$ rpki-client -vvf rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/3ABFAC2231E211EFA341983CC4F9AE02.roa File: 3ABFAC2231E211EFA341983CC4F9AE02.roa (raw, json) Hash identifier: HLJ4E+O4+cyS3vrwMtki5z6A2KFnmKhIcHCO2Ezqz2E= Subject key identifier: 60:F0:02:21:2C:50:F0:9F:47:BD:75:80:0E:6F:6D:C3:8D:D8:1E:F4 Certificate issuer: /CN=A911AE4B/serialNumber=8236BBCD702D4822FDDD5BB05660CF1038EC8C7E Certificate serial: 0784 Authority key identifier: 82:36:BB:CD:70:2D:48:22:FD:DD:5B:B0:56:60:CF:10:38:EC:8C:7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gja7zXAtSCL93VuwVmDPEDjsjH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/3ABFAC2231E211EFA341983CC4F9AE02.roa Signing time: Mon 24 Jun 2024 04:28:39 +0000 ROA not before: Mon 24 Jun 2024 04:28:39 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 400619 IP address blocks: 103.151.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/gja7zXAtSCL93VuwVmDPEDjsjH4.crl rsync://rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/gja7zXAtSCL93VuwVmDPEDjsjH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gja7zXAtSCL93VuwVmDPEDjsjH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Sep 2024 20:56:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1924 (0x784) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AE4B/serialNumber=8236BBCD702D4822FDDD5BB05660CF1038EC8C7E Validity Not Before: Jun 24 04:28:39 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6678f5f7-8e74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:3d:e2:c5:8d:37:a8:64:7d:69:e9:fc:10:76: e0:1b:46:b4:11:9c:c8:1a:4b:76:db:23:18:b2:d1: a8:82:cc:e3:b7:34:53:79:4f:39:55:1b:d2:eb:84: 0b:c3:74:2a:8c:b7:f4:0f:5f:03:c0:e8:c6:15:5a: 0d:1e:e1:9f:1a:9d:b3:11:8e:7e:67:98:94:ad:94: 8e:65:9b:3d:7c:7c:10:bf:1d:9f:02:dc:da:8a:ba: 32:9f:22:64:23:3e:af:a8:ea:ec:4d:9a:19:84:cc: c7:49:73:f2:05:c2:63:88:fe:43:f5:85:c7:6e:d4: 5a:27:b9:13:11:3e:94:e2:c1:84:38:aa:5a:dc:28: bb:df:36:9f:6a:54:72:4a:b2:03:2a:c4:08:ad:b7: 1c:e1:f1:3b:8e:fd:92:12:c8:ec:89:60:3b:bf:bf: 90:34:f7:ea:0f:c3:46:57:ae:a0:e6:80:4c:0a:82: 7b:18:eb:ed:e6:f3:1c:3f:1d:b6:6c:e1:c5:a4:57: 9f:e2:f5:bb:38:c2:27:4c:39:47:03:96:02:21:45: b1:59:b2:8e:33:2e:f1:04:78:3f:75:44:82:8b:06: 23:f7:0b:b6:77:70:9f:55:93:35:78:07:47:a9:40: 4b:b9:2a:7a:11:95:b2:07:14:93:17:56:12:96:25: 8e:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:F0:02:21:2C:50:F0:9F:47:BD:75:80:0E:6F:6D:C3:8D:D8:1E:F4 X509v3 Authority Key Identifier: keyid:82:36:BB:CD:70:2D:48:22:FD:DD:5B:B0:56:60:CF:10:38:EC:8C:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/gja7zXAtSCL93VuwVmDPEDjsjH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gja7zXAtSCL93VuwVmDPEDjsjH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AE4B/24A68E9CD0E311EA9A73B94FC4F9AE02/3ABFAC2231E211EFA341983CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.117.0/24 Signature Algorithm: sha256WithRSAEncryption 69:20:f6:0d:21:57:45:92:ba:f1:9a:a7:7a:d3:ed:ec:b5:aa: 63:04:fc:29:40:a3:a4:d4:46:3b:ef:d0:5b:32:4c:6c:a1:ac: 94:c7:ea:6b:ef:d5:8b:5e:15:d4:11:84:9e:b7:b7:c7:52:1d: f3:6e:aa:05:cd:7b:eb:76:5a:55:cc:0a:d9:b2:ef:73:90:0e: 03:27:64:ff:6e:32:db:a2:8d:46:8e:20:d5:fa:34:39:57:cd: fb:ec:32:d4:6f:f6:a0:fd:22:12:29:0f:61:c1:6c:99:10:24: 1a:8f:bd:af:32:2f:6b:17:8f:a5:82:69:7b:7b:22:14:5d:43: 69:43:01:9c:83:f1:0c:98:4c:06:01:aa:e1:ff:d8:70:cc:ad: 6f:f0:73:eb:b9:dc:a0:7a:33:88:28:31:ee:53:92:a4:ce:00: fd:29:7c:6f:51:7e:36:cd:dd:d3:5e:f8:ee:7e:dd:cb:a2:64: ae:4e:fd:21:e3:df:08:6d:78:16:9b:2c:cb:ec:b1:d5:86:65: b1:0d:55:e8:f9:73:28:74:5a:63:6e:36:db:9c:5c:9a:04:77: 53:68:13:d3:66:7c:d6:a1:a5:c6:02:51:8b:c2:ab:d0:64:4c: 49:2d:99:84:83:0e:9b:f1:fc:e3:56:0b:a1:a3:c5:bc:e1:fe: c1:1c:e5:fa -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB4QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFFNEIxMTAvBgNVBAUTKDgyMzZCQkNENzAyRDQ4MjJGRERENUJCMDU2NjBDRjEw MzhFQzhDN0UwHhcNMjQwNjI0MDQyODM5WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njc4ZjVmNy04ZTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0T3ixY03qGR9aen8EHbgG0a0EZzIGkt22yMYstGogszjtzRTeU85VRvS64QL w3QqjLf0D18DwOjGFVoNHuGfGp2zEY5+Z5iUrZSOZZs9fHwQvx2fAtzairoynyJk Iz6vqOrsTZoZhMzHSXPyBcJjiP5D9YXHbtRaJ7kTET6U4sGEOKpa3Ci73zafalRy SrIDKsQIrbcc4fE7jv2SEsjsiWA7v7+QNPfqD8NGV66g5oBMCoJ7GOvt5vMcPx22 bOHFpFef4vW7OMInTDlHA5YCIUWxWbKOMy7xBHg/dUSCiwYj9wu2d3CfVZM1eAdH qUBLuSp6EZWyBxSTF1YSliWOeQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGDwAiEs UPCfR711gA5vbcON2B70MB8GA1UdIwQYMBaAFII2u81wLUgi/d1bsFZgzxA47Ix+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUU0Qi8yNEE2OEU5Q0Qw RTMxMUVBOUE3M0I5NEZDNEY5QUUwMi9namE3elhBdFNDTDkzVnV3Vm1EUEVEanNq SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dqYTd6WEF0U0NMOTNWdXdWbURQRURqc2pINC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUFFNEIvMjRBNjhFOUNEMEUzMTFFQTlBNzNCOTRGQzRGOUFFMDIvM0FCRkFDMjIz MUUyMTFFRkEzNDE5ODNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnl3UwDQYJKoZIhvcNAQELBQADggEBAGkg9g0hV0WSuvGa p3rT7ey1qmME/ClAo6TURjvv0FsyTGyhrJTH6mvv1YteFdQRhJ63t8dSHfNuqgXN e+t2WlXMCtmy73OQDgMnZP9uMtuijUaOINX6NDlXzfvsMtRv9qD9IhIpD2HBbJkQ JBqPva8yL2sXj6WCaXt7IhRdQ2lDAZyD8QyYTAYBquH/2HDMrW/wc+u53KB6M4go Me5TkqTOAP0pfG9RfjbN3dNe+O5+3cuiZK5O/SHj3whteBabLMvssdWGZbENVej5 cyh0WmNuNtucXJoEd1NoE9NmfNahpcYCUYvCq9BkTEktmYSDDpvx/ONWC6Gjxbzh /sEc5fo= -----END CERTIFICATE-----Generated at Wed Sep 18 21:54:35 2024 by rpki-client on console-fra.rpki-client.org