$ rpki-client -vvf rpki.apnic.net/member_repository/A9112707/B4ACE16470B611E49CCAF16FC4F9AE02/3AB3F80E578611EA8CC3B124C4F9AE02.roa File: 3AB3F80E578611EA8CC3B124C4F9AE02.roa (raw, json) Hash identifier: ewBco8gqchgAZcgf6OAk2yT9BaA4NqBATGQ+Jh1fnx8= Subject key identifier: 68:BA:E9:CD:AD:87:05:96:9C:50:29:E4:8D:6A:30:9B:ED:0F:64:8B Certificate issuer: /CN=A9112707/serialNumber=C1E227651ADA3BFBC18771AEC8B60026723B60AD Certificate serial: 27EE Authority key identifier: C1:E2:27:65:1A:DA:3B:FB:C1:87:71:AE:C8:B6:00:26:72:3B:60:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/weInZRraO_vBh3GuyLYAJnI7YK0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112707/B4ACE16470B611E49CCAF16FC4F9AE02/3AB3F80E578611EA8CC3B124C4F9AE02.roa Signing time: Wed 06 Dec 2023 16:02:18 +0000 ROA not before: Wed 06 Dec 2023 16:02:18 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 16509 IP address blocks: 103.43.38.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112707/B4ACE16470B611E49CCAF16FC4F9AE02/weInZRraO_vBh3GuyLYAJnI7YK0.crl rsync://rpki.apnic.net/member_repository/A9112707/B4ACE16470B611E49CCAF16FC4F9AE02/weInZRraO_vBh3GuyLYAJnI7YK0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/weInZRraO_vBh3GuyLYAJnI7YK0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:32:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10222 (0x27ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112707/serialNumber=C1E227651ADA3BFBC18771AEC8B60026723B60AD Validity Not Before: Dec 6 16:02:18 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65709b09-110d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:8e:9a:e7:59:94:72:9e:a8:68:7b:90:e2:ec: c3:02:ea:63:ac:bc:89:65:58:fa:63:52:f3:38:65: ae:b6:ef:5b:84:b0:df:d8:3c:10:8e:d4:54:e0:be: 85:8e:f5:84:7e:86:ce:18:e1:17:0a:7e:2c:87:13: 97:af:19:94:ae:35:85:37:09:97:ed:89:db:43:3a: 31:fb:ba:22:12:62:1a:63:94:a1:d4:79:c2:ce:58: ec:34:da:8a:95:b7:5b:94:e8:fa:b5:b7:3d:ab:71: 7a:a9:96:61:14:54:fc:85:89:fa:b9:b3:47:22:3b: b2:1d:5a:7e:d7:41:26:84:79:01:fc:16:11:3e:25: 58:b0:5b:3e:76:22:67:ec:a9:f2:a5:10:cd:22:27: a7:95:05:4e:80:33:a5:cf:4e:98:b4:b4:8a:fd:6a: 91:93:e1:1d:7f:fc:75:7c:89:b0:e4:2c:11:95:73: dd:85:9d:9f:a8:41:cf:6c:3d:b4:2f:a5:cb:ec:7a: 56:5b:50:00:e8:9b:99:98:cc:7e:37:82:5f:7c:80: 4b:8d:00:0a:3c:9f:b8:37:7e:3d:f0:26:1e:ba:c1: 56:a9:db:da:45:40:98:63:c0:9d:2b:2e:80:3d:c1: 46:8a:d0:84:89:18:6a:c5:ca:25:dc:3f:26:41:9e: 00:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:BA:E9:CD:AD:87:05:96:9C:50:29:E4:8D:6A:30:9B:ED:0F:64:8B X509v3 Authority Key Identifier: keyid:C1:E2:27:65:1A:DA:3B:FB:C1:87:71:AE:C8:B6:00:26:72:3B:60:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112707/B4ACE16470B611E49CCAF16FC4F9AE02/weInZRraO_vBh3GuyLYAJnI7YK0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/weInZRraO_vBh3GuyLYAJnI7YK0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112707/B4ACE16470B611E49CCAF16FC4F9AE02/3AB3F80E578611EA8CC3B124C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.43.38.0/23 Signature Algorithm: sha256WithRSAEncryption 29:a3:58:21:55:fd:26:c1:c4:f0:f0:bf:1a:ad:82:28:19:5f: 50:c3:26:85:0e:98:ef:b9:1d:6a:3d:c8:da:2f:fe:f8:c8:23: a8:ba:00:4c:b6:55:53:c1:b5:f3:73:71:69:6a:a9:fd:d3:2e: 7e:95:6e:76:ef:ee:ca:e6:96:70:84:46:3a:81:8f:3d:4e:e6: 6c:2d:22:c9:55:da:04:4a:23:3c:88:43:bb:14:c9:d9:6f:7c: 4c:f9:17:26:53:9f:48:ce:ac:4d:b2:e4:fa:c8:43:f0:5d:dc: 3f:2e:8c:b9:03:41:d2:39:b3:a7:56:a1:6f:ff:cc:58:4b:50: 64:e4:0b:3c:75:26:a1:1b:8e:e2:45:3d:b8:7a:01:f1:75:59: 00:71:15:69:16:c6:c0:0f:d6:0e:a0:dc:86:d9:a7:0a:7b:11: 6e:c3:c5:49:a4:20:10:e7:e3:45:a8:c1:35:71:e7:29:e6:43: a5:b5:fb:35:73:ae:38:c0:25:03:14:1d:5f:b4:51:ac:7e:bb: 57:f1:98:96:8b:7b:fd:de:27:c7:87:45:60:7e:81:b2:67:66: 4f:64:15:9c:2d:0f:64:f4:d1:45:f8:41:f2:5e:3f:e9:9d:fd: 6b:77:cb:0a:a1:cd:85:ce:cd:d1:79:35:fa:8f:c4:3e:db:87: 50:f0:39:7e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJ+4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI3MDcxMTAvBgNVBAUTKEMxRTIyNzY1MUFEQTNCRkJDMTg3NzFBRUM4QjYwMDI2 NzIzQjYwQUQwHhcNMjMxMjA2MTYwMjE4WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTcwOWIwOS0xMTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsI6a51mUcp6oaHuQ4uzDAupjrLyJZVj6Y1LzOGWutu9bhLDf2DwQjtRU4L6F jvWEfobOGOEXCn4shxOXrxmUrjWFNwmX7YnbQzox+7oiEmIaY5Sh1HnCzljsNNqK lbdblOj6tbc9q3F6qZZhFFT8hYn6ubNHIjuyHVp+10EmhHkB/BYRPiVYsFs+diJn 7KnypRDNIienlQVOgDOlz06YtLSK/WqRk+Edf/x1fImw5CwRlXPdhZ2fqEHPbD20 L6XL7HpWW1AA6JuZmMx+N4JffIBLjQAKPJ+4N3498CYeusFWqdvaRUCYY8CdKy6A PcFGitCEiRhqxcol3D8mQZ4A7wIDAQABo4IClTCCApEwHQYDVR0OBBYEFGi66c2t hwWWnFAp5I1qMJvtD2SLMB8GA1UdIwQYMBaAFMHiJ2Ua2jv7wYdxrsi2ACZyO2Ct MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjcwNy9CNEFDRTE2NDcw QjYxMUU0OUNDQUYxNkZDNEY5QUUwMi93ZUluWlJyYU9fdkJoM0d1eUxZQUpuSTdZ SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dlSW5aUnJhT192QmgzR3V5TFlBSm5JN1lLMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTI3MDcvQjRBQ0UxNjQ3MEI2MTFFNDlDQ0FGMTZGQzRGOUFFMDIvM0FCM0Y4MEU1 Nzg2MTFFQThDQzNCMTI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnKyYwDQYJKoZIhvcNAQELBQADggEBACmjWCFV/SbBxPDw vxqtgigZX1DDJoUOmO+5HWo9yNov/vjII6i6AEy2VVPBtfNzcWlqqf3TLn6Vbnbv 7srmlnCERjqBjz1O5mwtIslV2gRKIzyIQ7sUydlvfEz5FyZTn0jOrE2y5PrIQ/Bd 3D8ujLkDQdI5s6dWoW//zFhLUGTkCzx1JqEbjuJFPbh6AfF1WQBxFWkWxsAP1g6g 3IbZpwp7EW7DxUmkIBDn40WowTVx5ynmQ6W1+zVzrjjAJQMUHV+0Uax+u1fxmJaL e/3eJ8eHRWB+gbJnZk9kFZwtD2T00UX4QfJeP+md/Wt3ywqhzYXOzdF5NfqPxD7b h1DwOX4= -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:02 2024 by rpki-client on console-ams.rpki-client.org