$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/3A883F284B3E11F0817E3C31C4F9AE02.roa File: 3A883F284B3E11F0817E3C31C4F9AE02.roa (raw, json) Hash identifier: NDD7rXBkPpyP21NSG49zM21uMuWwhdkhiXb1hDWLKZs= Subject key identifier: 03:E1:62:E5:24:3B:BF:0C:02:1D:52:AF:8C:34:48:06:BF:09:EF:F4 Certificate issuer: /CN=A91B3D30/serialNumber=01EE089DD4867B2CB276582AA97B318F509EA6EE Certificate serial: 0B46 Authority key identifier: 01:EE:08:9D:D4:86:7B:2C:B2:76:58:2A:A9:7B:31:8F:50:9E:A6:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/3A883F284B3E11F0817E3C31C4F9AE02.roa Signing time: Tue 17 Jun 2025 05:45:09 +0000 ROA not before: Tue 17 Jun 2025 05:45:09 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 213607 IP address blocks: 103.23.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.crl rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 19:23:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2886 (0xb46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3D30, serialNumber=01EE089DD4867B2CB276582AA97B318F509EA6EE Validity Not Before: Jun 17 05:45:09 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=685100e5-643d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d0:a9:0e:16:98:04:a5:c3:39:bb:40:9c:8f: fb:aa:36:ff:4e:58:60:47:ff:a0:d9:e4:8b:e6:31: 3b:0b:c4:8d:d3:d1:65:6c:d9:82:bc:f8:be:54:67: 45:64:13:d0:95:32:12:71:cb:78:a6:a2:a3:89:fc: 9a:30:1f:aa:93:4a:88:56:e6:ec:ac:f8:5b:5e:47: f7:bf:32:f7:60:09:8b:55:d4:9c:b8:24:02:74:46: 7b:1b:c0:87:4a:ca:22:d2:dc:34:aa:7f:04:a3:09: e4:37:d6:cf:89:f7:94:e7:f1:b8:92:c1:0f:5f:0b: 69:11:4f:a1:8e:c0:59:d4:aa:bc:e9:64:f1:d5:cf: 16:01:de:27:b3:f7:6d:73:1e:c2:50:b9:cc:c5:84: 2e:22:6b:41:6a:fd:52:0a:ce:c5:7a:a6:df:43:5a: d7:22:74:b9:4d:45:4e:c0:88:b5:1d:2d:52:a7:c2: 09:ee:7b:d5:55:09:ee:7a:af:e3:a4:c7:6c:d6:e0: 4c:e3:7d:d5:a9:3c:04:bb:b2:5c:44:66:cc:85:41: 0e:54:cb:dd:6f:a4:59:09:d9:35:43:c2:52:ff:be: f7:ea:1b:9a:4e:35:a1:6c:87:34:b1:61:b6:41:3c: b0:6c:6f:bb:cb:05:bb:c7:25:b7:fd:24:90:b7:d6: 97:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:E1:62:E5:24:3B:BF:0C:02:1D:52:AF:8C:34:48:06:BF:09:EF:F4 X509v3 Authority Key Identifier: keyid:01:EE:08:9D:D4:86:7B:2C:B2:76:58:2A:A9:7B:31:8F:50:9E:A6:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/3A883F284B3E11F0817E3C31C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.23.128.0/24 Signature Algorithm: sha256WithRSAEncryption 11:8f:a8:e0:bf:a3:77:7a:34:22:31:b0:c4:b1:9e:a8:4f:f4: aa:be:16:c7:b7:63:eb:97:be:0e:46:07:45:12:4e:fd:b6:d0: 15:cf:f7:a8:1e:c2:2e:23:6b:9b:17:3f:ba:91:94:9a:df:2c: 8d:4a:1c:a1:e9:62:d6:88:35:3e:a8:5f:c6:e0:1c:29:6e:14: fe:bc:7e:64:bb:82:61:77:4e:e8:4a:a5:f8:eb:37:69:6c:4b: 7a:14:4c:9c:0f:a0:71:c0:8e:6d:59:12:15:95:02:55:a0:6b: c4:c0:29:37:cd:0a:34:a6:ff:e8:ee:4b:27:89:21:83:8d:89: 14:8e:aa:59:4d:6e:35:b8:9f:1a:62:13:ed:df:74:ea:8a:b2: ba:f6:dc:fb:da:16:df:36:99:67:9a:4e:ab:8b:65:d8:7c:0a: 86:35:f8:4e:36:22:20:06:1c:fc:96:31:dc:a7:0f:b4:07:08: 35:ef:0b:fc:a5:0b:75:bd:8a:62:da:70:fa:4c:b6:c1:b9:a2: 5f:a6:dd:c4:60:32:48:4f:ec:de:e3:3f:3c:92:4d:5d:e1:6d: f6:fb:d2:a7:b4:01:2a:fe:20:2c:df:b6:ee:3a:14:a4:ae:f9: bb:a1:4a:bb:2b:18:6e:df:c2:71:18:0e:f1:18:b6:10:85:21: 70:ff:a3:2d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC0YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNEMzAxMTAvBgNVBAUTKDAxRUUwODlERDQ4NjdCMkNCMjc2NTgyQUE5N0IzMThG NTA5RUE2RUUwHhcNMjUwNjE3MDU0NTA5WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02ODUxMDBlNS02NDNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt9CpDhaYBKXDObtAnI/7qjb/TlhgR/+g2eSL5jE7C8SN09FlbNmCvPi+VGdF ZBPQlTIScct4pqKjifyaMB+qk0qIVubsrPhbXkf3vzL3YAmLVdScuCQCdEZ7G8CH Ssoi0tw0qn8EownkN9bPifeU5/G4ksEPXwtpEU+hjsBZ1Kq86WTx1c8WAd4ns/dt cx7CULnMxYQuImtBav1SCs7FeqbfQ1rXInS5TUVOwIi1HS1Sp8IJ7nvVVQnueq/j pMds1uBM433VqTwEu7JcRGbMhUEOVMvdb6RZCdk1Q8JS/7736huaTjWhbIc0sWG2 QTywbG+7ywW7xyW3/SSQt9aXgwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAPhYuUk O78MAh1Sr4w0SAa/Ce/0MB8GA1UdIwQYMBaAFAHuCJ3UhnsssnZYKql7MY9Qnqbu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0QzMC9FM0RGNDY5QzQx NjgxMUVBQUU4QTc3NTBDNEY5QUUwMi9BZTRJbmRTR2V5eXlkbGdxcVhzeGoxQ2Vw dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FlNEluZFNHZXl5eWRsZ3FxWHN4ajFDZXB1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjNEMzAvRTNERjQ2OUM0MTY4MTFFQUFFOEE3NzUwQzRGOUFFMDIvM0E4ODNGMjg0 QjNFMTFGMDgxN0UzQzMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnF4AwDQYJKoZIhvcNAQELBQADggEBABGPqOC/o3d6NCIx sMSxnqhP9Kq+Fse3Y+uXvg5GB0USTv220BXP96gewi4ja5sXP7qRlJrfLI1KHKHp YtaINT6oX8bgHCluFP68fmS7gmF3TuhKpfjrN2lsS3oUTJwPoHHAjm1ZEhWVAlWg a8TAKTfNCjSm/+juSyeJIYONiRSOqllNbjW4nxpiE+3fdOqKsrr23PvaFt82mWea TquLZdh8CoY1+E42IiAGHPyWMdynD7QHCDXvC/ylC3W9imLacPpMtsG5ol+m3cRg MkhP7N7jPzySTV3hbfb70qe0ASr+ICzftu46FKSu+buhSrsrGG7fwnEYDvEYthCF IXD/oy0= -----END CERTIFICATE-----Generated at Tue Jul 1 20:01:57 2025 by rpki-client