$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/3285ADDAA9D911EF9F30DA47C4F9AE02.roa File: 3285ADDAA9D911EF9F30DA47C4F9AE02.roa (raw, json) Hash identifier: u80/WP/FyzFGjNMk1YFjGdFPVtQyAbLjV6K7I70DeS4= Subject key identifier: AF:E5:ED:CF:B5:09:26:FF:6B:F8:AD:DD:F5:CD:A7:21:AF:F9:94:F2 Certificate issuer: /CN=A91F9353/serialNumber=ACD047D0D88E2657E12CF91301C160F1D3CD2F33 Certificate serial: DE Authority key identifier: AC:D0:47:D0:D8:8E:26:57:E1:2C:F9:13:01:C1:60:F1:D3:CD:2F:33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNBH0NiOJlfhLPkTAcFg8dPNLzM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/3285ADDAA9D911EF9F30DA47C4F9AE02.roa Signing time: Thu 10 Apr 2025 05:25:57 +0000 ROA not before: Thu 10 Apr 2025 05:25:57 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 152698 IP address blocks: 103.14.23.0/24 maxlen: 24 2001:df3:ad40::/48 maxlen: 48 2001:df3:ad41::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/rNBH0NiOJlfhLPkTAcFg8dPNLzM.crl rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/rNBH0NiOJlfhLPkTAcFg8dPNLzM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNBH0NiOJlfhLPkTAcFg8dPNLzM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:56:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 222 (0xde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9353, serialNumber=ACD047D0D88E2657E12CF91301C160F1D3CD2F33 Validity Not Before: Apr 10 05:25:57 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=67f75664-763a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:4d:52:04:85:93:6e:3d:f3:11:dd:75:43:84: 1b:d1:52:5d:cd:3f:8a:38:3f:9d:1c:57:e0:f4:58: b3:44:28:53:7a:d5:9e:1d:6c:72:e3:46:a1:73:54: 10:4e:ef:79:0a:bb:1b:f4:e9:87:84:c9:41:49:b0: 1d:9f:d6:3e:21:48:02:d9:c7:50:25:d3:cc:b9:14: 33:fb:88:23:c1:d9:05:fb:bf:13:9c:c5:33:d9:c2: d8:59:0c:5c:ef:22:fd:08:98:c4:9e:4f:ae:df:5d: 7a:af:82:0f:b7:13:a4:c3:c2:8e:00:5f:ef:d0:3c: 24:97:d6:29:12:ec:10:48:33:d7:5b:46:83:dc:bd: ca:eb:4b:f2:34:0a:6f:95:d1:6d:8e:59:22:89:13: 39:ec:13:a5:b7:ad:99:5c:76:fe:8c:ef:a9:e0:d4: 3a:04:1c:98:3d:be:d0:d9:e0:8a:ca:ea:83:94:c9: ee:c2:f7:a0:1e:47:a8:74:1c:26:5f:d1:57:e0:59: a3:fa:6c:f5:1b:75:12:5c:2c:45:b7:d9:8d:db:4e: 71:ad:b9:7c:f8:10:c1:43:83:9e:3f:07:8f:93:0f: a5:44:33:53:ec:95:f1:0a:d3:65:01:1b:25:f9:a9: 0f:7e:d7:8d:f4:6a:86:5e:79:a8:13:e9:a2:35:2e: 62:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:E5:ED:CF:B5:09:26:FF:6B:F8:AD:DD:F5:CD:A7:21:AF:F9:94:F2 X509v3 Authority Key Identifier: keyid:AC:D0:47:D0:D8:8E:26:57:E1:2C:F9:13:01:C1:60:F1:D3:CD:2F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/rNBH0NiOJlfhLPkTAcFg8dPNLzM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNBH0NiOJlfhLPkTAcFg8dPNLzM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9353/0875E64805C611EF89620A26C4F9AE02/3285ADDAA9D911EF9F30DA47C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.14.23.0/24 IPv6: 2001:df3:ad40::/47 Signature Algorithm: sha256WithRSAEncryption 4e:f8:84:0a:a4:6b:6d:6e:91:57:96:c2:10:74:a0:3b:79:51: 8a:54:71:eb:49:8a:5c:2f:fe:b8:3c:5d:68:ff:bb:69:d8:71: 93:1f:86:07:8a:a7:8e:f6:3c:6b:0b:f9:88:4a:f9:aa:c9:f5: 2c:df:2c:96:6a:30:c5:8d:3f:f4:ad:06:d5:ee:1e:12:36:c1: 75:b2:48:a6:ed:c2:8e:38:a8:4e:91:ff:bf:97:fb:ea:f0:cd: 5c:a0:9c:78:5f:08:dc:19:83:13:98:df:6b:75:61:2a:9c:a0: ef:ea:ea:64:58:ca:71:d7:02:7b:cf:2e:2a:f5:f2:8d:8b:46: b2:5f:c3:ab:b7:ba:78:e6:c5:86:49:59:f4:49:db:7e:86:aa: f6:69:2d:1c:d1:d1:62:f6:46:70:8a:77:e8:01:04:8d:dd:46: 5e:94:7a:fb:46:0b:b4:9f:9a:7c:44:ab:66:39:ba:08:65:f8: 3a:2f:ff:86:07:57:99:52:a6:5b:ef:98:55:91:42:0e:aa:15: fb:ac:4b:5b:53:35:2a:f0:99:34:1d:a5:12:dd:b6:cd:0f:42: 38:0d:14:55:ec:6e:7c:c4:23:68:33:73:d3:21:46:ca:d7:c9: d3:c3:4e:f2:71:b3:c4:73:22:58:57:b7:d0:70:b9:c7:07:a7: 56:28:96:3f -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjkzNTMxMTAvBgNVBAUTKEFDRDA0N0QwRDg4RTI2NTdFMTJDRjkxMzAxQzE2MEYx RDNDRDJGMzMwHhcNMjUwNDEwMDUyNTU3WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y3NTY2NC03NjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApE1SBIWTbj3zEd11Q4Qb0VJdzT+KOD+dHFfg9FizRChTetWeHWxy40ahc1QQ Tu95Crsb9OmHhMlBSbAdn9Y+IUgC2cdQJdPMuRQz+4gjwdkF+78TnMUz2cLYWQxc 7yL9CJjEnk+u3116r4IPtxOkw8KOAF/v0Dwkl9YpEuwQSDPXW0aD3L3K60vyNApv ldFtjlkiiRM57BOlt62ZXHb+jO+p4NQ6BByYPb7Q2eCKyuqDlMnuwvegHkeodBwm X9FX4Fmj+mz1G3USXCxFt9mN205xrbl8+BDBQ4OePwePkw+lRDNT7JXxCtNlARsl +akPfteN9GqGXnmoE+miNS5iSwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFK/l7c+1 CSb/a/it3fXNpyGv+ZTyMB8GA1UdIwQYMBaAFKzQR9DYjiZX4Sz5EwHBYPHTzS8z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOTM1My8wODc1RTY0ODA1 QzYxMUVGODk2MjBBMjZDNEY5QUUwMi9yTkJIME5pT0psZmhMUGtUQWNGZzhkUE5M ek0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JOQkgwTmlPSmxmaExQa1RBY0ZnOGRQTkx6TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjkzNTMvMDg3NUU2NDgwNUM2MTFFRjg5NjIwQTI2QzRGOUFFMDIvMzI4NUFEREFB OUQ5MTFFRjlGMzBEQTQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnDhcwDwQCAAIwCQMHASABDfOtQDANBgkqhkiG9w0BAQsF AAOCAQEATviECqRrbW6RV5bCEHSgO3lRilRx60mKXC/+uDxdaP+7adhxkx+GB4qn jvY8awv5iEr5qsn1LN8slmowxY0/9K0G1e4eEjbBdbJIpu3CjjioTpH/v5f76vDN XKCceF8I3BmDE5jfa3VhKpyg7+rqZFjKcdcCe88uKvXyjYtGsl/Dq7e6eObFhklZ 9Enbfoaq9mktHNHRYvZGcIp36AEEjd1GXpR6+0YLtJ+afESrZjm6CGX4Oi//hgdX mVKmW++YVZFCDqoV+6xLW1M1KvCZNB2lEt22zQ9COA0UVexufMQjaDNz0yFGytfJ 08NO8nGzxHMiWFe30HC5xwenViiWPw== -----END CERTIFICATE-----Generated at Sat Apr 26 09:11:47 2025 by rpki-client