$ rpki-client -vvf rpki.apnic.net/member_repository/A911849D/441A7264B66E11EA9B087247C4F9AE02/3AD34AA4B66F11EAAA29FB47C4F9AE02.roa File: 3AD34AA4B66F11EAAA29FB47C4F9AE02.roa (raw, json) Hash identifier: EQkdIXE9oGGaOVDVqrl5JyY1I+BIM2lR/j5wezDZbyw= Subject key identifier: E4:8A:E8:13:03:2B:7F:CD:C5:71:A4:D7:66:4C:30:D3:AB:F2:9D:AD Certificate issuer: /CN=A911849D/serialNumber=11C9727CA5292CE5DA5D70BA882BC2D643F41085 Certificate serial: 078B Authority key identifier: 11:C9:72:7C:A5:29:2C:E5:DA:5D:70:BA:88:2B:C2:D6:43:F4:10:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EclyfKUpLOXaXXC6iCvC1kP0EIU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911849D/441A7264B66E11EA9B087247C4F9AE02/3AD34AA4B66F11EAAA29FB47C4F9AE02.roa Signing time: Tue 26 Sep 2023 21:38:49 +0000 ROA not before: Tue 26 Sep 2023 21:38:49 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 134521 IP address blocks: 103.35.124.0/24 maxlen: 24 103.35.125.0/24 maxlen: 24 103.35.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911849D/441A7264B66E11EA9B087247C4F9AE02/EclyfKUpLOXaXXC6iCvC1kP0EIU.crl rsync://rpki.apnic.net/member_repository/A911849D/441A7264B66E11EA9B087247C4F9AE02/EclyfKUpLOXaXXC6iCvC1kP0EIU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EclyfKUpLOXaXXC6iCvC1kP0EIU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 01 Jul 2024 21:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1931 (0x78b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911849D/serialNumber=11C9727CA5292CE5DA5D70BA882BC2D643F41085 Validity Not Before: Sep 26 21:38:49 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65134f69-9bd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:44:d3:67:05:14:3f:2c:b7:9f:52:34:bd:30: 11:34:f5:00:ea:98:9d:32:01:03:ba:f9:b5:6a:95: 2c:44:32:5e:d5:cb:16:17:f7:f3:77:8a:f6:37:23: eb:76:41:ab:c5:b5:9b:0d:3c:da:7a:1b:e9:df:37: ae:a2:2d:fe:59:3f:2a:bc:f4:28:fb:00:e1:5c:8f: 65:cc:de:cd:5e:84:e2:83:5e:9f:55:43:4c:c1:54: 3b:a4:78:91:35:7a:13:b1:da:84:49:1f:36:62:14: da:0a:e0:51:20:b7:3b:90:cc:ae:61:88:83:9c:81: 80:70:52:f5:53:42:44:7c:a3:b3:69:25:98:1e:60: 23:13:53:e8:c2:be:1b:a4:8e:e0:6f:71:66:fa:bd: 83:14:5d:c6:22:02:f4:88:e5:40:7a:32:dd:03:48: d1:f3:15:53:9f:0f:1f:8e:22:55:b8:2b:98:fd:2f: 0a:a2:2a:df:c1:69:5d:1e:0a:1d:83:7a:23:1d:08: 54:38:0a:56:3e:18:1b:2a:9c:c7:55:db:f7:ed:8f: 46:f5:05:1b:5d:b2:51:00:a3:fd:c1:63:43:6f:1e: c9:92:07:8a:4e:1d:f1:28:b2:fd:b3:46:c4:a4:c6: 5e:4f:17:4d:c8:d2:e1:14:66:fd:ae:56:86:ac:90: a4:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:8A:E8:13:03:2B:7F:CD:C5:71:A4:D7:66:4C:30:D3:AB:F2:9D:AD X509v3 Authority Key Identifier: keyid:11:C9:72:7C:A5:29:2C:E5:DA:5D:70:BA:88:2B:C2:D6:43:F4:10:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911849D/441A7264B66E11EA9B087247C4F9AE02/EclyfKUpLOXaXXC6iCvC1kP0EIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EclyfKUpLOXaXXC6iCvC1kP0EIU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911849D/441A7264B66E11EA9B087247C4F9AE02/3AD34AA4B66F11EAAA29FB47C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.35.124.0/23 103.35.127.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:23:79:49:41:e0:c5:2e:07:d0:59:5c:db:01:79:51:ba:22: 96:6a:c2:f4:09:dd:a4:9f:aa:7c:64:75:ba:5b:4d:29:30:e2: 63:83:3e:61:dc:8a:e7:68:f4:30:1c:59:64:a4:2c:b6:f3:00: f8:ce:cf:91:0f:30:98:51:4e:b0:b3:f4:f9:bd:a1:58:a1:b5: d2:21:17:b4:81:48:02:6e:ce:31:93:99:6f:da:dc:c2:31:b3: 49:03:ed:80:02:b2:29:24:4d:3d:88:05:88:84:4a:2a:b2:31: 5d:43:d5:77:e0:36:89:8f:49:ae:ca:b1:a1:cb:46:ea:c4:f8: 78:02:19:98:26:06:e8:5d:15:61:50:6e:95:ec:23:93:de:9a: 72:29:b9:b3:65:15:58:e6:a0:ff:df:31:d7:ae:10:32:41:48: f0:33:48:f0:67:a2:c5:e2:df:86:da:05:7b:83:1d:c0:50:64: 0c:e1:28:f8:5e:98:fa:ca:07:42:3b:6f:d3:47:9a:af:84:3b: 9b:fd:15:17:51:cf:b8:c4:19:88:d5:60:e8:34:a8:2d:a1:2f: 73:80:28:d8:34:41:51:57:e7:32:38:7d:0e:c4:28:db:d0:83: cc:cc:fb:25:9d:0b:4a:44:e0:be:64:c2:ee:ec:e5:37:90:7a: f5:ea:78:ee -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICB4swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg0OUQxMTAvBgNVBAUTKDExQzk3MjdDQTUyOTJDRTVEQTVENzBCQTg4MkJDMkQ2 NDNGNDEwODUwHhcNMjMwOTI2MjEzODQ5WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTEzNGY2OS05YmQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0UTTZwUUPyy3n1I0vTARNPUA6pidMgEDuvm1apUsRDJe1csWF/fzd4r2NyPr dkGrxbWbDTzaehvp3zeuoi3+WT8qvPQo+wDhXI9lzN7NXoTig16fVUNMwVQ7pHiR NXoTsdqESR82YhTaCuBRILc7kMyuYYiDnIGAcFL1U0JEfKOzaSWYHmAjE1Powr4b pI7gb3Fm+r2DFF3GIgL0iOVAejLdA0jR8xVTnw8fjiJVuCuY/S8KoirfwWldHgod g3ojHQhUOApWPhgbKpzHVdv37Y9G9QUbXbJRAKP9wWNDbx7JkgeKTh3xKLL9s0bE pMZeTxdNyNLhFGb9rlaGrJCk+QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOSK6BMD K3/NxXGk12ZMMNOr8p2tMB8GA1UdIwQYMBaAFBHJcnylKSzl2l1wuogrwtZD9BCF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODQ5RC80NDFBNzI2NEI2 NkUxMUVBOUIwODcyNDdDNEY5QUUwMi9FY2x5ZktVcExPWGFYWEM2aUN2QzFrUDBF SVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VjbHlmS1VwTE9YYVhYQzZpQ3ZDMWtQMEVJVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTg0OUQvNDQxQTcyNjRCNjZFMTFFQTlCMDg3MjQ3QzRGOUFFMDIvM0FEMzRBQTRC NjZGMTFFQUFBMjlGQjQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnI3wDBABnI38wDQYJKoZIhvcNAQELBQADggEBAFsjeUlB 4MUuB9BZXNsBeVG6IpZqwvQJ3aSfqnxkdbpbTSkw4mODPmHciudo9DAcWWSkLLbz APjOz5EPMJhRTrCz9Pm9oVihtdIhF7SBSAJuzjGTmW/a3MIxs0kD7YACsikkTT2I BYiESiqyMV1D1XfgNomPSa7KsaHLRurE+HgCGZgmBuhdFWFQbpXsI5PemnIpubNl FVjmoP/fMdeuEDJBSPAzSPBnosXi34baBXuDHcBQZAzhKPhemPrKB0I7b9NHmq+E O5v9FRdRz7jEGYjVYOg0qC2hL3OAKNg0QVFX5zI4fQ7EKNvQg8zM+yWdC0pE4L5k wu7s5TeQevXqeO4= -----END CERTIFICATE-----Generated at Tue Jun 25 00:54:57 2024 by rpki-client on console-ams.rpki-client.org