$ rpki-client -vvf rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/3DA6569E383A11EF8998A252C4F9AE02.roa File: 3DA6569E383A11EF8998A252C4F9AE02.roa (raw, json) Hash identifier: PvqaT2m26VjtkGuTElfQIOHqKDs1V4TPHM7KOHfBUSM= Subject key identifier: 17:9D:90:8D:C6:87:72:FC:E8:EA:8A:99:FC:46:CA:E5:2D:42:5B:B7 Certificate issuer: /CN=A911AE4D/serialNumber=B459B915D67B72D8335384202DBFBB39565C94D8 Certificate serial: 0100 Authority key identifier: B4:59:B9:15:D6:7B:72:D8:33:53:84:20:2D:BF:BB:39:56:5C:94:D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tFm5FdZ7ctgzU4QgLb-7OVZclNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/3DA6569E383A11EF8998A252C4F9AE02.roa Signing time: Tue 27 Aug 2024 05:18:44 +0000 ROA not before: Tue 27 Aug 2024 05:18:44 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 152700 IP address blocks: 103.120.12.0/24 maxlen: 24 103.120.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/tFm5FdZ7ctgzU4QgLb-7OVZclNg.crl rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/tFm5FdZ7ctgzU4QgLb-7OVZclNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tFm5FdZ7ctgzU4QgLb-7OVZclNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 256 (0x100) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AE4D Validity Not Before: Aug 27 05:18:44 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66cd61b3-3e15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:cd:c1:a0:f6:06:66:e2:98:aa:0f:c9:80:9e: 68:6b:39:b2:2b:06:62:cd:5d:be:6a:2b:27:fe:c9: ff:f8:a3:f8:af:a8:5a:17:82:7a:de:05:d6:4b:14: b1:ae:64:fd:4b:69:67:83:af:72:7d:34:1a:02:e3: 2c:c8:83:25:41:3c:6f:82:12:cf:c7:63:e9:c5:49: 33:d2:a4:51:74:27:07:e1:d2:e6:75:e6:16:f1:a7: cb:c8:81:67:5a:25:0d:9a:ee:8b:53:d6:5d:fd:da: 32:21:68:d8:33:45:41:70:1a:22:19:d1:39:ff:cf: e5:8e:6c:41:de:c1:65:0a:68:7b:f9:4c:cd:fd:ca: 77:dd:5a:3a:66:c5:aa:ba:44:1f:52:61:09:7c:c0: 55:00:0e:ea:68:39:8d:ef:b9:7e:2d:3c:37:b2:8d: b9:e6:7b:4f:91:32:f6:bd:49:47:97:c1:17:6f:b5: 7d:64:70:fc:dc:f5:a8:ca:02:5f:a4:69:8d:2e:55: a7:74:fb:b9:65:3a:39:43:9b:de:9d:ea:9b:72:cf: 47:95:19:6f:b0:f0:a0:c9:0c:d0:2b:74:df:1f:61: 1e:93:23:9c:06:1e:20:84:c7:78:b0:87:63:64:d2: af:44:bb:d6:b7:1f:a3:bd:36:cf:0a:32:09:70:41: a5:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:9D:90:8D:C6:87:72:FC:E8:EA:8A:99:FC:46:CA:E5:2D:42:5B:B7 X509v3 Authority Key Identifier: keyid:B4:59:B9:15:D6:7B:72:D8:33:53:84:20:2D:BF:BB:39:56:5C:94:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/tFm5FdZ7ctgzU4QgLb-7OVZclNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tFm5FdZ7ctgzU4QgLb-7OVZclNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AE4D/57C37E380A5711EE8C635A46C4F9AE02/3DA6569E383A11EF8998A252C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.12.0/24 103.120.15.0/24 Signature Algorithm: sha256WithRSAEncryption 00:5e:57:02:a3:90:bb:2d:3c:02:ba:f3:23:5f:15:56:b2:6f: 8f:96:bf:ff:b5:1f:99:75:30:1f:2d:4c:af:78:2e:8e:c8:0e: 47:e4:f6:55:b2:9c:5d:70:12:44:d7:bc:71:f1:d3:4d:b9:05: e6:54:7b:2b:ee:4f:43:b2:c2:9b:a9:62:1f:33:4f:d7:ae:d5: 09:30:76:30:b6:35:37:da:cf:d4:65:9b:a5:61:3a:a4:58:16: 49:f1:6c:b0:cd:00:52:10:aa:1c:1a:18:6b:51:80:56:37:0b: ae:ce:77:bd:24:02:ea:90:79:68:e4:ea:b6:34:52:fb:ca:38: 8e:68:ed:e1:c5:f7:68:ea:cf:ed:2a:2f:33:77:68:67:ea:56: 6c:f2:3b:ef:dd:68:8c:a6:7c:e2:5e:8a:12:47:d3:2d:47:7b: 3f:b9:df:cf:6d:af:2f:72:87:ed:f8:e0:a9:e3:d8:52:a1:3c: 5d:75:1a:97:c8:74:c3:ba:ce:10:74:15:4a:e8:04:c5:2d:41: 96:9f:79:ef:6d:4a:77:f9:f5:df:8f:ef:96:84:b9:b1:c0:ee: f8:49:7a:eb:4b:f9:e8:31:ea:3a:9f:5a:e2:1e:7f:8d:f7:f0: 38:f3:da:a4:a1:43:68:41:61:a4:12:ba:ea:cb:bc:38:70:53: f7:4d:48:33 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFFNEQxMTAvBgNVBAUTKEI0NTlCOTE1RDY3QjcyRDgzMzUzODQyMDJEQkZCQjM5 NTY1Qzk0RDgwHhcNMjQwODI3MDUxODQ0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmNkNjFiMy0zZTE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsc3BoPYGZuKYqg/JgJ5oazmyKwZizV2+aisn/sn/+KP4r6haF4J63gXWSxSx rmT9S2lng69yfTQaAuMsyIMlQTxvghLPx2PpxUkz0qRRdCcH4dLmdeYW8afLyIFn WiUNmu6LU9Zd/doyIWjYM0VBcBoiGdE5/8/ljmxB3sFlCmh7+UzN/cp33Vo6ZsWq ukQfUmEJfMBVAA7qaDmN77l+LTw3so255ntPkTL2vUlHl8EXb7V9ZHD83PWoygJf pGmNLlWndPu5ZTo5Q5veneqbcs9HlRlvsPCgyQzQK3TfH2EekyOcBh4ghMd4sIdj ZNKvRLvWtx+jvTbPCjIJcEGlwQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBedkI3G h3L86OqKmfxGyuUtQlu3MB8GA1UdIwQYMBaAFLRZuRXWe3LYM1OEIC2/uzlWXJTY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUU0RC81N0MzN0UzODBB NTcxMUVFOEM2MzVBNDZDNEY5QUUwMi90Rm01RmRaN2N0Z3pVNFFnTGItN09WWmNs TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RGbTVGZFo3Y3RnelU0UWdMYi03T1ZaY2xOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUFFNEQvNTdDMzdFMzgwQTU3MTFFRThDNjM1QTQ2QzRGOUFFMDIvM0RBNjU2OUUz ODNBMTFFRjg5OThBMjUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABneAwDBABneA8wDQYJKoZIhvcNAQELBQADggEBAABeVwKj kLstPAK68yNfFVayb4+Wv/+1H5l1MB8tTK94Lo7IDkfk9lWynF1wEkTXvHHx0025 BeZUeyvuT0OywpupYh8zT9eu1QkwdjC2NTfaz9Rlm6VhOqRYFknxbLDNAFIQqhwa GGtRgFY3C67Od70kAuqQeWjk6rY0UvvKOI5o7eHF92jqz+0qLzN3aGfqVmzyO+/d aIymfOJeihJH0y1Hez+5389try9yh+344Knj2FKhPF11GpfIdMO6zhB0FUroBMUt QZafee9tSnf59d+P75aEubHA7vhJeutL+egx6jqfWuIef4338Djz2qShQ2hBYaQS uurLvDhwU/dNSDM= -----END CERTIFICATE-----Generated at Sun Feb 16 22:09:12 2025 by rpki-client