$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE9CC/140E527C3A8911E59E802362C4F9AE02/3A73B3A254EB11E7A50F9822C4F9AE02.roa File: 3A73B3A254EB11E7A50F9822C4F9AE02.roa (raw, json) Hash identifier: XiLxVcA3A5SvnNZPgANRplMFygJvziR4GhZISOC/34g= Subject key identifier: B3:80:84:7B:71:ED:E3:67:45:5F:EC:68:E8:4E:F5:69:CC:6B:97:F1 Certificate issuer: /CN=A91AE9CC/serialNumber=614D88C4318754EE33C012A64C542B39EA04D4E1 Certificate serial: 24DA Authority key identifier: 61:4D:88:C4:31:87:54:EE:33:C0:12:A6:4C:54:2B:39:EA:04:D4:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YU2IxDGHVO4zwBKmTFQrOeoE1OE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE9CC/140E527C3A8911E59E802362C4F9AE02/3A73B3A254EB11E7A50F9822C4F9AE02.roa Signing time: Sat 28 Jun 2025 15:44:01 +0000 ROA not before: Sat 28 Jun 2025 15:44:01 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 59370 IP address blocks: 103.233.56.0/22 maxlen: 23 2401:2b80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE9CC/140E527C3A8911E59E802362C4F9AE02/YU2IxDGHVO4zwBKmTFQrOeoE1OE.crl rsync://rpki.apnic.net/member_repository/A91AE9CC/140E527C3A8911E59E802362C4F9AE02/YU2IxDGHVO4zwBKmTFQrOeoE1OE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YU2IxDGHVO4zwBKmTFQrOeoE1OE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 15:53:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9434 (0x24da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE9CC, serialNumber=614D88C4318754EE33C012A64C542B39EA04D4E1 Validity Not Before: Jun 28 15:44:01 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68600dc1-f9aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:18:02:1e:c1:3b:40:f9:b8:8a:44:02:e8:76: 07:ce:e3:7e:84:4c:1f:76:3b:5f:b8:53:2b:50:0d: 36:75:3c:56:b6:5e:61:0a:ee:dc:8c:10:cb:78:d1: 71:ee:b5:f5:2a:c9:fa:46:fb:69:57:fb:b1:e9:bc: f0:67:e4:a6:d1:1b:51:b5:0b:0e:cd:70:b2:84:cc: 3d:24:84:82:46:99:3a:6f:b4:92:df:2e:04:03:a5: c8:26:7d:9e:c2:aa:a5:22:dd:08:7b:5a:d9:90:47: ea:64:7a:3d:68:41:dd:e0:f7:af:46:b9:83:c3:dd: 9b:67:22:bc:78:f4:6e:e0:9f:5b:b8:d7:90:e6:b9: 57:96:0f:7e:62:bc:66:4d:90:7e:4c:d3:ed:a5:33: b9:e9:66:91:1e:0a:80:ce:2c:e7:11:1c:94:b5:8d: 1f:99:66:7a:5a:f3:6e:4f:b8:91:7d:53:68:fb:c3: a8:66:5b:32:96:e0:b6:06:fd:40:79:df:47:a1:d3: 20:a9:f7:fc:4a:2f:fe:d4:d5:64:9d:8d:ff:81:d8: 41:37:5d:ad:14:9c:65:06:a8:3e:b1:7f:a6:79:83: 37:0a:1f:0a:cd:4d:0b:fd:fc:0e:50:2d:53:49:ef: 82:6f:f1:cd:bf:84:d8:47:5f:c2:be:54:ea:a8:47: 00:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:80:84:7B:71:ED:E3:67:45:5F:EC:68:E8:4E:F5:69:CC:6B:97:F1 X509v3 Authority Key Identifier: keyid:61:4D:88:C4:31:87:54:EE:33:C0:12:A6:4C:54:2B:39:EA:04:D4:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE9CC/140E527C3A8911E59E802362C4F9AE02/YU2IxDGHVO4zwBKmTFQrOeoE1OE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YU2IxDGHVO4zwBKmTFQrOeoE1OE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE9CC/140E527C3A8911E59E802362C4F9AE02/3A73B3A254EB11E7A50F9822C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.233.56.0/22 IPv6: 2401:2b80::/32 Signature Algorithm: sha256WithRSAEncryption 0b:0e:ed:0f:c0:95:43:dc:76:30:08:f6:21:a4:09:c4:09:e7: 8f:9a:55:b9:68:47:21:e2:fa:db:90:05:d2:b8:98:79:d4:fe: ae:4c:53:a2:47:a2:69:55:3a:e8:07:bd:49:ed:51:50:ad:f3: 97:0b:f8:9c:87:8e:1a:90:a1:49:c5:a1:8f:ce:8a:01:a7:31: 5a:05:ac:8b:d1:a6:61:f5:72:00:e4:97:89:43:cb:1a:a2:a2: 52:d1:6d:96:36:8c:74:22:c2:63:90:52:72:09:e1:ad:d6:a6: 93:95:35:0b:a0:c0:93:b1:51:e1:a7:2f:cb:ae:15:70:95:13: b0:a8:86:fe:62:cc:f2:15:d3:98:d3:bd:77:18:57:6d:d9:df: 65:4b:ad:79:48:54:4c:e2:3f:1b:0d:b4:ea:cd:bd:6b:53:e3: 96:90:55:17:bf:5f:44:d0:22:6a:80:fd:1f:51:d2:aa:af:60: 0f:86:0f:70:85:9e:df:b0:06:65:ea:e9:62:53:3c:57:dd:51: 7c:93:4a:80:ea:3a:04:d8:2b:08:52:cb:d5:36:a1:54:e7:07: 6b:d5:d1:68:e2:d2:91:ba:11:4c:f1:65:11:5f:51:e5:1d:5f: 9e:10:28:fe:7b:f1:f1:b4:67:83:7b:52:92:5f:dd:61:fd:86: 1e:b3:65:13 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICJNowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU5Q0MxMTAvBgNVBAUTKDYxNEQ4OEM0MzE4NzU0RUUzM0MwMTJBNjRDNTQyQjM5 RUEwNEQ0RTEwHhcNMjUwNjI4MTU0NDAxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYwMGRjMS1mOWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1BgCHsE7QPm4ikQC6HYHzuN+hEwfdjtfuFMrUA02dTxWtl5hCu7cjBDLeNFx 7rX1Ksn6RvtpV/ux6bzwZ+Sm0RtRtQsOzXCyhMw9JISCRpk6b7SS3y4EA6XIJn2e wqqlIt0Ie1rZkEfqZHo9aEHd4PevRrmDw92bZyK8ePRu4J9buNeQ5rlXlg9+Yrxm TZB+TNPtpTO56WaRHgqAziznERyUtY0fmWZ6WvNuT7iRfVNo+8OoZlsyluC2Bv1A ed9HodMgqff8Si/+1NVknY3/gdhBN12tFJxlBqg+sX+meYM3Ch8KzU0L/fwOUC1T Se+Cb/HNv4TYR1/CvlTqqEcAiwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFLOAhHtx 7eNnRV/saOhO9WnMa5fxMB8GA1UdIwQYMBaAFGFNiMQxh1TuM8ASpkxUKznqBNTh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTlDQy8xNDBFNTI3QzNB ODkxMUU1OUU4MDIzNjJDNEY5QUUwMi9ZVTJJeERHSFZPNHp3QkttVEZRck9lb0Ux T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lVMkl4REdIVk80endCS21URlFyT2VvRTFPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUU5Q0MvMTQwRTUyN0MzQTg5MTFFNTlFODAyMzYyQzRGOUFFMDIvM0E3M0IzQTI1 NEVCMTFFN0E1MEY5ODIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJn6TgwDQQCAAIwBwMFACQBK4AwDQYJKoZIhvcNAQELBQAD ggEBAAsO7Q/AlUPcdjAI9iGkCcQJ54+aVbloRyHi+tuQBdK4mHnU/q5MU6JHomlV OugHvUntUVCt85cL+JyHjhqQoUnFoY/OigGnMVoFrIvRpmH1cgDkl4lDyxqiolLR bZY2jHQiwmOQUnIJ4a3WppOVNQugwJOxUeGnL8uuFXCVE7Cohv5izPIV05jTvXcY V23Z32VLrXlIVEziPxsNtOrNvWtT45aQVRe/X0TQImqA/R9R0qqvYA+GD3CFnt+w BmXq6WJTPFfdUXyTSoDqOgTYKwhSy9U2oVTnB2vV0Wji0pG6EUzxZRFfUeUdX54Q KP578fG0Z4N7UpJf3WH9hh6zZRM= -----END CERTIFICATE-----Generated at Thu Jul 3 13:46:02 2025 by rpki-client