$ rpki-client -vvf rpki.apnic.net/member_repository/A911DE88/4BFCA142C3EE11ED922A1154C4F9AE02/3D5EC616694B11EFABF9221EC4F9AE02.roa File: 3D5EC616694B11EFABF9221EC4F9AE02.roa (raw, json) Hash identifier: M+0mgI5Ut93Y6DOGad04m6fdax48NQUBHwqd8iGMoRw= Subject key identifier: 42:7D:7B:F1:DC:52:71:D4:70:7A:07:81:FB:08:10:00:87:FF:4B:5F Certificate issuer: /CN=A911DE88/serialNumber=BE3F8BDF81B66B4ED2E1C74EB5D5FB01B5F77641 Certificate serial: 0133 Authority key identifier: BE:3F:8B:DF:81:B6:6B:4E:D2:E1:C7:4E:B5:D5:FB:01:B5:F7:76:41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vj-L34G2a07S4cdOtdX7AbX3dkE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DE88/4BFCA142C3EE11ED922A1154C4F9AE02/3D5EC616694B11EFABF9221EC4F9AE02.roa Signing time: Mon 02 Sep 2024 16:50:12 +0000 ROA not before: Mon 02 Sep 2024 16:50:12 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 151477 IP address blocks: 103.112.43.0/24 maxlen: 24 2001:df2:1d40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DE88/4BFCA142C3EE11ED922A1154C4F9AE02/vj-L34G2a07S4cdOtdX7AbX3dkE.crl rsync://rpki.apnic.net/member_repository/A911DE88/4BFCA142C3EE11ED922A1154C4F9AE02/vj-L34G2a07S4cdOtdX7AbX3dkE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vj-L34G2a07S4cdOtdX7AbX3dkE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:40:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 307 (0x133) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DE88/serialNumber=BE3F8BDF81B66B4ED2E1C74EB5D5FB01B5F77641 Validity Not Before: Sep 2 16:50:12 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66d5ecc4-0f09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:33:c3:81:25:51:eb:74:36:d3:39:3d:d4:88: 40:8a:4e:70:4d:63:72:14:7f:86:f2:10:5b:2d:bb: a8:97:c1:88:37:f9:a1:1b:db:91:98:4a:56:3a:6b: f8:9d:fc:ce:a5:54:40:cb:39:06:e8:9b:f2:ea:27: 37:76:c0:91:12:23:0e:6a:33:b7:07:3b:fb:88:0d: 57:f8:7b:ba:98:c7:11:92:28:28:10:ed:51:e2:4e: b8:19:18:b5:85:77:02:d1:b7:e3:8a:a5:61:3e:d0: 56:bc:c8:31:03:f9:5f:a9:e8:37:f1:8c:1b:6a:31: 68:f3:fb:22:3e:c4:bc:3b:8f:af:58:6c:d4:62:a5: 65:2a:31:a5:99:a6:55:52:25:dd:71:6b:3a:6b:58: 27:18:ed:a0:24:e1:10:61:95:e3:aa:2e:66:57:53: ed:e4:32:66:6b:e2:aa:0b:3a:99:d5:23:6b:7c:ca: 6a:8c:b0:e2:ac:aa:3c:20:ea:f4:87:e7:c9:06:9e: b2:b0:04:b0:cc:9d:4a:62:19:97:60:79:c2:68:11: 9e:99:72:b9:ea:12:80:b7:58:ad:2c:b2:09:8e:52: d6:ab:71:dd:5c:c3:1b:b5:83:0d:60:e3:6a:06:db: 03:d5:0e:10:1a:bd:4b:74:8e:09:c6:ab:74:a3:a0: 17:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:7D:7B:F1:DC:52:71:D4:70:7A:07:81:FB:08:10:00:87:FF:4B:5F X509v3 Authority Key Identifier: keyid:BE:3F:8B:DF:81:B6:6B:4E:D2:E1:C7:4E:B5:D5:FB:01:B5:F7:76:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DE88/4BFCA142C3EE11ED922A1154C4F9AE02/vj-L34G2a07S4cdOtdX7AbX3dkE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vj-L34G2a07S4cdOtdX7AbX3dkE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DE88/4BFCA142C3EE11ED922A1154C4F9AE02/3D5EC616694B11EFABF9221EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.112.43.0/24 IPv6: 2001:df2:1d40::/48 Signature Algorithm: sha256WithRSAEncryption 4e:92:0b:ff:38:4d:ce:b1:40:d6:8e:76:a6:0c:82:ae:3c:25: 27:93:54:46:d7:8a:76:a8:f9:a7:a7:98:31:75:cb:b0:5f:63: 4f:6d:c0:39:51:af:79:2d:75:67:c8:b3:bb:91:86:8e:3f:3a: 15:3e:4f:b1:53:88:0e:6f:1e:8d:cd:78:b6:e6:08:95:6f:2e: e4:00:1e:88:73:be:fb:21:4a:e6:7c:92:1d:3f:64:32:3b:6a: ed:47:e5:31:bd:a9:a4:de:1c:54:e0:a4:f0:5e:4f:84:bb:95: 5c:87:7b:33:72:a9:2c:0f:46:08:80:ad:d4:4e:c5:fb:a2:73: 15:72:5e:68:4f:30:ef:97:47:3a:cd:12:91:38:ad:22:17:e7: a1:ff:65:a5:12:b6:4d:0f:86:fa:90:1b:27:f9:7c:64:19:f6: c2:c8:d1:c4:2c:4c:64:5d:b7:46:c1:16:05:c6:af:96:ab:85: fe:0b:2c:13:8d:49:4e:ac:fe:e6:2c:da:2b:5b:b3:4f:f3:23: ca:73:ce:aa:ce:b3:b6:3c:30:88:54:72:fe:7b:8c:81:a8:c3: 91:58:6c:61:db:84:48:95:c7:f9:3f:3e:fe:51:a6:b0:e9:8b: 5b:f0:20:42:12:a1:fc:86:c0:94:58:c4:03:6a:c3:58:5c:cc: 54:75:0f:c7 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICATMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURFODgxMTAvBgNVBAUTKEJFM0Y4QkRGODFCNjZCNEVEMkUxQzc0RUI1RDVGQjAx QjVGNzc2NDEwHhcNMjQwOTAyMTY1MDEyWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ1ZWNjNC0wZjA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAszPDgSVR63Q20zk91IhAik5wTWNyFH+G8hBbLbuol8GIN/mhG9uRmEpWOmv4 nfzOpVRAyzkG6Jvy6ic3dsCREiMOajO3Bzv7iA1X+Hu6mMcRkigoEO1R4k64GRi1 hXcC0bfjiqVhPtBWvMgxA/lfqeg38YwbajFo8/siPsS8O4+vWGzUYqVlKjGlmaZV UiXdcWs6a1gnGO2gJOEQYZXjqi5mV1Pt5DJma+KqCzqZ1SNrfMpqjLDirKo8IOr0 h+fJBp6ysASwzJ1KYhmXYHnCaBGemXK56hKAt1itLLIJjlLWq3HdXMMbtYMNYONq BtsD1Q4QGr1LdI4Jxqt0o6AXGwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFEJ9e/Hc UnHUcHoHgfsIEACH/0tfMB8GA1UdIwQYMBaAFL4/i9+BtmtO0uHHTrXV+wG193ZB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREU4OC80QkZDQTE0MkMz RUUxMUVEOTIyQTExNTRDNEY5QUUwMi92ai1MMzRHMmEwN1M0Y2RPdGRYN0FiWDNk a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZqLUwzNEcyYTA3UzRjZE90ZFg3QWJYM2RrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MURFODgvNEJGQ0ExNDJDM0VFMTFFRDkyMkExMTU0QzRGOUFFMDIvM0Q1RUM2MTY2 OTRCMTFFRkFCRjkyMjFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABncCswDwQCAAIwCQMHACABDfIdQDANBgkqhkiG9w0BAQsF AAOCAQEATpIL/zhNzrFA1o52pgyCrjwlJ5NURteKdqj5p6eYMXXLsF9jT23AOVGv eS11Z8izu5GGjj86FT5PsVOIDm8ejc14tuYIlW8u5AAeiHO++yFK5nySHT9kMjtq 7UflMb2ppN4cVOCk8F5PhLuVXId7M3KpLA9GCICt1E7F+6JzFXJeaE8w75dHOs0S kTitIhfnof9lpRK2TQ+G+pAbJ/l8ZBn2wsjRxCxMZF23RsEWBcavlquF/gssE41J Tqz+5izaK1uzT/MjynPOqs6ztjwwiFRy/nuMgajDkVhsYduESJXH+T8+/lGmsOmL W/AgQhKh/IbAlFjEA2rDWFzMVHUPxw== -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:35 2024 by rpki-client on console-ams.rpki-client.org