$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5832/6D60F9D8879711EE9F3ED44FC4F9AE02/3E6CF84C883311EE8822D90BC4F9AE02.roa File: 3E6CF84C883311EE8822D90BC4F9AE02.roa (raw, json) Hash identifier: hi2JHBL+ZfB9Tv2AwnI2KUWKkNHxYj0MMSY/hu1pdTM= Subject key identifier: 19:BC:0A:2D:87:DA:A4:91:1C:9D:E9:21:56:B8:2F:FD:B3:4E:C1:32 Certificate issuer: /CN=A91C5832/serialNumber=75D1C7A33303DA8DC6422AE351703F2A528DF3BE Certificate serial: 2B Authority key identifier: 75:D1:C7:A3:33:03:DA:8D:C6:42:2A:E3:51:70:3F:2A:52:8D:F3:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ddHHozMD2o3GQirjUXA_KlKN874.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5832/6D60F9D8879711EE9F3ED44FC4F9AE02/3E6CF84C883311EE8822D90BC4F9AE02.roa Signing time: Thu 25 Jan 2024 07:09:43 +0000 ROA not before: Thu 25 Jan 2024 07:09:43 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 137085 IP address blocks: 103.106.20.0/24 maxlen: 24 103.106.21.0/24 maxlen: 24 103.106.22.0/24 maxlen: 24 103.106.23.0/24 maxlen: 24 2402:37c0::/48 maxlen: 48 2402:37c0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5832/6D60F9D8879711EE9F3ED44FC4F9AE02/ddHHozMD2o3GQirjUXA_KlKN874.crl rsync://rpki.apnic.net/member_repository/A91C5832/6D60F9D8879711EE9F3ED44FC4F9AE02/ddHHozMD2o3GQirjUXA_KlKN874.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ddHHozMD2o3GQirjUXA_KlKN874.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Jun 2024 07:03:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5832/serialNumber=75D1C7A33303DA8DC6422AE351703F2A528DF3BE Validity Not Before: Jan 25 07:09:43 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65b20937-11a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:12:bb:97:55:e9:37:c0:06:02:c3:58:b3:f9: e9:a8:93:ad:f7:fd:80:d4:86:2a:94:17:bf:e1:55: fe:8d:98:9a:4b:32:7f:3e:59:23:5b:46:52:55:70: 82:b5:b8:17:3d:43:30:b7:ee:0a:4c:0f:f2:41:6a: 9c:72:9c:8f:2d:49:23:28:9a:f5:e5:3c:f7:dc:3a: 0b:95:02:27:9f:f3:ee:7a:90:6e:5a:d3:fb:14:bd: 56:a7:64:60:e4:71:55:c6:b9:66:67:29:c0:37:d8: 21:3a:20:d8:5e:ef:7c:87:37:67:dd:a0:5e:43:d2: 60:29:8b:02:bd:90:18:4a:7d:62:bb:97:2e:25:0c: f3:86:bd:bd:0e:83:17:db:4a:a8:70:ee:01:5c:93: af:9a:48:8f:59:d0:e5:f6:8a:13:28:42:6a:06:0b: 3a:03:2b:c2:ba:73:55:89:cc:d2:ae:5b:59:da:d1: 3e:fe:fa:28:a3:aa:25:5b:04:dc:20:8b:72:8d:9a: f9:c2:b6:f0:82:aa:cf:b3:15:21:cf:5b:91:c4:e4: ae:d3:99:43:fc:03:dd:db:02:de:e6:ad:87:75:78: 73:66:c8:ec:3e:42:5a:04:6a:13:bc:bc:d8:a3:13: cc:f3:53:a2:7b:d7:9c:9b:5d:57:1d:1b:e1:de:20: 22:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:BC:0A:2D:87:DA:A4:91:1C:9D:E9:21:56:B8:2F:FD:B3:4E:C1:32 X509v3 Authority Key Identifier: keyid:75:D1:C7:A3:33:03:DA:8D:C6:42:2A:E3:51:70:3F:2A:52:8D:F3:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5832/6D60F9D8879711EE9F3ED44FC4F9AE02/ddHHozMD2o3GQirjUXA_KlKN874.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ddHHozMD2o3GQirjUXA_KlKN874.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5832/6D60F9D8879711EE9F3ED44FC4F9AE02/3E6CF84C883311EE8822D90BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.106.20.0/22 IPv6: 2402:37c0::/47 Signature Algorithm: sha256WithRSAEncryption 76:61:be:9c:10:5d:65:e7:bf:73:77:2f:e2:8e:4e:ec:ba:c5: 5a:51:c8:e7:60:b0:14:a4:15:32:71:4f:1e:a1:f9:a2:d3:d5: e4:f4:3a:92:8b:c9:a2:ea:fc:d5:54:a5:08:71:1d:44:c3:00: 68:bf:10:2c:da:56:96:25:72:e7:3b:97:10:85:47:36:fe:23: 3b:11:e4:9f:8a:6a:7f:3d:d0:20:e4:e6:95:d3:ab:6f:b0:ec: 33:76:4f:c4:ef:e7:34:23:83:02:44:7b:d9:e3:93:5e:6e:e4: 73:c3:5c:08:01:a8:8a:2d:a0:f9:b6:97:a0:95:2d:70:ca:cd: d3:0c:00:4f:9e:55:ac:7e:0d:14:ab:73:86:7b:a6:74:a4:ef: 9a:a8:6f:43:2a:76:14:d9:b5:a3:3e:a9:b9:20:92:e3:64:f5: 7a:2f:00:39:16:63:d0:75:6a:9f:99:db:3b:c5:e9:ca:b8:4c: a1:32:51:58:ac:1b:72:c3:46:7b:d0:bc:88:70:8e:49:cb:62: 1a:1d:bd:35:ac:eb:27:4c:36:b8:64:47:97:d8:96:17:b9:79: 8e:46:f6:17:d9:66:1f:a0:70:18:e1:40:15:62:84:30:b7:13: e8:95:3d:1c:8c:a6:ac:61:71:28:25:aa:03:2c:38:3b:e9:aa: 08:5d:ec:c5 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NTgzMjExMC8GA1UEBRMoNzVEMUM3QTMzMzAzREE4REM2NDIyQUUzNTE3MDNGMkE1 MjhERjNCRTAeFw0yNDAxMjUwNzA5NDNaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1YjIwOTM3LTExYTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0EruXVek3wAYCw1iz+emok633/YDUhiqUF7/hVf6NmJpLMn8+WSNbRlJVcIK1 uBc9QzC37gpMD/JBapxynI8tSSMomvXlPPfcOguVAief8+56kG5a0/sUvVanZGDk cVXGuWZnKcA32CE6INhe73yHN2fdoF5D0mApiwK9kBhKfWK7ly4lDPOGvb0Ogxfb Sqhw7gFck6+aSI9Z0OX2ihMoQmoGCzoDK8K6c1WJzNKuW1na0T7++iijqiVbBNwg i3KNmvnCtvCCqs+zFSHPW5HE5K7TmUP8A93bAt7mrYd1eHNmyOw+QloEahO8vNij E8zzU6J715ybXVcdG+HeICJvAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUGbwKLYfa pJEcnekhVrgv/bNOwTIwHwYDVR0jBBgwFoAUddHHozMD2o3GQirjUXA/KlKN874w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM1ODMyLzZENjBGOUQ4ODc5 NzExRUU5RjNFRDQ0RkM0RjlBRTAyL2RkSEhvek1EMm8zR1FpcmpVWEFfS2xLTjg3 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZGRISG96TUQybzNHUWlyalVYQV9LbEtOODc0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTgzMi82RDYwRjlEODg3OTcxMUVFOUYzRUQ0NEZDNEY5QUUwMi8zRTZDRjg0Qzg4 MzMxMUVFODgyMkQ5MEJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAmdqFDAPBAIAAjAJAwcBJAI3wAAAMA0GCSqGSIb3DQEBCwUA A4IBAQB2Yb6cEF1l579zdy/ijk7susVaUcjnYLAUpBUycU8eofmi09Xk9DqSi8mi 6vzVVKUIcR1EwwBovxAs2laWJXLnO5cQhUc2/iM7EeSfimp/PdAg5OaV06tvsOwz dk/E7+c0I4MCRHvZ45NebuRzw1wIAaiKLaD5tpeglS1wys3TDABPnlWsfg0Uq3OG e6Z0pO+aqG9DKnYU2bWjPqm5IJLjZPV6LwA5FmPQdWqfmds7xenKuEyhMlFYrBty w0Z70LyIcI5Jy2IaHb01rOsnTDa4ZEeX2JYXuXmORvYX2WYfoHAY4UAVYoQwtxPo lT0cjKasYXEoJaoDLDg76aoIXezF -----END CERTIFICATE-----Generated at Thu Jun 13 08:42:07 2024 by rpki-client on console-fra.rpki-client.org