$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0D9C/9E28300657A811E8B4AC0877C4F9AE02/3BA876C457A911E8A8A8B477C4F9AE02.roa File: 3BA876C457A911E8A8A8B477C4F9AE02.roa (raw, json) Hash identifier: CZ1n7wMvpZ54ATk+VQ1R0rkzh77zsUgSzf6wilPD9IE= Subject key identifier: 2D:F2:75:7D:35:10:DA:DD:7F:9D:77:1C:D6:51:24:81:5B:69:A9:03 Certificate issuer: /CN=A91A0D9C/serialNumber=FE3E98C4C1A7912B5A916D16334778C4AB7A6530 Certificate serial: 1420 Authority key identifier: FE:3E:98:C4:C1:A7:91:2B:5A:91:6D:16:33:47:78:C4:AB:7A:65:30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_j6YxMGnkStakW0WM0d4xKt6ZTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0D9C/9E28300657A811E8B4AC0877C4F9AE02/3BA876C457A911E8A8A8B477C4F9AE02.roa Signing time: Fri 31 May 2024 18:28:46 +0000 ROA not before: Fri 31 May 2024 18:28:46 +0000 ROA not after: Tue 01 Oct 2024 00:00:00 +0000 asID: 137491 IP address blocks: 103.110.96.0/22 maxlen: 24 2402:8640::/32 maxlen: 32 2402:8640::/48 maxlen: 48 2402:8640:1::/48 maxlen: 48 2402:8640:2::/48 maxlen: 48 2402:8640:3::/48 maxlen: 48 2402:8640:4::/48 maxlen: 48 2402:8640:5::/48 maxlen: 48 2402:8640:6::/48 maxlen: 48 2402:8640:7::/48 maxlen: 48 2402:8640:8::/48 maxlen: 48 2402:8640:9::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0D9C/9E28300657A811E8B4AC0877C4F9AE02/_j6YxMGnkStakW0WM0d4xKt6ZTA.crl rsync://rpki.apnic.net/member_repository/A91A0D9C/9E28300657A811E8B4AC0877C4F9AE02/_j6YxMGnkStakW0WM0d4xKt6ZTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_j6YxMGnkStakW0WM0d4xKt6ZTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 18:28:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5152 (0x1420) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0D9C/serialNumber=FE3E98C4C1A7912B5A916D16334778C4AB7A6530 Validity Not Before: May 31 18:28:46 2024 GMT Not After : Oct 1 00:00:00 2024 GMT Subject: CN=665a16de-9fb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:24:b6:eb:d4:5f:00:de:e7:24:c6:ef:9a:50: 9a:29:ba:38:65:23:e1:46:76:13:76:02:96:43:09: 86:de:56:a5:08:cf:76:87:cf:78:0a:d3:5e:a4:c7: 5f:de:77:55:22:51:e1:d8:39:b8:13:ed:d6:00:1d: f2:bd:f5:f0:f9:48:69:95:5f:94:6f:72:ec:c4:47: b3:0f:bc:2d:82:60:04:c0:ee:89:5a:76:ff:06:de: b6:c0:5c:0c:16:85:77:bd:d3:8a:d6:fe:e6:11:a0: 87:c3:32:92:b4:ef:bd:ab:a8:e1:65:8b:f2:9c:24: 93:f1:8a:9e:82:78:fc:1b:aa:1b:db:e9:16:32:33: ac:19:f5:3e:53:4d:19:9a:7b:ae:11:17:ad:82:c3: 6c:2b:30:40:e4:98:e5:4a:95:c1:56:3b:4d:dd:c9: c7:a5:41:9c:0f:30:36:57:6a:f6:98:14:c6:ac:64: c8:4d:e2:6e:53:3b:2f:88:85:5e:85:4d:81:4b:fb: 4a:3f:e7:86:87:5d:a4:ea:24:08:c2:b7:ed:c1:14: 7f:5e:f0:54:48:07:02:ce:da:6d:17:73:3f:c7:d8: 66:24:01:ba:0f:04:22:4f:19:69:bc:5e:88:53:d5: a3:6f:83:5c:d8:48:09:aa:12:e3:1a:88:b2:30:52: c0:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:F2:75:7D:35:10:DA:DD:7F:9D:77:1C:D6:51:24:81:5B:69:A9:03 X509v3 Authority Key Identifier: keyid:FE:3E:98:C4:C1:A7:91:2B:5A:91:6D:16:33:47:78:C4:AB:7A:65:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0D9C/9E28300657A811E8B4AC0877C4F9AE02/_j6YxMGnkStakW0WM0d4xKt6ZTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_j6YxMGnkStakW0WM0d4xKt6ZTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0D9C/9E28300657A811E8B4AC0877C4F9AE02/3BA876C457A911E8A8A8B477C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.110.96.0/22 IPv6: 2402:8640::/32 Signature Algorithm: sha256WithRSAEncryption 0a:4b:82:b3:2b:3a:f5:fe:96:21:59:8a:09:ac:40:51:e0:21: c2:cd:3d:db:d2:5e:6e:e7:5d:f9:1b:02:ce:ce:96:67:ee:93: 2d:4a:4d:06:48:8f:c1:55:3a:55:d3:85:01:ba:c7:86:a2:53: 6c:45:88:40:c7:e9:35:91:4b:55:77:08:31:bc:50:1b:1c:54: 7b:a4:ee:f7:9a:c6:16:15:67:15:06:51:4f:3a:77:00:a7:fe: 32:fa:4f:07:bf:6b:41:b0:cf:2f:d5:68:6b:1a:1c:77:1e:96: 77:36:d2:f9:39:c5:a8:fb:91:8f:32:a0:99:b0:e7:c0:cc:47: 33:76:52:55:d3:a5:2d:70:b8:1e:51:32:04:64:1a:1a:59:7d: 86:06:a7:3c:fe:d7:e2:54:f1:e9:87:9c:bc:ee:34:a0:15:b2: 34:06:54:a6:91:1c:4c:da:8d:ac:b5:17:4f:a8:17:3a:e8:bf: d6:ec:62:e9:4d:62:70:44:dd:14:3c:3a:98:34:fd:63:5c:46: 4c:f6:a1:bc:a1:0e:34:93:29:c3:1c:b4:9c:02:58:2b:97:9b: 70:b5:46:58:e5:88:a6:6e:0c:86:f0:b5:5f:5e:b0:7e:dd:10: ce:1b:29:f1:f2:7a:ff:77:7a:bd:d3:48:e5:59:2f:bc:ab:01: de:fa:64:7a -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICFCAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTBEOUMxMTAvBgNVBAUTKEZFM0U5OEM0QzFBNzkxMkI1QTkxNkQxNjMzNDc3OEM0 QUI3QTY1MzAwHhcNMjQwNTMxMTgyODQ2WhcNMjQxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVhMTZkZS05ZmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmyS269RfAN7nJMbvmlCaKbo4ZSPhRnYTdgKWQwmG3lalCM92h894CtNepMdf 3ndVIlHh2Dm4E+3WAB3yvfXw+UhplV+Ub3LsxEezD7wtgmAEwO6JWnb/Bt62wFwM FoV3vdOK1v7mEaCHwzKStO+9q6jhZYvynCST8Yqegnj8G6ob2+kWMjOsGfU+U00Z mnuuERetgsNsKzBA5JjlSpXBVjtN3cnHpUGcDzA2V2r2mBTGrGTITeJuUzsviIVe hU2BS/tKP+eGh12k6iQIwrftwRR/XvBUSAcCztptF3M/x9hmJAG6DwQiTxlpvF6I U9Wjb4Nc2EgJqhLjGoiyMFLAJQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFC3ydX01 ENrdf513HNZRJIFbaakDMB8GA1UdIwQYMBaAFP4+mMTBp5ErWpFtFjNHeMSremUw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMEQ5Qy85RTI4MzAwNjU3 QTgxMUU4QjRBQzA4NzdDNEY5QUUwMi9fajZZeE1HbmtTdGFrVzBXTTBkNHhLdDZa VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19qNll4TUdua1N0YWtXMFdNMGQ0eEt0NlpUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTBEOUMvOUUyODMwMDY1N0E4MTFFOEI0QUMwODc3QzRGOUFFMDIvM0JBODc2QzQ1 N0E5MTFFOEE4QThCNDc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnbmAwDQQCAAIwBwMFACQChkAwDQYJKoZIhvcNAQELBQAD ggEBAApLgrMrOvX+liFZigmsQFHgIcLNPdvSXm7nXfkbAs7Olmfuky1KTQZIj8FV OlXThQG6x4aiU2xFiEDH6TWRS1V3CDG8UBscVHuk7veaxhYVZxUGUU86dwCn/jL6 Twe/a0Gwzy/VaGsaHHcelnc20vk5xaj7kY8yoJmw58DMRzN2UlXTpS1wuB5RMgRk GhpZfYYGpzz+1+JU8emHnLzuNKAVsjQGVKaRHEzajay1F0+oFzrov9bsYulNYnBE 3RQ8Opg0/WNcRkz2obyhDjSTKcMctJwCWCuXm3C1RljliKZuDIbwtV9esH7dEM4b KfHyev93er3TSOVZL7yrAd76ZHo= -----END CERTIFICATE-----Generated at Fri May 31 20:34:12 2024 by rpki-client on console-ams.rpki-client.org