$ rpki-client -vvf rpki.apnic.net/member_repository/A91F37AB/2648459021F311F0A281357AC4F9AE02/3B5A1BBA21F411F0848CDE7EC4F9AE02.roa File: 3B5A1BBA21F411F0848CDE7EC4F9AE02.roa (raw, json) Hash identifier: Jax3Kvx2J0ODr5GgDNYrVUtv6/aFnopa2LSsnYbiSlg= Subject key identifier: 84:57:13:8D:24:46:33:79:82:47:90:9D:6E:1C:05:F2:4A:79:2B:AA Certificate issuer: /CN=A91F37AB/serialNumber=94C8EF3F2A922EE144AA6F0B66436CA466CC4B0A Certificate serial: 1B Authority key identifier: 94:C8:EF:3F:2A:92:2E:E1:44:AA:6F:0B:66:43:6C:A4:66:CC:4B:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMjvPyqSLuFEqm8LZkNspGbMSwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F37AB/2648459021F311F0A281357AC4F9AE02/3B5A1BBA21F411F0848CDE7EC4F9AE02.roa Signing time: Tue 03 Jun 2025 08:17:53 +0000 ROA not before: Tue 03 Jun 2025 08:17:53 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 396982 IP address blocks: 203.25.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F37AB/2648459021F311F0A281357AC4F9AE02/lMjvPyqSLuFEqm8LZkNspGbMSwo.crl rsync://rpki.apnic.net/member_repository/A91F37AB/2648459021F311F0A281357AC4F9AE02/lMjvPyqSLuFEqm8LZkNspGbMSwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMjvPyqSLuFEqm8LZkNspGbMSwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 07:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27 (0x1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F37AB, serialNumber=94C8EF3F2A922EE144AA6F0B66436CA466CC4B0A Validity Not Before: Jun 3 08:17:53 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=683eafb1-94be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:5e:e8:fb:6e:ea:a6:d8:54:04:b3:7e:3a:ba: ed:1a:b0:1f:bc:02:f6:1a:92:31:b4:a1:b7:d4:16: f5:4b:e0:3e:94:82:b7:be:40:80:a3:63:c6:bf:37: 27:b0:e5:bd:91:61:e1:29:a0:d2:e1:e2:33:80:ef: b1:73:26:bc:3c:b1:dc:de:a0:ff:c2:2d:fa:77:11: f9:95:ee:0e:c7:d5:d6:79:62:58:88:cd:f5:dd:35: db:ca:99:4b:13:b9:5f:3a:f4:4e:94:1b:a3:30:19: 17:90:f5:7e:92:33:67:b2:50:90:0c:f2:7e:64:37: da:64:63:17:7d:34:f6:0c:8b:a9:08:ba:ae:4f:34: 7f:ad:2d:51:ac:29:e6:20:57:92:f6:de:eb:b4:64: 57:46:01:32:86:3b:79:9e:f6:58:64:12:e6:e0:c0: 08:bc:9e:c1:91:7e:d5:6e:64:4d:14:df:f1:a0:66: 4a:52:a1:c2:5f:ed:6a:33:8c:73:ec:ed:61:da:b1: 16:3b:2b:a9:d0:3d:a7:45:24:61:b8:b1:ea:b2:75: f2:4e:e1:bd:3a:c6:70:a7:b1:c2:09:40:d7:d6:03: 63:66:51:f7:20:dc:24:e4:10:b1:bc:fa:79:b3:d4: 43:d9:93:f5:44:76:9d:b6:8d:fe:c5:3a:02:c6:b6: 68:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:57:13:8D:24:46:33:79:82:47:90:9D:6E:1C:05:F2:4A:79:2B:AA X509v3 Authority Key Identifier: keyid:94:C8:EF:3F:2A:92:2E:E1:44:AA:6F:0B:66:43:6C:A4:66:CC:4B:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F37AB/2648459021F311F0A281357AC4F9AE02/lMjvPyqSLuFEqm8LZkNspGbMSwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lMjvPyqSLuFEqm8LZkNspGbMSwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F37AB/2648459021F311F0A281357AC4F9AE02/3B5A1BBA21F411F0848CDE7EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.25.240.0/24 Signature Algorithm: sha256WithRSAEncryption 92:ce:3f:9b:c5:88:1d:5a:4b:a8:8f:6f:d4:77:1e:65:f4:c9: af:bf:9f:14:49:7b:b6:6d:a6:e5:92:b2:24:7e:33:c1:aa:49: 54:26:0b:2d:ba:5e:a1:96:97:ed:54:b7:86:53:90:80:c1:74: 03:01:0d:76:e8:62:fa:f2:85:a3:8e:36:15:02:97:4d:5d:1d: d4:b1:8c:35:a2:25:aa:9f:07:8a:10:03:e7:23:ec:e8:72:d7: d2:49:ce:47:e9:d5:3d:a8:db:f6:a4:ba:23:69:48:50:a3:6e: 89:70:24:e5:11:e8:f8:aa:0d:78:35:43:ba:a0:78:65:13:55: c5:ae:ca:07:36:36:50:d2:af:00:a1:db:ca:30:b0:95:d9:f6: 27:ef:9f:3b:34:9f:7b:37:08:9e:4a:d8:24:d5:b9:72:c2:2d: 3d:5e:6b:16:7e:fb:08:ca:f5:df:96:40:b3:d2:4d:59:87:d9: ef:cc:fa:d1:4f:f5:44:f4:75:72:ad:90:ba:2d:88:c4:d8:90: e8:cd:93:e1:3d:2a:b9:94:3c:b9:b6:67:af:6d:11:f3:98:27: 5c:6b:22:cb:92:1e:b6:47:00:b6:7e:7e:68:30:6a:9f:d1:19: 0f:07:c4:49:2b:4f:a4:81:66:5a:fd:75:ca:4d:e0:84:70:c2: 22:fa:b7:4c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBGzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MzdBQjExMC8GA1UEBRMoOTRDOEVGM0YyQTkyMkVFMTQ0QUE2RjBCNjY0MzZDQTQ2 NkNDNEIwQTAeFw0yNTA2MDMwODE3NTNaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4M2VhZmIxLTk0YmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCmXuj7buqm2FQEs346uu0asB+8AvYakjG0obfUFvVL4D6Ugre+QICjY8a/Nyew 5b2RYeEpoNLh4jOA77FzJrw8sdzeoP/CLfp3EfmV7g7H1dZ5YliIzfXdNdvKmUsT uV869E6UG6MwGReQ9X6SM2eyUJAM8n5kN9pkYxd9NPYMi6kIuq5PNH+tLVGsKeYg V5L23uu0ZFdGATKGO3me9lhkEubgwAi8nsGRftVuZE0U3/GgZkpSocJf7WozjHPs 7WHasRY7K6nQPadFJGG4seqydfJO4b06xnCnscIJQNfWA2NmUfcg3CTkELG8+nmz 1EPZk/VEdp22jf7FOgLGtminAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUhFcTjSRG M3mCR5CdbhwF8kp5K6owHwYDVR0jBBgwFoAUlMjvPyqSLuFEqm8LZkNspGbMSwow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYzN0FCLzI2NDg0NTkwMjFG MzExRjBBMjgxMzU3QUM0RjlBRTAyL2xNanZQeXFTTHVGRXFtOExaa05zcEdiTVN3 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbE1qdlB5cVNMdUZFcW04TFprTnNwR2JNU3dvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MzdBQi8yNjQ4NDU5MDIxRjMxMUYwQTI4MTM1N0FDNEY5QUUwMi8zQjVBMUJCQTIx RjQxMUYwODQ4Q0RFN0VDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMsZ8DANBgkqhkiG9w0BAQsFAAOCAQEAks4/m8WIHVpLqI9v 1HceZfTJr7+fFEl7tm2m5ZKyJH4zwapJVCYLLbpeoZaX7VS3hlOQgMF0AwENduhi +vKFo442FQKXTV0d1LGMNaIlqp8HihAD5yPs6HLX0knOR+nVPajb9qS6I2lIUKNu iXAk5RHo+KoNeDVDuqB4ZRNVxa7KBzY2UNKvAKHbyjCwldn2J++fOzSfezcInkrY JNW5csItPV5rFn77CMr135ZAs9JNWYfZ78z60U/1RPR1cq2Qui2IxNiQ6M2T4T0q uZQ8ubZnr20R85gnXGsiy5IetkcAtn5+aDBqn9EZDwfESStPpIFmWv11yk3ghHDC Ivq3TA== -----END CERTIFICATE-----Generated at Mon Jun 16 09:53:54 2025 by rpki-client