$ rpki-client -vvf rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/37A0ACFC8FCD11EDB4772D55C4F9AE02.roa File: 37A0ACFC8FCD11EDB4772D55C4F9AE02.roa (raw, json) Hash identifier: OVe6KSw+7kYYiHPF4YI7Y6sSZ8QGj8mE1P0YOqWt/tI= Subject key identifier: 8F:29:99:0B:15:3C:CF:92:AA:48:EA:54:FE:4F:3E:98:3C:FA:BE:00 Certificate issuer: /CN=A91836C4/serialNumber=7C33C21E1F36F67E4C6A04EB239019AD772BCB2A Certificate serial: 0149 Authority key identifier: 7C:33:C2:1E:1F:36:F6:7E:4C:6A:04:EB:23:90:19:AD:77:2B:CB:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fDPCHh829n5MagTrI5AZrXcryyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/37A0ACFC8FCD11EDB4772D55C4F9AE02.roa Signing time: Wed 09 Oct 2024 03:16:47 +0000 ROA not before: Wed 09 Oct 2024 03:16:47 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 137941 IP address blocks: 103.250.196.0/23 maxlen: 23 103.250.196.0/24 maxlen: 24 103.250.197.0/24 maxlen: 24 2400:aa60::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.crl rsync://rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fDPCHh829n5MagTrI5AZrXcryyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:22:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 329 (0x149) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91836C4/serialNumber=7C33C21E1F36F67E4C6A04EB239019AD772BCB2A Validity Not Before: Oct 9 03:16:47 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6705f59f-d769 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:99:07:09:b4:67:5a:eb:ec:6c:80:21:f4:8f: 2a:c9:64:96:2d:ba:12:15:c0:0d:86:d6:a3:c5:39: bb:dd:53:78:c3:5d:1f:8b:51:14:13:46:03:e1:db: 21:c1:7a:b1:94:02:de:aa:b1:e0:39:50:1c:9e:62: 34:4b:89:28:84:42:11:1b:9c:39:d9:ba:71:96:b8: 93:73:9b:68:d2:9c:4e:e4:7b:74:cf:0f:06:a5:5d: 74:16:cb:3b:ae:93:55:f3:28:3c:7e:31:ee:7c:c3: 20:8c:37:83:49:30:5b:36:71:cc:22:7f:5a:9e:c2: b8:7f:58:ea:53:1c:24:26:6d:88:e5:07:f2:3e:41: 49:6d:31:6b:0a:c7:5c:a6:a5:f4:b9:33:35:06:ec: ea:56:9e:72:d9:8e:cc:b5:a4:9f:fb:e0:1d:95:be: 54:39:54:3c:43:c1:9d:03:f4:ce:3b:56:cc:b0:2a: 44:8e:be:d8:32:22:47:c1:9e:52:7b:ea:d5:34:6c: f2:f0:2f:33:26:22:ff:a1:84:1a:0c:e5:25:04:46: 68:bd:4a:53:76:db:7d:c6:cf:86:5f:33:4c:8e:d9: 88:13:26:04:22:31:ee:85:4d:23:d1:70:1f:e3:b9: 1c:7f:df:86:5b:76:71:88:c1:e2:fb:d3:8e:62:ca: da:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:29:99:0B:15:3C:CF:92:AA:48:EA:54:FE:4F:3E:98:3C:FA:BE:00 X509v3 Authority Key Identifier: keyid:7C:33:C2:1E:1F:36:F6:7E:4C:6A:04:EB:23:90:19:AD:77:2B:CB:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fDPCHh829n5MagTrI5AZrXcryyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/37A0ACFC8FCD11EDB4772D55C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.250.196.0/23 IPv6: 2400:aa60::/32 Signature Algorithm: sha256WithRSAEncryption a4:65:ee:f7:98:e3:18:a8:31:f4:d4:ac:73:70:89:ad:41:22: 2f:a4:5b:ce:a2:7f:50:9a:62:7d:c8:44:de:f5:fa:d7:02:42: cb:32:e2:4f:24:51:cd:4c:7c:b5:ab:54:99:e5:af:a7:6c:9e: f6:e2:f1:24:09:17:fe:84:55:89:46:96:04:b3:0e:91:d6:6a: 57:a1:80:94:a0:d7:f1:ca:e6:68:c9:2a:84:b0:35:e9:62:10: d8:72:99:a4:f7:78:8b:be:ec:a7:a4:35:9d:12:ee:46:eb:5c: a9:ba:16:86:8b:f1:df:54:9e:69:db:b9:e0:b8:6c:14:4f:f1: cb:f9:35:c5:7f:55:0b:43:b2:e8:bd:b4:4a:a2:88:ec:8d:e2: fe:2e:bc:cc:94:3e:af:6b:96:79:75:cb:e9:45:f8:f4:67:44: e1:29:63:3c:cf:17:15:46:1a:09:c2:33:7b:7a:94:90:b0:a1: e1:04:81:19:45:86:b6:58:b2:69:a6:ca:42:cb:03:8e:1a:91: 47:fa:a6:53:60:59:e4:4c:98:57:4b:4d:94:d9:40:49:95:b1: 1b:68:a8:58:0c:cf:bc:bd:08:f9:3a:bf:68:e0:28:3a:88:1f: 9c:b0:a4:30:8c:54:46:b6:42:8f:21:a2:51:2a:ed:cd:4e:89: f4:98:de:c9 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODM2QzQxMTAvBgNVBAUTKDdDMzNDMjFFMUYzNkY2N0U0QzZBMDRFQjIzOTAxOUFE NzcyQkNCMkEwHhcNMjQxMDA5MDMxNjQ3WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzA1ZjU5Zi1kNzY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs5kHCbRnWuvsbIAh9I8qyWSWLboSFcANhtajxTm73VN4w10fi1EUE0YD4dsh wXqxlALeqrHgOVAcnmI0S4kohEIRG5w52bpxlriTc5to0pxO5Ht0zw8GpV10Fss7 rpNV8yg8fjHufMMgjDeDSTBbNnHMIn9ansK4f1jqUxwkJm2I5QfyPkFJbTFrCsdc pqX0uTM1BuzqVp5y2Y7MtaSf++Adlb5UOVQ8Q8GdA/TOO1bMsCpEjr7YMiJHwZ5S e+rVNGzy8C8zJiL/oYQaDOUlBEZovUpTdtt9xs+GXzNMjtmIEyYEIjHuhU0j0XAf 47kcf9+GW3ZxiMHi+9OOYsrauwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFI8pmQsV PM+SqkjqVP5PPpg8+r4AMB8GA1UdIwQYMBaAFHwzwh4fNvZ+TGoE6yOQGa13K8sq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MzZDNC85RDRCMTA2ODhG Q0ExMUVEQjc5MTEyNTRDNEY5QUUwMi9mRFBDSGg4MjluNU1hZ1RySTVBWnJYY3J5 eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZEUENIaDgyOW41TWFnVHJJNUFaclhjcnl5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODM2QzQvOUQ0QjEwNjg4RkNBMTFFREI3OTExMjU0QzRGOUFFMDIvMzdBMEFDRkM4 RkNEMTFFREI0NzcyRDU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFn+sQwDQQCAAIwBwMFACQAqmAwDQYJKoZIhvcNAQELBQAD ggEBAKRl7veY4xioMfTUrHNwia1BIi+kW86if1CaYn3IRN71+tcCQssy4k8kUc1M fLWrVJnlr6dsnvbi8SQJF/6EVYlGlgSzDpHWalehgJSg1/HK5mjJKoSwNeliENhy maT3eIu+7KekNZ0S7kbrXKm6FoaL8d9UnmnbueC4bBRP8cv5NcV/VQtDsui9tEqi iOyN4v4uvMyUPq9rlnl1y+lF+PRnROEpYzzPFxVGGgnCM3t6lJCwoeEEgRlFhrZY smmmykLLA44akUf6plNgWeRMmFdLTZTZQEmVsRtoqFgMz7y9CPk6v2jgKDqIH5yw pDCMVEa2Qo8holEq7c1OifSY3sk= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:44 2024 by rpki-client on console-ams.rpki-client.org