$ rpki-client -vvf rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/3A964BE6AEBC11EF876B6A5AC4F9AE02.roa File: 3A964BE6AEBC11EF876B6A5AC4F9AE02.roa (raw, json) Hash identifier: 3s0Y71iF/fsJNHbeREVW+BHHh6vRQTKc/vlJskM3cQo= Subject key identifier: B3:A1:AF:BA:6C:DA:DD:D7:5B:7C:42:2E:72:40:3F:2D:84:FE:67:AC Certificate issuer: /CN=A91128E3/serialNumber=71C1E8E054049ACFD9AA2193AF1D48C6D1D025E1 Certificate serial: 04EF Authority key identifier: 71:C1:E8:E0:54:04:9A:CF:D9:AA:21:93:AF:1D:48:C6:D1:D0:25:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ccHo4FQEms_ZqiGTrx1IxtHQJeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/3A964BE6AEBC11EF876B6A5AC4F9AE02.roa Signing time: Sat 30 Nov 2024 01:41:33 +0000 ROA not before: Sat 30 Nov 2024 01:41:33 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 134176 IP address blocks: 103.170.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/ccHo4FQEms_ZqiGTrx1IxtHQJeE.crl rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/ccHo4FQEms_ZqiGTrx1IxtHQJeE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ccHo4FQEms_ZqiGTrx1IxtHQJeE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 23:45:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1263 (0x4ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91128E3 Validity Not Before: Nov 30 01:41:33 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=674a6d4d-87b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:1b:6e:c6:6f:01:bb:b8:52:2b:1a:ce:6d:e7: 71:c8:41:56:1b:b7:e1:20:eb:d6:a3:1a:62:48:2e: ee:c8:91:07:f6:c5:79:0f:4a:b7:1e:87:a5:7c:74: dc:e4:7e:bd:71:48:b3:22:18:a8:8d:65:14:06:c2: 32:5d:2c:19:71:c7:31:e5:08:b3:59:f3:56:a4:c5: db:56:a3:75:6e:50:40:57:d4:3c:cf:e7:d8:df:82: 2d:ed:36:4d:df:fb:30:d7:07:9e:5a:42:41:b3:52: d2:b7:60:0b:b8:58:34:1f:f2:fb:26:c1:3e:8c:cb: 41:c4:53:cd:67:35:a9:4f:17:03:64:1d:07:3f:bd: 6e:fc:5a:e6:77:3c:53:82:1a:1e:0c:a5:ca:05:05: 3a:fc:2d:5b:e8:ba:d9:7c:94:08:ff:99:56:aa:94: 7e:ef:91:75:4f:da:88:fd:4e:fd:ee:c8:d5:90:41: dd:2f:05:5a:d1:56:ec:6e:55:32:a6:42:a4:e9:e6: 54:e0:42:48:a7:b4:56:9a:ff:49:d9:a0:34:d8:ae: b6:18:b3:20:d6:1c:37:4a:53:3c:3d:ae:eb:46:0c: b0:d9:35:89:54:d0:9d:c8:28:80:49:9b:a7:79:d5: 00:b2:45:04:dc:23:ed:4b:0c:4f:44:e6:f0:65:09: ec:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:A1:AF:BA:6C:DA:DD:D7:5B:7C:42:2E:72:40:3F:2D:84:FE:67:AC X509v3 Authority Key Identifier: keyid:71:C1:E8:E0:54:04:9A:CF:D9:AA:21:93:AF:1D:48:C6:D1:D0:25:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/ccHo4FQEms_ZqiGTrx1IxtHQJeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ccHo4FQEms_ZqiGTrx1IxtHQJeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/3A964BE6AEBC11EF876B6A5AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.170.72.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:4d:1d:8f:03:08:82:72:52:bf:4d:d2:73:de:19:fd:ed:51: e1:bb:93:c0:3c:38:48:66:d8:cb:62:3f:15:6b:c9:e5:3d:37: aa:dd:d3:2e:7d:d8:10:91:25:5d:48:e4:30:8b:27:04:47:71: 2e:6b:2c:12:23:23:b8:90:55:b6:9d:f8:a4:61:8a:c5:5b:11: ca:6f:cc:06:28:f5:00:41:a7:df:1a:0e:11:da:ad:93:c0:e3: ec:41:c3:1a:1b:7a:c8:47:8a:a7:c0:31:06:3b:25:b5:20:18: 7c:94:9c:ae:f2:34:7c:3a:3e:f7:be:7a:5a:63:31:6b:ca:da: f4:fe:69:bc:69:9c:87:a6:16:d7:a9:8e:ad:4d:75:c7:2e:86: b9:a5:11:35:70:6a:d5:64:b1:28:14:41:93:0a:1f:da:9c:f8: af:5d:de:e8:76:fd:a9:00:b0:89:78:46:b2:62:39:80:ae:ae: 37:36:00:e7:92:1b:2b:4c:37:4b:29:9f:07:33:04:9a:59:13: c9:2e:e2:7b:26:97:ba:ac:2f:ee:85:b3:07:50:3e:b4:f9:fe: 39:ca:92:49:0a:9d:68:18:b5:76:ca:75:36:06:b1:26:b1:9e: c0:41:55:d6:28:f6:a2:8f:ed:d7:8c:c0:7a:1b:f3:ae:9e:a3: 4a:0c:03:58 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI4RTMxMTAvBgNVBAUTKDcxQzFFOEUwNTQwNDlBQ0ZEOUFBMjE5M0FGMUQ0OEM2 RDFEMDI1RTEwHhcNMjQxMTMwMDE0MTMzWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzRhNmQ0ZC04N2I2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2htuxm8Bu7hSKxrObedxyEFWG7fhIOvWoxpiSC7uyJEH9sV5D0q3HoelfHTc 5H69cUizIhiojWUUBsIyXSwZcccx5QizWfNWpMXbVqN1blBAV9Q8z+fY34It7TZN 3/sw1weeWkJBs1LSt2ALuFg0H/L7JsE+jMtBxFPNZzWpTxcDZB0HP71u/FrmdzxT ghoeDKXKBQU6/C1b6LrZfJQI/5lWqpR+75F1T9qI/U797sjVkEHdLwVa0VbsblUy pkKk6eZU4EJIp7RWmv9J2aA02K62GLMg1hw3SlM8Pa7rRgyw2TWJVNCdyCiASZun edUAskUE3CPtSwxPRObwZQnszQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLOhr7ps 2t3XW3xCLnJAPy2E/mesMB8GA1UdIwQYMBaAFHHB6OBUBJrP2aohk68dSMbR0CXh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjhFMy81MzkzQzBFRTAw MjYxMUVDQTQwNjE2MTRDNEY5QUUwMi9jY0hvNEZRRW1zX1pxaUdUcngxSXh0SFFK ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NjSG80RlFFbXNfWnFpR1RyeDFJeHRIUUplRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTI4RTMvNTM5M0MwRUUwMDI2MTFFQ0E0MDYxNjE0QzRGOUFFMDIvM0E5NjRCRTZB RUJDMTFFRjg3NkI2QTVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnqkgwDQYJKoZIhvcNAQELBQADggEBAD9NHY8DCIJyUr9N 0nPeGf3tUeG7k8A8OEhm2MtiPxVryeU9N6rd0y592BCRJV1I5DCLJwRHcS5rLBIj I7iQVbad+KRhisVbEcpvzAYo9QBBp98aDhHarZPA4+xBwxobeshHiqfAMQY7JbUg GHyUnK7yNHw6Pve+elpjMWvK2vT+abxpnIemFtepjq1NdccuhrmlETVwatVksSgU QZMKH9qc+K9d3uh2/akAsIl4RrJiOYCurjc2AOeSGytMN0spnwczBJpZE8ku4nsm l7qsL+6FswdQPrT5/jnKkkkKnWgYtXbKdTYGsSaxnsBBVdYo9qKP7deMwHob866e o0oMA1g= -----END CERTIFICATE-----Generated at Sun Apr 6 01:44:16 2025 by rpki-client