$ rpki-client -vvf rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/3DE0E9065F0811EDB42DC97FC4F9AE02.roa File: 3DE0E9065F0811EDB42DC97FC4F9AE02.roa (raw, json) Hash identifier: MoE7MEPCOyGB/9EMlTXV0tN9ZG/UinteAkee65hBGJ0= Subject key identifier: A5:2B:60:78:7E:5E:C5:30:E1:2C:61:01:A2:A2:E9:42:C4:6B:3F:11 Certificate issuer: /CN=A911EA27/serialNumber=BC862141309716C0E4DC37DFFF33E5AB0C554AD0 Certificate serial: 017D Authority key identifier: BC:86:21:41:30:97:16:C0:E4:DC:37:DF:FF:33:E5:AB:0C:55:4A:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYhQTCXFsDk3Dff_zPlqwxVStA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/3DE0E9065F0811EDB42DC97FC4F9AE02.roa Signing time: Thu 03 Oct 2024 02:36:54 +0000 ROA not before: Thu 03 Oct 2024 02:36:54 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 149522 IP address blocks: 103.55.156.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.crl rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYhQTCXFsDk3Dff_zPlqwxVStA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:53:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 381 (0x17d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911EA27/serialNumber=BC862141309716C0E4DC37DFFF33E5AB0C554AD0 Validity Not Before: Oct 3 02:36:54 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=66fe0345-41af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d8:3b:23:1c:12:ec:b2:67:31:04:8f:8a:9c: 32:66:99:e8:5d:cc:86:76:ae:cb:32:dc:b1:5d:48: 4f:69:67:dc:3a:9b:4d:a3:8f:a9:19:6f:f3:f9:0f: 7d:a7:4e:b3:3f:10:6f:0c:cf:f7:56:ca:03:31:98: 6d:b8:d6:4f:8f:cb:47:18:8f:1d:b0:72:9b:02:a7: 55:d1:44:7e:4c:34:3b:f3:3a:d3:7e:03:93:61:aa: af:6a:ea:b7:24:c9:ea:1d:7b:6d:25:d7:1c:03:63: 59:24:0c:e6:f8:26:df:8f:f5:62:8d:e4:07:cc:2a: 1a:14:77:ed:4b:94:45:83:c6:b9:c3:a9:40:29:4d: 05:f1:1c:e4:7d:70:2f:72:e4:ac:b3:d0:23:e6:4f: fd:1e:a0:73:a8:68:56:f5:ab:ba:24:92:e1:db:95: 5e:d8:45:d9:2f:15:cd:2b:1f:2d:d8:0e:9a:c4:6c: 91:f4:5a:6d:13:d0:54:34:30:17:3b:53:07:91:4b: d0:01:70:c8:dd:00:63:f6:8d:6f:98:56:fc:9e:46: b6:34:3a:fa:00:37:06:1a:9b:e9:3f:7f:01:27:44: 06:2b:91:e4:da:3c:f4:f1:a6:85:45:98:da:bd:84: 1a:a5:98:c3:d2:70:b7:e8:94:23:0f:09:7b:9b:e0: 59:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:2B:60:78:7E:5E:C5:30:E1:2C:61:01:A2:A2:E9:42:C4:6B:3F:11 X509v3 Authority Key Identifier: keyid:BC:86:21:41:30:97:16:C0:E4:DC:37:DF:FF:33:E5:AB:0C:55:4A:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/vIYhQTCXFsDk3Dff_zPlqwxVStA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYhQTCXFsDk3Dff_zPlqwxVStA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911EA27/6A8BD08C446F11ED9095D565C4F9AE02/3DE0E9065F0811EDB42DC97FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.55.156.0/24 Signature Algorithm: sha256WithRSAEncryption 66:82:34:13:fd:cc:40:cc:7a:2c:7c:4e:20:ab:8f:56:02:3d: 40:0e:1c:da:d8:45:c9:96:a9:97:65:35:7d:c7:b8:65:d1:30: 67:cd:9f:6d:6d:54:6a:60:45:4c:b3:30:44:79:d8:f3:6d:fc: 50:96:3c:6e:48:84:56:0b:14:f3:39:01:1d:73:ee:9f:5a:a5: cc:c9:48:95:93:93:10:b5:c3:f5:11:ae:69:82:be:81:94:a1: 31:4d:fe:d9:fa:7c:d2:ad:c0:5d:f7:69:81:10:46:bf:5e:08: 22:cd:4e:2f:fd:f5:3e:1b:ef:4b:4a:6e:f1:7c:da:66:47:9b: ff:51:ee:c7:21:15:bd:ff:14:63:0b:37:c5:34:88:f2:6b:2a: a1:08:7b:75:d6:8c:ac:f3:af:7f:00:d3:6a:bf:94:8b:0e:b2: 2f:bc:4c:0f:3c:46:6b:88:47:4a:7e:98:20:21:05:70:cc:66: 84:57:72:83:d6:73:93:32:29:73:b7:2f:43:ed:01:a5:e0:a2: c1:c8:a5:53:ee:dd:ca:ad:f9:f4:c6:d2:e5:5f:ae:05:e4:f7: 1a:57:4d:e0:b2:4b:41:1f:48:45:d0:7e:7d:d5:f2:d3:a9:2d: 8b:c0:41:c7:ac:80:d8:05:93:bb:80:25:ec:a2:08:c5:d9:a2: 20:f2:bf:55 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUVBMjcxMTAvBgNVBAUTKEJDODYyMTQxMzA5NzE2QzBFNERDMzdERkZGMzNFNUFC MEM1NTRBRDAwHhcNMjQxMDAzMDIzNjU0WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZlMDM0NS00MWFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt9g7IxwS7LJnMQSPipwyZpnoXcyGdq7LMtyxXUhPaWfcOptNo4+pGW/z+Q99 p06zPxBvDM/3VsoDMZhtuNZPj8tHGI8dsHKbAqdV0UR+TDQ78zrTfgOTYaqvauq3 JMnqHXttJdccA2NZJAzm+Cbfj/VijeQHzCoaFHftS5RFg8a5w6lAKU0F8RzkfXAv cuSss9Aj5k/9HqBzqGhW9au6JJLh25Ve2EXZLxXNKx8t2A6axGyR9FptE9BUNDAX O1MHkUvQAXDI3QBj9o1vmFb8nka2NDr6ADcGGpvpP38BJ0QGK5Hk2jz08aaFRZja vYQapZjD0nC36JQjDwl7m+BZoQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKUrYHh+ XsUw4SxhAaKi6ULEaz8RMB8GA1UdIwQYMBaAFLyGIUEwlxbA5Nw33/8z5asMVUrQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRUEyNy82QThCRDA4QzQ0 NkYxMUVEOTA5NUQ1NjVDNEY5QUUwMi92SVloUVRDWEZzRGszRGZmX3pQbHF3eFZT dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZJWWhRVENYRnNEazNEZmZfelBscXd4VlN0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUVBMjcvNkE4QkQwOEM0NDZGMTFFRDkwOTVENTY1QzRGOUFFMDIvM0RFMEU5MDY1 RjA4MTFFREI0MkRDOTdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnN5wwDQYJKoZIhvcNAQELBQADggEBAGaCNBP9zEDMeix8 TiCrj1YCPUAOHNrYRcmWqZdlNX3HuGXRMGfNn21tVGpgRUyzMER52PNt/FCWPG5I hFYLFPM5AR1z7p9apczJSJWTkxC1w/URrmmCvoGUoTFN/tn6fNKtwF33aYEQRr9e CCLNTi/99T4b70tKbvF82mZHm/9R7schFb3/FGMLN8U0iPJrKqEIe3XWjKzzr38A 02q/lIsOsi+8TA88RmuIR0p+mCAhBXDMZoRXcoPWc5MyKXO3L0PtAaXgosHIpVPu 3cqt+fTG0uVfrgXk9xpXTeCyS0EfSEXQfn3V8tOpLYvAQcesgNgFk7uAJeyiCMXZ oiDyv1U= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:35 2024 by rpki-client on console-ams.rpki-client.org