$ rpki-client -vvf rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/3802AF56829811EEB7C3F322C4F9AE02.roa File: 3802AF56829811EEB7C3F322C4F9AE02.roa (raw, json) Hash identifier: oS3C+FSMz2H/XTjfURX211A08f5vVH7C1Pp3+rk3ejA= Subject key identifier: 61:45:53:35:1F:B6:C9:B3:F1:83:65:C6:5D:87:A8:57:00:2C:92:5D Certificate issuer: /CN=A91297A2/serialNumber=E3907B48E6987E2FDFCED01ED01D40B3F63DB118 Certificate serial: 17 Authority key identifier: E3:90:7B:48:E6:98:7E:2F:DF:CE:D0:1E:D0:1D:40:B3:F6:3D:B1:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/3802AF56829811EEB7C3F322C4F9AE02.roa Signing time: Wed 22 Nov 2023 05:15:41 +0000 ROA not before: Wed 22 Nov 2023 05:15:41 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 151964 IP address blocks: 103.65.140.0/24 maxlen: 24 2001:df3:940::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.crl rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 07:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91297A2/serialNumber=E3907B48E6987E2FDFCED01ED01D40B3F63DB118 Validity Not Before: Nov 22 05:15:41 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=655d8e7d-0279 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:2d:0f:99:ad:aa:00:c5:71:69:f3:d9:c2:29: c2:06:e9:e5:b3:e2:9a:96:bf:41:f4:42:47:e2:ea: 1d:cb:80:ef:4f:bd:ed:11:db:52:bd:bb:ea:d0:d6: d1:0b:e9:20:19:48:c6:28:ad:30:12:5b:e9:12:3c: cf:27:00:80:b9:46:d8:08:6e:ca:31:4a:23:38:55: 9f:14:61:78:57:fd:78:85:e8:d3:53:ad:18:f8:fa: d8:d6:6b:92:4c:00:fe:e8:87:88:62:45:dd:1a:57: cf:fa:38:d7:be:41:90:14:6c:bb:ad:9c:51:ab:0e: 3f:ec:bd:38:34:e6:08:7a:4d:af:43:7f:33:1b:31: 69:4c:56:72:f2:b1:54:9b:6a:eb:ec:f0:1e:32:65: c4:74:4a:68:3d:1a:61:7f:2c:75:dd:53:20:bb:23: b2:81:5f:3d:53:7b:a3:68:0a:22:53:c4:dc:28:72: 0b:fd:f7:2c:1c:12:f8:47:1d:6f:b8:70:7b:1d:09: d4:d4:08:dc:f5:ed:27:c3:18:da:26:bb:1c:51:6c: 7a:a0:4d:e8:93:f3:45:b4:cb:6a:68:9d:e2:38:30: 23:7a:a0:64:0c:74:18:fe:a1:b6:87:de:a9:0a:4d: 88:2b:a4:e7:50:37:bd:36:3c:62:4c:08:e3:fd:4f: ba:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:45:53:35:1F:B6:C9:B3:F1:83:65:C6:5D:87:A8:57:00:2C:92:5D X509v3 Authority Key Identifier: keyid:E3:90:7B:48:E6:98:7E:2F:DF:CE:D0:1E:D0:1D:40:B3:F6:3D:B1:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/45B7SOaYfi_fztAe0B1As_Y9sRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/45B7SOaYfi_fztAe0B1As_Y9sRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91297A2/B3DFC8846D6211EEB307CE19C4F9AE02/3802AF56829811EEB7C3F322C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.65.140.0/24 IPv6: 2001:df3:940::/48 Signature Algorithm: sha256WithRSAEncryption ac:31:e3:d2:a3:a3:08:30:60:7b:52:97:e0:5a:7c:93:7c:79: 22:fd:e4:75:64:7c:d7:b0:eb:62:26:75:f3:82:4b:d4:87:28: fb:4c:ba:05:4f:33:13:ea:7e:11:dc:31:6a:9d:b6:e4:6a:65: 3a:4e:e1:3d:0f:bc:cf:2b:a5:83:25:9a:de:33:c3:7d:55:f2: 0a:20:db:fa:79:37:d4:97:a9:6c:f8:00:15:88:50:ae:42:0a: 3d:ea:e1:eb:0d:2c:de:d3:5a:c7:e5:6e:3d:2a:17:31:f2:74: ed:f6:0f:b5:3e:81:7a:d2:1b:5e:e5:9f:a1:85:28:d2:61:20: 9e:8d:c4:2b:0a:4e:6f:20:01:ee:e7:de:f6:f0:b7:40:72:8d: 19:34:fb:0b:f3:ab:19:c4:ff:37:2c:2a:15:1c:dd:3e:4c:c6: c8:2e:70:f6:fe:8d:35:06:f7:42:97:4d:ab:cc:15:32:37:cf: 4e:c4:3c:8f:45:6f:cf:90:59:32:1c:15:ba:9c:37:95:c6:5b: 0c:87:c7:02:fa:4f:21:9e:86:b7:04:19:b4:1a:d5:61:95:c6: f8:02:c2:f3:2b:b0:08:b6:fb:f7:10:ab:73:b1:aa:68:db:7e: 3d:5c:68:21:32:7e:6c:68:66:e6:1a:10:1b:6d:d3:f7:65:2d: b6:e2:c8:1e -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBFzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy OTdBMjExMC8GA1UEBRMoRTM5MDdCNDhFNjk4N0UyRkRGQ0VEMDFFRDAxRDQwQjNG NjNEQjExODAeFw0yMzExMjIwNTE1NDFaFw0yNTAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NWQ4ZTdkLTAyNzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDeLQ+ZraoAxXFp89nCKcIG6eWz4pqWv0H0Qkfi6h3LgO9Pve0R21K9u+rQ1tEL 6SAZSMYorTASW+kSPM8nAIC5RtgIbsoxSiM4VZ8UYXhX/XiF6NNTrRj4+tjWa5JM AP7oh4hiRd0aV8/6ONe+QZAUbLutnFGrDj/svTg05gh6Ta9DfzMbMWlMVnLysVSb auvs8B4yZcR0Smg9GmF/LHXdUyC7I7KBXz1Te6NoCiJTxNwocgv99ywcEvhHHW+4 cHsdCdTUCNz17SfDGNomuxxRbHqgTeiT80W0y2poneI4MCN6oGQMdBj+obaH3qkK TYgrpOdQN702PGJMCOP9T7rLAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUYUVTNR+2 ybPxg2XGXYeoVwAskl0wHwYDVR0jBBgwFoAU45B7SOaYfi/fztAe0B1As/Y9sRgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI5N0EyL0IzREZDODg0NkQ2 MjExRUVCMzA3Q0UxOUM0RjlBRTAyLzQ1QjdTT2FZZmlfZnp0QWUwQjFBc19ZOXNS Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNDVCN1NPYVlmaV9menRBZTBCMUFzX1k5c1JnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OTdBMi9CM0RGQzg4NDZENjIxMUVFQjMwN0NFMTlDNEY5QUUwMi8zODAyQUY1Njgy OTgxMUVFQjdDM0YzMjJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAGdBjDAPBAIAAjAJAwcAIAEN8wlAMA0GCSqGSIb3DQEBCwUA A4IBAQCsMePSo6MIMGB7UpfgWnyTfHki/eR1ZHzXsOtiJnXzgkvUhyj7TLoFTzMT 6n4R3DFqnbbkamU6TuE9D7zPK6WDJZreM8N9VfIKINv6eTfUl6ls+AAViFCuQgo9 6uHrDSze01rH5W49Khcx8nTt9g+1PoF60hte5Z+hhSjSYSCejcQrCk5vIAHu5972 8LdAco0ZNPsL86sZxP83LCoVHN0+TMbILnD2/o01BvdCl02rzBUyN89OxDyPRW/P kFkyHBW6nDeVxlsMh8cC+k8hnoa3BBm0GtVhlcb4AsLzK7AItvv3EKtzsapo2349 XGghMn5saGbmGhAbbdP3ZS224sge -----END CERTIFICATE-----Generated at Fri Jun 7 09:40:14 2024 by rpki-client on console-ams.rpki-client.org