$ rpki-client -vvf rpki.apnic.net/member_repository/A91623B9/78CEACBC2B3611ECAD595B7CC4F9AE02/3B943DB8A12F11EF8A121F33C4F9AE02.roa File: 3B943DB8A12F11EF8A121F33C4F9AE02.roa (raw, json) Hash identifier: wlCYlDts3RjNxBy/eT/e5B1Vtzz4yVgtwvYVdQThmhs= Subject key identifier: 1B:6C:83:1D:49:0E:30:66:1E:BD:B8:1B:51:3A:24:0A:E7:DD:F4:EE Certificate issuer: /CN=A91623B9/serialNumber=98E1ECBD45D7879F9BC9439F4C6C2F2714AD36F5 Certificate serial: 04A0 Authority key identifier: 98:E1:EC:BD:45:D7:87:9F:9B:C9:43:9F:4C:6C:2F:27:14:AD:36:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mOHsvUXXh5-byUOfTGwvJxStNvU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91623B9/78CEACBC2B3611ECAD595B7CC4F9AE02/3B943DB8A12F11EF8A121F33C4F9AE02.roa Signing time: Sun 08 Dec 2024 23:43:02 +0000 ROA not before: Sun 08 Dec 2024 23:43:02 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 197537 IP address blocks: 103.174.96.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91623B9/78CEACBC2B3611ECAD595B7CC4F9AE02/mOHsvUXXh5-byUOfTGwvJxStNvU.crl rsync://rpki.apnic.net/member_repository/A91623B9/78CEACBC2B3611ECAD595B7CC4F9AE02/mOHsvUXXh5-byUOfTGwvJxStNvU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mOHsvUXXh5-byUOfTGwvJxStNvU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1184 (0x4a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91623B9 Validity Not Before: Dec 8 23:43:02 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67562f05-aa71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:3d:9f:d6:c0:55:6e:8d:9e:fa:03:8d:76:46: 61:7e:d5:93:aa:41:ee:69:19:f9:4c:7b:4c:9c:9b: 1f:bc:ab:a9:ce:b3:e4:11:ec:74:10:76:a8:62:07: 8a:be:7f:4a:dd:3a:a1:01:ac:4f:72:28:6d:2a:79: d5:2b:64:6a:e0:10:31:a0:ac:30:8d:5d:39:ba:bb: 9f:9c:3e:05:e7:43:5f:a7:45:fc:95:9e:45:4a:52: 33:2d:7c:3a:2b:3a:ab:d8:68:f1:b6:24:ec:55:75: c9:7e:db:ad:f4:53:6b:63:23:f6:61:13:bd:0f:72: 57:92:ae:46:cb:45:75:9a:87:4e:a7:ba:84:ae:b2: 5a:e3:3e:95:4a:b3:79:81:a2:41:6e:8b:27:17:ef: 9c:95:a9:a0:f8:ab:de:34:f7:61:12:c7:a6:1b:81: ce:54:4c:7a:b4:f5:0e:9a:6b:0f:f5:01:90:09:f7: e3:e6:dd:45:d5:e7:73:6e:60:81:4f:ee:d2:41:81: 21:a6:89:41:4d:c5:48:4a:a0:17:b6:e9:a4:64:6d: b7:e7:db:a2:c4:06:bc:79:95:48:5e:c7:66:e7:67: 79:ed:84:62:81:73:2f:70:c9:96:c7:2a:e5:62:dd: c6:ea:8b:9f:39:ca:11:49:c1:79:28:39:e2:28:94: ad:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:6C:83:1D:49:0E:30:66:1E:BD:B8:1B:51:3A:24:0A:E7:DD:F4:EE X509v3 Authority Key Identifier: keyid:98:E1:EC:BD:45:D7:87:9F:9B:C9:43:9F:4C:6C:2F:27:14:AD:36:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91623B9/78CEACBC2B3611ECAD595B7CC4F9AE02/mOHsvUXXh5-byUOfTGwvJxStNvU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mOHsvUXXh5-byUOfTGwvJxStNvU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91623B9/78CEACBC2B3611ECAD595B7CC4F9AE02/3B943DB8A12F11EF8A121F33C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.174.96.0/23 Signature Algorithm: sha256WithRSAEncryption 09:b2:8a:b1:d0:a0:60:9e:0a:d3:e8:ae:00:54:ae:3d:b2:48: 4c:94:d3:62:a9:3e:84:88:69:d6:bf:21:ae:bb:a8:3b:75:1a: 12:5d:c9:70:87:ab:50:16:2d:87:b3:46:8e:80:c2:20:2c:4c: 1c:ce:57:85:39:6c:df:7d:d9:e6:37:fc:28:56:f5:1f:5f:4b: 0f:49:f3:70:6d:5b:60:8f:b3:3a:9b:93:b1:95:2e:a9:58:c1: fa:b7:ed:0b:50:99:9c:64:73:ed:06:17:48:c7:d8:98:de:e8: c1:fe:fe:f4:87:64:79:0f:26:f2:6b:83:a7:ae:37:bc:e0:92: cf:0f:54:ad:38:8f:e4:8e:05:bc:80:1a:ce:0c:ae:42:e9:d8: 87:b9:98:3e:86:7b:dd:08:3a:67:b2:1d:6f:1e:1f:f8:17:d4: b1:43:f6:a6:c5:16:13:eb:f7:4d:8a:d8:2a:f6:3e:9c:44:46: 77:9e:68:1c:86:80:14:d0:61:ae:e2:b2:6e:5d:d4:60:79:c1: 1f:26:5d:f5:6d:60:2e:86:ba:2f:94:b4:0f:be:2c:14:d6:d9: 44:58:25:d6:9a:00:56:f3:c5:e8:b2:71:e6:a9:c9:0f:b6:fe: 0d:b3:be:ed:65:f9:60:18:9f:a2:8d:f6:f7:d0:b0:3f:fe:6a: e3:92:36:4a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjIzQjkxMTAvBgNVBAUTKDk4RTFFQ0JENDVENzg3OUY5QkM5NDM5RjRDNkMyRjI3 MTRBRDM2RjUwHhcNMjQxMjA4MjM0MzAyWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzU2MmYwNS1hYTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlD2f1sBVbo2e+gONdkZhftWTqkHuaRn5THtMnJsfvKupzrPkEex0EHaoYgeK vn9K3TqhAaxPcihtKnnVK2Rq4BAxoKwwjV05urufnD4F50Nfp0X8lZ5FSlIzLXw6 Kzqr2GjxtiTsVXXJftut9FNrYyP2YRO9D3JXkq5Gy0V1modOp7qErrJa4z6VSrN5 gaJBbosnF++clamg+KveNPdhEsemG4HOVEx6tPUOmmsP9QGQCffj5t1F1edzbmCB T+7SQYEhpolBTcVISqAXtumkZG2359uixAa8eZVIXsdm52d57YRigXMvcMmWxyrl Yt3G6oufOcoRScF5KDniKJStDQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBtsgx1J DjBmHr24G1E6JArn3fTuMB8GA1UdIwQYMBaAFJjh7L1F14efm8lDn0xsLycUrTb1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjNCOS83OENFQUNCQzJC MzYxMUVDQUQ1OTVCN0NDNEY5QUUwMi9tT0hzdlVYWGg1LWJ5VU9mVEd3dkp4U3RO dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21PSHN2VVhYaDUtYnlVT2ZUR3d2SnhTdE52VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjIzQjkvNzhDRUFDQkMyQjM2MTFFQ0FENTk1QjdDQzRGOUFFMDIvM0I5NDNEQjhB MTJGMTFFRjhBMTIxRjMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnrmAwDQYJKoZIhvcNAQELBQADggEBAAmyirHQoGCeCtPo rgBUrj2ySEyU02KpPoSIada/Ia67qDt1GhJdyXCHq1AWLYezRo6AwiAsTBzOV4U5 bN992eY3/ChW9R9fSw9J83BtW2CPszqbk7GVLqlYwfq37QtQmZxkc+0GF0jH2Jje 6MH+/vSHZHkPJvJrg6euN7zgks8PVK04j+SOBbyAGs4MrkLp2Ie5mD6Ge90IOmey HW8eH/gX1LFD9qbFFhPr902K2Cr2PpxERneeaByGgBTQYa7ism5d1GB5wR8mXfVt YC6Gui+UtA++LBTW2URYJdaaAFbzxeiyceapyQ+2/g2zvu1l+WAYn6KN9vfQsD/+ auOSNko= -----END CERTIFICATE-----Generated at Sat Apr 5 01:52:45 2025 by rpki-client