$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/3D60B6FCFA5E11EFB84AF068C4F9AE02.roa File: 3D60B6FCFA5E11EFB84AF068C4F9AE02.roa (raw, json) Hash identifier: Ya8UAl3AvyfkYqVmnBZyGneXfArx61d1F2XHtbOSrtU= Subject key identifier: 53:3C:EB:FB:55:A1:53:9F:8D:DE:95:7A:B4:CB:38:26:21:D4:EA:B2 Certificate issuer: /CN=A91F9B6C/serialNumber=4767B693BD8462EEAFA83D9E803C9D286B621DC8 Certificate serial: 02 Authority key identifier: 47:67:B6:93:BD:84:62:EE:AF:A8:3D:9E:80:3C:9D:28:6B:62:1D:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2e2k72EYu6vqD2egDydKGtiHcg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/3D60B6FCFA5E11EFB84AF068C4F9AE02.roa Signing time: Thu 06 Mar 2025 07:40:13 +0000 ROA not before: Thu 06 Mar 2025 07:40:13 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 58437 IP address blocks: 103.29.250.0/24 maxlen: 24 103.29.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/R2e2k72EYu6vqD2egDydKGtiHcg.crl rsync://rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/R2e2k72EYu6vqD2egDydKGtiHcg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2e2k72EYu6vqD2egDydKGtiHcg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:53:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9B6C, serialNumber=4767B693BD8462EEAFA83D9E803C9D286B621DC8 Validity Not Before: Mar 6 07:40:13 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67c9515d-d64a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:38:24:34:41:9f:8e:02:52:98:bf:fc:4f:cd: 8c:5b:5e:5f:d1:7c:26:76:dd:5c:14:40:13:68:f6: e7:0a:9a:5c:69:9b:65:69:d0:61:41:2b:38:da:2b: 58:d3:c7:ad:6a:06:1b:cc:a2:95:fd:0c:a3:90:06: 37:82:53:24:b9:c4:f4:f9:28:dc:b5:d1:43:69:44: 95:fd:77:a7:44:d8:50:1b:b9:9d:f8:46:8f:8c:d2: 5f:9a:32:38:93:28:e9:25:87:1d:7b:b3:a0:bb:2d: 4c:19:17:87:a0:47:35:82:9e:89:ac:f2:0d:e4:15: 25:2b:9b:cf:31:60:a5:a4:23:31:81:ed:b1:56:3f: af:17:36:26:1d:15:05:73:c1:85:95:18:4e:61:86: d9:a8:11:07:8d:1e:a5:77:0f:b1:f2:4d:02:cb:54: 7a:47:e3:a5:22:43:18:9d:fe:10:90:7f:3a:db:2f: fd:a4:24:52:ff:59:c4:ea:47:b4:4d:57:0a:7d:0b: e0:d0:8c:bf:40:f9:a4:c9:4f:39:21:45:bf:ae:3f: 7b:32:04:6a:bf:1d:5b:0d:1e:ae:af:d0:8c:71:be: aa:96:97:d4:3c:3b:c5:1d:a9:49:2b:bf:19:54:74: 62:6d:6f:c1:b1:e2:bc:58:78:9a:42:9f:78:16:a8: de:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:3C:EB:FB:55:A1:53:9F:8D:DE:95:7A:B4:CB:38:26:21:D4:EA:B2 X509v3 Authority Key Identifier: keyid:47:67:B6:93:BD:84:62:EE:AF:A8:3D:9E:80:3C:9D:28:6B:62:1D:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/R2e2k72EYu6vqD2egDydKGtiHcg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2e2k72EYu6vqD2egDydKGtiHcg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9B6C/D7DB0A08FA5D11EFAE374D68C4F9AE02/3D60B6FCFA5E11EFB84AF068C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.29.250.0/23 Signature Algorithm: sha256WithRSAEncryption c7:1c:5f:3e:fb:65:2e:2c:b8:ee:c6:a7:a3:f7:d6:00:2c:05: ed:9f:41:d8:e4:b4:6e:10:f9:01:ec:26:0d:07:8e:2a:5a:46: 7f:b6:49:c5:ff:5d:33:26:ac:eb:75:c4:51:6e:73:7c:69:67: 17:f3:57:13:8c:ad:07:16:42:73:b5:96:b3:c6:8c:d6:72:b0: d9:54:c5:33:74:e6:58:cf:5a:6f:fd:6f:11:4d:da:36:86:4f: 86:c7:71:cf:11:36:dc:d4:61:db:2a:2e:21:58:18:0a:07:78: ca:1a:07:22:32:18:4a:03:08:aa:ca:1e:21:ed:90:ba:17:fe: 17:33:12:3d:3f:fc:73:5a:0a:5d:a4:5e:0c:5c:69:9b:bf:2a: 69:63:e6:a3:1f:c3:49:81:82:5e:09:2a:85:80:d5:20:1a:f2: c0:f0:ec:8e:94:26:bd:a3:f9:d9:e0:6a:75:97:0a:95:5a:49: ba:1e:ab:f8:cb:d4:2c:28:51:fc:16:de:d9:5d:c4:b1:3f:b6: ed:db:3c:06:28:c6:1b:0d:13:9c:10:d7:17:67:27:4f:f1:4d: 9f:24:5c:6b:97:38:83:f2:a0:d0:8d:84:ee:22:d0:cb:13:24: 7e:f9:72:69:a5:c9:d7:3c:b5:8e:f4:c6:3c:64:b5:18:02:3d: 86:e8:01:65 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG OUI2QzExMC8GA1UEBRMoNDc2N0I2OTNCRDg0NjJFRUFGQTgzRDlFODAzQzlEMjg2 QjYyMURDODAeFw0yNTAzMDYwNzQwMTNaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3Yzk1MTVkLWQ2NGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDeOCQ0QZ+OAlKYv/xPzYxbXl/RfCZ23VwUQBNo9ucKmlxpm2Vp0GFBKzjaK1jT x61qBhvMopX9DKOQBjeCUyS5xPT5KNy10UNpRJX9d6dE2FAbuZ34Ro+M0l+aMjiT KOklhx17s6C7LUwZF4egRzWCnoms8g3kFSUrm88xYKWkIzGB7bFWP68XNiYdFQVz wYWVGE5hhtmoEQeNHqV3D7HyTQLLVHpH46UiQxid/hCQfzrbL/2kJFL/WcTqR7RN Vwp9C+DQjL9A+aTJTzkhRb+uP3syBGq/HVsNHq6v0IxxvqqWl9Q8O8UdqUkrvxlU dGJtb8Gx4rxYeJpCn3gWqN7zAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUUzzr+1Wh U5+N3pV6tMs4JiHU6rIwHwYDVR0jBBgwFoAUR2e2k72EYu6vqD2egDydKGtiHcgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY5QjZDL0Q3REIwQTA4RkE1 RDExRUZBRTM3NEQ2OEM0RjlBRTAyL1IyZTJrNzJFWXU2dnFEMmVnRHlkS0d0aUhj Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUjJlMms3MkVZdTZ2cUQyZWdEeWRLR3RpSGNnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OUI2Qy9EN0RCMEEwOEZBNUQxMUVGQUUzNzRENjhDNEY5QUUwMi8zRDYwQjZGQ0ZB NUUxMUVGQjg0QUYwNjhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWcd+jANBgkqhkiG9w0BAQsFAAOCAQEAxxxfPvtlLiy47san o/fWACwF7Z9B2OS0bhD5AewmDQeOKlpGf7ZJxf9dMyas63XEUW5zfGlnF/NXE4yt BxZCc7WWs8aM1nKw2VTFM3TmWM9ab/1vEU3aNoZPhsdxzxE23NRh2youIVgYCgd4 yhoHIjIYSgMIqsoeIe2Quhf+FzMSPT/8c1oKXaReDFxpm78qaWPmox/DSYGCXgkq hYDVIBrywPDsjpQmvaP52eBqdZcKlVpJuh6r+MvULChR/Bbe2V3EsT+27ds8BijG Gw0TnBDXF2cnT/FNnyRca5c4g/Kg0I2E7iLQyxMkfvlyaaXJ1zy1jvTGPGS1GAI9 hugBZQ== -----END CERTIFICATE-----Generated at Sat Apr 26 08:29:13 2025 by rpki-client