$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/3DC02FC0A7C011EEBACABC6FC4F9AE02.roa File: 3DC02FC0A7C011EEBACABC6FC4F9AE02.roa (raw, json) Hash identifier: +sKqxphwA1TMt+gFNlY/JFqz2M+7+ooTgIdSSkZeVeo= Subject key identifier: F5:5A:F0:F1:C6:B5:1A:5D:66:F1:2B:ED:24:B6:3C:92:52:A5:98:FB Certificate issuer: /CN=A91EAB64/serialNumber=20ED0AAB20750B8B27A86DF989A754BF5726DD7E Certificate serial: B0 Authority key identifier: 20:ED:0A:AB:20:75:0B:8B:27:A8:6D:F9:89:A7:54:BF:57:26:DD:7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/3DC02FC0A7C011EEBACABC6FC4F9AE02.roa Signing time: Fri 19 Apr 2024 03:35:19 +0000 ROA not before: Fri 19 Apr 2024 03:35:19 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 58715 IP address blocks: 103.179.126.0/24 maxlen: 24 103.179.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.crl rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 04:09:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 176 (0xb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAB64/serialNumber=20ED0AAB20750B8B27A86DF989A754BF5726DD7E Validity Not Before: Apr 19 03:35:19 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=6621e677-0db8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:38:26:02:ce:1c:eb:06:8d:54:ef:a8:a2:bc: 1c:f4:03:ff:10:6a:30:eb:a1:22:33:be:bb:94:21: 70:f9:eb:80:73:4b:5c:c5:76:b0:3e:5d:cb:8b:fc: 3e:48:74:df:34:6a:36:5c:90:17:04:63:78:ad:0f: 15:41:f5:9c:d4:cb:f8:59:88:53:61:20:f8:b1:b5: 33:59:ce:90:8a:fd:d3:cb:78:97:cc:5b:f9:02:2b: d4:35:dc:85:1b:9a:77:2a:98:51:69:58:88:e8:2b: d1:94:6c:fb:cb:15:17:7b:ab:68:39:f3:03:6a:a3: db:f2:c9:e4:69:ee:03:e3:ff:4c:8f:b3:1e:fb:74: f9:03:18:53:65:56:20:2b:65:42:a4:22:b6:a5:b6: a6:cb:ab:45:f0:6c:25:5d:e3:0d:c5:51:57:8c:46: 49:d8:07:6e:32:f6:fb:5e:b8:f7:57:bc:98:2b:29: 61:22:8e:0f:4e:89:e9:e1:da:58:61:86:91:7f:26: 71:e0:cf:a9:22:5f:e0:e2:67:a6:cd:84:54:99:5c: cf:cc:d8:3e:f8:24:80:42:70:8b:45:94:b6:cb:65: 98:70:63:b1:f9:9d:30:bc:c1:91:fd:a4:20:c8:f9: 82:5c:e5:2b:bc:b9:57:e6:a2:16:b9:81:72:67:f8: b8:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:5A:F0:F1:C6:B5:1A:5D:66:F1:2B:ED:24:B6:3C:92:52:A5:98:FB X509v3 Authority Key Identifier: keyid:20:ED:0A:AB:20:75:0B:8B:27:A8:6D:F9:89:A7:54:BF:57:26:DD:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/3DC02FC0A7C011EEBACABC6FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.179.126.0/23 Signature Algorithm: sha256WithRSAEncryption 03:8f:88:5c:f0:d5:55:9e:43:5b:5f:ba:59:b4:74:a9:7b:93: 75:ba:3c:e6:da:b0:90:1f:dd:3d:8a:85:7e:3d:12:2a:61:39: 66:da:c2:b1:59:29:de:60:09:a8:a2:7c:01:25:ef:66:13:43: 52:d0:ee:76:25:03:6a:11:71:59:1b:8c:e2:84:a2:eb:83:3c: 72:65:db:6b:59:d6:0b:3c:77:29:55:b3:41:f3:02:d0:90:21: 91:ca:e7:6b:34:a9:63:6d:39:0c:b7:ec:81:90:17:96:eb:c4: 02:c9:8d:c0:31:f1:62:c3:90:fc:75:77:d0:d6:85:62:af:5c: 3f:4b:94:68:cc:fd:9d:59:a8:8e:36:2d:eb:1b:56:f6:66:1d: 5e:52:d7:ce:ea:89:e4:0b:75:98:f6:f7:53:63:ba:37:ff:1f: c5:2d:3b:fe:c1:b3:2e:5e:92:33:2d:65:74:e0:fa:56:70:e3: cc:a7:fa:1e:80:05:c7:46:c4:be:79:fc:b9:e7:16:44:8a:4e: 6c:81:96:85:b4:c2:b4:63:f9:c4:b6:48:9e:73:30:cf:27:4d: 26:92:e5:45:db:d8:59:c7:55:33:30:69:4c:2e:9d:30:59:8f: bb:f5:f5:e2:38:fc:e4:75:f3:94:66:79:9d:b8:af:c3:c5:08: 42:22:28:46 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFCNjQxMTAvBgNVBAUTKDIwRUQwQUFCMjA3NTBCOEIyN0E4NkRGOTg5QTc1NEJG NTcyNkREN0UwHhcNMjQwNDE5MDMzNTE5WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjIxZTY3Ny0wZGI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAojgmAs4c6waNVO+oorwc9AP/EGow66EiM767lCFw+euAc0tcxXawPl3Li/w+ SHTfNGo2XJAXBGN4rQ8VQfWc1Mv4WYhTYSD4sbUzWc6Qiv3Ty3iXzFv5AivUNdyF G5p3KphRaViI6CvRlGz7yxUXe6toOfMDaqPb8snkae4D4/9Mj7Me+3T5AxhTZVYg K2VCpCK2pbamy6tF8GwlXeMNxVFXjEZJ2AduMvb7Xrj3V7yYKylhIo4PTonp4dpY YYaRfyZx4M+pIl/g4memzYRUmVzPzNg++CSAQnCLRZS2y2WYcGOx+Z0wvMGR/aQg yPmCXOUrvLlX5qIWuYFyZ/i4BwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPVa8PHG tRpdZvEr7SS2PJJSpZj7MB8GA1UdIwQYMBaAFCDtCqsgdQuLJ6ht+YmnVL9XJt1+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUI2NC85QjQ0RUI3NDhG MjkxMUVDQjZBNjk5NkNDNEY5QUUwMi9JTzBLcXlCMUM0c25xRzM1aWFkVXYxY20z WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lPMEtxeUIxQzRzbnFHMzVpYWRVdjFjbTNYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFCNjQvOUI0NEVCNzQ4RjI5MTFFQ0I2QTY5OTZDQzRGOUFFMDIvM0RDMDJGQzBB N0MwMTFFRUJBQ0FCQzZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFns34wDQYJKoZIhvcNAQELBQADggEBAAOPiFzw1VWeQ1tf ulm0dKl7k3W6PObasJAf3T2KhX49EiphOWbawrFZKd5gCaiifAEl72YTQ1LQ7nYl A2oRcVkbjOKEouuDPHJl22tZ1gs8dylVs0HzAtCQIZHK52s0qWNtOQy37IGQF5br xALJjcAx8WLDkPx1d9DWhWKvXD9LlGjM/Z1ZqI42LesbVvZmHV5S187qieQLdZj2 91Njujf/H8UtO/7Bsy5ekjMtZXTg+lZw48yn+h6ABcdGxL55/LnnFkSKTmyBloW0 wrRj+cS2SJ5zMM8nTSaS5UXb2FnHVTMwaUwunTBZj7v19eI4/OR185RmeZ24r8PF CEIiKEY= -----END CERTIFICATE-----Generated at Sat Jun 1 04:59:08 2024 by rpki-client on console-fra.rpki-client.org