$ rpki-client -vvf rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/3BFEA04CB6A611EDAF611B68C4F9AE02.roa File: 3BFEA04CB6A611EDAF611B68C4F9AE02.roa (raw, json) Hash identifier: M/8mU5tu1PDehqyIIfEx5AYfNXgF7DfZkAdJsClKh+E= Subject key identifier: 83:00:5F:49:1C:4A:14:03:A0:B2:92:0F:0C:2D:B1:13:58:E2:6B:C7 Certificate issuer: /CN=A9178AF2/serialNumber=1005CCD5E18230FBA9ADD3D27F85DA38F13E4172 Certificate serial: 02BB Authority key identifier: 10:05:CC:D5:E1:82:30:FB:A9:AD:D3:D2:7F:85:DA:38:F1:3E:41:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EAXM1eGCMPuprdPSf4XaOPE-QXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/3BFEA04CB6A611EDAF611B68C4F9AE02.roa Signing time: Mon 13 May 2024 04:08:49 +0000 ROA not before: Mon 13 May 2024 04:08:49 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 55933 IP address blocks: 45.113.81.0/24 maxlen: 24 103.24.0.0/22 maxlen: 24 103.229.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/EAXM1eGCMPuprdPSf4XaOPE-QXI.crl rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/EAXM1eGCMPuprdPSf4XaOPE-QXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EAXM1eGCMPuprdPSf4XaOPE-QXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 May 2024 03:55:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 699 (0x2bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178AF2/serialNumber=1005CCD5E18230FBA9ADD3D27F85DA38F13E4172 Validity Not Before: May 13 04:08:49 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66419251-9757 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:25:62:b5:32:9e:71:df:f0:7c:f1:e7:62:ae: 62:3e:ce:cd:70:eb:da:08:b4:96:ec:55:63:49:b2: b0:1e:0d:2e:6e:bf:fc:a6:86:46:53:5b:54:89:0a: e6:9f:0d:21:b0:e9:6c:9f:6b:92:cd:2e:a9:90:31: c4:e7:c3:79:ef:23:0a:50:f9:78:53:a3:d8:59:6e: 2c:5b:9f:26:18:05:cf:7a:c8:78:e1:7d:3f:87:36: 21:0f:83:d3:a9:5b:68:a5:cc:0d:0f:37:15:99:f8: 32:b9:cb:5b:5e:10:65:b2:6d:99:f4:f1:f9:da:47: ee:a3:22:97:a7:a5:cc:08:42:c0:94:49:75:a2:9c: b6:7b:50:61:20:65:e8:f9:56:60:b6:c9:67:15:d5: a6:96:f5:e1:69:32:78:1e:c5:5c:6b:1f:d9:9d:c5: 55:86:b4:76:1e:d6:94:7e:83:76:c2:59:4b:02:7f: 4a:32:ea:24:af:09:96:81:fa:1b:a1:1e:74:e2:d9: 5c:41:13:ac:c2:99:81:08:7d:0e:9a:7d:c1:db:9d: 48:f9:eb:c2:1f:80:d8:d7:30:01:84:e7:ba:ab:15: bb:d3:01:14:dc:2c:62:81:ca:60:90:c4:e2:94:07: 2e:04:e2:47:82:45:9d:79:7c:f3:e7:71:7e:81:7a: c0:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:00:5F:49:1C:4A:14:03:A0:B2:92:0F:0C:2D:B1:13:58:E2:6B:C7 X509v3 Authority Key Identifier: keyid:10:05:CC:D5:E1:82:30:FB:A9:AD:D3:D2:7F:85:DA:38:F1:3E:41:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/EAXM1eGCMPuprdPSf4XaOPE-QXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EAXM1eGCMPuprdPSf4XaOPE-QXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/3BFEA04CB6A611EDAF611B68C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.113.81.0/24 103.24.0.0/22 103.229.119.0/24 Signature Algorithm: sha256WithRSAEncryption ad:13:0a:16:1c:5c:dc:e0:56:f2:15:b7:c2:ca:77:a4:c6:0b: ff:d6:b8:31:58:7b:6d:7c:98:ad:3b:32:c3:c2:1e:81:d0:9f: 70:0b:a7:a6:dd:ce:ff:4e:8f:06:1a:38:9e:02:cf:39:de:3a: 21:68:5d:6e:ab:b5:f1:f0:9c:2a:e5:df:76:ff:76:33:86:28: 7c:be:b9:0d:ce:6f:52:3b:60:d2:27:77:cf:5d:4c:a6:1b:12: 32:e0:ba:45:89:12:d4:ef:dc:11:16:ac:0f:60:24:8b:2c:11: db:0e:5f:29:2f:40:0e:0e:b5:02:9f:fb:e8:53:83:c2:bd:b3: 41:9c:c4:72:d4:a9:10:ba:42:db:2c:6b:39:55:d1:7e:69:38: 04:0c:a9:63:64:46:1f:0c:dc:74:98:40:dd:55:c7:64:fb:26: 9b:77:fa:a2:66:86:b9:9e:c1:e0:c5:6f:f8:b7:ad:92:aa:49: 99:28:4b:8b:8c:95:c3:92:91:4d:f1:03:8c:b6:9e:b9:80:f4: 17:b1:c9:d3:b5:7f:02:63:52:26:3f:7d:26:6d:c6:94:d1:73: 07:04:df:8c:be:b6:3a:01:30:f8:b3:f5:c1:c1:4e:01:a0:7f: b0:9a:1c:c4:6e:8c:11:26:3e:46:74:c3:c9:49:1b:72:c9:97: a7:22:8d:b1 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICArswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhBRjIxMTAvBgNVBAUTKDEwMDVDQ0Q1RTE4MjMwRkJBOUFERDNEMjdGODVEQTM4 RjEzRTQxNzIwHhcNMjQwNTEzMDQwODQ5WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQxOTI1MS05NzU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwSVitTKecd/wfPHnYq5iPs7NcOvaCLSW7FVjSbKwHg0ubr/8poZGU1tUiQrm nw0hsOlsn2uSzS6pkDHE58N57yMKUPl4U6PYWW4sW58mGAXPesh44X0/hzYhD4PT qVtopcwNDzcVmfgyuctbXhBlsm2Z9PH52kfuoyKXp6XMCELAlEl1opy2e1BhIGXo +VZgtslnFdWmlvXhaTJ4HsVcax/ZncVVhrR2HtaUfoN2wllLAn9KMuokrwmWgfob oR504tlcQROswpmBCH0Omn3B251I+evCH4DY1zABhOe6qxW70wEU3CxigcpgkMTi lAcuBOJHgkWdeXzz53F+gXrAawIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFIMAX0kc ShQDoLKSDwwtsRNY4mvHMB8GA1UdIwQYMBaAFBAFzNXhgjD7qa3T0n+F2jjxPkFy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEFGMi83M0M4ODc5MkUw NjcxMUVDQjlEMkZGODFDNEY5QUUwMi9FQVhNMWVHQ01QdXByZFBTZjRYYU9QRS1R WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VBWE0xZUdDTVB1cHJkUFNmNFhhT1BFLVFYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzhBRjIvNzNDODg3OTJFMDY3MTFFQ0I5RDJGRjgxQzRGOUFFMDIvM0JGRUEwNENC NkE2MTFFREFGNjExQjY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAAtcVEDBAJnGAADBABn5XcwDQYJKoZIhvcNAQELBQADggEB AK0TChYcXNzgVvIVt8LKd6TGC//WuDFYe218mK07MsPCHoHQn3ALp6bdzv9OjwYa OJ4CzzneOiFoXW6rtfHwnCrl33b/djOGKHy+uQ3Ob1I7YNInd89dTKYbEjLgukWJ EtTv3BEWrA9gJIssEdsOXykvQA4OtQKf++hTg8K9s0GcxHLUqRC6QtssazlV0X5p OAQMqWNkRh8M3HSYQN1Vx2T7Jpt3+qJmhrmeweDFb/i3rZKqSZkoS4uMlcOSkU3x A4y2nrmA9BexydO1fwJjUiY/fSZtxpTRcwcE34y+tjoBMPiz9cHBTgGgf7CaHMRu jBEmPkZ0w8lJG3LJl6cijbE= -----END CERTIFICATE-----Generated at Thu May 23 05:40:05 2024 by rpki-client on console-ams.rpki-client.org