$ rpki-client -vvf rpki.apnic.net/member_repository/A91827F2/67EC6438539A11ED8FE3F71FC4F9AE02/3CCE23342EF211EE8BE1AB1DC4F9AE02.roa File: 3CCE23342EF211EE8BE1AB1DC4F9AE02.roa (raw, json) Hash identifier: s9lJG+Z0E0MfohIZewJo6sJJ0DeLoO8nyC5DM7qx6gM= Subject key identifier: 45:A2:C5:DA:25:26:D8:5C:20:2C:42:6E:12:AA:BA:FB:0D:32:6D:9E Certificate issuer: /CN=A91827F2/serialNumber=4E1FDF041C4BDDFD511748E4B983DCB4625B9A80 Certificate serial: E4 Authority key identifier: 4E:1F:DF:04:1C:4B:DD:FD:51:17:48:E4:B9:83:DC:B4:62:5B:9A:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Th_fBBxL3f1RF0jkuYPctGJbmoA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91827F2/67EC6438539A11ED8FE3F71FC4F9AE02/3CCE23342EF211EE8BE1AB1DC4F9AE02.roa Signing time: Fri 29 Dec 2023 04:25:31 +0000 ROA not before: Fri 29 Dec 2023 04:25:31 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 139812 IP address blocks: 103.145.138.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91827F2/67EC6438539A11ED8FE3F71FC4F9AE02/Th_fBBxL3f1RF0jkuYPctGJbmoA.crl rsync://rpki.apnic.net/member_repository/A91827F2/67EC6438539A11ED8FE3F71FC4F9AE02/Th_fBBxL3f1RF0jkuYPctGJbmoA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Th_fBBxL3f1RF0jkuYPctGJbmoA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:58:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 228 (0xe4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91827F2/serialNumber=4E1FDF041C4BDDFD511748E4B983DCB4625B9A80 Validity Not Before: Dec 29 04:25:31 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=658e4a3a-257c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f1:f9:bb:2a:cb:fe:37:b1:9f:9b:0a:60:5d: 1e:3b:6b:56:2e:ec:c0:ac:8a:fa:db:bd:9a:d0:c7: 98:60:5c:76:85:0b:34:bc:fd:ee:50:84:f3:53:9f: 79:0d:b9:62:b5:fe:3b:8d:f9:f8:4a:20:cc:d6:1c: 54:79:bf:16:01:1d:0f:80:73:d3:21:ab:53:27:fd: 35:b0:a5:03:62:71:20:19:fd:a8:e0:23:7b:a2:b1: d5:1d:c6:9d:01:48:42:65:d5:42:72:6f:9a:67:2f: 1b:cf:4c:84:a0:61:28:d6:e0:b9:b2:5d:87:f8:20: be:00:7a:3c:79:cd:89:ea:0c:31:00:d9:45:6d:de: ba:a9:bd:9d:7f:07:92:ec:f6:dc:d2:cc:13:46:bd: 5c:e6:85:2b:f3:08:41:f8:eb:65:cd:0c:cd:f8:cd: 3a:00:26:1e:9d:47:69:01:2c:9f:ac:b0:a7:1e:ec: 47:8b:fa:a8:b2:2b:5e:35:96:9d:43:ab:f6:1b:55: a0:f5:9c:f8:6e:ed:84:b3:6e:37:b9:48:dd:3b:41: a6:3e:3f:8c:66:08:38:ad:3b:0f:14:fb:59:c4:f1: 8d:6c:05:49:ab:78:9f:76:10:81:76:45:4e:83:fe: 12:b6:9d:36:c3:57:24:3d:3d:4e:f6:69:8d:9f:c6: 91:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:A2:C5:DA:25:26:D8:5C:20:2C:42:6E:12:AA:BA:FB:0D:32:6D:9E X509v3 Authority Key Identifier: keyid:4E:1F:DF:04:1C:4B:DD:FD:51:17:48:E4:B9:83:DC:B4:62:5B:9A:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91827F2/67EC6438539A11ED8FE3F71FC4F9AE02/Th_fBBxL3f1RF0jkuYPctGJbmoA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Th_fBBxL3f1RF0jkuYPctGJbmoA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91827F2/67EC6438539A11ED8FE3F71FC4F9AE02/3CCE23342EF211EE8BE1AB1DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.145.138.0/23 Signature Algorithm: sha256WithRSAEncryption aa:43:73:d7:05:c3:8c:64:69:ee:1c:72:98:61:e8:85:78:b1: a7:c0:a8:06:4a:ba:90:22:a7:58:14:03:ae:0b:92:3a:60:f8: 8e:cb:b0:3c:a8:ca:ff:0f:e3:93:8b:36:2e:68:e3:27:39:86: 8b:43:88:ad:2c:a2:37:05:39:f1:b6:36:44:5b:af:0c:70:70: ec:c6:0c:5d:be:69:5e:ce:25:93:51:19:fa:8a:2a:c6:f4:0c: 69:a9:79:1e:a4:e0:f9:3c:aa:ae:e8:20:54:48:01:c6:39:ba: 63:c1:4e:ef:da:a3:fa:6a:56:ad:a2:01:4d:ed:57:90:fd:09: d0:4f:1a:34:06:03:ce:ae:e4:19:30:5d:74:14:5d:5d:cf:1f: a5:ac:79:5a:ff:78:db:68:cc:9c:d6:96:3f:17:79:d4:f6:d4: 9a:c2:25:ab:fe:18:2d:d8:eb:03:5f:6b:ab:b3:37:b5:13:33: b4:54:19:c1:2b:64:20:91:25:3c:a9:32:0e:75:64:c9:99:85: f6:0b:14:f6:78:fd:ea:d1:8a:5d:bd:9a:0c:40:59:2b:01:f6: f1:24:aa:5e:fc:a5:ca:46:5f:b6:d3:20:03:ac:64:d4:39:0c: ef:1a:1f:49:3b:25:c4:56:07:00:2a:52:be:88:f6:b5:20:d5: 03:f3:a1:72 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAOQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODI3RjIxMTAvBgNVBAUTKDRFMUZERjA0MUM0QkRERkQ1MTE3NDhFNEI5ODNEQ0I0 NjI1QjlBODAwHhcNMjMxMjI5MDQyNTMxWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NThlNGEzYS0yNTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsvH5uyrL/jexn5sKYF0eO2tWLuzArIr6272a0MeYYFx2hQs0vP3uUITzU595 Dblitf47jfn4SiDM1hxUeb8WAR0PgHPTIatTJ/01sKUDYnEgGf2o4CN7orHVHcad AUhCZdVCcm+aZy8bz0yEoGEo1uC5sl2H+CC+AHo8ec2J6gwxANlFbd66qb2dfweS 7Pbc0swTRr1c5oUr8whB+OtlzQzN+M06ACYenUdpASyfrLCnHuxHi/qositeNZad Q6v2G1Wg9Zz4bu2Es243uUjdO0GmPj+MZgg4rTsPFPtZxPGNbAVJq3ifdhCBdkVO g/4Stp02w1ckPT1O9mmNn8aRYwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEWixdol JthcICxCbhKquvsNMm2eMB8GA1UdIwQYMBaAFE4f3wQcS939URdI5LmD3LRiW5qA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjdGMi82N0VDNjQzODUz OUExMUVEOEZFM0Y3MUZDNEY5QUUwMi9UaF9mQkJ4TDNmMVJGMGprdVlQY3RHSmJt b0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RoX2ZCQnhMM2YxUkYwamt1WVBjdEdKYm1vQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODI3RjIvNjdFQzY0Mzg1MzlBMTFFRDhGRTNGNzFGQzRGOUFFMDIvM0NDRTIzMzQy RUYyMTFFRThCRTFBQjFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnkYowDQYJKoZIhvcNAQELBQADggEBAKpDc9cFw4xkae4c cphh6IV4safAqAZKupAip1gUA64Lkjpg+I7LsDyoyv8P45OLNi5o4yc5hotDiK0s ojcFOfG2NkRbrwxwcOzGDF2+aV7OJZNRGfqKKsb0DGmpeR6k4Pk8qq7oIFRIAcY5 umPBTu/ao/pqVq2iAU3tV5D9CdBPGjQGA86u5BkwXXQUXV3PH6WseVr/eNtozJzW lj8XedT21JrCJav+GC3Y6wNfa6uzN7UTM7RUGcErZCCRJTypMg51ZMmZhfYLFPZ4 /erRil29mgxAWSsB9vEkql78pcpGX7bTIAOsZNQ5DO8aH0k7JcRWBwAqUr6I9rUg 1QPzoXI= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:51 2024 by rpki-client on console-fra.rpki-client.org