$ rpki-client -vvf rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/3D371C5C708F11E9B105E92CC4F9AE02.roa File: 3D371C5C708F11E9B105E92CC4F9AE02.roa (raw, json) Hash identifier: f9TT75PVo7LnpoyTstCb9FAN+0+Guxy6a/cUSnN4C/Y= Subject key identifier: 93:E9:6C:60:F3:F5:2E:DC:12:4A:06:4F:62:79:15:1C:EB:27:06:EF Certificate issuer: /CN=A91D15A4/serialNumber=4D44E2F752A2950B6B5528C0699B1490E7577744 Certificate serial: 0E49 Authority key identifier: 4D:44:E2:F7:52:A2:95:0B:6B:55:28:C0:69:9B:14:90:E7:57:77:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TUTi91KilQtrVSjAaZsUkOdXd0Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/3D371C5C708F11E9B105E92CC4F9AE02.roa Signing time: Tue 30 Jan 2024 18:36:29 +0000 ROA not before: Tue 30 Jan 2024 18:36:29 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 138516 IP address blocks: 103.127.128.0/24 maxlen: 24 103.148.231.0/24 maxlen: 24 2001:df7:6700::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.crl rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TUTi91KilQtrVSjAaZsUkOdXd0Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:38:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3657 (0xe49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D15A4/serialNumber=4D44E2F752A2950B6B5528C0699B1490E7577744 Validity Not Before: Jan 30 18:36:29 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65b941ad-b667 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:d3:16:d9:73:12:6c:50:23:87:a2:85:59:5c: 03:73:7b:4f:f0:fd:da:06:ed:91:75:4a:a2:52:6b: a4:7e:ab:e9:c6:27:61:73:6d:5e:d7:25:55:7e:4e: 78:cd:5b:61:05:cd:b6:24:88:28:1c:67:80:3c:e0: 0a:3c:5d:a7:8a:c0:98:fd:e7:84:d4:40:91:d8:54: 7c:0f:eb:c4:bc:5b:10:ed:5f:0f:b0:3c:68:d8:da: 51:04:27:85:cd:07:b6:c1:70:62:e8:f6:f0:c0:2d: 5a:8f:29:c5:ef:fb:ed:17:5c:86:98:7a:d4:e6:f2: d7:2b:f5:4e:be:7d:4b:d1:65:1a:b4:8f:2d:50:71: ae:0e:9b:4a:87:b0:29:1f:86:f7:42:01:03:59:b6: ee:a9:19:1e:ca:a9:48:3c:a1:d6:08:b8:c6:03:8e: 71:cd:cc:7c:19:43:f4:00:1a:96:04:1a:22:39:00: 90:08:97:92:d2:6e:19:40:ec:b7:4b:55:02:ed:9e: d4:fb:c0:13:21:a4:3c:b5:3a:fb:1b:d1:c4:a6:86: 2f:bb:b5:57:c5:f3:97:10:4a:2b:e4:59:18:2f:ba: 44:44:94:73:c7:16:da:b6:e8:94:e3:bc:0b:52:c1: 55:5e:6a:0e:2a:3c:b8:04:b3:b7:cf:c7:8b:87:b5: 7b:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:E9:6C:60:F3:F5:2E:DC:12:4A:06:4F:62:79:15:1C:EB:27:06:EF X509v3 Authority Key Identifier: keyid:4D:44:E2:F7:52:A2:95:0B:6B:55:28:C0:69:9B:14:90:E7:57:77:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/TUTi91KilQtrVSjAaZsUkOdXd0Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TUTi91KilQtrVSjAaZsUkOdXd0Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D15A4/B34E6D50708A11E9AF0F8D21C4F9AE02/3D371C5C708F11E9B105E92CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.127.128.0/24 103.148.231.0/24 IPv6: 2001:df7:6700::/48 Signature Algorithm: sha256WithRSAEncryption 04:d6:90:6b:9c:80:cb:eb:6e:b0:a6:06:6a:51:37:2b:5e:62: c8:c3:d5:00:06:fc:64:02:4d:90:d2:46:0d:86:1c:dd:0a:54: ec:f1:2b:99:5b:f1:bb:12:74:44:8a:48:6f:4d:44:bf:b6:1e: f7:55:f2:f8:00:8c:f0:bb:bf:7e:62:0b:16:8b:4a:bd:25:f5: e5:72:3c:66:1f:08:a2:a5:d4:f8:b9:53:7b:9a:49:46:78:c5: 0b:39:2d:c0:49:e2:95:5a:c2:d6:45:62:20:35:37:af:76:f6: 58:e8:30:5d:43:a1:18:8e:7b:26:73:e0:7f:ff:d5:f4:fa:03: ad:44:b6:2c:62:40:00:77:46:38:08:ba:1d:a6:f3:95:97:26: 40:9b:a6:6e:97:9e:c4:68:4b:01:8b:c5:fa:b4:bb:34:4e:f4: 6f:01:44:83:7c:f0:42:91:28:43:fc:4c:f0:c0:a3:78:ab:8e: 3f:8d:e8:12:69:ee:ac:7e:90:44:42:0f:6f:6f:72:c0:48:69: e3:72:2f:fc:6d:a2:6c:b3:a1:37:14:75:7a:72:34:76:7e:fb: 36:ba:2f:dc:d0:b3:e5:f0:2e:00:e3:87:62:c6:5e:f3:2b:37: 91:97:73:b6:17:e4:79:a5:cd:d0:db:56:6e:7b:8c:4c:62:ca: 98:a2:a4:a9 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICDkkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE1QTQxMTAvBgNVBAUTKDRENDRFMkY3NTJBMjk1MEI2QjU1MjhDMDY5OUIxNDkw RTc1Nzc3NDQwHhcNMjQwMTMwMTgzNjI5WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI5NDFhZC1iNjY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1tMW2XMSbFAjh6KFWVwDc3tP8P3aBu2RdUqiUmukfqvpxidhc21e1yVVfk54 zVthBc22JIgoHGeAPOAKPF2nisCY/eeE1ECR2FR8D+vEvFsQ7V8PsDxo2NpRBCeF zQe2wXBi6PbwwC1ajynF7/vtF1yGmHrU5vLXK/VOvn1L0WUatI8tUHGuDptKh7Ap H4b3QgEDWbbuqRkeyqlIPKHWCLjGA45xzcx8GUP0ABqWBBoiOQCQCJeS0m4ZQOy3 S1UC7Z7U+8ATIaQ8tTr7G9HEpoYvu7VXxfOXEEor5FkYL7pERJRzxxbatuiU47wL UsFVXmoOKjy4BLO3z8eLh7V7nQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFJPpbGDz 9S7cEkoGT2J5FRzrJwbvMB8GA1UdIwQYMBaAFE1E4vdSopULa1UowGmbFJDnV3dE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTVBNC9CMzRFNkQ1MDcw OEExMUU5QUYwRjhEMjFDNEY5QUUwMi9UVVRpOTFLaWxRdHJWU2pBYVpzVWtPZFhk MFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RVVGk5MUtpbFF0clZTakFhWnNVa09kWGQwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDE1QTQvQjM0RTZENTA3MDhBMTFFOUFGMEY4RDIxQzRGOUFFMDIvM0QzNzFDNUM3 MDhGMTFFOUIxMDVFOTJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnf4ADBABnlOcwDwQCAAIwCQMHACABDfdnADANBgkqhkiG 9w0BAQsFAAOCAQEABNaQa5yAy+tusKYGalE3K15iyMPVAAb8ZAJNkNJGDYYc3QpU 7PErmVvxuxJ0RIpIb01Ev7Ye91Xy+ACM8Lu/fmILFotKvSX15XI8Zh8IoqXU+LlT e5pJRnjFCzktwEnilVrC1kViIDU3r3b2WOgwXUOhGI57JnPgf//V9PoDrUS2LGJA AHdGOAi6HabzlZcmQJumbpeexGhLAYvF+rS7NE70bwFEg3zwQpEoQ/xM8MCjeKuO P43oEmnurH6QREIPb29ywEhp43Iv/G2ibLOhNxR1enI0dn77Nrov3NCz5fAuAOOH YsZe8ys3kZdzthfkeaXN0NtWbnuMTGLKmKKkqQ== -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:18 2024 by rpki-client on console-ams.rpki-client.org