$ rpki-client -vvf rpki.apnic.net/member_repository/A914E1E3/021AE92ABDE311E684CE0B54C4F9AE02/3C1382D0BEA211E68902BC3DC4F9AE02.roa File: 3C1382D0BEA211E68902BC3DC4F9AE02.roa (raw, json) Hash identifier: fz4f6MmX7R6kRL2gcaEtaQrQoy9cdumfsJWJxUL1YME= Subject key identifier: 08:41:57:26:D7:8F:DA:F5:1D:FF:67:C9:99:C6:41:3C:1A:AD:3D:1A Certificate issuer: /CN=A914E1E3/serialNumber=DC57E95F6292133A29E38848365096235D1937CA Certificate serial: 1C6E Authority key identifier: DC:57:E9:5F:62:92:13:3A:29:E3:88:48:36:50:96:23:5D:19:37:CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3FfpX2KSEzop44hINlCWI10ZN8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E1E3/021AE92ABDE311E684CE0B54C4F9AE02/3C1382D0BEA211E68902BC3DC4F9AE02.roa Signing time: Thu 22 Aug 2024 16:33:50 +0000 ROA not before: Thu 22 Aug 2024 16:33:50 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 134452 IP address blocks: 103.194.152.0/22 maxlen: 22 103.194.152.0/23 maxlen: 23 103.194.152.0/23 maxlen: 24 103.194.152.0/24 maxlen: 24 103.194.153.0/24 maxlen: 24 103.194.154.0/23 maxlen: 23 103.194.154.0/24 maxlen: 24 103.194.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E1E3/021AE92ABDE311E684CE0B54C4F9AE02/3FfpX2KSEzop44hINlCWI10ZN8o.crl rsync://rpki.apnic.net/member_repository/A914E1E3/021AE92ABDE311E684CE0B54C4F9AE02/3FfpX2KSEzop44hINlCWI10ZN8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3FfpX2KSEzop44hINlCWI10ZN8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:11:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7278 (0x1c6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E1E3/serialNumber=DC57E95F6292133A29E38848365096235D1937CA Validity Not Before: Aug 22 16:33:50 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66c7686e-78a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:2e:32:4f:3b:a1:9a:65:8b:18:01:1b:af:9a: 5c:e8:c0:b4:14:d0:b5:a9:8c:7a:78:12:d4:05:63: 07:4b:fc:75:9d:33:6e:29:6f:eb:df:41:d7:69:94: 38:23:45:3a:11:0c:ce:27:1e:8a:81:ff:d9:eb:e9: a5:38:39:a5:fb:e6:fb:eb:38:a7:e6:d6:3b:8e:a1: 67:f3:1c:67:42:a1:10:9c:ce:83:7a:d6:7a:40:74: 1f:2f:30:76:11:57:fb:6c:86:d0:a6:fc:a5:ce:95: 04:02:8f:b3:7e:ae:38:0d:b6:14:dd:ab:78:0c:0d: 8f:1f:bf:1e:b3:3d:3f:b9:9b:6c:c3:19:ac:36:49: 82:27:b7:84:9a:2d:f7:bc:e2:ec:1d:45:f3:c6:7a: 03:e2:98:a1:67:1a:fd:fb:68:6b:dd:6e:31:5f:a2: 99:f9:74:aa:e9:12:03:14:7d:c6:3e:00:79:8f:49: ee:f8:47:f9:c8:13:47:ac:90:6b:a5:f4:ca:44:6b: 4e:ed:51:c6:f0:03:6c:06:9f:0a:cc:71:7a:ef:dc: 12:63:b1:c8:cf:1d:1b:eb:2e:82:d2:ee:12:79:7f: 18:41:e2:bb:a6:a6:1c:7f:5a:9f:e4:a8:49:a6:96: 41:bd:6e:a5:d7:8e:fe:65:cb:ca:32:c5:0f:ac:fe: 68:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:41:57:26:D7:8F:DA:F5:1D:FF:67:C9:99:C6:41:3C:1A:AD:3D:1A X509v3 Authority Key Identifier: keyid:DC:57:E9:5F:62:92:13:3A:29:E3:88:48:36:50:96:23:5D:19:37:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E1E3/021AE92ABDE311E684CE0B54C4F9AE02/3FfpX2KSEzop44hINlCWI10ZN8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3FfpX2KSEzop44hINlCWI10ZN8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E1E3/021AE92ABDE311E684CE0B54C4F9AE02/3C1382D0BEA211E68902BC3DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.194.152.0/22 Signature Algorithm: sha256WithRSAEncryption 99:fe:82:c0:44:2f:86:de:01:d9:06:b2:3e:62:3b:9d:0c:7d: 9f:3a:b9:86:9d:2f:ba:94:28:b4:79:a1:79:c8:41:a8:4a:20: 0d:32:68:be:fa:d5:a8:51:60:10:0b:ce:3e:c2:29:52:2b:ad: f4:d8:9d:6d:bc:e0:ab:45:87:94:a9:f0:15:45:a6:5d:de:eb: ef:e2:28:fd:77:2e:3d:c1:b5:f0:65:91:9c:51:81:10:98:78: a7:8d:44:a2:99:d3:64:68:c5:f8:5b:58:67:f8:f7:dc:46:91: 64:6a:26:3e:ed:d5:24:6e:a4:1d:c7:4e:2f:dc:45:6b:3d:36: 38:7a:03:18:7a:3c:2f:e5:3f:05:40:4f:54:a0:99:65:f4:51: 94:6d:3e:f3:e6:f8:07:ae:2a:a6:40:3f:b5:7a:de:f4:83:2b: cd:4e:91:cf:05:da:b6:e1:1d:00:2a:2a:25:9e:ed:44:5d:08: 48:67:a0:16:eb:17:8d:8a:7e:8b:68:1b:82:57:3c:7f:42:6b: cf:31:34:5f:a2:4e:12:85:e4:e8:ac:61:4e:1c:c4:c4:6a:43: 50:ee:b1:f6:3e:6d:0e:1e:a3:83:dc:ec:f6:83:48:99:ee:37: f5:8b:b8:c6:9f:c9:98:5f:b3:b3:56:9a:93:d9:f9:23:fb:f2: 5f:ab:03:32 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHG4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUxRTMxMTAvBgNVBAUTKERDNTdFOTVGNjI5MjEzM0EyOUUzODg0ODM2NTA5NjIz NUQxOTM3Q0EwHhcNMjQwODIyMTYzMzUwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM3Njg2ZS03OGE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApi4yTzuhmmWLGAEbr5pc6MC0FNC1qYx6eBLUBWMHS/x1nTNuKW/r30HXaZQ4 I0U6EQzOJx6Kgf/Z6+mlODml++b76zin5tY7jqFn8xxnQqEQnM6DetZ6QHQfLzB2 EVf7bIbQpvylzpUEAo+zfq44DbYU3at4DA2PH78esz0/uZtswxmsNkmCJ7eEmi33 vOLsHUXzxnoD4pihZxr9+2hr3W4xX6KZ+XSq6RIDFH3GPgB5j0nu+Ef5yBNHrJBr pfTKRGtO7VHG8ANsBp8KzHF679wSY7HIzx0b6y6C0u4SeX8YQeK7pqYcf1qf5KhJ ppZBvW6l147+ZcvKMsUPrP5oVwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAhBVybX j9r1Hf9nyZnGQTwarT0aMB8GA1UdIwQYMBaAFNxX6V9ikhM6KeOISDZQliNdGTfK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTFFMy8wMjFBRTkyQUJE RTMxMUU2ODRDRTBCNTRDNEY5QUUwMi8zRmZwWDJLU0V6b3A0NGhJTmxDV0kxMFpO OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNGZnBYMktTRXpvcDQ0aElObENXSTEwWk44by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEUxRTMvMDIxQUU5MkFCREUzMTFFNjg0Q0UwQjU0QzRGOUFFMDIvM0MxMzgyRDBC RUEyMTFFNjg5MDJCQzNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnwpgwDQYJKoZIhvcNAQELBQADggEBAJn+gsBEL4beAdkG sj5iO50MfZ86uYadL7qUKLR5oXnIQahKIA0yaL761ahRYBALzj7CKVIrrfTYnW28 4KtFh5Sp8BVFpl3e6+/iKP13Lj3BtfBlkZxRgRCYeKeNRKKZ02RoxfhbWGf499xG kWRqJj7t1SRupB3HTi/cRWs9Njh6Axh6PC/lPwVAT1SgmWX0UZRtPvPm+AeuKqZA P7V63vSDK81Okc8F2rbhHQAqKiWe7URdCEhnoBbrF42KfotoG4JXPH9Ca88xNF+i ThKF5OisYU4cxMRqQ1DusfY+bQ4eo4Pc7PaDSJnuN/WLuMafyZhfs7NWmpPZ+SP7 8l+rAzI= -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:45 2024 by rpki-client on console-fra.rpki-client.org