$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/395AFD84135811EB942A3E15C4F9AE02.roa File: 395AFD84135811EB942A3E15C4F9AE02.roa (raw, json) Hash identifier: +nVGHDmFpNMeCZK4D+EYT1WCdxSsITi4ixDFG3tX1xc= Subject key identifier: 09:07:1E:38:82:3C:79:5A:FA:03:95:13:CB:B1:4D:05:19:D6:0B:7F Certificate issuer: /CN=A91F4F00/serialNumber=2B3EE44EA9CB5B81296BB67DF0F546F8AAC8A4B4 Certificate serial: 0718 Authority key identifier: 2B:3E:E4:4E:A9:CB:5B:81:29:6B:B6:7D:F0:F5:46:F8:AA:C8:A4:B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/395AFD84135811EB942A3E15C4F9AE02.roa Signing time: Sat 02 Nov 2024 21:40:28 +0000 ROA not before: Sat 02 Nov 2024 21:40:28 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 138214 IP address blocks: 103.122.88.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1816 (0x718) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4F00/serialNumber=2B3EE44EA9CB5B81296BB67DF0F546F8AAC8A4B4 Validity Not Before: Nov 2 21:40:28 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67269c4c-d89d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:aa:55:3b:fe:14:f1:69:cc:61:1a:b8:c1:c0: 63:0b:a3:b9:aa:91:b3:25:8c:c1:c9:a1:89:16:8b: ec:cd:d9:c2:5a:25:8a:63:73:6b:45:74:8f:58:30: c5:5c:d1:57:a3:28:3d:81:0b:c9:bd:78:41:80:cc: 56:ae:a1:43:71:11:97:4a:41:7c:54:b4:da:d0:78: c2:09:93:9a:ba:4c:7f:d9:3e:d6:54:73:29:d5:b9: 8a:c6:8e:58:93:53:23:75:f7:b9:ab:b5:1c:88:d3: c0:34:12:cb:ae:53:05:a6:10:aa:8f:66:62:cd:26: 34:9c:1c:98:b7:90:4e:8c:bc:e4:bd:c1:53:19:5b: 80:b3:f9:22:3c:35:6c:27:8e:e1:48:9b:94:3b:ac: 4d:43:82:c3:0f:9e:23:96:49:5a:83:86:e9:3b:e1: e9:75:24:07:30:bb:db:a5:df:55:f7:8f:9d:08:d7: 98:06:2b:0b:a0:47:aa:40:05:ff:ad:d7:99:e1:b8: 20:bd:1d:03:01:72:43:1e:12:23:48:bc:09:e3:2e: e6:81:a2:dd:b8:9d:54:e3:c1:4e:b1:a9:63:de:5d: d6:40:9a:d8:c7:8c:af:fe:aa:06:c0:a6:8e:13:aa: a8:39:91:5a:88:8e:79:8d:03:63:40:0a:3c:4c:6a: 91:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:07:1E:38:82:3C:79:5A:FA:03:95:13:CB:B1:4D:05:19:D6:0B:7F X509v3 Authority Key Identifier: keyid:2B:3E:E4:4E:A9:CB:5B:81:29:6B:B6:7D:F0:F5:46:F8:AA:C8:A4:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/395AFD84135811EB942A3E15C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.122.88.0/23 Signature Algorithm: sha256WithRSAEncryption 00:56:f2:3c:00:ea:49:1f:ae:64:b8:18:40:cf:02:75:c1:00: 4f:e7:1d:2c:15:23:96:31:de:af:d9:02:5b:71:71:61:6c:f7: bf:c3:b8:55:89:34:41:57:29:ac:13:97:2f:35:4e:61:e3:26: f5:f2:7c:c8:87:d9:c2:af:91:b4:3b:34:45:4c:55:f5:b0:79: 77:d1:89:00:13:25:dd:fe:a9:1e:e4:01:f2:74:6c:84:4e:dc: 43:3d:e7:d2:11:30:ef:3c:0a:6f:bd:90:dd:7b:20:48:f3:78: 93:70:10:30:32:90:9f:62:d7:14:25:1d:5c:65:89:26:36:15: 46:26:c7:a1:fa:31:f8:bd:7d:78:97:59:0b:df:6b:1f:54:f3: bc:bf:7c:48:f0:81:99:32:f2:26:61:37:a8:4e:0e:21:cf:16: 21:dd:00:3f:77:78:42:ce:44:fb:2f:b3:aa:cb:76:82:0f:08: 9e:d3:c4:56:45:2e:c0:9d:5b:58:2c:fc:b4:65:86:64:81:41: d2:2b:30:a7:d8:83:6a:9f:91:55:77:0a:5c:7b:b6:3a:df:55: b9:f5:8f:86:6b:8b:46:2d:fe:6e:61:f6:b0:f6:77:03:51:9f: 1f:5e:cb:ff:4e:84:d1:8b:45:a8:1a:7d:04:19:20:da:76:0d: 92:c4:cc:5f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBxgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRGMDAxMTAvBgNVBAUTKDJCM0VFNDRFQTlDQjVCODEyOTZCQjY3REYwRjU0NkY4 QUFDOEE0QjQwHhcNMjQxMTAyMjE0MDI4WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2OWM0Yy1kODlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3KpVO/4U8WnMYRq4wcBjC6O5qpGzJYzByaGJFovszdnCWiWKY3NrRXSPWDDF XNFXoyg9gQvJvXhBgMxWrqFDcRGXSkF8VLTa0HjCCZOaukx/2T7WVHMp1bmKxo5Y k1Mjdfe5q7UciNPANBLLrlMFphCqj2ZizSY0nByYt5BOjLzkvcFTGVuAs/kiPDVs J47hSJuUO6xNQ4LDD54jlklag4bpO+HpdSQHMLvbpd9V94+dCNeYBisLoEeqQAX/ rdeZ4bggvR0DAXJDHhIjSLwJ4y7mgaLduJ1U48FOsalj3l3WQJrYx4yv/qoGwKaO E6qoOZFaiI55jQNjQAo8TGqRkwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAkHHjiC PHla+gOVE8uxTQUZ1gt/MB8GA1UdIwQYMBaAFCs+5E6py1uBKWu2ffD1RviqyKS0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEYwMC8zREE2OTAxNjEz NTcxMUVCQTIzREE3MTRDNEY5QUUwMi9LejdrVHFuTFc0RXBhN1o5OFBWRy1Lcklw TFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t6N2tUcW5MVzRFcGE3Wjk4UFZHLUtySXBMUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjRGMDAvM0RBNjkwMTYxMzU3MTFFQkEyM0RBNzE0QzRGOUFFMDIvMzk1QUZEODQx MzU4MTFFQjk0MkEzRTE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnelgwDQYJKoZIhvcNAQELBQADggEBAABW8jwA6kkfrmS4 GEDPAnXBAE/nHSwVI5Yx3q/ZAltxcWFs97/DuFWJNEFXKawTly81TmHjJvXyfMiH 2cKvkbQ7NEVMVfWweXfRiQATJd3+qR7kAfJ0bIRO3EM959IRMO88Cm+9kN17IEjz eJNwEDAykJ9i1xQlHVxliSY2FUYmx6H6Mfi9fXiXWQvfax9U87y/fEjwgZky8iZh N6hODiHPFiHdAD93eELORPsvs6rLdoIPCJ7TxFZFLsCdW1gs/LRlhmSBQdIrMKfY g2qfkVV3Clx7tjrfVbn1j4Zri0Yt/m5h9rD2dwNRnx9ey/9OhNGLRagafQQZINp2 DZLEzF8= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:53 2024 by rpki-client on console-ams.rpki-client.org