$ rpki-client -vvf rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/3726AAFA0C0011EAA414FC4AC4F9AE02.roa File: 3726AAFA0C0011EAA414FC4AC4F9AE02.roa (raw, json) Hash identifier: xaKObum3EFlGZQF/g5wk0khI8wDbWZb2Cu/3w9bjJUY= Subject key identifier: 74:C8:F5:58:6C:C0:C3:88:49:1E:95:EC:81:44:CA:6B:84:D7:AA:48 Certificate issuer: /CN=A9131ABD/serialNumber=2E9C91F4E394A4AFA976D6BC3F65DF2D9F079EBD Certificate serial: 0BB6 Authority key identifier: 2E:9C:91:F4:E3:94:A4:AF:A9:76:D6:BC:3F:65:DF:2D:9F:07:9E:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/3726AAFA0C0011EAA414FC4AC4F9AE02.roa Signing time: Mon 24 Jun 2024 19:20:43 +0000 ROA not before: Mon 24 Jun 2024 19:20:43 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 20473 IP address blocks: 103.77.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.crl rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2998 (0xbb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131ABD Validity Not Before: Jun 24 19:20:43 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6679c70b-4d32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:90:38:a9:1f:75:e8:63:ff:44:47:d7:ba:d9: ac:81:aa:05:79:09:3c:25:45:87:40:2b:34:6a:79: 6e:2a:d3:3f:5f:2f:45:dc:52:86:37:37:96:eb:97: 3e:35:b0:95:5c:0b:5f:0b:b0:bd:6e:b0:48:30:d6: 93:83:2a:3d:af:b5:39:b8:f2:0e:8e:27:8b:fa:00: 04:37:8c:4a:bc:cf:81:72:9a:f8:33:53:2f:6c:7e: b9:fe:bf:7e:65:8b:98:39:62:0f:28:91:36:0d:29: 32:bd:e8:2e:7e:19:6d:77:46:a5:3b:6f:10:f4:80: 69:a2:1b:9e:ce:02:69:b4:96:69:78:52:cf:07:6f: 8e:23:53:44:82:00:80:49:13:10:dc:87:ee:42:db: 16:02:39:28:81:f4:e1:36:76:ce:ed:aa:3c:82:7d: 7f:bd:0a:ee:d4:56:7c:7f:ea:7c:6f:74:b7:92:92: 57:6a:04:7f:91:a8:d4:7f:2f:6e:bc:d1:8b:77:49: bc:30:1f:e5:13:22:12:2d:6e:94:43:f0:32:5f:48: 78:c1:3c:a8:72:ff:c9:fb:74:8e:79:55:4b:a9:42: f3:89:ad:11:64:34:3b:dd:7c:32:49:83:bc:63:52: 65:66:3e:36:0d:5d:d0:75:a5:05:72:8f:1c:eb:57: 98:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:C8:F5:58:6C:C0:C3:88:49:1E:95:EC:81:44:CA:6B:84:D7:AA:48 X509v3 Authority Key Identifier: keyid:2E:9C:91:F4:E3:94:A4:AF:A9:76:D6:BC:3F:65:DF:2D:9F:07:9E:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LpyR9OOUpK-pdta8P2XfLZ8Hnr0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131ABD/20E8F9A004E911EA8D20EE5FC4F9AE02/3726AAFA0C0011EAA414FC4AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.77.224.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:a0:01:bf:b7:e3:59:ed:31:58:a7:67:9f:90:9a:cc:21:66: 8f:ff:8f:4a:cf:5a:26:95:b8:0c:2b:2d:c0:e4:ef:bf:8a:94: 82:d7:55:e6:ff:1f:dd:80:54:5a:6e:a4:c8:fe:d3:86:4e:91: 57:05:bb:f7:42:32:4d:fc:27:d9:5b:42:e3:e0:d2:4a:4d:8e: fd:67:fb:70:e0:7e:e5:41:c6:04:de:4f:2f:5e:60:c7:03:3e: 85:7a:62:1b:75:59:89:1f:3d:66:58:86:bb:cb:31:ca:ba:2f: ed:d9:cf:51:67:9c:c9:b2:cb:f9:62:23:5d:28:70:f7:88:b1: 13:73:14:88:5d:01:a0:97:59:41:5a:0c:ec:c8:a7:9d:6d:37: 4d:4c:13:21:03:19:12:89:f8:1a:6c:5e:81:1b:4a:d5:88:07: 95:5d:79:1b:9f:2f:30:f1:0e:1d:99:bc:b0:8f:14:3b:46:ed: d1:b9:2f:d3:ca:92:21:40:b9:14:ac:b7:b3:c3:6d:73:54:71: 05:20:1e:bb:02:5c:5b:b0:a2:71:65:3a:16:76:8c:38:e9:b4: 41:dc:eb:42:1f:a9:79:09:aa:a1:ed:00:94:a1:12:0b:ea:b4: 20:13:ed:c7:9e:78:09:b2:36:c0:ce:92:73:89:23:37:bc:11: 7d:39:9a:32 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC7YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBQkQxMTAvBgNVBAUTKDJFOUM5MUY0RTM5NEE0QUZBOTc2RDZCQzNGNjVERjJE OUYwNzlFQkQwHhcNMjQwNjI0MTkyMDQzWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njc5YzcwYi00ZDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA75A4qR916GP/REfXutmsgaoFeQk8JUWHQCs0anluKtM/Xy9F3FKGNzeW65c+ NbCVXAtfC7C9brBIMNaTgyo9r7U5uPIOjieL+gAEN4xKvM+Bcpr4M1MvbH65/r9+ ZYuYOWIPKJE2DSkyvegufhltd0alO28Q9IBpohuezgJptJZpeFLPB2+OI1NEggCA SRMQ3IfuQtsWAjkogfThNnbO7ao8gn1/vQru1FZ8f+p8b3S3kpJXagR/kajUfy9u vNGLd0m8MB/lEyISLW6UQ/AyX0h4wTyocv/J+3SOeVVLqULzia0RZDQ73XwySYO8 Y1JlZj42DV3QdaUFco8c61eYxQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHTI9Vhs wMOISR6V7IFEymuE16pIMB8GA1UdIwQYMBaAFC6ckfTjlKSvqXbWvD9l3y2fB569 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUFCRC8yMEU4RjlBMDA0 RTkxMUVBOEQyMEVFNUZDNEY5QUUwMi9McHlSOU9PVXBLLXBkdGE4UDJYZkxaOEhu cjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xweVI5T09VcEstcGR0YThQMlhmTFo4SG5yMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzFBQkQvMjBFOEY5QTAwNEU5MTFFQThEMjBFRTVGQzRGOUFFMDIvMzcyNkFBRkEw QzAwMTFFQUE0MTRGQzRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnTeAwDQYJKoZIhvcNAQELBQADggEBAF6gAb+341ntMVin Z5+QmswhZo//j0rPWiaVuAwrLcDk77+KlILXVeb/H92AVFpupMj+04ZOkVcFu/dC Mk38J9lbQuPg0kpNjv1n+3DgfuVBxgTeTy9eYMcDPoV6Yht1WYkfPWZYhrvLMcq6 L+3Zz1FnnMmyy/liI10ocPeIsRNzFIhdAaCXWUFaDOzIp51tN01MEyEDGRKJ+Bps XoEbStWIB5VdeRufLzDxDh2ZvLCPFDtG7dG5L9PKkiFAuRSst7PDbXNUcQUgHrsC XFuwonFlOhZ2jDjptEHc60IfqXkJqqHtAJShEgvqtCAT7ceeeAmyNsDOknOJIze8 EX05mjI= -----END CERTIFICATE-----Generated at Sun Feb 16 15:07:54 2025 by rpki-client