$ rpki-client -vvf rpki.apnic.net/member_repository/A911C564/E808AED6EE9411EBB3D85A86C4F9AE02/A3B2B0A8EE9711EB8EF1A50AC4F9AE02.roa File: A3B2B0A8EE9711EB8EF1A50AC4F9AE02.roa (raw, json) Hash identifier: Jf8QtUinuXEmxe7plhHtwAZrMyKb/TssbL3bZiwtCVs= Subject key identifier: B1:7F:DA:6D:83:AB:DE:5D:4B:5E:EC:36:A1:B2:14:C2:73:01:5D:06 Certificate issuer: /CN=A911C564/serialNumber=1402B64F9AE78161D0D65DA725FDD0BBC8E152D8 Certificate serial: 049E Authority key identifier: 14:02:B6:4F:9A:E7:81:61:D0:D6:5D:A7:25:FD:D0:BB:C8:E1:52:D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FAK2T5rngWHQ1l2nJf3Qu8jhUtg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C564/E808AED6EE9411EBB3D85A86C4F9AE02/A3B2B0A8EE9711EB8EF1A50AC4F9AE02.roa Signing time: Fri 07 Jun 2024 02:27:56 +0000 ROA not before: Fri 07 Jun 2024 02:27:56 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 136602 IP address blocks: 103.93.208.0/24 maxlen: 24 103.174.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C564/E808AED6EE9411EBB3D85A86C4F9AE02/FAK2T5rngWHQ1l2nJf3Qu8jhUtg.crl rsync://rpki.apnic.net/member_repository/A911C564/E808AED6EE9411EBB3D85A86C4F9AE02/FAK2T5rngWHQ1l2nJf3Qu8jhUtg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FAK2T5rngWHQ1l2nJf3Qu8jhUtg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1182 (0x49e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C564/serialNumber=1402B64F9AE78161D0D65DA725FDD0BBC8E152D8 Validity Not Before: Jun 7 02:27:56 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6662702c-209e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:03:b4:ec:cc:6b:e1:cb:34:f8:c2:f8:f9:9e: 75:c1:1a:75:15:ca:38:07:1b:f7:7b:00:f9:ab:74: 8e:06:10:f4:0e:39:94:34:a3:14:6e:e4:b5:ff:87: 87:56:85:95:42:c4:69:46:86:5a:96:f2:7f:da:07: eb:13:d1:40:fa:f5:26:76:3a:48:31:5b:a6:4d:85: 5d:8c:9e:6a:d3:01:40:49:ab:fa:95:34:89:cf:7f: 2a:f0:0f:c6:a0:f5:39:d8:df:1d:aa:cf:bd:6e:9a: e4:03:9a:24:23:68:3f:87:41:f1:a0:16:be:d4:b3: fe:4a:fb:d6:0a:2d:9c:b6:77:a8:5a:58:56:df:3b: db:40:f6:0e:48:86:31:66:23:60:8f:b5:b6:07:1c: c1:6a:5b:e5:1a:2f:68:03:28:dc:a4:79:92:ee:6f: 15:6d:13:55:ad:f0:6a:1a:1e:e6:e8:70:31:20:6f: 70:cc:95:dc:0c:ff:a6:ea:4d:01:18:be:98:e8:2b: 0e:69:fc:ef:96:d3:37:fa:8f:bc:ef:ee:19:3d:59: 1a:81:59:4b:e2:c6:bd:d9:9d:a0:23:72:d6:f7:34: ec:bd:1e:0f:a7:bb:47:c1:14:b2:ab:30:d2:3f:5f: 7f:ee:9a:de:bd:cd:63:73:1f:67:95:a7:51:09:c3: db:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:7F:DA:6D:83:AB:DE:5D:4B:5E:EC:36:A1:B2:14:C2:73:01:5D:06 X509v3 Authority Key Identifier: keyid:14:02:B6:4F:9A:E7:81:61:D0:D6:5D:A7:25:FD:D0:BB:C8:E1:52:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C564/E808AED6EE9411EBB3D85A86C4F9AE02/FAK2T5rngWHQ1l2nJf3Qu8jhUtg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FAK2T5rngWHQ1l2nJf3Qu8jhUtg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C564/E808AED6EE9411EBB3D85A86C4F9AE02/A3B2B0A8EE9711EB8EF1A50AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.93.208.0/24 103.174.239.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:1e:84:72:84:26:d2:52:70:c2:4a:67:aa:be:62:c8:4f:c2: fa:9a:71:9e:35:53:ce:78:76:2a:1f:4f:15:34:5b:41:86:f7: 1c:1a:14:a5:d6:ce:e1:7f:fb:a3:4a:dd:6f:c9:b4:97:ad:cd: fa:3d:05:83:87:a7:22:0f:86:92:8c:fe:e3:df:59:ae:16:f7: 96:04:2d:7f:59:f1:5d:10:6c:b6:cc:b5:27:69:ea:e4:b5:8b: 09:2a:89:9e:5a:1a:4b:a9:05:91:f1:fe:db:82:2e:b6:6f:08: 4b:10:38:0c:43:50:97:e1:ca:b1:27:d7:a5:77:74:86:7a:c4: 2f:46:25:e6:42:fd:12:50:1b:2e:fa:f5:8e:b5:c7:20:5b:7d: 8d:fa:54:94:a0:17:75:aa:a3:04:ee:77:de:c0:83:24:6f:28: bf:bf:d5:dc:97:db:18:25:32:db:7b:85:0b:c2:0c:c2:e6:a3: 06:a6:39:f5:f0:bb:a3:18:a4:93:ce:e4:29:9e:64:ac:5b:48: 5c:b0:2b:10:34:0a:de:e7:2d:50:bd:ad:ca:77:fd:2b:c6:27: d4:25:d7:8d:c3:31:ce:ec:c8:5d:d4:ed:d9:16:49:8b:8a:63: a2:d5:ef:12:89:db:0f:86:8c:ec:a5:1a:b4:e5:b6:a1:09:48: 01:34:66:c7 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM1NjQxMTAvBgNVBAUTKDE0MDJCNjRGOUFFNzgxNjFEMEQ2NURBNzI1RkREMEJC QzhFMTUyRDgwHhcNMjQwNjA3MDIyNzU2WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjYyNzAyYy0yMDllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApAO07Mxr4cs0+ML4+Z51wRp1Fco4Bxv3ewD5q3SOBhD0DjmUNKMUbuS1/4eH VoWVQsRpRoZalvJ/2gfrE9FA+vUmdjpIMVumTYVdjJ5q0wFASav6lTSJz38q8A/G oPU52N8dqs+9bprkA5okI2g/h0HxoBa+1LP+SvvWCi2ctneoWlhW3zvbQPYOSIYx ZiNgj7W2BxzBalvlGi9oAyjcpHmS7m8VbRNVrfBqGh7m6HAxIG9wzJXcDP+m6k0B GL6Y6CsOafzvltM3+o+87+4ZPVkagVlL4sa92Z2gI3LW9zTsvR4Pp7tHwRSyqzDS P19/7prevc1jcx9nladRCcPb3wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFLF/2m2D q95dS17sNqGyFMJzAV0GMB8GA1UdIwQYMBaAFBQCtk+a54Fh0NZdpyX90LvI4VLY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzU2NC9FODA4QUVENkVF OTQxMUVCQjNEODVBODZDNEY5QUUwMi9GQUsyVDVybmdXSFExbDJuSmYzUXU4amhV dGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZBSzJUNXJuZ1dIUTFsMm5KZjNRdThqaFV0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUM1NjQvRTgwOEFFRDZFRTk0MTFFQkIzRDg1QTg2QzRGOUFFMDIvQTNCMkIwQThF RTk3MTFFQjhFRjFBNTBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnXdADBABnru8wDQYJKoZIhvcNAQELBQADggEBADsehHKE JtJScMJKZ6q+YshPwvqacZ41U854diofTxU0W0GG9xwaFKXWzuF/+6NK3W/JtJet zfo9BYOHpyIPhpKM/uPfWa4W95YELX9Z8V0QbLbMtSdp6uS1iwkqiZ5aGkupBZHx /tuCLrZvCEsQOAxDUJfhyrEn16V3dIZ6xC9GJeZC/RJQGy769Y61xyBbfY36VJSg F3WqowTud97AgyRvKL+/1dyX2xglMtt7hQvCDMLmowamOfXwu6MYpJPO5CmeZKxb SFywKxA0Ct7nLVC9rcp3/SvGJ9Ql143DMc7syF3U7dkWSYuKY6LV7xKJ2w+GjOyl GrTltqEJSAE0Zsc= -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:32 2024 by rpki-client on console-fra.rpki-client.org