$ rpki-client -vvf rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/3BFEA04CB6A611EDAF611B68C4F9AE02.roa File: 3BFEA04CB6A611EDAF611B68C4F9AE02.roa (raw, json) Hash identifier: w55707A6oGZPVJb5dLEvH7DmAsCJ21ZtMMUXzrwNCRM= Subject key identifier: 22:03:BC:AA:A6:F4:CA:C3:E7:A6:AB:23:24:5A:62:B8:F9:E4:30:E0 Certificate issuer: /CN=A9178AF2/serialNumber=1005CCD5E18230FBA9ADD3D27F85DA38F13E4172 Certificate serial: 03A1 Authority key identifier: 10:05:CC:D5:E1:82:30:FB:A9:AD:D3:D2:7F:85:DA:38:F1:3E:41:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EAXM1eGCMPuprdPSf4XaOPE-QXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/3BFEA04CB6A611EDAF611B68C4F9AE02.roa Signing time: Wed 07 May 2025 01:38:24 +0000 ROA not before: Wed 07 May 2025 01:38:24 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 55933 IP address blocks: 45.113.81.0/24 maxlen: 24 103.24.0.0/22 maxlen: 24 103.229.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/EAXM1eGCMPuprdPSf4XaOPE-QXI.crl rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/EAXM1eGCMPuprdPSf4XaOPE-QXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EAXM1eGCMPuprdPSf4XaOPE-QXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 00:53:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 929 (0x3a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178AF2, serialNumber=1005CCD5E18230FBA9ADD3D27F85DA38F13E4172 Validity Not Before: May 7 01:38:24 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681ab98f-373d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:4f:01:ee:19:ce:98:cb:d8:c9:f9:50:e4:b1: df:c6:b1:d4:d8:09:30:4c:6d:f9:75:77:fe:a3:99: 73:cf:13:64:4d:15:ac:ba:dc:f7:7b:c8:0f:5a:44: 93:40:48:ff:e3:ad:f3:17:a6:83:10:4c:79:4f:9b: 07:d6:17:96:5c:13:09:b5:df:a3:c2:25:22:c1:e6: e7:4c:30:44:29:de:b3:05:89:50:eb:81:9f:65:fb: 2a:56:d5:aa:f6:eb:2a:9e:09:7e:33:6e:f0:f3:62: 0a:c0:4e:69:54:e9:0f:ce:e2:d4:b2:e0:47:28:6f: 2c:dd:11:9d:01:f0:3a:da:bb:80:b5:48:16:4f:9c: 97:0f:f7:9c:2e:9d:80:89:16:e6:0f:e4:57:0b:65: 01:7e:a6:47:87:1e:bb:bf:49:56:f0:3a:f2:35:1d: 9f:2c:0a:8b:a0:e3:c6:01:13:58:e0:ed:d4:10:66: f8:fb:67:56:0c:64:ea:d8:bd:2b:0e:66:e1:24:59: ff:43:b2:8e:fb:9f:03:7c:a4:0a:a0:13:27:7f:51: a4:13:4d:5a:74:55:9f:f2:20:2a:ba:f4:5e:68:75: fb:1b:9b:21:f0:fd:31:68:9a:6c:84:cd:a5:1a:5f: 82:49:11:a9:e0:ee:25:95:2b:e7:01:fc:12:36:92: 07:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:03:BC:AA:A6:F4:CA:C3:E7:A6:AB:23:24:5A:62:B8:F9:E4:30:E0 X509v3 Authority Key Identifier: keyid:10:05:CC:D5:E1:82:30:FB:A9:AD:D3:D2:7F:85:DA:38:F1:3E:41:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/EAXM1eGCMPuprdPSf4XaOPE-QXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EAXM1eGCMPuprdPSf4XaOPE-QXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/3BFEA04CB6A611EDAF611B68C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.113.81.0/24 103.24.0.0/22 103.229.119.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:e1:af:d8:4e:1a:95:97:11:a9:80:fd:24:4c:fa:8b:d1:af: 69:31:e0:a3:43:a1:5e:cb:70:50:ce:de:03:5a:29:3d:fa:af: 04:ff:42:71:7d:7d:53:8c:80:78:b8:28:b8:80:ae:50:38:40: 62:1a:84:21:07:00:e2:7f:59:6e:b4:a3:ac:4b:47:6a:08:a7: de:c0:6e:6f:8f:98:4d:21:25:72:31:e3:eb:b2:3e:97:d6:fc: 30:cf:17:66:5e:a8:52:c1:68:9f:69:dc:bf:f9:bd:9a:db:1d: 16:df:bb:9e:55:22:0e:58:7a:e4:af:27:f6:10:87:bb:2a:5d: 45:ac:ff:e5:57:f8:71:ec:f2:55:e5:be:e2:7a:26:3a:5f:4d: 77:7c:33:7c:fc:c4:a2:30:e4:7d:7e:b9:5e:ea:77:c3:76:21: db:a8:22:31:9d:16:91:f5:c4:81:60:d9:2f:19:a9:fd:59:b0: 2b:c7:96:c8:27:53:a8:4a:c2:df:40:97:bc:59:44:53:4c:28: 96:8c:35:46:85:ad:67:b2:2e:91:a8:3a:89:45:f7:12:12:36: 43:7c:09:bb:a3:e0:79:10:8d:c8:6b:da:ce:4a:80:9d:0c:24: 6c:63:4d:9b:25:a8:69:23:ce:d2:cb:29:e9:67:44:56:db:97: b6:55:ed:6e -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICA6EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhBRjIxMTAvBgNVBAUTKDEwMDVDQ0Q1RTE4MjMwRkJBOUFERDNEMjdGODVEQTM4 RjEzRTQxNzIwHhcNMjUwNTA3MDEzODI0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFhYjk4Zi0zNzNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtU8B7hnOmMvYyflQ5LHfxrHU2AkwTG35dXf+o5lzzxNkTRWsutz3e8gPWkST QEj/463zF6aDEEx5T5sH1heWXBMJtd+jwiUiwebnTDBEKd6zBYlQ64GfZfsqVtWq 9usqngl+M27w82IKwE5pVOkPzuLUsuBHKG8s3RGdAfA62ruAtUgWT5yXD/ecLp2A iRbmD+RXC2UBfqZHhx67v0lW8DryNR2fLAqLoOPGARNY4O3UEGb4+2dWDGTq2L0r DmbhJFn/Q7KO+58DfKQKoBMnf1GkE01adFWf8iAquvReaHX7G5sh8P0xaJpshM2l Gl+CSRGp4O4llSvnAfwSNpIH5QIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFCIDvKqm 9MrD56arIyRaYrj55DDgMB8GA1UdIwQYMBaAFBAFzNXhgjD7qa3T0n+F2jjxPkFy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEFGMi83M0M4ODc5MkUw NjcxMUVDQjlEMkZGODFDNEY5QUUwMi9FQVhNMWVHQ01QdXByZFBTZjRYYU9QRS1R WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VBWE0xZUdDTVB1cHJkUFNmNFhhT1BFLVFYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzhBRjIvNzNDODg3OTJFMDY3MTFFQ0I5RDJGRjgxQzRGOUFFMDIvM0JGRUEwNENC NkE2MTFFREFGNjExQjY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAAtcVEDBAJnGAADBABn5XcwDQYJKoZIhvcNAQELBQADggEB ADrhr9hOGpWXEamA/SRM+ovRr2kx4KNDoV7LcFDO3gNaKT36rwT/QnF9fVOMgHi4 KLiArlA4QGIahCEHAOJ/WW60o6xLR2oIp97Abm+PmE0hJXIx4+uyPpfW/DDPF2Ze qFLBaJ9p3L/5vZrbHRbfu55VIg5YeuSvJ/YQh7sqXUWs/+VX+HHs8lXlvuJ6Jjpf TXd8M3z8xKIw5H1+uV7qd8N2IduoIjGdFpH1xIFg2S8Zqf1ZsCvHlsgnU6hKwt9A l7xZRFNMKJaMNUaFrWeyLpGoOolF9xISNkN8Cbuj4HkQjchr2s5KgJ0MJGxjTZsl qGkjztLLKelnRFbbl7ZV7W4= -----END CERTIFICATE-----Generated at Sun May 11 16:46:09 2025 by rpki-client