$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFA29/0F1A4E641DAA11E28E727DA508B02CD2/3A42DAB8DE6311E8BFB1BF16C4F9AE02.roa File: 3A42DAB8DE6311E8BFB1BF16C4F9AE02.roa (raw, json) Hash identifier: Uiye7cqZlanXJWgI4AXX+yyZ4vhsuuEZPw69WEAiEn0= Subject key identifier: 6E:4E:AB:A1:92:12:03:4A:E2:85:24:EE:89:44:9B:78:0B:1B:E2:D8 Certificate issuer: /CN=A91BFA29/serialNumber=17F33DB826A142D337C5EB9984BE2DC4F9BC6429 Certificate serial: 33BC Authority key identifier: 17:F3:3D:B8:26:A1:42:D3:37:C5:EB:99:84:BE:2D:C4:F9:BC:64:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F_M9uCahQtM3xeuZhL4txPm8ZCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFA29/0F1A4E641DAA11E28E727DA508B02CD2/3A42DAB8DE6311E8BFB1BF16C4F9AE02.roa Signing time: Sat 02 Mar 2024 15:51:05 +0000 ROA not before: Sat 02 Mar 2024 15:51:05 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 132125 IP address blocks: 103.247.72.0/22 maxlen: 24 2402:f300::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFA29/0F1A4E641DAA11E28E727DA508B02CD2/F_M9uCahQtM3xeuZhL4txPm8ZCk.crl rsync://rpki.apnic.net/member_repository/A91BFA29/0F1A4E641DAA11E28E727DA508B02CD2/F_M9uCahQtM3xeuZhL4txPm8ZCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F_M9uCahQtM3xeuZhL4txPm8ZCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:15:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13244 (0x33bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFA29/serialNumber=17F33DB826A142D337C5EB9984BE2DC4F9BC6429 Validity Not Before: Mar 2 15:51:05 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e34ae9-d15f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:13:16:f2:89:3b:9f:09:c8:21:55:bd:11:f5: cf:8c:dd:4d:71:66:a7:12:83:82:97:a1:8a:6d:7f: 07:f2:83:77:86:27:3c:ed:7e:5e:53:7f:f8:80:0c: 5c:0e:25:ac:c6:be:94:fe:a1:e6:44:10:a8:dc:6f: 1f:b8:55:8f:14:19:73:1f:10:1e:4b:c6:ff:83:f0: 6b:35:de:03:c1:0b:ca:a6:4f:ad:c8:36:47:1a:43: 64:fb:b7:af:67:f3:56:91:e0:8e:2d:d6:8c:c6:54: 44:18:7e:4d:32:f5:3a:3a:47:24:ad:95:47:c8:c9: f0:de:5f:a3:59:ad:6b:11:7b:6c:a7:fb:f4:63:2f: 8c:1d:60:08:01:ea:e3:a4:8a:2d:98:3c:6d:86:aa: 29:33:8f:cc:1b:d1:67:99:c1:59:34:5f:4f:d5:97: 32:9e:80:6b:15:d2:37:53:e6:9c:40:95:ab:65:03: 09:52:95:7e:e1:99:6e:52:8c:e4:43:a4:3e:b8:9f: b6:ef:3e:2d:49:49:25:e5:a8:0c:d4:e0:89:d5:d5: dd:2f:f7:46:a0:6d:e8:47:c1:cb:da:e7:39:2b:c4: 02:b0:39:4b:f1:a4:25:b6:9f:77:08:a3:e0:3b:d4: c9:9f:73:e7:de:74:27:68:aa:1a:fd:43:5a:8f:b4: 6d:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:4E:AB:A1:92:12:03:4A:E2:85:24:EE:89:44:9B:78:0B:1B:E2:D8 X509v3 Authority Key Identifier: keyid:17:F3:3D:B8:26:A1:42:D3:37:C5:EB:99:84:BE:2D:C4:F9:BC:64:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFA29/0F1A4E641DAA11E28E727DA508B02CD2/F_M9uCahQtM3xeuZhL4txPm8ZCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F_M9uCahQtM3xeuZhL4txPm8ZCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFA29/0F1A4E641DAA11E28E727DA508B02CD2/3A42DAB8DE6311E8BFB1BF16C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.247.72.0/22 IPv6: 2402:f300::/32 Signature Algorithm: sha256WithRSAEncryption 4a:01:17:03:ce:ee:76:58:fe:57:39:09:e2:19:00:f9:f4:a2: 9d:70:be:96:fb:19:d8:af:d0:1d:74:44:96:9b:b0:9e:c5:22: f8:ad:c0:9f:76:1f:ee:9a:a9:8b:96:96:35:b6:b0:e3:9e:36: ee:2a:9a:d6:18:74:ba:0b:d3:d6:d0:bf:29:01:77:96:78:98: 81:6f:1d:ac:c6:fd:cb:4e:2e:9c:05:1d:f9:17:54:c9:32:33: 1c:f6:35:fd:18:64:cf:af:e5:79:4a:4a:e5:7b:b7:99:85:61: 43:62:88:c7:0e:77:54:d2:d6:fa:4a:a3:88:e5:67:0d:5b:73: 4a:66:12:02:94:c5:b7:cc:e3:7e:92:8f:c4:3c:2d:cb:39:1c: f8:d2:fd:21:49:1d:72:83:06:16:b0:6c:b8:26:c7:46:e0:ce: 16:60:97:49:e2:f2:e8:27:d0:a6:c3:f8:f6:b4:2b:78:ca:e1: 6a:de:1f:bf:8b:a2:a2:a3:c6:01:cd:97:81:1b:cf:aa:97:d9: dc:2c:c7:b3:34:d5:34:a9:a5:d3:50:2f:a9:2f:b5:ee:9a:cd: a4:cf:1f:1c:c3:bd:81:cf:42:5c:ce:9b:32:7c:f7:da:9d:d3: 06:05:dc:90:42:34:3c:84:0f:63:2b:2d:88:34:b0:b5:c4:d5: 1b:16:ea:f9 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICM7wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkZBMjkxMTAvBgNVBAUTKDE3RjMzREI4MjZBMTQyRDMzN0M1RUI5OTg0QkUyREM0 RjlCQzY0MjkwHhcNMjQwMzAyMTU1MTA1WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUzNGFlOS1kMTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2hMW8ok7nwnIIVW9EfXPjN1NcWanEoOCl6GKbX8H8oN3hic87X5eU3/4gAxc DiWsxr6U/qHmRBCo3G8fuFWPFBlzHxAeS8b/g/BrNd4DwQvKpk+tyDZHGkNk+7ev Z/NWkeCOLdaMxlREGH5NMvU6OkckrZVHyMnw3l+jWa1rEXtsp/v0Yy+MHWAIAerj pIotmDxthqopM4/MG9FnmcFZNF9P1ZcynoBrFdI3U+acQJWrZQMJUpV+4ZluUozk Q6Q+uJ+27z4tSUkl5agM1OCJ1dXdL/dGoG3oR8HL2uc5K8QCsDlL8aQltp93CKPg O9TJn3Pn3nQnaKoa/UNaj7Rt3wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFG5Oq6GS EgNK4oUk7olEm3gLG+LYMB8GA1UdIwQYMBaAFBfzPbgmoULTN8XrmYS+LcT5vGQp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRkEyOS8wRjFBNEU2NDFE QUExMUUyOEU3MjdEQTUwOEIwMkNEMi9GX005dUNhaFF0TTN4ZXVaaEw0dHhQbTha Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZfTTl1Q2FoUXRNM3hldVpoTDR0eFBtOFpDay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkZBMjkvMEYxQTRFNjQxREFBMTFFMjhFNzI3REE1MDhCMDJDRDIvM0E0MkRBQjhE RTYzMTFFOEJGQjFCRjE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJn90gwDQQCAAIwBwMFACQC8wAwDQYJKoZIhvcNAQELBQAD ggEBAEoBFwPO7nZY/lc5CeIZAPn0op1wvpb7Gdiv0B10RJabsJ7FIvitwJ92H+6a qYuWljW2sOOeNu4qmtYYdLoL09bQvykBd5Z4mIFvHazG/ctOLpwFHfkXVMkyMxz2 Nf0YZM+v5XlKSuV7t5mFYUNiiMcOd1TS1vpKo4jlZw1bc0pmEgKUxbfM436Sj8Q8 Lcs5HPjS/SFJHXKDBhawbLgmx0bgzhZgl0ni8ugn0KbD+Pa0K3jK4WreH7+LoqKj xgHNl4Ebz6qX2dwsx7M01TSppdNQL6kvte6azaTPHxzDvYHPQlzOmzJ899qd0wYF 3JBCNDyED2MrLYg0sLXE1RsW6vk= -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:51 2024 by rpki-client on console-fra.rpki-client.org