6d:83:46:d7:ff:ac:72:b1: f8:4a:8d:74:59:da:83:d5:0a:74:a7:7d:12:bf:97:0d:52:87: a0:27:07:e4:b6:97:3b:db:c6:0b:8f:e5:3b:82:d9:74:60:dd: 57:d6:95:ad:45:57:6f:c2:b8:2e:38:e1:38:55:ab:23:05:e8: 11:4a:54:fe:6a:42:27:6e:68:cf:eb:cc:8b:fd:a3:b5:ae:cb: 92:cd:08:0b:43:05:4f:30:e7:a9:43:e4:e9:8a:d4:26:87:f1: b2:3c:75:8e:57:b1:bf:38:2d:b9:36:a9:8c:8c:76:db:c1:c3: 9c:24:f6:86:55:38:04:22:b3:9f:68:f3:dc:ba:b4:91:70:b0: 26:8e:fb:00:3c:55:13:bc:9a:f0:18:de:ae:c3:3d:58:60:70: 6c:35:e8:47:6c:1f:8b:9e:e6:80:3f:90:dc:49:50:c7:cd:e5: f9:fd:71:24 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MzdBQjExMC8GA1UEBRMoOTRDOEVGM0YyQTkyMkVFMTQ0QUE2RjBCNjY0MzZDQTQ2 NkNDNEIwQTAeFw0yNTA0MjUxNjQyMTBaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MGJiYjYyLTRiZTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFrDNJJD62tK20oEcSBUtlPppAgPrxFJgCw1Ursc06bCcWnGs7RtltEFi0GaOc SYXjHuBsFWcdMxuhmCiIVVxjuYI2CGWOPYMQ0sWDC8kUutlqQurzlZvgnf90YpeU LAHT0VuMBpaZ7m6FdpvcA1qPbZHsPxtdNYyzkPqR6KXv1g7UOY/m+wfK6clZN7d9 qV19/dzzb7rmjw+M4MTpAUNOXjfvmZPSqPZaHWSk+DLTw5fyEcYS6bZRt4m22Dpi xk+JEltp7/A27lfiDYXuUmHhFWwWUm6L3wRIr8+hqQKYBwHqgALTRQg85qjsDO2o 2S+mnH4Hup/lu9q10JfaFgQbAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU0xoCanwX qk39U+p2daiC3T5qaqcwHwYDVR0jBBgwFoAUlMjvPyqSLuFEqm8LZkNspGbMSwow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYzN0FCLzI2NDg0NTkwMjFG MzExRjBBMjgxMzU3QUM0RjlBRTAyL2xNanZQeXFTTHVGRXFtOExaa05zcEdiTVN3 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbE1qdlB5cVNMdUZFcW04TFprTnNwR2JNU3dvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MzdBQi8yNjQ4NDU5MDIxRjMxMUYwQTI4MTM1N0FDNEY5QUUwMi8zQjVBMUJCQTIx RjQxMUYwODQ4Q0RFN0VDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMsZ8DANBgkqhkiG9w0BAQsFAAOCAQEANE5wGZ2vbyIE0+s1 TAh/T3Td6D63i/YMaHKnzBo4BKuM/hrBL/eJmSlkmFvPa2wvfMrFntJ0winQ0ats zdnmqJz6zgl9xHbbThZa8L9g/RQ3N22DRtf/rHKx+EqNdFnag9UKdKd9Er+XDVKH oCcH5LaXO9vGC4/lO4LZdGDdV9aVrUVXb8K4LjjhOFWrIwXoEUpU/mpCJ25oz+vM i/2jta7Lks0IC0MFTzDnqUPk6YrUJofxsjx1jlexvzgtuTapjIx228HDnCT2hlU4 BCKzn2jz3Lq0kXCwJo77ADxVE7ya8BjersM9WGBwbDXoR2wfi57mgD+Q3ElQx83l +f1xJA== -----END CERTIFICATE-----Generated at Sat Apr 26 16:38:22 2025 by rpki-client