$ rpki-client -vvf rpki.apnic.net/member_repository/A91827F2/67EC6438539A11ED8FE3F71FC4F9AE02/3CCE23342EF211EE8BE1AB1DC4F9AE02.roa File: 3CCE23342EF211EE8BE1AB1DC4F9AE02.roa (raw, json) Hash identifier: SpdJdr/6VGGqS7iqp8sOU+UWcnaMd8YGOWCMqOpdTjI= Subject key identifier: 46:90:32:8B:2F:B3:8C:1E:83:F8:D9:0B:A9:77:2C:D8:D2:9D:0E:CC Certificate issuer: /CN=A91827F2/serialNumber=4E1FDF041C4BDDFD511748E4B983DCB4625B9A80 Certificate serial: 019E Authority key identifier: 4E:1F:DF:04:1C:4B:DD:FD:51:17:48:E4:B9:83:DC:B4:62:5B:9A:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Th_fBBxL3f1RF0jkuYPctGJbmoA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91827F2/67EC6438539A11ED8FE3F71FC4F9AE02/3CCE23342EF211EE8BE1AB1DC4F9AE02.roa Signing time: Wed 25 Dec 2024 02:05:54 +0000 ROA not before: Wed 25 Dec 2024 02:05:54 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 139812 IP address blocks: 103.145.138.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91827F2/67EC6438539A11ED8FE3F71FC4F9AE02/Th_fBBxL3f1RF0jkuYPctGJbmoA.crl rsync://rpki.apnic.net/member_repository/A91827F2/67EC6438539A11ED8FE3F71FC4F9AE02/Th_fBBxL3f1RF0jkuYPctGJbmoA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Th_fBBxL3f1RF0jkuYPctGJbmoA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:22:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 414 (0x19e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91827F2 Validity Not Before: Dec 25 02:05:54 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=676b6881-ff40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:72:87:df:bf:13:6c:b0:7d:b7:db:6c:fa:c9: 85:7e:76:98:39:8b:e6:f6:a3:11:0e:3f:f4:0c:e6: 36:ec:5f:e7:e0:00:f1:95:d4:4e:97:98:8a:6f:4e: 59:c1:87:20:73:04:18:d3:1b:80:78:78:69:ac:ec: 2c:34:bb:d5:04:f0:6f:0e:2a:7b:b5:ef:63:a5:70: 1b:89:6d:34:ca:d1:6f:4b:d8:69:f3:74:5e:7c:a4: 87:dc:09:38:fd:68:80:9f:3f:cd:be:f2:d3:c3:b9: 28:43:6c:d1:48:a5:ee:fd:b7:e0:26:6c:74:88:e3: 3d:1c:e4:22:ff:a3:04:9b:f7:49:99:d4:09:5e:60: 67:46:11:f4:ce:46:e8:51:3b:15:33:d4:0f:d1:46: 1d:41:a2:04:72:57:9b:ce:fe:61:16:36:b7:44:d4: 1c:94:58:55:64:b2:3f:43:3a:5e:19:27:de:3b:21: 6c:6a:10:f4:18:75:69:5e:d8:f4:be:c9:98:6c:57: 2e:de:6f:d7:24:d2:70:7c:bd:9f:af:0d:7c:f7:89: dd:73:1c:5d:7f:75:18:96:6a:ea:ac:bd:32:95:ef: b6:8d:aa:fa:ee:b4:0d:e6:95:bb:c3:02:cc:3e:81: e4:3b:3f:62:f3:6f:91:15:31:02:f8:23:d1:22:9a: b4:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:90:32:8B:2F:B3:8C:1E:83:F8:D9:0B:A9:77:2C:D8:D2:9D:0E:CC X509v3 Authority Key Identifier: keyid:4E:1F:DF:04:1C:4B:DD:FD:51:17:48:E4:B9:83:DC:B4:62:5B:9A:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91827F2/67EC6438539A11ED8FE3F71FC4F9AE02/Th_fBBxL3f1RF0jkuYPctGJbmoA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Th_fBBxL3f1RF0jkuYPctGJbmoA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91827F2/67EC6438539A11ED8FE3F71FC4F9AE02/3CCE23342EF211EE8BE1AB1DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.145.138.0/23 Signature Algorithm: sha256WithRSAEncryption 4e:80:81:47:89:cb:67:3f:e0:6f:e2:14:61:b2:f7:ca:77:f2: 26:e0:3f:70:d1:4d:9f:e8:f8:22:04:f1:bf:92:60:00:0d:fd: ff:e8:94:05:81:87:bb:90:32:1c:02:26:c8:25:37:90:28:7d: 6a:77:a1:fa:0d:5d:00:43:ed:7d:6c:b9:35:88:f1:de:89:03: 68:3b:d1:7a:ea:d6:d9:1c:a2:3b:37:bc:1b:ad:05:fe:65:f4: 2b:ba:df:0f:0e:11:56:8d:cf:01:a5:94:01:d3:3b:e5:f7:66: a5:0f:dc:56:fe:43:b6:95:40:5a:87:00:fd:44:7b:22:b0:87: 36:2c:ec:5d:0d:be:4f:d8:6a:cd:1c:96:0c:64:69:30:55:a9: ee:3a:d3:4a:d8:58:4c:f1:e4:ac:8a:c1:ce:ae:d5:7e:49:87: 84:77:39:55:91:90:23:54:f3:f3:68:b0:9e:43:02:6d:41:0e: 10:de:14:cd:5a:40:31:67:f9:b3:75:42:1b:2a:76:0b:b9:3b: 33:3c:a9:20:7e:7c:e7:12:4c:2b:10:79:ea:13:e2:57:ca:28: e2:92:74:46:1e:08:e3:82:bb:e2:26:46:9a:a1:79:4a:37:75: 2f:9e:83:84:a4:54:4d:fa:03:51:af:73:f7:32:23:aa:65:47: 67:73:3d:32 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAZ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODI3RjIxMTAvBgNVBAUTKDRFMUZERjA0MUM0QkRERkQ1MTE3NDhFNEI5ODNEQ0I0 NjI1QjlBODAwHhcNMjQxMjI1MDIwNTU0WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzZiNjg4MS1mZjQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0XKH378TbLB9t9ts+smFfnaYOYvm9qMRDj/0DOY27F/n4ADxldROl5iKb05Z wYcgcwQY0xuAeHhprOwsNLvVBPBvDip7te9jpXAbiW00ytFvS9hp83RefKSH3Ak4 /WiAnz/NvvLTw7koQ2zRSKXu/bfgJmx0iOM9HOQi/6MEm/dJmdQJXmBnRhH0zkbo UTsVM9QP0UYdQaIEclebzv5hFja3RNQclFhVZLI/QzpeGSfeOyFsahD0GHVpXtj0 vsmYbFcu3m/XJNJwfL2frw1894ndcxxdf3UYlmrqrL0yle+2jar67rQN5pW7wwLM PoHkOz9i82+RFTEC+CPRIpq0qQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEaQMosv s4weg/jZC6l3LNjSnQ7MMB8GA1UdIwQYMBaAFE4f3wQcS939URdI5LmD3LRiW5qA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjdGMi82N0VDNjQzODUz OUExMUVEOEZFM0Y3MUZDNEY5QUUwMi9UaF9mQkJ4TDNmMVJGMGprdVlQY3RHSmJt b0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RoX2ZCQnhMM2YxUkYwamt1WVBjdEdKYm1vQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODI3RjIvNjdFQzY0Mzg1MzlBMTFFRDhGRTNGNzFGQzRGOUFFMDIvM0NDRTIzMzQy RUYyMTFFRThCRTFBQjFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnkYowDQYJKoZIhvcNAQELBQADggEBAE6AgUeJy2c/4G/i FGGy98p38ibgP3DRTZ/o+CIE8b+SYAAN/f/olAWBh7uQMhwCJsglN5AofWp3ofoN XQBD7X1suTWI8d6JA2g70Xrq1tkcojs3vButBf5l9Cu63w8OEVaNzwGllAHTO+X3 ZqUP3Fb+Q7aVQFqHAP1EeyKwhzYs7F0Nvk/Yas0clgxkaTBVqe4600rYWEzx5KyK wc6u1X5Jh4R3OVWRkCNU8/NosJ5DAm1BDhDeFM1aQDFn+bN1Qhsqdgu5OzM8qSB+ fOcSTCsQeeoT4lfKKOKSdEYeCOOCu+ImRpqheUo3dS+eg4SkVE36A1Gvc/cyI6pl R2dzPTI= -----END CERTIFICATE-----Generated at Sun Apr 6 09:05:02 2025 by rpki-client