$ rpki-client -vvf rpki.apnic.net/member_repository/A913A7E7/6B923544E6EA11EC99942667C4F9AE02/35C2303AE6FA11EC87D3034DC4F9AE02.roa File: 35C2303AE6FA11EC87D3034DC4F9AE02.roa (raw, json) Hash identifier: xwFfQ62VDe7rBIlaeVRpIKtxnY1xzIwaQ+FoK7Z2AtU= Subject key identifier: BE:AF:38:28:99:E3:E9:C7:00:7A:CF:10:C0:E5:77:27:5C:F2:BA:0E Certificate issuer: /CN=A913A7E7/serialNumber=E65BA8FA65705B8F3BF6EDCD9D0DB10FDADCB916 Certificate serial: 02D3 Authority key identifier: E6:5B:A8:FA:65:70:5B:8F:3B:F6:ED:CD:9D:0D:B1:0F:DA:DC:B9:16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5luo-mVwW4879u3NnQ2xD9rcuRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A7E7/6B923544E6EA11EC99942667C4F9AE02/35C2303AE6FA11EC87D3034DC4F9AE02.roa Signing time: Thu 01 May 2025 01:07:26 +0000 ROA not before: Thu 01 May 2025 01:07:26 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 139355 IP address blocks: 103.184.2.0/23 maxlen: 23 103.184.2.0/24 maxlen: 24 103.184.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A7E7/6B923544E6EA11EC99942667C4F9AE02/5luo-mVwW4879u3NnQ2xD9rcuRY.crl rsync://rpki.apnic.net/member_repository/A913A7E7/6B923544E6EA11EC99942667C4F9AE02/5luo-mVwW4879u3NnQ2xD9rcuRY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5luo-mVwW4879u3NnQ2xD9rcuRY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 01:09:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 723 (0x2d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A7E7, serialNumber=E65BA8FA65705B8F3BF6EDCD9D0DB10FDADCB916 Validity Not Before: May 1 01:07:26 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6812c94e-edba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:2b:b2:0c:89:6d:a5:80:14:9d:08:30:e4:26: a4:fb:bc:a1:ba:c3:32:10:5a:d9:70:a5:95:d2:a6: e3:11:be:e1:88:9f:fa:70:1a:12:a3:18:83:ec:bb: 29:1e:54:f4:ce:28:58:ed:e1:27:7d:e0:b0:04:b2: 43:df:67:aa:51:71:2d:3e:15:be:83:fe:0c:f6:03: 33:85:55:af:c4:78:73:e5:71:9a:1e:63:65:a8:61: 59:6d:df:6f:6b:6c:4e:94:ec:45:dc:d5:16:2a:5d: e3:db:e0:6a:98:8f:f0:2f:5f:7d:e2:ab:4e:8a:40: c7:d3:6c:1f:07:6e:e5:9c:5a:00:a9:ad:09:38:7e: eb:14:04:d7:78:fb:f8:8e:77:98:36:70:60:59:b3: 41:41:d2:4f:94:69:e6:ba:ca:e2:66:cc:f8:87:a3: ea:07:22:b0:71:ea:cb:5b:b2:c5:6d:e2:7e:ac:b3: a2:56:1e:98:fb:af:68:69:72:f1:15:41:3e:b6:0d: bb:19:8c:5f:ae:d5:ed:5b:2c:51:7d:46:e4:97:2f: ef:2f:3c:4d:89:c6:83:af:58:d7:40:8e:9f:c2:e0: 40:ea:0a:13:3e:7e:0c:aa:c2:69:28:51:62:18:bc: 83:ab:88:f5:37:d2:d6:59:38:81:88:f3:ee:0d:de: b3:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:AF:38:28:99:E3:E9:C7:00:7A:CF:10:C0:E5:77:27:5C:F2:BA:0E X509v3 Authority Key Identifier: keyid:E6:5B:A8:FA:65:70:5B:8F:3B:F6:ED:CD:9D:0D:B1:0F:DA:DC:B9:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A7E7/6B923544E6EA11EC99942667C4F9AE02/5luo-mVwW4879u3NnQ2xD9rcuRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5luo-mVwW4879u3NnQ2xD9rcuRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A7E7/6B923544E6EA11EC99942667C4F9AE02/35C2303AE6FA11EC87D3034DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.184.2.0/23 Signature Algorithm: sha256WithRSAEncryption 84:c4:98:1c:04:b9:ac:b9:d2:85:78:ef:7e:19:40:80:b5:f7: 7b:08:0e:52:52:10:5e:2f:e9:7a:1e:45:73:59:2e:38:58:2c: 5c:31:de:d8:de:f3:6a:af:6b:4f:17:00:c4:4b:80:79:94:7b: 40:d6:65:04:3e:89:9e:be:02:f0:90:26:ba:40:d7:86:73:48: 85:ab:98:0e:d3:ef:b8:8c:4e:d0:49:dd:0a:a7:a4:29:5c:df: 58:bd:58:f0:57:1b:24:7e:1d:24:61:54:36:3b:72:43:51:4e: 46:16:af:ca:99:11:87:b1:0c:e7:1a:99:10:f7:78:c8:23:12: e9:25:1c:be:33:49:06:0b:32:97:0f:db:59:17:0c:7d:bb:e3: 31:75:30:eb:6f:b6:56:01:7e:eb:a3:fa:b0:5c:10:58:b7:fc: 01:18:7d:ea:1a:b8:5f:cb:b3:87:47:bb:ce:c8:f0:36:49:a2: f4:7d:46:2b:75:9d:14:b3:4d:e0:bd:42:4d:13:be:bb:4b:fa: 59:34:25:28:32:64:c0:67:a6:0a:b8:fc:40:fb:fa:1e:99:89: d8:85:31:4f:43:bd:b3:ce:6a:01:42:ec:a7:ec:b9:08:da:5e: 26:41:14:c5:0b:fd:7a:1e:f7:d6:f5:dd:da:1e:ca:e8:4c:fe: 01:65:b0:59 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAtMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E3RTcxMTAvBgNVBAUTKEU2NUJBOEZBNjU3MDVCOEYzQkY2RURDRDlEMERCMTBG REFEQ0I5MTYwHhcNMjUwNTAxMDEwNzI2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyYzk0ZS1lZGJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwCuyDIltpYAUnQgw5Cak+7yhusMyEFrZcKWV0qbjEb7hiJ/6cBoSoxiD7Lsp HlT0zihY7eEnfeCwBLJD32eqUXEtPhW+g/4M9gMzhVWvxHhz5XGaHmNlqGFZbd9v a2xOlOxF3NUWKl3j2+BqmI/wL1994qtOikDH02wfB27lnFoAqa0JOH7rFATXePv4 jneYNnBgWbNBQdJPlGnmusriZsz4h6PqByKwcerLW7LFbeJ+rLOiVh6Y+69oaXLx FUE+tg27GYxfrtXtWyxRfUbkly/vLzxNicaDr1jXQI6fwuBA6goTPn4MqsJpKFFi GLyDq4j1N9LWWTiBiPPuDd6z4QIDAQABo4IClTCCApEwHQYDVR0OBBYEFL6vOCiZ 4+nHAHrPEMDldydc8roOMB8GA1UdIwQYMBaAFOZbqPplcFuPO/btzZ0NsQ/a3LkW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTdFNy82QjkyMzU0NEU2 RUExMUVDOTk5NDI2NjdDNEY5QUUwMi81bHVvLW1Wd1c0ODc5dTNOblEyeEQ5cmN1 UlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVsdW8tbVZ3VzQ4Nzl1M05uUTJ4RDlyY3VSWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0E3RTcvNkI5MjM1NDRFNkVBMTFFQzk5OTQyNjY3QzRGOUFFMDIvMzVDMjMwM0FF NkZBMTFFQzg3RDMwMzREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnuAIwDQYJKoZIhvcNAQELBQADggEBAITEmBwEuay50oV4 734ZQIC193sIDlJSEF4v6XoeRXNZLjhYLFwx3tje82qva08XAMRLgHmUe0DWZQQ+ iZ6+AvCQJrpA14ZzSIWrmA7T77iMTtBJ3QqnpClc31i9WPBXGyR+HSRhVDY7ckNR TkYWr8qZEYexDOcamRD3eMgjEuklHL4zSQYLMpcP21kXDH274zF1MOtvtlYBfuuj +rBcEFi3/AEYfeoauF/Ls4dHu87I8DZJovR9Rit1nRSzTeC9Qk0TvrtL+lk0JSgy ZMBnpgq4/ED7+h6ZidiFMU9DvbPOagFC7KfsuQjaXiZBFMUL/Xoe99b13doeyuhM /gFlsFk= -----END CERTIFICATE-----Generated at Tue May 13 15:17:10 2025 by rpki-client