$ rpki-client -vvf rpki.apnic.net/member_repository/A91722C3/1523D2E407AB11E8AE5DFE64C4F9AE02/3B7EBA5C7D7411EBAEFB906AC4F9AE02.roa File: 3B7EBA5C7D7411EBAEFB906AC4F9AE02.roa (raw, json) Hash identifier: 561yu9MGU0vumwQn4MDwqvQwRWFnU69Hgu+DoY89L9g= Subject key identifier: BA:A1:E3:CF:D7:6D:03:0A:6A:77:BF:AD:47:35:42:B9:B0:8E:48:53 Certificate issuer: /CN=A91722C3/serialNumber=EAD36A7D30B066156B803025AAAA5FF927AD75C2 Certificate serial: 15F8 Authority key identifier: EA:D3:6A:7D:30:B0:66:15:6B:80:30:25:AA:AA:5F:F9:27:AD:75:C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6tNqfTCwZhVrgDAlqqpf-SetdcI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91722C3/1523D2E407AB11E8AE5DFE64C4F9AE02/3B7EBA5C7D7411EBAEFB906AC4F9AE02.roa Signing time: Fri 04 Oct 2024 16:55:13 +0000 ROA not before: Fri 04 Oct 2024 16:55:13 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 136757 IP address blocks: 103.89.38.0/23 maxlen: 23 103.239.106.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91722C3/1523D2E407AB11E8AE5DFE64C4F9AE02/6tNqfTCwZhVrgDAlqqpf-SetdcI.crl rsync://rpki.apnic.net/member_repository/A91722C3/1523D2E407AB11E8AE5DFE64C4F9AE02/6tNqfTCwZhVrgDAlqqpf-SetdcI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6tNqfTCwZhVrgDAlqqpf-SetdcI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:44:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5624 (0x15f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91722C3/serialNumber=EAD36A7D30B066156B803025AAAA5FF927AD75C2 Validity Not Before: Oct 4 16:55:13 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67001df1-26bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:95:4c:13:9c:22:00:6e:ce:d6:79:90:7c:d5: b0:d4:59:ee:b8:98:6d:b3:3c:f4:f7:a1:f6:bd:02: e8:4e:53:43:b0:61:5e:16:33:0a:97:82:00:b1:43: f7:23:83:bc:f0:20:de:82:97:fd:f4:56:8e:a0:ad: e8:15:20:88:74:1d:59:56:36:3f:6b:c1:34:32:ce: f2:f8:15:ed:1a:23:39:93:14:33:c0:26:f5:d5:79: a9:14:16:ab:7e:b0:57:36:35:ff:88:ac:c7:bf:e5: 43:15:d2:38:7d:98:fa:fe:bd:d6:f6:92:88:8b:c2: 0b:82:3d:bc:d0:25:d8:85:6d:73:50:45:84:2d:71: 17:f0:2c:50:6c:5d:01:f2:14:38:3f:d5:16:5c:9f: 66:ee:f2:4a:4e:4c:36:33:3e:d8:2c:85:b7:d6:bc: 55:fb:46:a0:bf:7f:7b:99:73:30:4a:d1:d6:72:53: 7d:5f:f2:43:42:e7:1d:46:43:76:ea:a3:b4:c7:13: 52:ec:69:ec:89:7c:0f:e3:8a:7b:2e:fd:1e:7e:02: 25:66:b5:a7:c4:42:70:1c:ee:16:6c:b1:43:20:fc: 80:30:01:db:5a:f6:c2:15:86:5b:e3:a8:8c:be:08: a9:e8:a3:6e:99:d4:d2:9c:4e:59:28:97:a6:6b:d6: 8d:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:A1:E3:CF:D7:6D:03:0A:6A:77:BF:AD:47:35:42:B9:B0:8E:48:53 X509v3 Authority Key Identifier: keyid:EA:D3:6A:7D:30:B0:66:15:6B:80:30:25:AA:AA:5F:F9:27:AD:75:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91722C3/1523D2E407AB11E8AE5DFE64C4F9AE02/6tNqfTCwZhVrgDAlqqpf-SetdcI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6tNqfTCwZhVrgDAlqqpf-SetdcI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91722C3/1523D2E407AB11E8AE5DFE64C4F9AE02/3B7EBA5C7D7411EBAEFB906AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.89.38.0/23 103.239.106.0/23 Signature Algorithm: sha256WithRSAEncryption 1e:62:a9:0a:bb:d9:36:45:a3:0b:6b:7e:94:5d:e9:9d:5a:43: 1a:73:e9:a1:c6:cc:81:2d:7e:f4:ac:44:96:df:5b:e3:8d:6d: 94:97:f1:85:e4:94:11:28:ab:aa:72:30:2a:6b:c2:06:dc:8a: 7c:26:73:94:f8:d2:88:1a:3d:14:56:31:1c:62:7e:41:0e:ed: 22:4a:4b:a5:2b:84:2a:7e:5a:10:bc:53:d4:ee:70:33:ce:4d: d2:26:1d:22:bf:b1:6e:71:a1:c8:81:a8:54:cb:0c:07:06:8f: 81:e0:ba:c2:d9:f4:1c:de:a2:50:18:89:7c:1f:20:e0:f3:8c: bc:06:95:40:f5:fc:07:e4:60:06:de:ae:46:10:8a:c3:8b:16: 48:c7:9c:d5:3f:6f:56:a6:32:d5:7c:d3:fd:3b:70:8c:8f:5b: 08:b6:f6:fc:ca:84:4c:f0:d8:05:74:35:77:96:47:21:24:be: 26:76:13:d4:ef:c5:d7:cb:7a:12:c0:fa:66:b9:82:40:b9:d8: f2:a0:8d:af:ce:2e:14:ab:c4:8f:e7:9e:02:a4:8c:da:ae:90: 72:7b:d8:7d:48:6a:87:67:a7:f4:21:76:87:25:40:2f:30:49: ce:1f:54:5a:d1:0d:23:3a:f8:49:c0:69:64:35:7a:b7:6f:e3: 7a:a9:0c:b0 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICFfgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzIyQzMxMTAvBgNVBAUTKEVBRDM2QTdEMzBCMDY2MTU2QjgwMzAyNUFBQUE1RkY5 MjdBRDc1QzIwHhcNMjQxMDA0MTY1NTEzWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzAwMWRmMS0yNmJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAypVME5wiAG7O1nmQfNWw1FnuuJhtszz096H2vQLoTlNDsGFeFjMKl4IAsUP3 I4O88CDegpf99FaOoK3oFSCIdB1ZVjY/a8E0Ms7y+BXtGiM5kxQzwCb11XmpFBar frBXNjX/iKzHv+VDFdI4fZj6/r3W9pKIi8ILgj280CXYhW1zUEWELXEX8CxQbF0B 8hQ4P9UWXJ9m7vJKTkw2Mz7YLIW31rxV+0agv397mXMwStHWclN9X/JDQucdRkN2 6qO0xxNS7GnsiXwP44p7Lv0efgIlZrWnxEJwHO4WbLFDIPyAMAHbWvbCFYZb46iM vgip6KNumdTSnE5ZKJema9aN1QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFLqh48/X bQMKane/rUc1QrmwjkhTMB8GA1UdIwQYMBaAFOrTan0wsGYVa4AwJaqqX/knrXXC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjJDMy8xNTIzRDJFNDA3 QUIxMUU4QUU1REZFNjRDNEY5QUUwMi82dE5xZlRDd1poVnJnREFscXFwZi1TZXRk Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ0TnFmVEN3WmhWcmdEQWxxcXBmLVNldGRjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzIyQzMvMTUyM0QyRTQwN0FCMTFFOEFFNURGRTY0QzRGOUFFMDIvM0I3RUJBNUM3 RDc0MTFFQkFFRkI5MDZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnWSYDBAFn72owDQYJKoZIhvcNAQELBQADggEBAB5iqQq7 2TZFowtrfpRd6Z1aQxpz6aHGzIEtfvSsRJbfW+ONbZSX8YXklBEoq6pyMCprwgbc inwmc5T40ogaPRRWMRxifkEO7SJKS6UrhCp+WhC8U9TucDPOTdImHSK/sW5xociB qFTLDAcGj4HgusLZ9BzeolAYiXwfIODzjLwGlUD1/AfkYAberkYQisOLFkjHnNU/ b1amMtV80/07cIyPWwi29vzKhEzw2AV0NXeWRyEkviZ2E9TvxdfLehLA+ma5gkC5 2PKgja/OLhSrxI/nngKkjNqukHJ72H1Iaodnp/QhdoclQC8wSc4fVFrRDSM6+EnA aWQ1erdv43qpDLA= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:05 2024 by rpki-client on console-ams.rpki-client.org