$ rpki-client -vvf rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/3FE88D863D8211EEA0E4DD46C4F9AE02.roa File: 3FE88D863D8211EEA0E4DD46C4F9AE02.roa (raw, json) Hash identifier: DFTEkTpMYUZaChNCOS5LYT0aN5b0z7gmucXMygWogJU= Subject key identifier: 40:52:78:39:80:DB:4D:3E:6F:09:A8:AC:3F:23:9E:8E:86:77:70:FA Certificate issuer: /CN=A91E868C/serialNumber=28E670C2E37012F05C63BB566E203C51DC45E2B2 Certificate serial: 0DBF Authority key identifier: 28:E6:70:C2:E3:70:12:F0:5C:63:BB:56:6E:20:3C:51:DC:45:E2:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/3FE88D863D8211EEA0E4DD46C4F9AE02.roa Signing time: Sat 18 May 2024 09:35:03 +0000 ROA not before: Sat 18 May 2024 09:35:03 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 132021 IP address blocks: 103.5.0.0/22 maxlen: 22 103.5.0.0/23 maxlen: 23 103.5.0.0/24 maxlen: 24 103.5.1.0/24 maxlen: 24 103.5.2.0/23 maxlen: 23 103.5.2.0/24 maxlen: 24 103.5.3.0/24 maxlen: 24 2403:cd00::/32 maxlen: 32 2403:cd00::/33 maxlen: 33 2403:cd00:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Jun 2024 18:23:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3519 (0xdbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E868C/serialNumber=28E670C2E37012F05C63BB566E203C51DC45E2B2 Validity Not Before: May 18 09:35:03 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=66487647-c3d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c1:2d:7a:3c:f1:a0:da:e2:79:47:12:5a:c8: ba:d3:61:73:62:8c:26:68:a8:b6:60:1c:78:b5:ed: d3:3f:0e:51:eb:6e:c7:1c:c5:45:8f:55:ac:29:11: d6:d1:65:29:a9:56:cc:dd:fe:ee:6f:80:7e:80:55: e3:ba:0b:c4:0e:f6:90:61:99:d4:d2:b9:c2:51:4a: cd:c4:ca:70:ce:4e:4a:3e:84:3f:3e:58:72:03:90: 3c:fc:14:01:16:5e:96:56:6d:0c:df:85:91:72:41: 89:37:89:ea:2a:2c:f2:ea:54:22:e2:98:3d:22:58: f5:3d:c7:73:e8:64:f0:b2:e8:18:79:db:ed:4c:df: 48:95:81:fd:1a:da:6d:d4:d3:ec:97:cb:4e:fb:c0: c7:04:4a:1d:87:3c:be:f9:9e:09:ed:27:93:ab:ec: 7f:51:6b:b3:4a:bf:9c:35:e0:a0:e2:b3:ec:7c:e5: 25:a0:3f:6b:a5:66:e8:35:9c:7b:67:4b:1e:05:04: 5c:7f:01:7f:22:6d:b3:fc:b1:88:38:2b:09:d6:4b: 0d:0d:a3:8b:99:fd:93:fb:88:9d:a2:9a:bd:d5:b8: de:8d:30:64:e4:82:50:7b:d4:cf:27:41:91:d3:a2: 2c:02:c0:11:7f:08:cd:34:54:85:7e:e4:a3:40:8d: 2e:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:52:78:39:80:DB:4D:3E:6F:09:A8:AC:3F:23:9E:8E:86:77:70:FA X509v3 Authority Key Identifier: keyid:28:E6:70:C2:E3:70:12:F0:5C:63:BB:56:6E:20:3C:51:DC:45:E2:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/3FE88D863D8211EEA0E4DD46C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.5.0.0/22 IPv6: 2403:cd00::/32 Signature Algorithm: sha256WithRSAEncryption 82:29:3c:cf:80:46:d5:d6:b5:d2:73:9c:db:ec:fd:5d:9a:dc: 49:7e:53:4b:0a:ef:24:5a:96:e9:e9:65:65:87:32:08:c0:e5: bb:fe:fa:11:b7:68:c6:3f:ae:7f:6e:16:81:96:5c:a4:42:95: 88:e1:5f:a4:77:78:82:1f:9b:28:42:3a:df:6d:16:00:cc:af: 21:92:5a:9e:b3:d7:f1:54:81:fe:7c:21:ab:8b:06:3e:42:ca: e2:48:78:ae:15:e2:9d:3a:2e:d4:ad:f1:86:a0:9c:ad:a8:6e: e8:f1:e9:20:93:5f:bd:63:7e:25:df:7d:64:3d:44:24:00:b9: ac:42:ac:42:cf:d5:6c:f8:81:84:c8:4b:11:ce:e1:53:f6:28: bf:e7:43:2d:78:01:1a:cc:91:74:d8:66:6f:9b:ab:06:c3:87: 9d:a1:58:37:45:68:45:a9:70:88:14:7f:fa:b6:c0:5f:9a:4d: 92:57:e5:2b:f6:8d:b1:82:f9:05:7b:2b:9d:18:25:17:ac:ae: 06:60:86:a1:a1:ef:41:28:53:88:ca:60:60:fa:5a:3b:01:2a: 2a:e8:54:0c:79:63:6c:b4:a3:7e:27:eb:ae:cf:19:78:95:f6: a2:e8:8b:12:68:84:2f:45:e9:0e:5e:15:b0:ae:5c:a7:37:2a: be:7f:5b:f1 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDb8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg2OEMxMTAvBgNVBAUTKDI4RTY3MEMyRTM3MDEyRjA1QzYzQkI1NjZFMjAzQzUx REM0NUUyQjIwHhcNMjQwNTE4MDkzNTAzWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQ4NzY0Ny1jM2Q2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtMEtejzxoNrieUcSWsi602FzYowmaKi2YBx4te3TPw5R627HHMVFj1WsKRHW 0WUpqVbM3f7ub4B+gFXjugvEDvaQYZnU0rnCUUrNxMpwzk5KPoQ/PlhyA5A8/BQB Fl6WVm0M34WRckGJN4nqKizy6lQi4pg9Ilj1Pcdz6GTwsugYedvtTN9IlYH9Gtpt 1NPsl8tO+8DHBEodhzy++Z4J7SeTq+x/UWuzSr+cNeCg4rPsfOUloD9rpWboNZx7 Z0seBQRcfwF/Im2z/LGIOCsJ1ksNDaOLmf2T+4idopq91bjejTBk5IJQe9TPJ0GR 06IsAsARfwjNNFSFfuSjQI0unwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFEBSeDmA 200+bwmorD8jno6Gd3D6MB8GA1UdIwQYMBaAFCjmcMLjcBLwXGO7Vm4gPFHcReKy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODY4Qy8zRkI5MzM2OEE5 REIxMUU5ODQyODUyODZDNEY5QUUwMi9LT1p3d3VOd0V2QmNZN3RXYmlBOFVkeEY0 ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tPWnd3dU53RXZCY1k3dFdiaUE4VWR4RjRySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTg2OEMvM0ZCOTMzNjhBOURCMTFFOTg0Mjg1Mjg2QzRGOUFFMDIvM0ZFODhEODYz RDgyMTFFRUEwRTRERDQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnBQAwDQQCAAIwBwMFACQDzQAwDQYJKoZIhvcNAQELBQAD ggEBAIIpPM+ARtXWtdJznNvs/V2a3El+U0sK7yRalunpZWWHMgjA5bv++hG3aMY/ rn9uFoGWXKRClYjhX6R3eIIfmyhCOt9tFgDMryGSWp6z1/FUgf58IauLBj5CyuJI eK4V4p06LtSt8YagnK2obujx6SCTX71jfiXffWQ9RCQAuaxCrELP1Wz4gYTISxHO 4VP2KL/nQy14ARrMkXTYZm+bqwbDh52hWDdFaEWpcIgUf/q2wF+aTZJX5Sv2jbGC +QV7K50YJResrgZghqGh70EoU4jKYGD6WjsBKiroVAx5Y2y0o34n667PGXiV9qLo ixJohC9F6Q5eFbCuXKc3Kr5/W/E= -----END CERTIFICATE-----Generated at Sun Jun 2 19:20:00 2024 by rpki-client on console-fra.rpki-client.org