$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/C3F53A0654F011E7BE4A6431C4F9AE02.roa File: C3F53A0654F011E7BE4A6431C4F9AE02.roa (raw, json) Hash identifier: 54WI7bxOwof+H1Cz8+uPiLZ+tzpprbk2GuCnR0w5MUY= Subject key identifier: 45:B1:E9:9A:D6:63:FC:29:6D:CC:0B:6C:3E:EC:61:2D:E3:2C:29:CC Certificate issuer: /CN=A91C1A37/serialNumber=CC843E140A2E3EFBE0B949DE0ED803839060541D Certificate serial: 309E Authority key identifier: CC:84:3E:14:0A:2E:3E:FB:E0:B9:49:DE:0E:D8:03:83:90:60:54:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIQ-FAouPvvguUneDtgDg5BgVB0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/C3F53A0654F011E7BE4A6431C4F9AE02.roa Signing time: Fri 02 May 2025 15:51:58 +0000 ROA not before: Fri 02 May 2025 15:51:58 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 32934 IP address blocks: 45.64.40.0/22 maxlen: 24 103.4.96.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.crl rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIQ-FAouPvvguUneDtgDg5BgVB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 15:37:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12446 (0x309e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1A37, serialNumber=CC843E140A2E3EFBE0B949DE0ED803839060541D Validity Not Before: May 2 15:51:58 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6814ea1e-5655 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:e8:97:4c:4a:6c:5f:60:d5:d2:d4:b3:8b:6f: ad:2d:ea:55:59:9c:43:10:46:d9:53:80:08:46:e3: 14:49:bb:c5:76:41:77:2b:a2:01:3e:69:46:f0:b3: e6:84:3f:49:9f:60:23:75:0e:67:a3:d5:46:84:e1: 06:25:ce:33:f4:4b:06:5d:de:58:bf:ec:cc:3a:65: 00:99:38:ff:1d:ed:ee:9d:18:ab:87:c9:ab:3f:cf: 3d:c2:6c:b0:f5:47:30:8e:49:e4:a8:47:9c:f3:11: 8c:7b:1a:fa:ea:d7:3a:b0:1e:64:19:7b:a4:b8:e4: 2d:91:eb:a9:e8:71:15:6e:b3:1d:40:46:88:86:f9: 9b:44:a8:47:b7:a8:c5:5b:25:9b:a8:01:84:4d:98: be:7b:06:d7:e9:2c:82:9d:c2:21:74:0d:fc:68:90: 97:fb:ed:50:9f:43:b8:e7:95:3e:82:0c:97:95:df: cd:db:a4:10:d2:d3:41:20:96:ae:8a:91:b3:aa:1d: ad:a0:11:4c:f2:68:46:c9:fd:49:f7:f9:ee:0e:c9: 3c:12:cb:f5:49:50:78:2a:f7:3b:38:60:cf:6b:0e: c1:cf:45:41:74:2c:45:65:55:46:24:ad:e6:39:ce: 58:7e:a0:1d:21:f3:b9:a1:64:e0:4a:b7:83:e4:3b: 0b:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:B1:E9:9A:D6:63:FC:29:6D:CC:0B:6C:3E:EC:61:2D:E3:2C:29:CC X509v3 Authority Key Identifier: keyid:CC:84:3E:14:0A:2E:3E:FB:E0:B9:49:DE:0E:D8:03:83:90:60:54:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/zIQ-FAouPvvguUneDtgDg5BgVB0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIQ-FAouPvvguUneDtgDg5BgVB0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1A37/6868E028E7F011E28C2805845911EA32/C3F53A0654F011E7BE4A6431C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.64.40.0/22 103.4.96.0/22 Signature Algorithm: sha256WithRSAEncryption 4a:e0:98:dd:99:8e:50:a2:48:70:38:37:dc:9d:2b:16:36:4f: 8f:4f:4b:c4:7c:0d:f3:78:5d:97:22:ba:b0:c3:c5:23:55:2a: cc:61:88:4d:ee:b1:79:f6:cc:0e:1f:3e:23:b8:44:7e:9d:22: 2b:6e:0e:10:cc:41:83:14:b9:ef:17:e5:00:d2:84:d7:78:c6: c2:25:ae:d7:d8:d1:17:81:df:b1:41:2d:2b:6d:6a:eb:8f:87: 21:98:ea:03:f8:2e:37:59:25:7d:f4:cf:69:25:89:bf:d7:9a: f0:f9:33:36:eb:6b:f7:8c:b4:2c:ee:d3:ec:8c:d8:4f:42:69: 77:ac:7a:ab:42:ab:1d:9f:49:0b:de:a0:62:df:96:06:97:1b: 1b:ca:d4:94:34:b3:10:0e:36:be:fc:73:04:05:18:7e:96:fb: 95:eb:a1:48:ba:f0:e7:85:b5:f5:2e:4a:88:10:1f:d4:71:a9: 93:49:83:6d:4e:d2:09:17:98:77:ba:5e:73:67:da:0d:3e:31: 97:6c:ef:3c:08:f0:00:b0:80:20:5a:6d:fa:05:6b:da:76:0a: df:60:58:1c:87:f7:8f:2a:8e:7d:c2:61:01:3f:50:d0:1f:91: 20:b6:0f:2a:42:69:fd:8e:75:ca:3b:bf:e0:0a:7c:db:af:9d: be:4c:0b:af -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICMJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFBMzcxMTAvBgNVBAUTKENDODQzRTE0MEEyRTNFRkJFMEI5NDlERTBFRDgwMzgz OTA2MDU0MUQwHhcNMjUwNTAyMTU1MTU4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE0ZWExZS01NjU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6eiXTEpsX2DV0tSzi2+tLepVWZxDEEbZU4AIRuMUSbvFdkF3K6IBPmlG8LPm hD9Jn2AjdQ5no9VGhOEGJc4z9EsGXd5Yv+zMOmUAmTj/He3unRirh8mrP889wmyw 9UcwjknkqEec8xGMexr66tc6sB5kGXukuOQtkeup6HEVbrMdQEaIhvmbRKhHt6jF WyWbqAGETZi+ewbX6SyCncIhdA38aJCX++1Qn0O455U+ggyXld/N26QQ0tNBIJau ipGzqh2toBFM8mhGyf1J9/nuDsk8Esv1SVB4Kvc7OGDPaw7Bz0VBdCxFZVVGJK3m Oc5YfqAdIfO5oWTgSreD5DsL+QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFEWx6ZrW Y/wpbcwLbD7sYS3jLCnMMB8GA1UdIwQYMBaAFMyEPhQKLj774LlJ3g7YA4OQYFQd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMUEzNy82ODY4RTAyOEU3 RjAxMUUyOEMyODA1ODQ1OTExRUEzMi96SVEtRkFvdVB2dmd1VW5lRHRnRGc1QmdW QjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJUS1GQW91UHZ2Z3VVbmVEdGdEZzVCZ1ZCMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzFBMzcvNjg2OEUwMjhFN0YwMTFFMjhDMjgwNTg0NTkxMUVBMzIvQzNGNTNBMDY1 NEYwMTFFN0JFNEE2NDMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAItQCgDBAJnBGAwDQYJKoZIhvcNAQELBQADggEBAErgmN2Z jlCiSHA4N9ydKxY2T49PS8R8DfN4XZciurDDxSNVKsxhiE3usXn2zA4fPiO4RH6d IituDhDMQYMUue8X5QDShNd4xsIlrtfY0ReB37FBLSttauuPhyGY6gP4LjdZJX30 z2klib/XmvD5Mzbra/eMtCzu0+yM2E9CaXeseqtCqx2fSQveoGLflgaXGxvK1JQ0 sxAONr78cwQFGH6W+5XroUi68OeFtfUuSogQH9RxqZNJg21O0gkXmHe6XnNn2g0+ MZds7zwI8ACwgCBabfoFa9p2Ct9gWByH948qjn3CYQE/UNAfkSC2DypCaf2Odco7 v+AKfNuvnb5MC68= -----END CERTIFICATE-----Generated at Fri May 16 19:05:19 2025 by rpki-client