$ rpki-client -vvf rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/3802AF56829811EEB7C3F322C4F9AE02.roa File: 3802AF56829811EEB7C3F322C4F9AE02.roa (raw, json) Hash identifier: /dryDqRy0DH6c/gZr4MBN4BosfeqNmHeRwKmrIx/CX8= Subject key identifier: 10:8A:51:9B:40:55:08:64:28:6F:0E:77:9F:E3:23:12:F6:40:33:BD Certificate issuer: /CN=A91297A2/serialNumber=E3907B48E6987E2FDFCED01ED01D40B3F63DB118 Certificate serial: BE Authority key identifier: E3:90:7B:48:E6:98:7E:2F:DF:CE:D0:1E:D0:1D:40:B3:F6:3D:B1:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/3802AF56829811EEB7C3F322C4F9AE02.roa Signing time: Tue 01 Oct 2024 05:18:27 +0000 ROA not before: Tue 01 Oct 2024 05:18:27 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 151964 IP address blocks: 103.65.140.0/24 maxlen: 24 2001:df3:940::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.crl rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 190 (0xbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91297A2/serialNumber=E3907B48E6987E2FDFCED01ED01D40B3F63DB118 Validity Not Before: Oct 1 05:18:27 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=66fb8623-a05f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:72:44:99:0d:a8:9a:0b:d2:ef:80:ba:72:5f: 62:ea:27:97:c8:d6:67:45:fa:ac:d3:9e:37:e1:ff: 8e:96:d4:d9:40:eb:c3:4d:29:53:f3:aa:55:20:a3: a9:17:24:10:ab:f3:ef:13:55:a9:dc:2b:8d:64:df: bf:1a:73:06:11:94:81:b5:7c:aa:27:b0:78:49:13: ef:bc:19:e1:c1:18:c3:0e:df:22:17:05:08:c3:5a: 39:ed:12:6f:d8:15:76:00:43:94:33:cf:66:0d:f2: 5c:fd:af:6a:e4:41:f1:16:3e:d7:ac:66:fb:07:f6: be:47:7f:97:76:cc:3b:25:a4:d5:de:37:2d:17:aa: 13:d0:7c:12:1f:1a:95:f7:66:ce:73:6a:35:7e:d4: 89:f2:35:a5:f3:90:64:e2:db:c0:80:45:94:46:a5: 47:ab:8a:27:c8:57:50:e4:9c:d3:b4:66:0f:50:9e: 56:28:85:78:8c:0c:6f:f9:45:d8:4b:3b:4e:06:6e: c6:35:56:c8:b6:fc:32:ab:19:45:39:4f:9b:69:f7: 89:59:8b:18:8b:0b:78:55:43:df:9a:45:c6:db:60: 42:22:b6:6b:2d:59:eb:1b:a4:7c:62:b6:4d:d8:ba: 8b:ef:8c:ea:36:60:26:f9:60:92:f4:68:10:6c:de: f4:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:8A:51:9B:40:55:08:64:28:6F:0E:77:9F:E3:23:12:F6:40:33:BD X509v3 Authority Key Identifier: keyid:E3:90:7B:48:E6:98:7E:2F:DF:CE:D0:1E:D0:1D:40:B3:F6:3D:B1:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/3802AF56829811EEB7C3F322C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.65.140.0/24 IPv6: 2001:df3:940::/48 Signature Algorithm: sha256WithRSAEncryption 59:39:3f:87:fb:96:0e:4e:bd:50:2d:1b:1e:81:78:9b:26:a8: 4e:b0:da:89:59:4f:5a:1a:82:45:3f:65:de:9e:30:33:2b:ca: 58:d1:42:90:84:56:b0:c8:3d:16:5e:14:14:27:98:85:30:60: 09:2e:4e:6f:5f:4f:26:9a:4d:89:a1:96:75:21:6b:6e:17:1d: 39:9e:98:f6:68:39:28:24:a3:d7:82:ad:57:1f:83:73:de:a2: a7:46:31:04:45:03:8f:8f:fe:84:82:45:ce:ca:6f:3c:af:a1: 58:e6:22:4b:a6:b1:41:df:2e:1d:58:d1:3d:fc:3d:69:99:2f: a9:31:ce:c0:ad:fb:f7:46:0f:a5:d0:0e:e2:29:d7:74:89:5c: 8c:80:aa:b8:f3:aa:db:0b:cf:cb:10:25:5d:f0:08:a3:06:12: 8c:d5:3c:50:2b:ae:b1:83:fb:6c:61:17:2f:ae:c2:fb:ac:0e: c1:0c:ae:c7:c4:0c:d3:0e:37:9c:f0:d8:a1:bd:fa:38:5a:53: 7f:63:53:ae:5c:5d:6f:07:21:59:a7:40:04:4a:c8:ac:db:37: 3b:61:bf:ad:2c:c4:07:15:d4:78:07:f8:de:41:d7:4d:6f:fe: 43:24:f4:b3:75:9d:bd:60:18:d1:d5:c3:66:79:77:17:2c:d4: da:2f:71:11 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk3QTIxMTAvBgNVBAUTKEUzOTA3QjQ4RTY5ODdFMkZERkNFRDAxRUQwMUQ0MEIz RjYzREIxMTgwHhcNMjQxMDAxMDUxODI3WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZiODYyMy1hMDVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxHJEmQ2omgvS74C6cl9i6ieXyNZnRfqs05434f+OltTZQOvDTSlT86pVIKOp FyQQq/PvE1Wp3CuNZN+/GnMGEZSBtXyqJ7B4SRPvvBnhwRjDDt8iFwUIw1o57RJv 2BV2AEOUM89mDfJc/a9q5EHxFj7XrGb7B/a+R3+Xdsw7JaTV3jctF6oT0HwSHxqV 92bOc2o1ftSJ8jWl85Bk4tvAgEWURqVHq4onyFdQ5JzTtGYPUJ5WKIV4jAxv+UXY SztOBm7GNVbItvwyqxlFOU+bafeJWYsYiwt4VUPfmkXG22BCIrZrLVnrG6R8YrZN 2LqL74zqNmAm+WCS9GgQbN70BQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBCKUZtA VQhkKG8Od5/jIxL2QDO9MB8GA1UdIwQYMBaAFOOQe0jmmH4v387QHtAdQLP2PbEY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTdBMi9CM0RGQzg4NDZE NjIxMUVFQjMwN0NFMTlDNEY5QUUwMi80NUI3U09hWWZpX2Z6dEFlMEIxQXNfWTlz UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ1QjdTT2FZZmlfZnp0QWUwQjFBc19ZOXNSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjk3QTIvQjNERkM4ODQ2RDYyMTFFRUIzMDdDRTE5QzRGOUFFMDIvMzgwMkFGNTY4 Mjk4MTFFRUI3QzNGMzIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnQYwwDwQCAAIwCQMHACABDfMJQDANBgkqhkiG9w0BAQsF AAOCAQEAWTk/h/uWDk69UC0bHoF4myaoTrDaiVlPWhqCRT9l3p4wMyvKWNFCkIRW sMg9Fl4UFCeYhTBgCS5Ob19PJppNiaGWdSFrbhcdOZ6Y9mg5KCSj14KtVx+Dc96i p0YxBEUDj4/+hIJFzspvPK+hWOYiS6axQd8uHVjRPfw9aZkvqTHOwK3790YPpdAO 4inXdIlcjICquPOq2wvPyxAlXfAIowYSjNU8UCuusYP7bGEXL67C+6wOwQyux8QM 0w43nPDYob36OFpTf2NTrlxdbwchWadABErIrNs3O2G/rSzEBxXUeAf43kHXTW/+ QyT0s3WdvWAY0dXDZnl3FyzU2i9xEQ== -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:01 2024 by rpki-client on console-ams.rpki-client.org