$ rpki-client -vvf rpki.apnic.net/member_repository/A918FEF6/1986B9D832FE11EB85BAD157C4F9AE02/3A9A3904330011EBA08B865DC4F9AE02.roa File: 3A9A3904330011EBA08B865DC4F9AE02.roa (raw, json) Hash identifier: 3vNGkA3tCUjQbATswchBY3GI0Vd54z+gZRifmc/PxUs= Subject key identifier: C4:F6:D2:4F:D1:C1:95:AE:8C:BF:0B:4C:7E:68:F9:13:1F:C2:6C:79 Certificate issuer: /CN=A918FEF6/serialNumber=B17042C372171C0F4146FEFC44D1DBAA5223871B Certificate serial: 06B5 Authority key identifier: B1:70:42:C3:72:17:1C:0F:41:46:FE:FC:44:D1:DB:AA:52:23:87:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXBCw3IXHA9BRv78RNHbqlIjhxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FEF6/1986B9D832FE11EB85BAD157C4F9AE02/3A9A3904330011EBA08B865DC4F9AE02.roa Signing time: Wed 02 Oct 2024 22:31:50 +0000 ROA not before: Wed 02 Oct 2024 22:31:50 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 134554 IP address blocks: 103.195.20.0/22 maxlen: 22 103.195.20.0/24 maxlen: 24 103.195.21.0/24 maxlen: 24 103.195.22.0/24 maxlen: 24 103.195.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FEF6/1986B9D832FE11EB85BAD157C4F9AE02/sXBCw3IXHA9BRv78RNHbqlIjhxs.crl rsync://rpki.apnic.net/member_repository/A918FEF6/1986B9D832FE11EB85BAD157C4F9AE02/sXBCw3IXHA9BRv78RNHbqlIjhxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXBCw3IXHA9BRv78RNHbqlIjhxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1717 (0x6b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FEF6/serialNumber=B17042C372171C0F4146FEFC44D1DBAA5223871B Validity Not Before: Oct 2 22:31:50 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66fdc9d5-0b5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:af:9f:ea:a9:f7:14:27:a0:2f:64:1e:1c:c5: f4:33:48:03:74:88:6e:f6:e7:c6:57:7b:17:9e:a0: 10:c6:1f:33:74:96:fd:22:fa:10:b0:18:35:44:89: 7e:0e:48:fb:8a:03:8e:ae:f0:21:e2:83:da:71:1c: 43:0f:d0:9c:6f:5a:01:0e:1f:ae:25:6e:69:e8:a2: 83:76:9f:19:c1:b4:ee:ff:1d:51:ec:b6:11:81:6e: a4:86:9f:4a:4c:e6:82:fe:52:7e:77:87:8c:bd:37: c6:20:5b:fe:33:8f:7a:de:4f:8f:45:e6:78:84:75: ca:4a:27:6a:66:7a:36:ae:1f:44:24:e1:95:38:8d: 66:d7:9f:80:db:df:46:89:5c:25:54:74:51:d8:4f: 2f:5c:24:2a:d8:8b:d1:81:60:f8:b9:4c:f0:de:2e: a5:24:9a:3c:44:b4:20:99:9c:c2:04:62:34:7b:8f: 5b:a1:98:0a:1d:aa:27:8c:75:39:0d:0d:28:14:a3: 2d:a9:75:d1:c9:ef:5e:f8:e8:b3:ac:92:8a:7f:67: 32:e1:06:7d:a2:11:96:9d:f2:55:c7:3d:a6:05:51: 73:1a:a8:f2:7b:9d:84:0e:12:58:52:ff:7e:f0:78: 93:b2:60:a4:5b:8b:65:ca:6b:9f:c9:6b:68:f6:bc: d4:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:F6:D2:4F:D1:C1:95:AE:8C:BF:0B:4C:7E:68:F9:13:1F:C2:6C:79 X509v3 Authority Key Identifier: keyid:B1:70:42:C3:72:17:1C:0F:41:46:FE:FC:44:D1:DB:AA:52:23:87:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FEF6/1986B9D832FE11EB85BAD157C4F9AE02/sXBCw3IXHA9BRv78RNHbqlIjhxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXBCw3IXHA9BRv78RNHbqlIjhxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FEF6/1986B9D832FE11EB85BAD157C4F9AE02/3A9A3904330011EBA08B865DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.195.20.0/22 Signature Algorithm: sha256WithRSAEncryption dc:97:67:3a:5b:20:5f:1b:cf:5a:90:dd:66:37:df:3d:7e:1d: 24:b4:e4:29:c3:68:93:d9:fb:f4:5c:f6:61:2b:a9:24:68:d4: 59:ff:ce:80:11:6d:9b:f1:a1:e0:92:53:88:57:c5:8f:1b:5d: 42:ed:43:ab:fc:91:b1:d6:66:2e:5a:1d:51:53:3c:8b:fd:61: f3:c0:7b:73:5f:79:49:32:31:2e:98:88:c6:4b:bc:1b:ba:6f: 9b:98:c2:68:55:d0:bf:24:a2:a9:c9:b1:44:eb:6d:c1:41:98: b4:9f:95:13:4b:df:ea:13:fc:6c:b2:e3:27:84:b4:ba:9a:c2: eb:60:16:00:84:a3:6f:c2:da:54:32:f9:67:85:3e:7b:c1:56: 1f:e5:cf:11:bb:26:79:f4:22:fa:1a:f2:5a:26:82:14:4a:b6: b4:be:6c:b7:70:21:23:53:5e:ec:f8:1e:64:4f:94:d9:95:39: 58:1e:d6:6a:4c:0a:b2:0f:d7:69:8f:3d:4b:07:76:7f:52:99: aa:2c:48:9d:b6:24:91:1e:e6:b7:d6:d9:98:89:ee:38:12:ac: e0:8a:17:91:76:e3:67:08:bc:a0:ec:78:b9:b9:d0:44:86:34: 0b:3b:27:4e:53:0f:92:1f:e4:68:4e:86:d0:73:67:a1:47:9e: cc:36:dc:7a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBrUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZFRjYxMTAvBgNVBAUTKEIxNzA0MkMzNzIxNzFDMEY0MTQ2RkVGQzQ0RDFEQkFB NTIyMzg3MUIwHhcNMjQxMDAyMjIzMTUwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZkYzlkNS0wYjVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAva+f6qn3FCegL2QeHMX0M0gDdIhu9ufGV3sXnqAQxh8zdJb9IvoQsBg1RIl+ Dkj7igOOrvAh4oPacRxDD9Ccb1oBDh+uJW5p6KKDdp8ZwbTu/x1R7LYRgW6khp9K TOaC/lJ+d4eMvTfGIFv+M4963k+PReZ4hHXKSidqZno2rh9EJOGVOI1m15+A299G iVwlVHRR2E8vXCQq2IvRgWD4uUzw3i6lJJo8RLQgmZzCBGI0e49boZgKHaonjHU5 DQ0oFKMtqXXRye9e+OizrJKKf2cy4QZ9ohGWnfJVxz2mBVFzGqjye52EDhJYUv9+ 8HiTsmCkW4tlymufyWto9rzUKwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMT20k/R wZWujL8LTH5o+RMfwmx5MB8GA1UdIwQYMBaAFLFwQsNyFxwPQUb+/ETR26pSI4cb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkVGNi8xOTg2QjlEODMy RkUxMUVCODVCQUQxNTdDNEY5QUUwMi9zWEJDdzNJWEhBOUJSdjc4Uk5IYnFsSWpo eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NYQkN3M0lYSEE5QlJ2NzhSTkhicWxJamh4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEZFRjYvMTk4NkI5RDgzMkZFMTFFQjg1QkFEMTU3QzRGOUFFMDIvM0E5QTM5MDQz MzAwMTFFQkEwOEI4NjVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnwxQwDQYJKoZIhvcNAQELBQADggEBANyXZzpbIF8bz1qQ 3WY33z1+HSS05CnDaJPZ+/Rc9mErqSRo1Fn/zoARbZvxoeCSU4hXxY8bXULtQ6v8 kbHWZi5aHVFTPIv9YfPAe3NfeUkyMS6YiMZLvBu6b5uYwmhV0L8koqnJsUTrbcFB mLSflRNL3+oT/Gyy4yeEtLqawutgFgCEo2/C2lQy+WeFPnvBVh/lzxG7Jnn0Ivoa 8lomghRKtrS+bLdwISNTXuz4HmRPlNmVOVge1mpMCrIP12mPPUsHdn9SmaosSJ22 JJEe5rfW2ZiJ7jgSrOCKF5F242cIvKDseLm50ESGNAs7J05TD5If5GhOhtBzZ6FH nsw23Ho= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:10 2024 by rpki-client on console-fra.rpki-client.org