$ rpki-client -vvf rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/3A9B86AED0C011EEB134543DC4F9AE02.roa File: 3A9B86AED0C011EEB134543DC4F9AE02.roa (raw, json) Hash identifier: MYtW7jaPiaX/DhGKIM/d0LjNyF7kYZ3xOiGq3Jbn9nw= Subject key identifier: 5F:3B:00:20:C7:38:F8:21:D6:20:71:11:97:49:F2:0B:BC:FB:2F:F1 Certificate issuer: /CN=A911AE4D/serialNumber=B459B915D67B72D8335384202DBFBB39565C94D8 Certificate serial: 9A Authority key identifier: B4:59:B9:15:D6:7B:72:D8:33:53:84:20:2D:BF:BB:39:56:5C:94:D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tFm5FdZ7ctgzU4QgLb-7OVZclNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/3A9B86AED0C011EEB134543DC4F9AE02.roa Signing time: Wed 21 Feb 2024 13:50:53 +0000 ROA not before: Wed 21 Feb 2024 13:50:53 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 397423 IP address blocks: 103.120.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/tFm5FdZ7ctgzU4QgLb-7OVZclNg.crl rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/tFm5FdZ7ctgzU4QgLb-7OVZclNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tFm5FdZ7ctgzU4QgLb-7OVZclNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 06:47:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AE4D/serialNumber=B459B915D67B72D8335384202DBFBB39565C94D8 Validity Not Before: Feb 21 13:50:53 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=65d5ffbd-3013 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:fc:fe:40:d2:7b:fa:47:09:67:08:46:e0:2c: 56:c6:e7:eb:0a:58:19:cc:8d:e0:e9:d7:23:76:50: 9a:46:c8:23:ce:95:dc:82:b9:f1:db:0d:45:42:f6: 64:71:c8:14:c8:06:3b:89:ac:2a:86:38:20:96:40: 51:a5:83:39:81:89:8a:64:83:dc:dc:b0:66:4e:af: 7a:25:da:96:ef:3f:ec:50:cc:be:d2:0b:0a:76:0b: 94:0a:02:9a:4a:10:82:53:1d:57:10:8a:e6:e9:0d: 58:c1:5c:b2:a7:19:39:21:53:92:a9:aa:21:8f:48: b7:e3:7e:04:17:8b:c2:75:1f:8d:84:f9:b5:eb:04: 3e:87:d4:da:01:96:c9:98:82:a2:16:ea:08:14:49: 2f:1e:59:68:bd:16:ab:82:3c:21:cc:d6:1d:7a:67: 3b:a0:7f:ab:cb:5b:57:82:52:53:f8:e5:19:e7:b1: de:84:75:ba:18:6a:07:cb:56:b7:f3:26:51:4b:ad: 48:88:69:ae:fa:98:5b:6c:19:36:f8:1a:2a:5c:ce: d0:d6:4c:9d:c4:00:49:53:9a:5d:b2:7f:f4:6f:98: 8f:14:79:ba:80:6d:07:d0:e0:0a:2f:47:47:d7:82: fb:da:5e:91:1b:a8:ce:8f:77:98:f3:a4:b4:35:ec: 98:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:3B:00:20:C7:38:F8:21:D6:20:71:11:97:49:F2:0B:BC:FB:2F:F1 X509v3 Authority Key Identifier: keyid:B4:59:B9:15:D6:7B:72:D8:33:53:84:20:2D:BF:BB:39:56:5C:94:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/tFm5FdZ7ctgzU4QgLb-7OVZclNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tFm5FdZ7ctgzU4QgLb-7OVZclNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/3A9B86AED0C011EEB134543DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.14.0/24 Signature Algorithm: sha256WithRSAEncryption d0:fb:03:6c:12:85:99:72:dd:43:c3:f3:d9:ef:7c:91:39:d3: 5e:a7:36:4a:08:4a:7d:f3:ca:5b:fb:c7:00:99:01:ea:b1:73: 42:16:7b:67:9d:cf:95:b1:62:80:23:b6:ae:b0:a2:85:cc:da: c7:0b:58:f0:3f:3e:0b:00:fb:bb:64:ff:f7:42:5e:12:d2:3c: f5:bb:53:f1:39:1f:f2:02:f7:8e:ef:b9:f6:99:bc:a3:da:19: 11:18:d0:53:bf:df:aa:c4:60:63:25:5f:ce:4a:b4:f8:80:6c: b2:5e:70:18:c9:ab:7b:be:ce:d6:e4:12:63:65:18:62:f4:cd: 79:4a:7c:1e:be:2f:c1:d3:71:88:97:d0:02:23:ea:73:d0:2e: a1:4b:84:3e:65:7e:fb:d4:c5:a0:67:12:5f:e7:b6:bc:b4:4a: a7:cf:0d:c1:76:23:c4:50:2a:a3:ee:fe:df:ad:6f:dc:05:2c: 70:b9:9f:7d:a6:4a:c9:6f:48:7a:fc:24:49:ec:de:45:3a:e5: da:24:fa:69:1a:74:45:89:35:6f:05:54:1b:1a:3c:3e:b2:d1: f3:2b:93:ff:d8:64:f9:a1:1d:e6:2a:bc:c2:1e:f4:ab:2c:6f: f6:44:fc:67:a6:f3:28:c8:c9:31:61:77:8b:5f:64:27:a8:17: 07:43:08:0d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFFNEQxMTAvBgNVBAUTKEI0NTlCOTE1RDY3QjcyRDgzMzUzODQyMDJEQkZCQjM5 NTY1Qzk0RDgwHhcNMjQwMjIxMTM1MDUzWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWQ1ZmZiZC0zMDEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt/z+QNJ7+kcJZwhG4CxWxufrClgZzI3g6dcjdlCaRsgjzpXcgrnx2w1FQvZk ccgUyAY7iawqhjgglkBRpYM5gYmKZIPc3LBmTq96JdqW7z/sUMy+0gsKdguUCgKa ShCCUx1XEIrm6Q1YwVyypxk5IVOSqaohj0i3434EF4vCdR+NhPm16wQ+h9TaAZbJ mIKiFuoIFEkvHllovRargjwhzNYdemc7oH+ry1tXglJT+OUZ57HehHW6GGoHy1a3 8yZRS61IiGmu+phbbBk2+BoqXM7Q1kydxABJU5pdsn/0b5iPFHm6gG0H0OAKL0dH 14L72l6RG6jOj3eY86S0NeyYxwIDAQABo4IClTCCApEwHQYDVR0OBBYEFF87ACDH OPgh1iBxEZdJ8gu8+y/xMB8GA1UdIwQYMBaAFLRZuRXWe3LYM1OEIC2/uzlWXJTY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUU0RC81N0MzN0UzODBB NTcxMUVFOEM2MzVBNDZDNEY5QUUwMi90Rm01RmRaN2N0Z3pVNFFnTGItN09WWmNs TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RGbTVGZFo3Y3RnelU0UWdMYi03T1ZaY2xOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUFFNEQvNTdDMzdFMzgwQTU3MTFFRThDNjM1QTQ2QzRGOUFFMDIvM0E5Qjg2QUVE MEMwMTFFRUIxMzQ1NDNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABneA4wDQYJKoZIhvcNAQELBQADggEBAND7A2wShZly3UPD 89nvfJE5016nNkoISn3zylv7xwCZAeqxc0IWe2edz5WxYoAjtq6wooXM2scLWPA/ PgsA+7tk//dCXhLSPPW7U/E5H/IC947vufaZvKPaGREY0FO/36rEYGMlX85KtPiA bLJecBjJq3u+ztbkEmNlGGL0zXlKfB6+L8HTcYiX0AIj6nPQLqFLhD5lfvvUxaBn El/ntry0SqfPDcF2I8RQKqPu/t+tb9wFLHC5n32mSslvSHr8JEns3kU65dok+mka dEWJNW8FVBsaPD6y0fMrk//YZPmhHeYqvMIe9Kssb/ZE/Gem8yjIyTFhd4tfZCeo FwdDCA0= -----END CERTIFICATE-----Generated at Fri May 3 08:21:07 2024 by rpki-client on console-ams.rpki-client.org