$ rpki-client -vvf rpki.apnic.net/member_repository/A91DAAAF/56B01DC0F85111EDA86FC820C4F9AE02/34EEA87C040511EEA466E336C4F9AE02.roa File: 34EEA87C040511EEA466E336C4F9AE02.roa (raw, json) Hash identifier: obDYb1FFvr0mB7iBHTgY83tEv9YylCIEzp5d/KneH78= Subject key identifier: 48:5E:F5:61:22:A0:F4:46:B0:57:7A:CA:2B:32:CE:9A:40:A3:BD:A4 Certificate issuer: /CN=A91DAAAF/serialNumber=ABE23A8A011ED3286155DA51F5AD78C1B6FCC93D Certificate serial: 0173 Authority key identifier: AB:E2:3A:8A:01:1E:D3:28:61:55:DA:51:F5:AD:78:C1:B6:FC:C9:3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q-I6igEe0yhhVdpR9a14wbb8yT0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DAAAF/56B01DC0F85111EDA86FC820C4F9AE02/34EEA87C040511EEA466E336C4F9AE02.roa Signing time: Mon 05 May 2025 03:09:44 +0000 ROA not before: Mon 05 May 2025 03:09:44 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 151191 IP address blocks: 103.161.154.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DAAAF/56B01DC0F85111EDA86FC820C4F9AE02/q-I6igEe0yhhVdpR9a14wbb8yT0.crl rsync://rpki.apnic.net/member_repository/A91DAAAF/56B01DC0F85111EDA86FC820C4F9AE02/q-I6igEe0yhhVdpR9a14wbb8yT0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q-I6igEe0yhhVdpR9a14wbb8yT0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:42:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 371 (0x173) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DAAAF, serialNumber=ABE23A8A011ED3286155DA51F5AD78C1B6FCC93D Validity Not Before: May 5 03:09:44 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68182bf8-4c99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:6a:85:24:50:fe:e7:7c:6e:ab:f0:db:ff:38: 46:ec:c8:2b:7d:81:20:ae:5f:d9:8a:10:95:11:47: 12:08:77:8c:88:24:8e:10:25:04:50:4c:20:e6:81: 6b:51:39:9b:32:6f:ff:21:0f:09:64:89:93:4f:0a: 26:74:84:9f:8f:9e:a8:61:5d:e3:ad:00:b4:7a:5f: 22:60:da:01:e8:16:44:59:98:d0:d6:79:e1:49:8b: 0c:47:a7:60:23:44:df:6f:63:e6:8f:ba:a0:53:01: a9:ac:8b:0f:e5:84:55:83:07:f4:a0:1f:9d:e7:04: b6:40:50:cd:d4:9e:10:e8:59:36:87:20:57:f5:11: 7b:36:4c:63:94:28:97:67:2e:9d:2f:95:55:20:c0: 6b:49:45:51:38:c0:84:68:96:1c:88:69:0b:44:b1: 39:f2:52:fe:7d:8d:1c:c3:29:e2:bd:4c:8c:21:d4: 3b:9c:cc:93:0a:e2:b2:56:9b:eb:ff:57:27:2b:c7: 23:41:5a:bc:61:15:55:7b:a3:0b:7f:48:41:18:cf: b5:24:9d:fb:bb:2f:8a:27:16:47:ff:e7:04:18:c7: 42:9a:1e:5c:5d:30:d4:8f:10:c2:27:d0:e4:54:fa: 50:83:2b:1c:40:81:bf:64:ff:8a:88:18:ea:05:8a: 77:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:5E:F5:61:22:A0:F4:46:B0:57:7A:CA:2B:32:CE:9A:40:A3:BD:A4 X509v3 Authority Key Identifier: keyid:AB:E2:3A:8A:01:1E:D3:28:61:55:DA:51:F5:AD:78:C1:B6:FC:C9:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DAAAF/56B01DC0F85111EDA86FC820C4F9AE02/q-I6igEe0yhhVdpR9a14wbb8yT0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q-I6igEe0yhhVdpR9a14wbb8yT0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DAAAF/56B01DC0F85111EDA86FC820C4F9AE02/34EEA87C040511EEA466E336C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.161.154.0/23 Signature Algorithm: sha256WithRSAEncryption 09:fd:50:c7:c8:b4:f9:f6:e4:6f:38:20:07:45:e2:b4:80:2c: e4:e6:76:e9:95:6e:48:c2:53:86:94:61:71:00:6a:6f:4b:00: 19:3e:12:59:dd:6a:19:6c:ae:94:2c:b1:da:82:f0:fb:52:9b: 5c:5d:68:2e:f6:52:be:db:32:0e:91:da:b7:89:fa:d3:46:fe: 53:8f:5f:87:3f:8f:3b:b4:5b:af:b9:d2:59:d4:70:51:66:20: 51:69:8b:b1:f8:7a:e3:e0:21:6d:94:e4:22:92:b9:ab:20:8c: 84:9e:a9:b2:e5:97:2f:34:a7:49:c2:5a:b9:cb:0c:1c:56:66: d5:9f:80:db:d7:46:3d:a3:2c:e4:6d:35:8b:c1:30:c3:c8:6c: 4e:da:a1:98:f4:18:e6:d1:02:f8:da:bf:5a:18:f8:a0:51:de: 10:e7:27:3c:9e:ad:41:f8:19:78:4d:84:20:89:4e:89:26:53: ef:c9:11:38:04:6f:8d:88:b0:4f:9d:e2:b2:a8:bf:64:ce:41: cc:f6:52:5c:39:72:db:86:69:76:af:e3:eb:27:62:f9:01:33: 8d:bd:84:f4:7c:3e:77:a6:9d:cc:6e:fc:91:a8:5a:f7:51:f7: 74:76:df:10:8c:39:80:65:41:9b:02:a5:e9:8f:22:be:54:18: 0e:fa:72:86 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REFBQUYxMTAvBgNVBAUTKEFCRTIzQThBMDExRUQzMjg2MTU1REE1MUY1QUQ3OEMx QjZGQ0M5M0QwHhcNMjUwNTA1MDMwOTQ0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE4MmJmOC00Yzk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv2qFJFD+53xuq/Db/zhG7MgrfYEgrl/ZihCVEUcSCHeMiCSOECUEUEwg5oFr UTmbMm//IQ8JZImTTwomdISfj56oYV3jrQC0el8iYNoB6BZEWZjQ1nnhSYsMR6dg I0Tfb2Pmj7qgUwGprIsP5YRVgwf0oB+d5wS2QFDN1J4Q6Fk2hyBX9RF7NkxjlCiX Zy6dL5VVIMBrSUVROMCEaJYciGkLRLE58lL+fY0cwynivUyMIdQ7nMyTCuKyVpvr /1cnK8cjQVq8YRVVe6MLf0hBGM+1JJ37uy+KJxZH/+cEGMdCmh5cXTDUjxDCJ9Dk VPpQgyscQIG/ZP+KiBjqBYp3lQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEhe9WEi oPRGsFd6yisyzppAo72kMB8GA1UdIwQYMBaAFKviOooBHtMoYVXaUfWteMG2/Mk9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQUFBRi81NkIwMURDMEY4 NTExMUVEQTg2RkM4MjBDNEY5QUUwMi9xLUk2aWdFZTB5aGhWZHBSOWExNHdiYjh5 VDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3EtSTZpZ0VlMHloaFZkcFI5YTE0d2JiOHlUMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REFBQUYvNTZCMDFEQzBGODUxMTFFREE4NkZDODIwQzRGOUFFMDIvMzRFRUE4N0Mw NDA1MTFFRUE0NjZFMzM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnoZowDQYJKoZIhvcNAQELBQADggEBAAn9UMfItPn25G84 IAdF4rSALOTmdumVbkjCU4aUYXEAam9LABk+ElndahlsrpQssdqC8PtSm1xdaC72 Ur7bMg6R2reJ+tNG/lOPX4c/jzu0W6+50lnUcFFmIFFpi7H4euPgIW2U5CKSuasg jISeqbLlly80p0nCWrnLDBxWZtWfgNvXRj2jLORtNYvBMMPIbE7aoZj0GObRAvja v1oY+KBR3hDnJzyerUH4GXhNhCCJTokmU+/JETgEb42IsE+d4rKov2TOQcz2Ulw5 ctuGaXav4+snYvkBM429hPR8Pnemncxu/JGoWvdR93R23xCMOYBlQZsCpemPIr5U GA76coY= -----END CERTIFICATE-----Generated at Sun May 11 12:45:31 2025 by rpki-client