$ rpki-client -vvf rpki.apnic.net/member_repository/A9194590/36355952919F11EDB48E534DC4F9AE02/B3F895D691A211EDA6B67334C4F9AE02.roa File: B3F895D691A211EDA6B67334C4F9AE02.roa (raw, json) Hash identifier: acIP9bNBSWQVEKBII6hnoV+cuy/+F66JRfGEFST3yH8= Subject key identifier: 7D:50:02:6C:D6:40:C4:4A:17:70:F4:44:47:9C:D6:AA:44:86:18:68 Certificate issuer: /CN=A9194590/serialNumber=448A6D82976A55DC570BA5803770AC6ADDBBD886 Certificate serial: 0163 Authority key identifier: 44:8A:6D:82:97:6A:55:DC:57:0B:A5:80:37:70:AC:6A:DD:BB:D8:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RIptgpdqVdxXC6WAN3Csat272IY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194590/36355952919F11EDB48E534DC4F9AE02/B3F895D691A211EDA6B67334C4F9AE02.roa Signing time: Wed 27 Nov 2024 02:55:50 +0000 ROA not before: Wed 27 Nov 2024 02:55:50 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 134450 IP address blocks: 103.174.202.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194590/36355952919F11EDB48E534DC4F9AE02/RIptgpdqVdxXC6WAN3Csat272IY.crl rsync://rpki.apnic.net/member_repository/A9194590/36355952919F11EDB48E534DC4F9AE02/RIptgpdqVdxXC6WAN3Csat272IY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RIptgpdqVdxXC6WAN3Csat272IY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 02:40:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 355 (0x163) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194590 Validity Not Before: Nov 27 02:55:50 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67468a36-5641 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e1:c4:4d:bd:b3:44:09:32:ad:58:29:42:3c: 15:8a:f7:97:03:1b:1a:e8:0a:71:26:3e:2f:06:80: 39:5f:90:93:85:3f:40:c3:52:6e:3f:e3:39:b4:a7: 1a:a7:14:3a:ca:4d:9a:ac:a2:67:f1:8b:5b:33:b3: ce:c4:a3:2c:94:45:32:79:40:a6:87:d1:a2:c9:1e: 39:d7:22:f4:f3:82:fd:2a:6b:92:3e:a1:8d:e8:48: 08:28:74:f5:23:43:f7:a9:10:29:50:99:e6:93:5d: 4b:1e:7a:88:12:36:26:2f:99:b2:1d:1d:c4:e5:87: 66:30:9f:9f:97:09:3f:4c:d7:e9:66:f0:c3:2a:97: f8:9c:0f:5a:c9:00:06:40:67:c7:92:2f:51:c1:64: 9e:6e:48:ae:10:8f:91:74:b8:6f:65:aa:8b:85:cb: 1a:2d:e8:f6:a1:3d:31:cb:fa:c5:12:55:0c:a8:6b: 01:13:2a:1a:df:1c:12:2c:ff:9b:c7:e2:37:12:b7: cf:9d:5d:05:8b:0a:e9:d9:3e:26:21:de:0b:66:c8: 90:b6:8a:f8:1e:85:09:a9:ec:55:ce:6a:be:f1:b3: e8:89:15:f0:fe:aa:be:20:18:6d:26:ec:61:1b:c3: c8:37:d9:f3:a1:d6:9e:ca:0f:3e:e5:f6:f0:bd:64: 02:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:50:02:6C:D6:40:C4:4A:17:70:F4:44:47:9C:D6:AA:44:86:18:68 X509v3 Authority Key Identifier: keyid:44:8A:6D:82:97:6A:55:DC:57:0B:A5:80:37:70:AC:6A:DD:BB:D8:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194590/36355952919F11EDB48E534DC4F9AE02/RIptgpdqVdxXC6WAN3Csat272IY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RIptgpdqVdxXC6WAN3Csat272IY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194590/36355952919F11EDB48E534DC4F9AE02/B3F895D691A211EDA6B67334C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.174.202.0/23 Signature Algorithm: sha256WithRSAEncryption 53:b1:3d:2e:0e:1f:a5:d3:86:a0:0b:f2:5e:61:1f:5e:29:35: c7:ab:d2:a9:e7:e2:20:6b:9a:54:13:f0:5a:61:00:3c:54:5e: 66:4c:87:fa:ff:b9:21:06:0e:3f:6d:09:6a:68:6b:52:98:f5: d9:3e:c3:cb:d1:00:94:23:cf:b3:f7:f0:c7:1d:4c:44:86:d1: a2:41:ff:2d:15:ef:73:23:7a:1a:73:b2:5b:c3:e5:05:b2:1b: a4:30:e3:9a:6a:36:b9:cd:05:51:b2:2b:f5:ec:ff:1f:bb:96: 18:7e:63:ba:32:af:24:4b:0a:0c:ba:58:9e:93:e8:17:d6:95: 07:70:f1:49:73:0e:ad:c8:9c:42:33:a7:30:bd:a8:3e:3b:cf: 65:69:37:a4:26:0e:03:7d:26:80:55:07:27:a3:8d:2a:43:1c: 7c:1d:d7:35:f6:79:20:8f:f8:02:c4:24:f0:3f:72:8b:87:0a: 2f:7b:2d:ce:fa:11:7d:d0:d0:ba:dc:24:df:66:e7:46:a3:7e: 33:c4:5b:e9:e6:55:fa:6b:7e:52:7c:81:7b:55:a7:38:37:4a: 93:e5:90:18:1d:a7:02:9d:e0:92:e0:d3:27:f0:bc:bb:2f:2d: b8:82:84:01:78:e1:f9:c3:15:72:db:2e:4e:f9:b0:af:eb:24: d6:86:3c:81 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAWMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ1OTAxMTAvBgNVBAUTKDQ0OEE2RDgyOTc2QTU1REM1NzBCQTU4MDM3NzBBQzZB RERCQkQ4ODYwHhcNMjQxMTI3MDI1NTUwWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQ2OGEzNi01NjQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuOHETb2zRAkyrVgpQjwViveXAxsa6ApxJj4vBoA5X5CThT9Aw1JuP+M5tKca pxQ6yk2arKJn8YtbM7POxKMslEUyeUCmh9GiyR451yL084L9KmuSPqGN6EgIKHT1 I0P3qRApUJnmk11LHnqIEjYmL5myHR3E5YdmMJ+flwk/TNfpZvDDKpf4nA9ayQAG QGfHki9RwWSebkiuEI+RdLhvZaqLhcsaLej2oT0xy/rFElUMqGsBEyoa3xwSLP+b x+I3ErfPnV0Fiwrp2T4mId4LZsiQtor4HoUJqexVzmq+8bPoiRXw/qq+IBhtJuxh G8PIN9nzodaeyg8+5fbwvWQCLwIDAQABo4IClTCCApEwHQYDVR0OBBYEFH1QAmzW QMRKF3D0REec1qpEhhhoMB8GA1UdIwQYMBaAFESKbYKXalXcVwulgDdwrGrdu9iG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDU5MC8zNjM1NTk1Mjkx OUYxMUVEQjQ4RTUzNERDNEY5QUUwMi9SSXB0Z3BkcVZkeFhDNldBTjNDc2F0Mjcy SVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JJcHRncGRxVmR4WEM2V0FOM0NzYXQyNzJJWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTQ1OTAvMzYzNTU5NTI5MTlGMTFFREI0OEU1MzREQzRGOUFFMDIvQjNGODk1RDY5 MUEyMTFFREE2QjY3MzM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnrsowDQYJKoZIhvcNAQELBQADggEBAFOxPS4OH6XThqAL 8l5hH14pNcer0qnn4iBrmlQT8FphADxUXmZMh/r/uSEGDj9tCWpoa1KY9dk+w8vR AJQjz7P38McdTESG0aJB/y0V73MjehpzslvD5QWyG6Qw45pqNrnNBVGyK/Xs/x+7 lhh+Y7oyryRLCgy6WJ6T6BfWlQdw8UlzDq3InEIzpzC9qD47z2VpN6QmDgN9JoBV ByejjSpDHHwd1zX2eSCP+ALEJPA/couHCi97Lc76EX3Q0LrcJN9m50ajfjPEW+nm VfprflJ8gXtVpzg3SpPlkBgdpwKd4JLg0yfwvLsvLbiChAF44fnDFXLbLk75sK/r JNaGPIE= -----END CERTIFICATE-----Generated at Sat Apr 5 02:18:18 2025 by rpki-client