$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6AEE/4F332882664611ED8D2C750FC4F9AE02/3B7794D2664A11EDB095B812C4F9AE02.roa File: 3B7794D2664A11EDB095B812C4F9AE02.roa (raw, json) Hash identifier: ne9O+G9qSru/U2exZgVGXkHzQTflawcam407PNhnI+0= Subject key identifier: 3F:2D:66:AE:32:4A:25:23:5C:F3:CE:0F:E6:93:15:DE:8D:67:66:90 Certificate issuer: /CN=A91B6AEE/serialNumber=1D6C3E9C47212EE48DF9F54E6490A9A616D41189 Certificate serial: 0167 Authority key identifier: 1D:6C:3E:9C:47:21:2E:E4:8D:F9:F5:4E:64:90:A9:A6:16:D4:11:89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWw-nEchLuSN-fVOZJCpphbUEYk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6AEE/4F332882664611ED8D2C750FC4F9AE02/3B7794D2664A11EDB095B812C4F9AE02.roa Signing time: Mon 07 Oct 2024 02:46:31 +0000 ROA not before: Mon 07 Oct 2024 02:46:31 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 150321 IP address blocks: 103.55.178.0/24 maxlen: 24 2001:df1:4c40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6AEE/4F332882664611ED8D2C750FC4F9AE02/HWw-nEchLuSN-fVOZJCpphbUEYk.crl rsync://rpki.apnic.net/member_repository/A91B6AEE/4F332882664611ED8D2C750FC4F9AE02/HWw-nEchLuSN-fVOZJCpphbUEYk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWw-nEchLuSN-fVOZJCpphbUEYk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:05:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 359 (0x167) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6AEE/serialNumber=1D6C3E9C47212EE48DF9F54E6490A9A616D41189 Validity Not Before: Oct 7 02:46:31 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67034b87-7b1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:24:5c:a5:18:84:9a:75:bd:f7:1a:b6:44:35: fb:f1:32:6b:4d:68:d5:c3:66:7b:a5:ba:47:3d:3d: f9:cf:b4:0f:ec:89:65:95:c4:5e:a7:17:60:09:fb: e3:5f:1a:37:a9:8f:08:81:94:6a:d5:c4:7a:1e:02: 7a:d6:7f:08:24:21:5b:40:fe:4c:5b:26:18:2c:09: 19:1c:8c:45:46:fc:72:ea:8f:5d:29:fb:e9:a9:e1: 9a:51:b9:5e:24:7a:38:ef:2c:0d:e9:98:57:5d:09: 46:78:c5:78:1c:1d:bd:4f:68:44:be:e7:df:a0:7d: 71:6e:8b:20:11:e0:a6:c3:1c:7f:bb:86:5a:e7:77: d3:72:f1:95:9b:96:2e:7e:09:0e:3d:32:5e:44:1f: d8:5e:c1:41:fa:f1:4f:ec:71:49:7d:d2:4a:15:26: 33:f5:93:c9:50:14:ed:8d:3a:1f:ce:c5:52:d8:22: 26:7e:dd:21:dd:cd:87:37:ff:1e:00:36:36:ff:a2: a1:6b:09:d0:13:5b:b8:7d:6d:72:7b:ab:98:c3:f7: 3f:20:47:a4:38:3b:f7:bc:9b:41:ed:b6:a4:d6:90: 69:27:a7:ab:58:de:4a:24:1d:a5:04:5c:95:39:f4: 22:53:b1:d6:b9:3d:16:a9:f6:f5:c2:32:ae:28:52: 6a:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:2D:66:AE:32:4A:25:23:5C:F3:CE:0F:E6:93:15:DE:8D:67:66:90 X509v3 Authority Key Identifier: keyid:1D:6C:3E:9C:47:21:2E:E4:8D:F9:F5:4E:64:90:A9:A6:16:D4:11:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6AEE/4F332882664611ED8D2C750FC4F9AE02/HWw-nEchLuSN-fVOZJCpphbUEYk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWw-nEchLuSN-fVOZJCpphbUEYk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6AEE/4F332882664611ED8D2C750FC4F9AE02/3B7794D2664A11EDB095B812C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.55.178.0/24 IPv6: 2001:df1:4c40::/48 Signature Algorithm: sha256WithRSAEncryption 32:17:65:9f:1f:f4:fa:78:55:57:e8:79:29:c7:28:43:e2:a3: 09:8a:bd:88:4a:62:64:d0:b1:16:cd:5d:68:e1:ea:f4:14:38: 2c:3d:dd:b2:57:d5:7d:e8:6a:cd:d5:ec:4b:b6:88:e6:50:2d: bd:0e:78:bb:23:98:e9:fe:67:6f:65:f3:f1:be:3b:fd:55:53: 61:a1:7f:0e:b5:1a:4f:da:ff:cf:a1:7a:22:25:53:0e:5e:17: 94:4a:5d:f0:1e:d8:8d:04:ea:75:d3:fc:c9:6f:0a:06:2a:00: b5:bc:4c:d1:2d:4f:03:c8:6f:75:82:c4:5e:44:f6:8a:52:08: 8e:77:17:06:3d:fe:c6:24:6a:fa:86:38:bb:17:b0:10:c8:01: 96:fa:e1:76:bb:3d:dd:dc:7d:53:a7:1d:44:d0:80:e3:d4:c3: 3e:72:94:19:66:02:e3:ea:c4:44:94:10:05:91:d8:aa:7a:a5: 30:eb:a2:80:cf:07:5b:a2:af:f7:14:87:25:0b:04:b2:be:b1: 32:a8:fb:c0:6f:a0:69:ed:f7:55:2a:18:93:88:fa:e8:0c:f2: ee:c0:a3:1f:03:c3:32:be:69:ec:c5:dc:c2:ac:4e:7c:cf:30: 9b:82:57:08:fa:ff:93:8a:5c:4f:70:30:cb:50:ac:4e:b9:cb: 53:78:04:14 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZBRUUxMTAvBgNVBAUTKDFENkMzRTlDNDcyMTJFRTQ4REY5RjU0RTY0OTBBOUE2 MTZENDExODkwHhcNMjQxMDA3MDI0NjMxWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzAzNGI4Ny03YjFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuSRcpRiEmnW99xq2RDX78TJrTWjVw2Z7pbpHPT35z7QP7IlllcRepxdgCfvj Xxo3qY8IgZRq1cR6HgJ61n8IJCFbQP5MWyYYLAkZHIxFRvxy6o9dKfvpqeGaUble JHo47ywN6ZhXXQlGeMV4HB29T2hEvuffoH1xbosgEeCmwxx/u4Za53fTcvGVm5Yu fgkOPTJeRB/YXsFB+vFP7HFJfdJKFSYz9ZPJUBTtjTofzsVS2CImft0h3c2HN/8e ADY2/6KhawnQE1u4fW1ye6uYw/c/IEekODv3vJtB7bak1pBpJ6erWN5KJB2lBFyV OfQiU7HWuT0Wqfb1wjKuKFJqfQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFD8tZq4y SiUjXPPOD+aTFd6NZ2aQMB8GA1UdIwQYMBaAFB1sPpxHIS7kjfn1TmSQqaYW1BGJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkFFRS80RjMzMjg4MjY2 NDYxMUVEOEQyQzc1MEZDNEY5QUUwMi9IV3ctbkVjaEx1U04tZlZPWkpDcHBoYlVF WWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hXdy1uRWNoTHVTTi1mVk9aSkNwcGhiVUVZay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjZBRUUvNEYzMzI4ODI2NjQ2MTFFRDhEMkM3NTBGQzRGOUFFMDIvM0I3Nzk0RDI2 NjRBMTFFREIwOTVCODEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnN7IwDwQCAAIwCQMHACABDfFMQDANBgkqhkiG9w0BAQsF AAOCAQEAMhdlnx/0+nhVV+h5KccoQ+KjCYq9iEpiZNCxFs1daOHq9BQ4LD3dslfV fehqzdXsS7aI5lAtvQ54uyOY6f5nb2Xz8b47/VVTYaF/DrUaT9r/z6F6IiVTDl4X lEpd8B7YjQTqddP8yW8KBioAtbxM0S1PA8hvdYLEXkT2ilIIjncXBj3+xiRq+oY4 uxewEMgBlvrhdrs93dx9U6cdRNCA49TDPnKUGWYC4+rERJQQBZHYqnqlMOuigM8H W6Kv9xSHJQsEsr6xMqj7wG+gae33VSoYk4j66Azy7sCjHwPDMr5p7MXcwqxOfM8w m4JXCPr/k4pcT3Awy1CsTrnLU3gEFA== -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:49 2024 by rpki-client on console-ams.rpki-client.org