$ rpki-client -vvf rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/3A9B86AED0C011EEB134543DC4F9AE02.roa File: 3A9B86AED0C011EEB134543DC4F9AE02.roa (raw, json) Hash identifier: wrNQzAuRQVjZjCzpBxMXn6kt4KShOSGQnoTCPEIgheQ= Subject key identifier: 8D:A3:2B:5E:01:EC:3F:C7:13:D2:E5:02:1F:1F:DD:5A:DC:18:0B:14 Certificate issuer: /CN=A911AE4D/serialNumber=B459B915D67B72D8335384202DBFBB39565C94D8 Certificate serial: 0102 Authority key identifier: B4:59:B9:15:D6:7B:72:D8:33:53:84:20:2D:BF:BB:39:56:5C:94:D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tFm5FdZ7ctgzU4QgLb-7OVZclNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/3A9B86AED0C011EEB134543DC4F9AE02.roa Signing time: Tue 27 Aug 2024 05:18:46 +0000 ROA not before: Tue 27 Aug 2024 05:18:45 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 397423 IP address blocks: 103.120.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/tFm5FdZ7ctgzU4QgLb-7OVZclNg.crl rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/tFm5FdZ7ctgzU4QgLb-7OVZclNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tFm5FdZ7ctgzU4QgLb-7OVZclNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:09:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 258 (0x102) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AE4D/serialNumber=B459B915D67B72D8335384202DBFBB39565C94D8 Validity Not Before: Aug 27 05:18:45 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66cd61b5-23b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:66:ad:4c:1c:24:f6:f3:67:c1:01:66:39:f2: 3d:ca:2e:7e:e6:21:cf:82:02:e8:a1:73:cb:7d:1c: f6:c7:09:fe:ae:f2:49:ba:08:0f:5c:ba:05:c5:80: c2:d4:06:f1:85:02:c6:35:9e:10:0d:a1:36:46:6e: bd:2b:62:bc:21:40:79:1e:bc:3d:a6:88:a4:74:4e: 60:c3:b0:92:82:47:6a:0a:92:a9:b6:2b:10:0c:92: 23:d8:55:d3:94:44:89:3c:12:0a:55:b5:d2:ca:92: 83:cb:c7:af:8b:96:89:5b:31:2d:3e:55:28:45:b8: 7f:59:e9:b2:08:fc:4e:31:3f:91:9e:45:26:45:75: 48:0b:02:db:b4:19:47:c6:9a:2c:78:4c:86:62:27: d8:85:a6:77:d3:b7:a2:21:f9:e0:49:da:e9:b9:04: c4:94:f9:f4:e0:18:71:8a:a4:0c:fd:f1:4c:57:67: df:49:10:24:ec:cf:af:d3:ef:0a:b9:f6:b9:74:2c: c5:9c:25:c3:bd:87:ae:c9:56:b6:5c:d4:fb:35:6b: 8b:5d:ff:5d:04:e4:d8:96:af:fd:90:f7:39:72:34: a3:8d:c2:d1:76:af:6b:36:0e:3d:98:24:b5:7a:1b: 99:28:4d:74:d2:ba:73:6f:39:3a:07:06:40:58:64: a7:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:A3:2B:5E:01:EC:3F:C7:13:D2:E5:02:1F:1F:DD:5A:DC:18:0B:14 X509v3 Authority Key Identifier: keyid:B4:59:B9:15:D6:7B:72:D8:33:53:84:20:2D:BF:BB:39:56:5C:94:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/tFm5FdZ7ctgzU4QgLb-7OVZclNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tFm5FdZ7ctgzU4QgLb-7OVZclNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/3A9B86AED0C011EEB134543DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.14.0/24 Signature Algorithm: sha256WithRSAEncryption 90:f6:9a:27:dd:1c:de:cd:c9:83:5b:83:5c:ab:ae:26:52:72: a1:47:7a:d0:75:2d:90:6a:49:27:af:c3:09:71:ca:04:13:17: 5d:06:4a:6b:ec:4c:d1:b9:a9:b6:2f:8a:e3:43:3f:1a:81:68: 83:42:c7:3a:b2:a8:39:67:8d:ef:59:d3:96:b6:d8:6b:ab:3d: b7:f2:25:ab:0c:c3:9f:83:09:7a:f2:6c:5a:21:a3:b5:26:a2: 95:b1:cb:74:bf:8f:39:b4:16:3a:94:fb:74:34:6b:aa:09:e3: 6d:fe:ff:bf:1a:3f:b1:56:e9:cf:8b:d5:91:83:e2:d0:4f:32: b2:67:b5:f7:df:1e:35:4f:91:51:a8:ff:c9:66:67:c2:f7:56: b7:82:66:bc:58:aa:16:5d:b6:37:65:0f:94:fe:f0:f4:dc:b5: 79:01:37:af:2b:3e:a5:60:94:a7:16:4a:28:d9:7c:77:08:5e: 05:72:c7:c8:db:fd:74:a2:8a:7b:02:a3:04:7d:4a:50:a6:37: 1f:43:8b:d2:e2:df:b1:ef:32:f3:00:cb:58:6b:dc:e9:5f:20: a0:e0:ca:fb:41:16:33:61:ac:16:16:1b:02:b8:92:16:dd:4c: 12:ac:4e:39:77:62:9c:97:6b:39:bf:1d:70:2e:1e:c8:ba:b0: 47:3a:3b:14 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFFNEQxMTAvBgNVBAUTKEI0NTlCOTE1RDY3QjcyRDgzMzUzODQyMDJEQkZCQjM5 NTY1Qzk0RDgwHhcNMjQwODI3MDUxODQ1WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmNkNjFiNS0yM2IxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsGatTBwk9vNnwQFmOfI9yi5+5iHPggLooXPLfRz2xwn+rvJJuggPXLoFxYDC 1AbxhQLGNZ4QDaE2Rm69K2K8IUB5Hrw9poikdE5gw7CSgkdqCpKptisQDJIj2FXT lESJPBIKVbXSypKDy8evi5aJWzEtPlUoRbh/WemyCPxOMT+RnkUmRXVICwLbtBlH xposeEyGYifYhaZ307eiIfngSdrpuQTElPn04BhxiqQM/fFMV2ffSRAk7M+v0+8K ufa5dCzFnCXDvYeuyVa2XNT7NWuLXf9dBOTYlq/9kPc5cjSjjcLRdq9rNg49mCS1 ehuZKE100rpzbzk6BwZAWGSnOQIDAQABo4IClTCCApEwHQYDVR0OBBYEFI2jK14B 7D/HE9LlAh8f3VrcGAsUMB8GA1UdIwQYMBaAFLRZuRXWe3LYM1OEIC2/uzlWXJTY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUU0RC81N0MzN0UzODBB NTcxMUVFOEM2MzVBNDZDNEY5QUUwMi90Rm01RmRaN2N0Z3pVNFFnTGItN09WWmNs TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RGbTVGZFo3Y3RnelU0UWdMYi03T1ZaY2xOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUFFNEQvNTdDMzdFMzgwQTU3MTFFRThDNjM1QTQ2QzRGOUFFMDIvM0E5Qjg2QUVE MEMwMTFFRUIxMzQ1NDNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABneA4wDQYJKoZIhvcNAQELBQADggEBAJD2mifdHN7NyYNb g1yrriZScqFHetB1LZBqSSevwwlxygQTF10GSmvsTNG5qbYviuNDPxqBaINCxzqy qDlnje9Z05a22GurPbfyJasMw5+DCXrybFoho7UmopWxy3S/jzm0FjqU+3Q0a6oJ 423+/78aP7FW6c+L1ZGD4tBPMrJntfffHjVPkVGo/8lmZ8L3VreCZrxYqhZdtjdl D5T+8PTctXkBN68rPqVglKcWSijZfHcIXgVyx8jb/XSiinsCowR9SlCmNx9Di9Li 37HvMvMAy1hr3OlfIKDgyvtBFjNhrBYWGwK4khbdTBKsTjl3YpyXazm/HXAuHsi6 sEc6OxQ= -----END CERTIFICATE-----Generated at Thu Nov 21 05:05:53 2024 by rpki-client on console-fra.rpki-client.org