$ rpki-client -vvf rpki.apnic.net/member_repository/A9113B73/BA6359822FE411EB8DB41B25C4F9AE02/038C732E874611EB83B41D39C4F9AE02.roa File: 038C732E874611EB83B41D39C4F9AE02.roa (raw, json) Hash identifier: zhnmsmc/g0LWn+TJAjTjuEzqoDewcjKeARZv6m3Jwn8= Subject key identifier: 5A:D5:32:7D:C3:E3:49:78:A3:CC:00:04:7B:3C:74:CA:C1:F1:1F:74 Certificate issuer: /CN=A9113B73/serialNumber=42CB4CF021F6F3FC0C81C4FDF1C97D742100317B Certificate serial: 068E Authority key identifier: 42:CB:4C:F0:21:F6:F3:FC:0C:81:C4:FD:F1:C9:7D:74:21:00:31:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QstM8CH28_wMgcT98cl9dCEAMXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9113B73/BA6359822FE411EB8DB41B25C4F9AE02/038C732E874611EB83B41D39C4F9AE02.roa Signing time: Tue 18 Jun 2024 23:51:53 +0000 ROA not before: Tue 18 Jun 2024 23:51:53 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 135351 IP address blocks: 103.214.208.0/22 maxlen: 24 144.48.152.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9113B73/BA6359822FE411EB8DB41B25C4F9AE02/QstM8CH28_wMgcT98cl9dCEAMXs.crl rsync://rpki.apnic.net/member_repository/A9113B73/BA6359822FE411EB8DB41B25C4F9AE02/QstM8CH28_wMgcT98cl9dCEAMXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QstM8CH28_wMgcT98cl9dCEAMXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1678 (0x68e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9113B73/serialNumber=42CB4CF021F6F3FC0C81C4FDF1C97D742100317B Validity Not Before: Jun 18 23:51:53 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66721d99-4bd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ec:a9:1e:e3:32:dd:2e:f1:89:28:21:42:08: f9:2b:38:84:6a:f0:8a:25:dd:21:d0:64:af:3e:e6: 78:7e:fd:30:af:5e:61:b6:d0:02:68:5d:08:d4:ed: 4f:6e:7c:f6:86:e9:59:51:d8:f2:0a:50:e8:12:4a: b4:bb:de:21:5e:8a:96:98:8e:a6:ae:2a:0a:99:9d: 19:5f:49:49:88:2c:7d:02:f9:c9:0c:71:e6:d3:d5: ae:53:2e:13:ce:11:85:3c:60:e9:96:6a:63:87:fe: 6a:da:5b:5b:c2:96:29:72:c3:29:f6:7d:a9:bd:9a: 21:19:aa:e7:21:8a:e9:97:10:d0:4e:b7:d7:54:20: 20:44:b9:1e:e5:b6:03:a6:12:0e:ca:76:dc:b5:37: 84:9b:a6:33:6e:0d:82:e8:74:0d:cf:bc:58:ca:8d: af:54:9c:8c:ac:5f:9e:b6:3e:64:a6:5e:c5:65:12: f6:a0:ce:a6:eb:5b:e0:e8:69:bc:87:02:e1:26:8f: 4a:66:1e:cb:0f:b3:eb:88:39:0c:c1:44:31:13:f8: aa:29:2f:78:81:f7:fc:68:cd:78:d2:47:30:f9:de: e8:58:36:96:4d:ba:ea:40:c5:04:33:9f:0b:f9:15: 59:ac:a9:06:98:b4:34:62:6e:ad:e5:a0:66:87:55: 14:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:D5:32:7D:C3:E3:49:78:A3:CC:00:04:7B:3C:74:CA:C1:F1:1F:74 X509v3 Authority Key Identifier: keyid:42:CB:4C:F0:21:F6:F3:FC:0C:81:C4:FD:F1:C9:7D:74:21:00:31:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9113B73/BA6359822FE411EB8DB41B25C4F9AE02/QstM8CH28_wMgcT98cl9dCEAMXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QstM8CH28_wMgcT98cl9dCEAMXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9113B73/BA6359822FE411EB8DB41B25C4F9AE02/038C732E874611EB83B41D39C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.214.208.0/22 144.48.152.0/22 Signature Algorithm: sha256WithRSAEncryption 4b:70:ca:28:ea:3b:38:7f:9a:7f:98:d0:82:07:11:e0:55:87: 57:73:f0:77:1f:86:c5:03:0e:82:de:62:17:a4:bf:8f:d3:0e: e8:bf:2c:6b:e1:94:9f:76:8e:83:47:87:5c:c5:0a:15:8e:9b: ef:a7:f8:c4:2d:68:97:6a:ff:29:e3:dc:48:6f:fa:73:9a:c9: bd:6b:10:a9:09:bd:a1:a6:30:da:63:22:9d:c7:5c:8d:0d:b3: 2c:54:23:66:01:a1:59:40:11:0c:fb:9a:af:12:b5:d2:0f:a4: dd:54:5b:21:4c:6d:20:80:1b:0f:8c:64:81:9a:bd:d6:32:0a: d2:0a:d6:94:1c:b5:49:e9:cf:f7:f8:2b:22:8d:43:38:ec:7b: d0:d4:d8:c7:c4:50:28:fd:43:f7:c7:5a:48:68:08:6b:a9:59: 39:fb:cc:1b:37:a9:69:24:48:29:e8:96:89:2b:f0:6f:b2:3b: 45:71:48:49:82:06:af:1d:2b:27:1f:12:09:5d:f2:24:30:31: 71:d9:2f:4f:a4:a0:94:38:7d:57:ec:53:c9:47:99:50:8c:64: 99:34:40:84:3e:f4:bb:01:ea:62:84:23:e4:d5:82:9f:27:20: d3:12:41:29:f8:8b:f4:6c:c4:99:ed:44:a8:ac:3a:99:95:2b: 20:c6:e1:1e -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBo4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTNCNzMxMTAvBgNVBAUTKDQyQ0I0Q0YwMjFGNkYzRkMwQzgxQzRGREYxQzk3RDc0 MjEwMDMxN0IwHhcNMjQwNjE4MjM1MTUzWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjcyMWQ5OS00YmQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0eypHuMy3S7xiSghQgj5KziEavCKJd0h0GSvPuZ4fv0wr15httACaF0I1O1P bnz2hulZUdjyClDoEkq0u94hXoqWmI6mrioKmZ0ZX0lJiCx9AvnJDHHm09WuUy4T zhGFPGDplmpjh/5q2ltbwpYpcsMp9n2pvZohGarnIYrplxDQTrfXVCAgRLke5bYD phIOynbctTeEm6Yzbg2C6HQNz7xYyo2vVJyMrF+etj5kpl7FZRL2oM6m61vg6Gm8 hwLhJo9KZh7LD7PriDkMwUQxE/iqKS94gff8aM140kcw+d7oWDaWTbrqQMUEM58L +RVZrKkGmLQ0Ym6t5aBmh1UUTQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFrVMn3D 40l4o8wABHs8dMrB8R90MB8GA1UdIwQYMBaAFELLTPAh9vP8DIHE/fHJfXQhADF7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExM0I3My9CQTYzNTk4MjJG RTQxMUVCOERCNDFCMjVDNEY5QUUwMi9Rc3RNOENIMjhfd01nY1Q5OGNsOWRDRUFN WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FzdE04Q0gyOF93TWdjVDk4Y2w5ZENFQU1Ycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTNCNzMvQkE2MzU5ODIyRkU0MTFFQjhEQjQxQjI1QzRGOUFFMDIvMDM4QzczMkU4 NzQ2MTFFQjgzQjQxRDM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJn1tADBAKQMJgwDQYJKoZIhvcNAQELBQADggEBAEtwyijq Ozh/mn+Y0IIHEeBVh1dz8HcfhsUDDoLeYhekv4/TDui/LGvhlJ92joNHh1zFChWO m++n+MQtaJdq/ynj3Ehv+nOayb1rEKkJvaGmMNpjIp3HXI0NsyxUI2YBoVlAEQz7 mq8StdIPpN1UWyFMbSCAGw+MZIGavdYyCtIK1pQctUnpz/f4KyKNQzjse9DU2MfE UCj9Q/fHWkhoCGupWTn7zBs3qWkkSCnolokr8G+yO0VxSEmCBq8dKycfEgld8iQw MXHZL0+koJQ4fVfsU8lHmVCMZJk0QIQ+9LsB6mKEI+TVgp8nINMSQSn4i/RsxJnt RKisOpmVKyDG4R4= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:34 2024 by rpki-client on console-ams.rpki-client.org