$ rpki-client -vvf rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/939790AAB9BD11EEA19BE74DC4F9AE02.roa File: 939790AAB9BD11EEA19BE74DC4F9AE02.roa (raw, json) Hash identifier: usgNeDoGlzZoBDkMS+oNirA/1DpfH4pmT68FwmH4UH4= Subject key identifier: 68:F1:6E:EB:AD:C9:F6:8A:58:97:B4:1D:AE:84:D6:03:9F:2E:29:23 Certificate issuer: /CN=A911DD04/serialNumber=473464847159BB152FBFE1DBB5A1B01546822F17 Certificate serial: 3C Authority key identifier: 47:34:64:84:71:59:BB:15:2F:BF:E1:DB:B5:A1:B0:15:46:82:2F:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/939790AAB9BD11EEA19BE74DC4F9AE02.roa Signing time: Mon 29 Apr 2024 08:21:27 +0000 ROA not before: Mon 29 Apr 2024 08:21:27 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 142004 IP address blocks: 103.164.88.0/24 maxlen: 24 2001:df6:4380::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.crl rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DD04/serialNumber=473464847159BB152FBFE1DBB5A1B01546822F17 Validity Not Before: Apr 29 08:21:27 2024 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=662f5887-8a04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:74:96:15:ce:2d:9d:79:bb:80:32:7d:09:2c: 3f:0e:01:9d:10:c1:27:7b:94:36:01:62:df:dc:1f: 4b:3d:1d:f5:00:b4:a2:35:65:d5:ff:bd:57:9a:36: dc:9a:bf:7e:b3:bb:13:5c:ad:cc:f5:f8:77:c3:9d: 52:fd:46:16:cb:9b:21:83:c7:f8:22:9f:87:07:da: 2d:08:dd:e7:c1:97:30:38:e5:4c:1b:6a:3d:e7:21: 61:aa:db:b6:d2:98:8b:b9:ad:45:56:7d:7d:2f:ec: 43:a4:99:cf:5c:22:e5:12:22:21:15:13:ea:69:b2: fe:bf:c8:94:01:7b:71:5f:e1:57:e8:20:91:cc:c7: 35:be:42:03:91:d6:06:dc:85:50:7a:26:f3:fe:b4: 8e:6b:40:b4:0c:0a:6a:0f:85:21:42:de:99:ce:b1: 25:90:02:5e:d6:a3:a8:07:be:c1:a4:5f:5a:f1:0e: ce:ea:23:b9:e2:40:d0:7f:fc:60:26:43:79:fc:a0: 2e:79:ff:e9:0f:fd:29:c9:e5:04:a1:2a:cc:7e:94: f0:06:e5:9f:4c:a3:07:20:e6:90:e7:e1:70:93:15: a6:7f:57:d1:5f:5d:e3:41:48:d3:bc:79:5a:e0:bf: 84:80:96:ff:6c:5b:79:88:cf:f6:3b:a1:20:7d:ba: dc:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:F1:6E:EB:AD:C9:F6:8A:58:97:B4:1D:AE:84:D6:03:9F:2E:29:23 X509v3 Authority Key Identifier: keyid:47:34:64:84:71:59:BB:15:2F:BF:E1:DB:B5:A1:B0:15:46:82:2F:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/RzRkhHFZuxUvv-HbtaGwFUaCLxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RzRkhHFZuxUvv-HbtaGwFUaCLxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DD04/C3D5FDC6B9BB11EEAA32295EC4F9AE02/939790AAB9BD11EEA19BE74DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.164.88.0/24 IPv6: 2001:df6:4380::/48 Signature Algorithm: sha256WithRSAEncryption 77:ae:4c:06:42:83:60:c1:b9:d7:42:eb:64:70:46:c4:53:f1: e3:1d:5a:a8:aa:f0:02:9b:64:fb:2c:7b:de:b5:e9:c1:af:47: 95:7e:bd:ed:ad:55:5f:b7:63:bf:0c:dd:4a:28:d5:11:fc:8c: b3:b2:2e:44:3b:d8:f3:a0:d1:be:2a:80:60:72:d4:3c:90:90: fb:8c:b0:2a:c8:d3:1e:b3:9a:28:64:dd:6c:59:d6:93:06:47: 0f:fc:f2:03:95:c3:d7:1e:c0:b4:72:41:5f:d7:64:92:2f:ce: 1b:4b:4c:f8:21:dc:7d:1d:df:34:32:94:4b:f7:8c:d3:98:6b: 73:03:1a:64:e6:05:ca:7b:ef:79:2e:d0:0e:1c:6f:48:ca:61: a8:09:d9:c0:06:b1:05:2b:91:26:f8:37:db:dd:ae:3b:34:2c: f2:0c:12:c5:2f:41:31:d4:d6:10:c1:e4:a8:92:ce:8e:08:6c: bc:0e:b6:94:f5:5c:98:f2:d1:ec:79:cd:85:77:1c:22:8f:c9: b0:71:db:e9:9f:d4:d8:c7:62:6a:0c:4d:7d:ae:ee:f7:9d:98: b3:c4:15:da:a4:7b:ae:1a:c0:58:ca:66:37:86:ca:ad:e8:ef: 54:2c:80:46:3c:4f:a2:66:0e:9a:c2:6e:89:92:6b:12:cf:02: de:a0:51:82 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBPDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx REQwNDExMC8GA1UEBRMoNDczNDY0ODQ3MTU5QkIxNTJGQkZFMURCQjVBMUIwMTU0 NjgyMkYxNzAeFw0yNDA0MjkwODIxMjdaFw0yNzA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MmY1ODg3LThhMDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOdJYVzi2debuAMn0JLD8OAZ0QwSd7lDYBYt/cH0s9HfUAtKI1ZdX/vVeaNtya v36zuxNcrcz1+HfDnVL9RhbLmyGDx/gin4cH2i0I3efBlzA45Uwbaj3nIWGq27bS mIu5rUVWfX0v7EOkmc9cIuUSIiEVE+ppsv6/yJQBe3Ff4VfoIJHMxzW+QgOR1gbc hVB6JvP+tI5rQLQMCmoPhSFC3pnOsSWQAl7Wo6gHvsGkX1rxDs7qI7niQNB//GAm Q3n8oC55/+kP/SnJ5QShKsx+lPAG5Z9Mowcg5pDn4XCTFaZ/V9FfXeNBSNO8eVrg v4SAlv9sW3mIz/Y7oSB9utzpAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUaPFu663J 9opYl7QdroTWA58uKSMwHwYDVR0jBBgwFoAURzRkhHFZuxUvv+HbtaGwFUaCLxcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFERDA0L0MzRDVGREM2QjlC QjExRUVBQTMyMjk1RUM0RjlBRTAyL1J6UmtoSEZadXhVdnYtSGJ0YUd3RlVhQ0x4 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUnpSa2hIRlp1eFV2di1IYnRhR3dGVWFDTHhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REQwNC9DM0Q1RkRDNkI5QkIxMUVFQUEzMjI5NUVDNEY5QUUwMi85Mzk3OTBBQUI5 QkQxMUVFQTE5QkU3NERDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAGekWDAPBAIAAjAJAwcAIAEN9kOAMA0GCSqGSIb3DQEBCwUA A4IBAQB3rkwGQoNgwbnXQutkcEbEU/HjHVqoqvACm2T7LHvetenBr0eVfr3trVVf t2O/DN1KKNUR/Iyzsi5EO9jzoNG+KoBgctQ8kJD7jLAqyNMes5ooZN1sWdaTBkcP /PIDlcPXHsC0ckFf12SSL84bS0z4Idx9Hd80MpRL94zTmGtzAxpk5gXKe+95LtAO HG9IymGoCdnABrEFK5Em+Dfb3a47NCzyDBLFL0Ex1NYQweSoks6OCGy8DraU9VyY 8tHsec2Fdxwij8mwcdvpn9TYx2JqDE19ru73nZizxBXapHuuGsBYymY3hsqt6O9U LIBGPE+iZg6awm6JkmsSzwLeoFGC -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:44 2024 by rpki-client on console-fra.rpki-client.org