$ rpki-client -vvf rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/3AB1E0D44ED511ED84336740C4F9AE02.roa File: 3AB1E0D44ED511ED84336740C4F9AE02.roa (raw, json) Hash identifier: a70AVC/m10a0kuUK6//xk3h87UGpBHiNP4PJz3XNpfE= Subject key identifier: B4:1F:93:8E:CB:B0:17:B1:50:E2:DA:A4:BA:05:C4:DD:B0:16:44:22 Certificate issuer: /CN=A913E2B3/serialNumber=52868B0901F55B4078B91A73451CA6D22312C8AB Certificate serial: 0B30 Authority key identifier: 52:86:8B:09:01:F5:5B:40:78:B9:1A:73:45:1C:A6:D2:23:12:C8:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/3AB1E0D44ED511ED84336740C4F9AE02.roa Signing time: Sat 30 Mar 2024 19:58:24 +0000 ROA not before: Sat 30 Mar 2024 19:58:24 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 138608 IP address blocks: 103.134.152.0/24 maxlen: 24 103.134.153.0/24 maxlen: 24 103.134.154.0/24 maxlen: 24 2404:6740::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.crl rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2864 (0xb30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E2B3/serialNumber=52868B0901F55B4078B91A73451CA6D22312C8AB Validity Not Before: Mar 30 19:58:24 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66086ee0-c6f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:54:25:c3:0a:82:3a:65:77:c4:e3:98:13:ec: d6:e7:ca:04:10:f9:81:64:7a:0d:a4:9c:0c:9e:81: a7:16:e0:ef:25:63:45:09:d1:fe:cc:6c:17:16:c2: c5:64:9e:9b:84:91:2b:cb:bc:8b:ac:e9:6e:6c:ae: 4f:18:43:7c:3f:9a:67:63:87:4d:85:91:12:7d:9b: 21:db:76:5c:a0:ab:51:77:fe:35:46:68:79:39:6a: 27:22:f0:27:e4:02:38:e8:c1:e5:c7:2c:8f:be:39: ba:18:e4:71:24:f6:7a:65:73:c8:ea:62:38:7c:1a: 4b:14:58:11:e8:f5:93:d0:20:46:f4:8e:52:3c:45: 58:d2:d6:92:2e:22:0e:6a:1c:54:e0:7e:76:b4:6f: de:ed:34:09:02:59:0e:ac:82:93:d6:15:b5:5a:29: da:c3:43:dd:00:b3:24:7b:65:5a:f6:d8:24:7f:46: 3d:56:cb:c9:69:65:52:85:db:92:56:15:3b:b2:f2: 91:c8:a5:b7:f5:38:f1:24:42:14:f5:70:b2:5d:15: 2f:c3:cf:05:14:f2:32:18:b9:7a:7b:b7:76:18:0a: 53:af:28:cf:20:eb:11:26:a4:a1:dc:4d:62:90:ed: b8:70:f8:ce:2f:5a:e5:33:bc:af:06:87:a4:0f:90: 39:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:1F:93:8E:CB:B0:17:B1:50:E2:DA:A4:BA:05:C4:DD:B0:16:44:22 X509v3 Authority Key Identifier: keyid:52:86:8B:09:01:F5:5B:40:78:B9:1A:73:45:1C:A6:D2:23:12:C8:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/3AB1E0D44ED511ED84336740C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.134.152.0-103.134.154.255 IPv6: 2404:6740::/32 Signature Algorithm: sha256WithRSAEncryption 7d:71:62:50:ea:fc:08:c9:a3:42:83:f3:5f:51:af:51:73:5f: af:eb:4f:2a:d2:e5:ac:61:8a:15:20:d2:e6:d8:b6:c5:78:51: d7:87:67:91:07:8b:30:1b:73:39:ec:ce:96:31:d9:5e:3a:fc: f0:b9:f4:6a:17:73:66:a8:d1:52:0c:05:cd:66:c9:17:9c:5e: 47:0f:11:76:5b:5a:f0:de:6f:e3:e6:69:e5:19:a2:97:5f:71: 21:45:d8:61:4f:70:b5:12:44:41:08:0c:39:d7:43:06:aa:5f: 06:c1:02:67:2c:fa:e1:a5:ef:a1:f8:c5:70:24:49:ec:44:b8: 65:a8:9d:57:57:34:8d:39:c0:22:e5:f6:29:c6:99:7b:24:99: 06:7c:b1:e7:f5:4a:11:1b:0f:91:62:9c:d9:09:5d:0f:fb:b8: 2c:ff:e4:43:fe:08:f8:b3:15:c2:35:10:54:05:64:ee:a8:d3: 45:4d:67:d0:3d:bd:41:b2:fe:14:f8:1d:ec:0b:b6:fa:76:56: fd:19:6a:a7:61:8e:e9:77:cd:a4:c9:2f:f6:dd:33:98:46:3f: d3:41:20:ea:ad:4f:e8:cb:4d:89:98:8e:a4:4c:02:47:52:72: 1a:b3:9d:01:d3:ee:27:bc:ac:ca:cb:9e:c8:e6:68:fd:40:09: b1:90:a8:85 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICCzAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0UyQjMxMTAvBgNVBAUTKDUyODY4QjA5MDFGNTVCNDA3OEI5MUE3MzQ1MUNBNkQy MjMxMkM4QUIwHhcNMjQwMzMwMTk1ODI0WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjA4NmVlMC1jNmY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA41QlwwqCOmV3xOOYE+zW58oEEPmBZHoNpJwMnoGnFuDvJWNFCdH+zGwXFsLF ZJ6bhJEry7yLrOlubK5PGEN8P5pnY4dNhZESfZsh23ZcoKtRd/41Rmh5OWonIvAn 5AI46MHlxyyPvjm6GORxJPZ6ZXPI6mI4fBpLFFgR6PWT0CBG9I5SPEVY0taSLiIO ahxU4H52tG/e7TQJAlkOrIKT1hW1Winaw0PdALMke2Va9tgkf0Y9VsvJaWVShduS VhU7svKRyKW39TjxJEIU9XCyXRUvw88FFPIyGLl6e7d2GApTryjPIOsRJqSh3E1i kO24cPjOL1rlM7yvBoekD5A5DQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFLQfk47L sBexUOLapLoFxN2wFkQiMB8GA1UdIwQYMBaAFFKGiwkB9VtAeLkac0UcptIjEsir MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTJCMy8yMEU2N0REODEy RjQxMUVBODk0MjA0MzBDNEY5QUUwMi9Vb2FMQ1FIMVcwQjR1UnB6UlJ5bTBpTVN5 S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VvYUxDUUgxVzBCNHVScHpSUnltMGlNU3lLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0UyQjMvMjBFNjdERDgxMkY0MTFFQTg5NDIwNDMwQzRGOUFFMDIvM0FCMUUwRDQ0 RUQ1MTFFRDg0MzM2NzQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBQEAgABMA4wDAMEA2eGmAMEAGeGmjANBAIAAjAHAwUAJARnQDANBgkqhkiG 9w0BAQsFAAOCAQEAfXFiUOr8CMmjQoPzX1GvUXNfr+tPKtLlrGGKFSDS5ti2xXhR 14dnkQeLMBtzOezOljHZXjr88Ln0ahdzZqjRUgwFzWbJF5xeRw8Rdlta8N5v4+Zp 5Rmil19xIUXYYU9wtRJEQQgMOddDBqpfBsECZyz64aXvofjFcCRJ7ES4ZaidV1c0 jTnAIuX2KcaZeySZBnyx5/VKERsPkWKc2QldD/u4LP/kQ/4I+LMVwjUQVAVk7qjT RU1n0D29QbL+FPgd7Au2+nZW/Rlqp2GO6XfNpMkv9t0zmEY/00Eg6q1P6MtNiZiO pEwCR1JyGrOdAdPuJ7ysysueyOZo/UAJsZCohQ== -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:00 2024 by rpki-client on console-ams.rpki-client.org