$ rpki-client -vvf rpki.apnic.net/member_repository/A91644A4/2D23A4CC020711ED81DF0168C4F9AE02/3B501252140811EDBF3D2F27C4F9AE02.roa File: 3B501252140811EDBF3D2F27C4F9AE02.roa (raw, json) Hash identifier: mCjohZMZty3ZWm2QC39dDgc6OGK12FrtsmGaALxmnlI= Subject key identifier: EC:BD:53:E7:6E:D6:8F:46:87:49:9A:3D:4D:99:33:23:B3:5D:09:16 Certificate issuer: /CN=A91644A4/serialNumber=8FC661A19332AE864BC87900744DA337F9A700A9 Certificate serial: 01C4 Authority key identifier: 8F:C6:61:A1:93:32:AE:86:4B:C8:79:00:74:4D:A3:37:F9:A7:00:A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j8ZhoZMyroZLyHkAdE2jN_mnAKk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91644A4/2D23A4CC020711ED81DF0168C4F9AE02/3B501252140811EDBF3D2F27C4F9AE02.roa Signing time: Wed 27 Mar 2024 04:06:25 +0000 ROA not before: Wed 27 Mar 2024 04:06:25 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 17158 IP address blocks: 103.109.128.0/24 maxlen: 24 103.109.129.0/24 maxlen: 24 103.109.130.0/24 maxlen: 24 103.109.131.0/24 maxlen: 24 203.22.186.0/24 maxlen: 24 203.23.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91644A4/2D23A4CC020711ED81DF0168C4F9AE02/j8ZhoZMyroZLyHkAdE2jN_mnAKk.crl rsync://rpki.apnic.net/member_repository/A91644A4/2D23A4CC020711ED81DF0168C4F9AE02/j8ZhoZMyroZLyHkAdE2jN_mnAKk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j8ZhoZMyroZLyHkAdE2jN_mnAKk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:33:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 452 (0x1c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91644A4/serialNumber=8FC661A19332AE864BC87900744DA337F9A700A9 Validity Not Before: Mar 27 04:06:25 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=66039b40-645a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:22:05:7b:e6:0f:a5:25:d3:72:8a:80:c7:d2: c2:33:da:c2:bb:5a:ae:98:d9:de:d0:a7:ea:6f:3a: 71:ee:a0:e3:df:c1:e5:7f:3c:ca:bf:da:c2:59:57: 0a:ef:48:76:31:32:86:01:47:03:69:4f:3c:2b:1b: 9d:fe:31:7b:dd:a5:2e:3a:f0:b6:35:88:4e:c0:e5: a5:c4:78:e6:69:31:8c:6e:94:7a:85:94:13:0d:35: 77:97:93:2a:94:d9:ec:67:b6:af:38:9e:c5:55:4f: 18:40:6a:c9:ac:17:42:bf:ed:a2:43:92:0e:dc:0b: 2f:f9:cf:f0:fd:33:a4:c5:61:da:30:c9:9c:5f:a5: 97:f2:bc:d8:ad:87:91:39:ef:fa:00:e2:c9:39:d8: db:40:e7:1d:3a:6a:8f:8c:d2:6e:37:85:84:15:7c: 7f:ef:21:96:15:7a:b1:d3:7e:8e:96:22:04:e8:e6: 2f:88:9c:47:83:09:b9:2c:46:72:e9:79:bf:8b:fe: b4:7e:61:17:cf:ef:7f:4f:d7:08:d1:97:dc:bc:a4: ad:df:d2:33:34:fb:c2:94:2e:cb:8b:03:ad:bf:0e: 3b:c4:cd:fa:f7:b4:33:c7:3a:1f:2e:04:22:ee:24: bb:98:a1:52:a7:da:86:6f:f0:ce:43:df:cd:37:79: 11:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:BD:53:E7:6E:D6:8F:46:87:49:9A:3D:4D:99:33:23:B3:5D:09:16 X509v3 Authority Key Identifier: keyid:8F:C6:61:A1:93:32:AE:86:4B:C8:79:00:74:4D:A3:37:F9:A7:00:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91644A4/2D23A4CC020711ED81DF0168C4F9AE02/j8ZhoZMyroZLyHkAdE2jN_mnAKk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j8ZhoZMyroZLyHkAdE2jN_mnAKk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91644A4/2D23A4CC020711ED81DF0168C4F9AE02/3B501252140811EDBF3D2F27C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.109.128.0/22 203.22.186.0/24 203.23.127.0/24 Signature Algorithm: sha256WithRSAEncryption 22:da:26:7a:16:51:ee:09:0b:f8:4e:58:86:4e:d0:3a:c6:fb: 2e:d8:0d:1d:55:29:09:df:78:80:39:23:1f:1e:d7:59:b3:6e: ec:31:b8:18:f3:f1:4f:f9:fa:89:5a:85:fb:19:86:81:00:15: 42:70:1b:b5:fa:25:ea:5f:ef:a1:75:f3:ac:ec:dc:2f:8e:72: 13:e9:d1:4d:42:39:01:e2:41:48:ff:ed:e0:e4:77:a4:c8:6a: 96:74:9a:49:02:5c:1f:b1:aa:e8:01:e3:ce:2e:da:50:5c:9a: 8b:67:1a:8c:62:bd:9d:ae:61:d0:20:54:94:5c:d0:52:72:93: 5d:65:c8:1e:33:da:f5:9e:71:8e:45:6b:2f:a8:28:a0:9e:c4: 16:31:2c:22:cd:c2:34:0f:5d:48:a9:a7:ab:43:da:ca:77:3d: 42:ae:47:9b:d9:17:61:e0:41:e5:94:8a:21:07:3a:7c:c0:38: 69:1b:0a:4c:a3:2c:05:8f:e6:b9:94:af:6c:01:32:fc:82:8c: ce:00:2c:85:a9:d9:e1:65:fa:7e:e4:04:d6:b4:70:43:2d:88: 84:b0:3b:93:77:46:1e:ed:eb:a7:6e:f9:be:ea:8d:b4:f4:47: bd:46:71:70:cc:95:18:c8:da:45:f4:fb:36:3a:62:d3:11:89: 85:62:f0:81 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAcQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQ0QTQxMTAvBgNVBAUTKDhGQzY2MUExOTMzMkFFODY0QkM4NzkwMDc0NERBMzM3 RjlBNzAwQTkwHhcNMjQwMzI3MDQwNjI1WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjAzOWI0MC02NDVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAySIFe+YPpSXTcoqAx9LCM9rCu1qumNne0Kfqbzpx7qDj38HlfzzKv9rCWVcK 70h2MTKGAUcDaU88Kxud/jF73aUuOvC2NYhOwOWlxHjmaTGMbpR6hZQTDTV3l5Mq lNnsZ7avOJ7FVU8YQGrJrBdCv+2iQ5IO3Asv+c/w/TOkxWHaMMmcX6WX8rzYrYeR Oe/6AOLJOdjbQOcdOmqPjNJuN4WEFXx/7yGWFXqx036OliIE6OYviJxHgwm5LEZy 6Xm/i/60fmEXz+9/T9cI0ZfcvKSt39IzNPvClC7LiwOtvw47xM3697QzxzofLgQi 7iS7mKFSp9qGb/DOQ9/NN3kR9wIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFOy9U+du 1o9Gh0maPU2ZMyOzXQkWMB8GA1UdIwQYMBaAFI/GYaGTMq6GS8h5AHRNozf5pwCp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDRBNC8yRDIzQTRDQzAy MDcxMUVEODFERjAxNjhDNEY5QUUwMi9qOFpob1pNeXJvWkx5SGtBZEUyak5fbW5B S2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2o4WmhvWk15cm9aTHlIa0FkRTJqTl9tbkFLay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjQ0QTQvMkQyM0E0Q0MwMjA3MTFFRDgxREYwMTY4QzRGOUFFMDIvM0I1MDEyNTIx NDA4MTFFREJGM0QyRjI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAJnbYADBADLFroDBADLF38wDQYJKoZIhvcNAQELBQADggEB ACLaJnoWUe4JC/hOWIZO0DrG+y7YDR1VKQnfeIA5Ix8e11mzbuwxuBjz8U/5+ola hfsZhoEAFUJwG7X6Jepf76F186zs3C+OchPp0U1COQHiQUj/7eDkd6TIapZ0mkkC XB+xqugB484u2lBcmotnGoxivZ2uYdAgVJRc0FJyk11lyB4z2vWecY5Fay+oKKCe xBYxLCLNwjQPXUipp6tD2sp3PUKuR5vZF2HgQeWUiiEHOnzAOGkbCkyjLAWP5rmU r2wBMvyCjM4ALIWp2eFl+n7kBNa0cEMtiISwO5N3Rh7t66du+b7qjbT0R71GcXDM lRjI2kX0+zY6YtMRiYVi8IE= -----END CERTIFICATE-----Generated at Sat Jun 1 06:27:36 2024 by rpki-client on console-fra.rpki-client.org