$ rpki-client -vvf rpki.apnic.net/member_repository/A912A646/2F639EB0F58511EC87F6FE13C4F9AE02/38813674CA6811EE9891A565C4F9AE02.roa File: 38813674CA6811EE9891A565C4F9AE02.roa (raw, json) Hash identifier: VaWJ6J0IlQoYXLmwhQtNPeXFzSE+FlLg3wqm3Amu1U8= Subject key identifier: 3C:B5:2A:6C:AE:08:3E:60:2E:24:93:01:45:01:65:43:1A:F0:99:EB Certificate issuer: /CN=A912A646/serialNumber=3FB3582470ED03F19435E69B2C19B4074770F097 Certificate serial: 022B Authority key identifier: 3F:B3:58:24:70:ED:03:F1:94:35:E6:9B:2C:19:B4:07:47:70:F0:97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7NYJHDtA_GUNeabLBm0B0dw8Jc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A646/2F639EB0F58511EC87F6FE13C4F9AE02/38813674CA6811EE9891A565C4F9AE02.roa Signing time: Wed 17 Jul 2024 03:25:05 +0000 ROA not before: Wed 17 Jul 2024 03:25:05 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 58895 IP address blocks: 103.190.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A646/2F639EB0F58511EC87F6FE13C4F9AE02/P7NYJHDtA_GUNeabLBm0B0dw8Jc.crl rsync://rpki.apnic.net/member_repository/A912A646/2F639EB0F58511EC87F6FE13C4F9AE02/P7NYJHDtA_GUNeabLBm0B0dw8Jc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7NYJHDtA_GUNeabLBm0B0dw8Jc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 555 (0x22b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A646/serialNumber=3FB3582470ED03F19435E69B2C19B4074770F097 Validity Not Before: Jul 17 03:25:05 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66973991-e362 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:a3:37:af:1b:00:e7:fc:65:2f:5a:a2:85:b8: d1:4d:bf:65:3e:a6:16:55:22:ab:e6:13:9b:1a:a3: 42:36:78:18:8e:95:1e:4f:a8:3b:c0:a4:cd:a0:ec: fc:33:fd:7d:40:a8:09:6d:17:3e:f4:0b:c2:2a:f5: ad:36:81:67:43:97:56:30:d3:be:a1:87:75:e8:fc: b1:af:f3:30:cf:54:96:90:01:ab:1b:33:ff:59:e6: 8b:6b:fd:67:6e:3c:7d:13:8f:53:cc:41:db:3c:04: 4e:3d:0c:dc:2f:75:fb:73:65:b4:a1:b3:0a:83:90: e4:20:8a:b5:95:54:be:20:37:c9:6a:b0:5f:e1:b2: 21:90:b7:36:27:c7:74:26:bc:e7:f9:4e:a1:7a:e6: 4d:24:14:38:4d:42:fd:e8:5e:fd:c9:35:3e:74:1f: 9a:71:c7:18:27:7b:d2:43:a3:f5:9b:bb:28:03:d1: 91:d0:cc:ec:e5:7f:04:9f:fe:f7:a6:f2:87:aa:d9: 30:b5:93:38:2a:fd:df:f4:6e:0d:9d:bb:3d:64:75: e7:51:2d:e8:d8:9d:b9:c9:6d:4b:ec:f9:cd:c9:52: 90:14:49:c0:06:3f:33:45:f2:b7:d0:ba:cc:da:2f: b4:3c:1d:09:74:fb:3b:60:79:56:5b:6c:55:ba:cd: cc:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:B5:2A:6C:AE:08:3E:60:2E:24:93:01:45:01:65:43:1A:F0:99:EB X509v3 Authority Key Identifier: keyid:3F:B3:58:24:70:ED:03:F1:94:35:E6:9B:2C:19:B4:07:47:70:F0:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A646/2F639EB0F58511EC87F6FE13C4F9AE02/P7NYJHDtA_GUNeabLBm0B0dw8Jc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7NYJHDtA_GUNeabLBm0B0dw8Jc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A646/2F639EB0F58511EC87F6FE13C4F9AE02/38813674CA6811EE9891A565C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.190.23.0/24 Signature Algorithm: sha256WithRSAEncryption ae:c1:86:ac:7d:df:2f:d7:72:72:47:92:fe:0a:83:c7:bf:2d: fa:56:9a:1c:17:1e:ed:14:da:16:2c:7d:08:f8:f1:41:fe:e3: 4c:9c:70:7b:f4:34:64:48:4a:ec:bd:bf:27:c2:26:cb:8a:52: 4c:35:ce:ab:c0:84:f1:9c:fa:19:e5:28:98:14:fa:25:4b:54: cc:c9:ed:67:5b:f2:74:c9:d1:48:86:19:d9:71:67:be:53:c6: 97:99:98:a5:38:86:18:bd:c8:3b:81:76:c3:b8:7e:fa:40:06: 34:bc:73:a8:c8:b4:08:01:c6:1b:27:8e:d5:5b:83:82:44:d1: 89:15:b2:54:2e:40:1c:7f:41:7a:0b:db:2c:dc:02:d0:9f:71: e5:72:74:19:ae:bc:d8:0e:5c:18:0c:b2:e0:d8:ae:7f:2f:d2: cc:6a:e0:75:ea:2c:a8:44:bd:d9:29:51:ea:c5:36:a7:64:37: 70:c6:32:27:90:e8:e5:6e:93:7a:7f:2c:34:05:fd:36:56:3f: 7a:66:12:0f:2c:f5:04:bb:20:7f:40:d6:4d:7c:c9:df:16:1d: bd:75:d6:27:61:b4:f1:65:0e:45:da:17:49:9c:21:ce:b0:6d: 47:e0:06:20:9b:58:f2:78:b1:b4:95:70:da:8d:d2:48:9c:fb: 62:0b:a8:b9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkE2NDYxMTAvBgNVBAUTKDNGQjM1ODI0NzBFRDAzRjE5NDM1RTY5QjJDMTlCNDA3 NDc3MEYwOTcwHhcNMjQwNzE3MDMyNTA1WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk3Mzk5MS1lMzYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp6M3rxsA5/xlL1qihbjRTb9lPqYWVSKr5hObGqNCNngYjpUeT6g7wKTNoOz8 M/19QKgJbRc+9AvCKvWtNoFnQ5dWMNO+oYd16Pyxr/Mwz1SWkAGrGzP/WeaLa/1n bjx9E49TzEHbPAROPQzcL3X7c2W0obMKg5DkIIq1lVS+IDfJarBf4bIhkLc2J8d0 Jrzn+U6heuZNJBQ4TUL96F79yTU+dB+acccYJ3vSQ6P1m7soA9GR0Mzs5X8En/73 pvKHqtkwtZM4Kv3f9G4Nnbs9ZHXnUS3o2J25yW1L7PnNyVKQFEnABj8zRfK30LrM 2i+0PB0JdPs7YHlWW2xVus3M/wIDAQABo4IClTCCApEwHQYDVR0OBBYEFDy1Kmyu CD5gLiSTAUUBZUMa8JnrMB8GA1UdIwQYMBaAFD+zWCRw7QPxlDXmmywZtAdHcPCX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTY0Ni8yRjYzOUVCMEY1 ODUxMUVDODdGNkZFMTNDNEY5QUUwMi9QN05ZSkhEdEFfR1VOZWFiTEJtMEIwZHc4 SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1A3TllKSER0QV9HVU5lYWJMQm0wQjBkdzhKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkE2NDYvMkY2MzlFQjBGNTg1MTFFQzg3RjZGRTEzQzRGOUFFMDIvMzg4MTM2NzRD QTY4MTFFRTk4OTFBNTY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnvhcwDQYJKoZIhvcNAQELBQADggEBAK7Bhqx93y/XcnJH kv4Kg8e/LfpWmhwXHu0U2hYsfQj48UH+40yccHv0NGRISuy9vyfCJsuKUkw1zqvA hPGc+hnlKJgU+iVLVMzJ7Wdb8nTJ0UiGGdlxZ75TxpeZmKU4hhi9yDuBdsO4fvpA BjS8c6jItAgBxhsnjtVbg4JE0YkVslQuQBx/QXoL2yzcAtCfceVydBmuvNgOXBgM suDYrn8v0sxq4HXqLKhEvdkpUerFNqdkN3DGMieQ6OVuk3p/LDQF/TZWP3pmEg8s 9QS7IH9A1k18yd8WHb111idhtPFlDkXaF0mcIc6wbUfgBiCbWPJ4sbSVcNqN0kic +2ILqLk= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:32 2024 by rpki-client on console-fra.rpki-client.org