$ rpki-client -vvf rpki.apnic.net/member_repository/A911849D/441A7264B66E11EA9B087247C4F9AE02/3AD34AA4B66F11EAAA29FB47C4F9AE02.roa File: 3AD34AA4B66F11EAAA29FB47C4F9AE02.roa (raw, json) Hash identifier: WjzW89/4SljG9UbpjM3OAjMCVBiPQFjT99+O9KpZA9g= Subject key identifier: F7:43:F7:EE:A0:F7:16:B0:4D:6A:A8:0E:69:BF:95:8F:62:95:65:4A Certificate issuer: /CN=A911849D/serialNumber=11C9727CA5292CE5DA5D70BA882BC2D643F41085 Certificate serial: 0846 Authority key identifier: 11:C9:72:7C:A5:29:2C:E5:DA:5D:70:BA:88:2B:C2:D6:43:F4:10:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EclyfKUpLOXaXXC6iCvC1kP0EIU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911849D/441A7264B66E11EA9B087247C4F9AE02/3AD34AA4B66F11EAAA29FB47C4F9AE02.roa Signing time: Fri 20 Sep 2024 21:11:30 +0000 ROA not before: Fri 20 Sep 2024 21:11:30 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 134521 IP address blocks: 103.35.124.0/24 maxlen: 24 103.35.125.0/24 maxlen: 24 103.35.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911849D/441A7264B66E11EA9B087247C4F9AE02/EclyfKUpLOXaXXC6iCvC1kP0EIU.crl rsync://rpki.apnic.net/member_repository/A911849D/441A7264B66E11EA9B087247C4F9AE02/EclyfKUpLOXaXXC6iCvC1kP0EIU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EclyfKUpLOXaXXC6iCvC1kP0EIU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2118 (0x846) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911849D/serialNumber=11C9727CA5292CE5DA5D70BA882BC2D643F41085 Validity Not Before: Sep 20 21:11:30 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66ede502-b48a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:ce:e4:87:5d:0d:26:b2:2c:98:26:85:c8:e7: 5f:43:bd:56:c1:cb:05:cf:24:38:c8:44:79:55:6a: 00:40:01:52:9a:e2:b1:aa:35:49:cd:55:82:a0:42: df:7b:f1:77:61:cb:7e:4d:28:6c:f5:3f:6f:3b:0a: 52:a1:4a:1f:b8:7e:ee:ce:9e:3b:a2:ef:e8:74:fa: cd:1c:94:d2:6a:40:e3:cc:85:24:2a:f0:f5:91:e8: 4a:77:cd:df:8c:13:e0:45:26:32:e3:10:80:8d:a0: 8b:f4:74:cb:33:b0:3b:06:76:b1:45:be:43:00:d6: 80:76:22:f1:af:92:ea:26:d8:bb:b6:7c:16:5b:bf: c6:cd:8d:6a:fd:af:98:08:a1:4f:74:bb:5d:a4:16: a2:90:b7:09:ac:cb:5d:16:05:99:47:05:0a:d9:62: 6d:a6:24:76:c7:ab:92:c6:af:39:7f:bd:c2:59:6d: 1d:e3:de:71:45:74:34:2f:c0:2f:a8:77:09:93:fd: e2:85:6b:ed:c3:33:f9:03:08:d7:50:5d:16:43:22: d4:fc:19:b4:4b:cd:c1:67:15:cb:39:a8:5d:d9:6c: 4e:e7:5b:5b:03:8b:4d:9f:f7:de:95:7a:cd:7e:12: 3c:10:65:d8:94:e5:61:e7:7e:5e:eb:f2:49:ba:29: 41:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:43:F7:EE:A0:F7:16:B0:4D:6A:A8:0E:69:BF:95:8F:62:95:65:4A X509v3 Authority Key Identifier: keyid:11:C9:72:7C:A5:29:2C:E5:DA:5D:70:BA:88:2B:C2:D6:43:F4:10:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911849D/441A7264B66E11EA9B087247C4F9AE02/EclyfKUpLOXaXXC6iCvC1kP0EIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EclyfKUpLOXaXXC6iCvC1kP0EIU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911849D/441A7264B66E11EA9B087247C4F9AE02/3AD34AA4B66F11EAAA29FB47C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.35.124.0/23 103.35.127.0/24 Signature Algorithm: sha256WithRSAEncryption 49:9b:fa:69:7f:9e:1c:fe:35:30:e4:94:84:19:9f:55:c5:4b: 91:dd:fa:55:cb:37:1b:45:88:f1:78:e4:2d:02:d0:5f:00:fe: 5e:65:e5:87:fc:be:ec:6d:28:9f:ea:b9:0d:5c:bf:a1:14:b2: d1:93:e8:8f:49:b6:66:9f:72:91:66:45:ce:cd:0c:8c:fd:a1: 5e:95:0a:4e:09:04:9e:6a:53:26:74:58:ae:1f:5f:3b:b6:72: 36:9c:9f:48:63:1a:8a:22:ed:35:98:47:f2:11:9b:d5:d4:73: a4:fc:a7:90:96:09:dc:83:bb:fb:a8:de:00:37:e2:5c:39:af: d7:6d:54:0e:06:38:08:f2:36:b9:43:07:a7:18:e9:99:97:a0: f1:de:8e:00:b3:55:d3:4e:be:f7:15:3b:8f:85:fc:df:28:49: dc:9a:7c:03:77:59:77:99:1d:30:59:f2:3b:10:b5:b8:a9:47: e9:df:af:aa:7a:da:55:e0:54:63:1c:97:84:4b:f4:ab:72:e9: a8:00:7d:b4:61:64:b6:d8:4d:c3:8c:db:b7:b2:e6:64:47:87: 09:4e:f7:ac:b7:22:0c:12:92:da:fe:ad:90:9f:59:6e:4d:3c: 6f:71:36:d7:f6:4a:ca:b4:85:8f:4f:2f:0b:5b:eb:51:ca:b7: c8:a5:e7:90 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg0OUQxMTAvBgNVBAUTKDExQzk3MjdDQTUyOTJDRTVEQTVENzBCQTg4MkJDMkQ2 NDNGNDEwODUwHhcNMjQwOTIwMjExMTMwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmVkZTUwMi1iNDhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7c7kh10NJrIsmCaFyOdfQ71WwcsFzyQ4yER5VWoAQAFSmuKxqjVJzVWCoELf e/F3Yct+TShs9T9vOwpSoUofuH7uzp47ou/odPrNHJTSakDjzIUkKvD1kehKd83f jBPgRSYy4xCAjaCL9HTLM7A7BnaxRb5DANaAdiLxr5LqJti7tnwWW7/GzY1q/a+Y CKFPdLtdpBaikLcJrMtdFgWZRwUK2WJtpiR2x6uSxq85f73CWW0d495xRXQ0L8Av qHcJk/3ihWvtwzP5AwjXUF0WQyLU/Bm0S83BZxXLOahd2WxO51tbA4tNn/felXrN fhI8EGXYlOVh535e6/JJuilBzwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPdD9+6g 9xawTWqoDmm/lY9ilWVKMB8GA1UdIwQYMBaAFBHJcnylKSzl2l1wuogrwtZD9BCF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODQ5RC80NDFBNzI2NEI2 NkUxMUVBOUIwODcyNDdDNEY5QUUwMi9FY2x5ZktVcExPWGFYWEM2aUN2QzFrUDBF SVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VjbHlmS1VwTE9YYVhYQzZpQ3ZDMWtQMEVJVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTg0OUQvNDQxQTcyNjRCNjZFMTFFQTlCMDg3MjQ3QzRGOUFFMDIvM0FEMzRBQTRC NjZGMTFFQUFBMjlGQjQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnI3wDBABnI38wDQYJKoZIhvcNAQELBQADggEBAEmb+ml/ nhz+NTDklIQZn1XFS5Hd+lXLNxtFiPF45C0C0F8A/l5l5Yf8vuxtKJ/quQ1cv6EU stGT6I9JtmafcpFmRc7NDIz9oV6VCk4JBJ5qUyZ0WK4fXzu2cjacn0hjGooi7TWY R/IRm9XUc6T8p5CWCdyDu/uo3gA34lw5r9dtVA4GOAjyNrlDB6cY6ZmXoPHejgCz VdNOvvcVO4+F/N8oSdyafAN3WXeZHTBZ8jsQtbipR+nfr6p62lXgVGMcl4RL9Kty 6agAfbRhZLbYTcOM27ey5mRHhwlO96y3IgwSktr+rZCfWW5NPG9xNtf2Ssq0hY9P Lwtb61HKt8il55A= -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:44 2024 by rpki-client on console-ams.rpki-client.org