$ rpki-client -vvf rpki.apnic.net/member_repository/A91392AE/336EF67660E811E7AC175259C4F9AE02/3E8CF3CAB74511EBB4D47C23C4F9AE02.roa File: 3E8CF3CAB74511EBB4D47C23C4F9AE02.roa (raw, json) Hash identifier: ZDK3agyqk9aX1xOqBH+TPVmW6h7xORsUhCd+fZTH/Z8= Subject key identifier: 40:16:D3:01:E0:5A:87:D0:00:2B:D5:36:8C:AE:9F:80:63:1F:0F:18 Certificate issuer: /CN=A91392AE/serialNumber=4DAA776F8792800F42B89780F32D9E73276155D4 Certificate serial: 1875 Authority key identifier: 4D:AA:77:6F:87:92:80:0F:42:B8:97:80:F3:2D:9E:73:27:61:55:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tap3b4eSgA9CuJeA8y2ecydhVdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91392AE/336EF67660E811E7AC175259C4F9AE02/3E8CF3CAB74511EBB4D47C23C4F9AE02.roa Signing time: Mon 31 Jul 2023 16:53:42 +0000 ROA not before: Mon 31 Jul 2023 16:53:41 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 136786 IP address blocks: 103.97.110.0/24 maxlen: 24 103.115.4.0/23 maxlen: 24 103.115.6.0/24 maxlen: 24 2001:df1:c700::/48 maxlen: 48 2001:df1:c701::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91392AE/336EF67660E811E7AC175259C4F9AE02/Tap3b4eSgA9CuJeA8y2ecydhVdQ.crl rsync://rpki.apnic.net/member_repository/A91392AE/336EF67660E811E7AC175259C4F9AE02/Tap3b4eSgA9CuJeA8y2ecydhVdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tap3b4eSgA9CuJeA8y2ecydhVdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 16:54:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6261 (0x1875) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91392AE/serialNumber=4DAA776F8792800F42B89780F32D9E73276155D4 Validity Not Before: Jul 31 16:53:41 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64c7e715-61ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:b4:a1:bb:0b:f9:d4:73:2b:9c:8f:7f:59:9a: 3c:70:3a:3b:5c:77:ca:dd:16:7f:c0:33:e9:97:58: f4:5f:c4:fb:e5:cf:3d:7a:7e:f7:1d:79:cd:10:cd: 6d:a1:c8:61:12:40:e7:04:1f:4b:20:6d:0d:6d:fb: 0b:1a:65:af:9b:9a:81:b1:da:7e:ec:26:e8:a6:08: 8e:c4:19:e8:16:49:a4:22:4c:89:ed:9d:ff:ba:fd: f3:2d:85:ad:fb:4e:a4:e0:8d:ba:be:57:d7:2d:55: 55:87:14:29:6a:b2:7e:eb:e1:d6:cf:9d:ac:f5:68: 95:2b:95:23:4c:03:28:ef:d6:fc:f9:e1:ee:cd:38: b2:9b:a7:06:ca:ec:30:9a:e3:58:69:76:7d:64:50: 23:5f:71:aa:a4:e0:fb:a2:44:09:83:9d:c1:52:22: 70:69:e3:f2:30:ac:63:ba:90:83:30:85:9c:fc:97: 45:11:c7:d8:bf:52:bb:e6:8e:d5:12:0a:ba:0a:83: 15:04:9f:2a:d7:9d:11:b6:fa:84:b3:ca:6b:da:7d: 53:bc:28:5b:77:ca:83:5d:85:18:c1:05:9e:8e:50: c9:92:88:cc:38:da:d6:c6:dc:8c:9f:94:97:ab:be: 43:8b:b0:a7:66:73:cc:37:96:84:1c:10:d3:a5:d4: f8:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:16:D3:01:E0:5A:87:D0:00:2B:D5:36:8C:AE:9F:80:63:1F:0F:18 X509v3 Authority Key Identifier: keyid:4D:AA:77:6F:87:92:80:0F:42:B8:97:80:F3:2D:9E:73:27:61:55:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91392AE/336EF67660E811E7AC175259C4F9AE02/Tap3b4eSgA9CuJeA8y2ecydhVdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tap3b4eSgA9CuJeA8y2ecydhVdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91392AE/336EF67660E811E7AC175259C4F9AE02/3E8CF3CAB74511EBB4D47C23C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.97.110.0/24 103.115.4.0-103.115.6.255 IPv6: 2001:df1:c700::/47 Signature Algorithm: sha256WithRSAEncryption 84:aa:b4:8c:8f:18:c7:08:bd:25:db:69:fa:09:fb:b5:fb:ee: 10:33:77:76:49:80:b0:32:ad:5e:db:1a:7a:55:25:ea:1a:c0: 61:a1:ea:dd:4b:53:e4:46:17:e1:26:af:dd:58:91:6a:86:ee: 0a:ea:83:39:e8:c3:02:04:0d:7d:51:cf:9a:2b:fd:39:01:12: 0f:88:65:df:f8:4a:6d:8a:05:25:36:34:43:14:37:d1:6a:64: c8:bf:91:d8:9d:7a:60:33:88:96:bb:03:50:42:a0:b9:5b:20: bf:36:fe:1e:f5:f0:d5:ad:f6:98:f3:4d:f0:b3:2b:66:af:21: a7:81:44:de:71:b2:72:d9:ab:99:f8:19:0f:39:7b:1d:9b:40: 75:34:6a:d4:c6:b0:01:8c:55:e4:b5:91:bb:43:dc:71:65:27: c5:07:46:72:c1:1c:e1:43:1b:fc:0b:a1:1e:44:eb:35:4a:89: 70:bf:8e:d7:b3:dc:db:12:8d:2c:dc:72:30:2c:1c:22:f3:ea: 31:3d:1d:eb:cc:54:f1:f3:f1:30:b1:5f:2d:0b:65:eb:13:fa: 6f:bd:47:4f:91:9f:2e:c6:7f:ca:02:d0:6b:97:bd:b7:9f:e5: de:c3:ab:bd:9f:91:dc:0d:20:a9:ea:71:30:4e:e9:76:20:8d: b6:9d:5a:85 -----BEGIN CERTIFICATE----- MIIFkDCCBHigAwIBAgICGHUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkyQUUxMTAvBgNVBAUTKDREQUE3NzZGODc5MjgwMEY0MkI4OTc4MEYzMkQ5RTcz Mjc2MTU1RDQwHhcNMjMwNzMxMTY1MzQxWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGM3ZTcxNS02MWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAubShuwv51HMrnI9/WZo8cDo7XHfK3RZ/wDPpl1j0X8T75c89en73HXnNEM1t ochhEkDnBB9LIG0NbfsLGmWvm5qBsdp+7CbopgiOxBnoFkmkIkyJ7Z3/uv3zLYWt +06k4I26vlfXLVVVhxQparJ+6+HWz52s9WiVK5UjTAMo79b8+eHuzTiym6cGyuww muNYaXZ9ZFAjX3GqpOD7okQJg53BUiJwaePyMKxjupCDMIWc/JdFEcfYv1K75o7V Egq6CoMVBJ8q150RtvqEs8pr2n1TvChbd8qDXYUYwQWejlDJkojMONrWxtyMn5SX q75Di7CnZnPMN5aEHBDTpdT4GQIDAQABo4ICtDCCArAwHQYDVR0OBBYEFEAW0wHg WofQACvVNoyun4BjHw8YMB8GA1UdIwQYMBaAFE2qd2+HkoAPQriXgPMtnnMnYVXU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTJBRS8zMzZFRjY3NjYw RTgxMUU3QUMxNzUyNTlDNEY5QUUwMi9UYXAzYjRlU2dBOUN1SmVBOHkyZWN5ZGhW ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RhcDNiNGVTZ0E5Q3VKZUE4eTJlY3lkaFZkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzkyQUUvMzM2RUY2NzY2MEU4MTFFN0FDMTc1MjU5QzRGOUFFMDIvM0U4Q0YzQ0FC NzQ1MTFFQkI0RDQ3QzIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPgYIKwYBBQUHAQcBAf8E LzAtMBoEAgABMBQDBABnYW4wDAMEAmdzBAMEAGdzBjAPBAIAAjAJAwcBIAEN8ccA MA0GCSqGSIb3DQEBCwUAA4IBAQCEqrSMjxjHCL0l22n6Cfu1++4QM3d2SYCwMq1e 2xp6VSXqGsBhoerdS1PkRhfhJq/dWJFqhu4K6oM56MMCBA19Uc+aK/05ARIPiGXf +EptigUlNjRDFDfRamTIv5HYnXpgM4iWuwNQQqC5WyC/Nv4e9fDVrfaY803wsytm ryGngUTecbJy2auZ+BkPOXsdm0B1NGrUxrABjFXktZG7Q9xxZSfFB0ZywRzhQxv8 C6EeROs1Solwv47Xs9zbEo0s3HIwLBwi8+oxPR3rzFTx8/EwsV8tC2XrE/pvvUdP kZ8uxn/KAtBrl723n+Xew6u9n5HcDSCp6nEwTul2II22nVqF -----END CERTIFICATE-----Generated at Mon May 20 19:20:04 2024 by rpki-client on console-fra.rpki-client.org