$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/34C7EB4010F411EFB4CD9614C4F9AE02.roa File: 34C7EB4010F411EFB4CD9614C4F9AE02.roa (raw, json) Hash identifier: 5QVyPmB1PRFpCtk6BRZ20HLOXQ8hVyEmcdVKPIlpB7E= Subject key identifier: DE:E2:06:B6:63:10:2E:91:17:E5:A9:7C:55:C6:68:60:C1:D5:81:33 Certificate issuer: /CN=A91C8347/serialNumber=2ADBB71B11523CA3392E5F37D9DC76B211DBE083 Certificate serial: 0105 Authority key identifier: 2A:DB:B7:1B:11:52:3C:A3:39:2E:5F:37:D9:DC:76:B2:11:DB:E0:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/34C7EB4010F411EFB4CD9614C4F9AE02.roa Signing time: Sun 15 Jun 2025 04:54:34 +0000 ROA not before: Sun 15 Jun 2025 04:54:34 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 23470 IP address blocks: 103.219.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.crl rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 04:31:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 261 (0x105) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8347, serialNumber=2ADBB71B11523CA3392E5F37D9DC76B211DBE083 Validity Not Before: Jun 15 04:54:34 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=684e520a-199b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:da:76:66:a3:95:fb:03:cb:ef:fd:0a:5c:2c: 76:50:67:e5:24:e7:ba:82:a4:50:47:0e:d2:66:84: 3c:30:b2:62:98:cc:81:34:e5:d4:d1:93:22:e8:f5: ed:bc:2c:7c:25:f1:7b:8e:14:85:16:d2:d4:b5:ae: 78:12:6b:e0:a7:8c:b2:48:d1:c3:22:8d:80:44:ae: c6:09:62:bd:2a:50:6f:93:be:26:ec:0d:d6:d2:c4: c8:43:2a:10:9d:e3:8a:1a:e4:85:bb:2b:76:28:ca: 68:c6:25:8b:55:2d:93:ab:07:e4:81:cf:ea:2b:1c: 31:88:18:ac:80:0a:36:ab:92:ac:59:36:32:18:5f: 98:33:71:1e:9f:93:1a:f6:f4:66:0f:7b:66:c7:e5: 9b:72:ff:36:e0:92:50:55:77:36:8e:e3:71:95:27: d5:3a:15:8a:4c:27:49:25:4d:b7:50:f3:b5:dd:ad: f5:54:63:67:bd:05:63:9e:a3:f8:e1:c4:e8:a9:c7: 26:48:97:68:2c:a5:23:2a:33:6e:29:07:4c:7f:8a: 94:70:6c:24:be:82:b8:31:45:ce:11:3e:0e:7e:3d: fe:ca:29:6f:29:1d:7e:97:18:27:bf:1c:b2:f5:9f: 97:79:e4:04:79:0b:44:a1:04:dc:e2:13:74:e2:ef: 79:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:E2:06:B6:63:10:2E:91:17:E5:A9:7C:55:C6:68:60:C1:D5:81:33 X509v3 Authority Key Identifier: keyid:2A:DB:B7:1B:11:52:3C:A3:39:2E:5F:37:D9:DC:76:B2:11:DB:E0:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/34C7EB4010F411EFB4CD9614C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.219.193.0/24 Signature Algorithm: sha256WithRSAEncryption 43:28:cd:be:9d:7d:26:64:7f:9b:4e:ae:41:fd:98:1a:f5:fa: 59:7b:1a:ea:88:77:0a:d5:b2:8a:f0:2a:81:5b:a7:2c:d0:86: b9:a2:21:02:a1:ee:68:08:91:f8:ea:15:63:fe:a1:af:5c:73: 9a:96:a9:05:5d:fd:c6:bc:0a:7c:c8:32:a6:21:3b:6e:34:6f: 07:58:3f:b3:41:dc:c1:d8:98:6d:d1:6a:49:58:fa:28:d5:0e: 92:ab:32:57:8e:cc:53:fc:7e:c5:24:0e:d4:71:ed:1f:18:be: 4d:bb:d6:48:5d:d0:fa:5e:9f:97:d6:81:82:61:ce:30:c0:66: 8a:53:43:c6:be:4e:3e:d6:93:8d:37:b3:b5:36:9b:0d:fc:8d: 8b:f8:2f:4e:a2:ee:d6:df:3b:2e:8e:2a:c0:3b:9d:58:c6:54: 34:86:44:c0:07:08:41:b5:e9:ea:a9:da:5e:91:30:08:a8:b8: 09:8f:57:e4:c5:ca:a1:39:8b:d0:00:2b:9c:eb:3b:ff:8c:84: 70:e6:00:57:ce:f3:32:f5:7e:52:07:ac:fc:0d:00:21:73:d8: 02:9b:40:d1:d6:48:6d:50:99:f4:8d:d8:ab:28:0b:c8:d3:af: 0c:0a:3d:37:aa:d3:7a:52:1c:59:70:b0:e8:a8:14:75:e5:e3: 3f:6e:99:41 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzgzNDcxMTAvBgNVBAUTKDJBREJCNzFCMTE1MjNDQTMzOTJFNUYzN0Q5REM3NkIy MTFEQkUwODMwHhcNMjUwNjE1MDQ1NDM0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODRlNTIwYS0xOTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxNp2ZqOV+wPL7/0KXCx2UGflJOe6gqRQRw7SZoQ8MLJimMyBNOXU0ZMi6PXt vCx8JfF7jhSFFtLUta54Emvgp4yySNHDIo2ARK7GCWK9KlBvk74m7A3W0sTIQyoQ neOKGuSFuyt2KMpoxiWLVS2Tqwfkgc/qKxwxiBisgAo2q5KsWTYyGF+YM3Een5Ma 9vRmD3tmx+Wbcv824JJQVXc2juNxlSfVOhWKTCdJJU23UPO13a31VGNnvQVjnqP4 4cToqccmSJdoLKUjKjNuKQdMf4qUcGwkvoK4MUXOET4Ofj3+yilvKR1+lxgnvxyy 9Z+XeeQEeQtEoQTc4hN04u95GwIDAQABo4IClTCCApEwHQYDVR0OBBYEFN7iBrZj EC6RF+WpfFXGaGDB1YEzMB8GA1UdIwQYMBaAFCrbtxsRUjyjOS5fN9ncdrIR2+CD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODM0Ny9DM0U3MjE5MEY5 QTkxMUVFQTgyQTc5MUFDNEY5QUUwMi9LdHUzR3hGU1BLTTVMbDgzMmR4MnNoSGI0 SU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t0dTNHeEZTUEtNNUxsODMyZHgyc2hIYjRJTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzgzNDcvQzNFNzIxOTBGOUE5MTFFRUE4MkE3OTFBQzRGOUFFMDIvMzRDN0VCNDAx MEY0MTFFRkI0Q0Q5NjE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn28EwDQYJKoZIhvcNAQELBQADggEBAEMozb6dfSZkf5tO rkH9mBr1+ll7GuqIdwrVsorwKoFbpyzQhrmiIQKh7mgIkfjqFWP+oa9cc5qWqQVd /ca8CnzIMqYhO240bwdYP7NB3MHYmG3RaklY+ijVDpKrMleOzFP8fsUkDtRx7R8Y vk271khd0Ppen5fWgYJhzjDAZopTQ8a+Tj7Wk403s7U2mw38jYv4L06i7tbfOy6O KsA7nVjGVDSGRMAHCEG16eqp2l6RMAiouAmPV+TFyqE5i9AAK5zrO/+MhHDmAFfO 8zL1flIHrPwNACFz2AKbQNHWSG1QmfSN2KsoC8jTrwwKPTeq03pSHFlwsOioFHXl 4z9umUE= -----END CERTIFICATE-----Generated at Mon Jun 30 09:52:25 2025 by rpki-client