$ rpki-client -vvf rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/3AA556009A8411EFB791ED77C4F9AE02.roa File: 3AA556009A8411EFB791ED77C4F9AE02.roa (raw, json) Hash identifier: cYIYWrM/S+5cEjBXEPAijQ5WuatkrmUBOwtdqx7L4Ic= Subject key identifier: 3A:65:14:BE:E4:FB:0D:D2:0A:6C:DF:4D:5F:C8:F9:D1:CE:8A:70:CB Certificate issuer: /CN=A91397C2/serialNumber=D3D15AEE9A4F8AE5C281108A7D2D3AD81D4E79CD Certificate serial: 077E Authority key identifier: D3:D1:5A:EE:9A:4F:8A:E5:C2:81:10:8A:7D:2D:3A:D8:1D:4E:79:CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/3AA556009A8411EFB791ED77C4F9AE02.roa Signing time: Mon 04 Nov 2024 08:10:18 +0000 ROA not before: Mon 04 Nov 2024 08:10:18 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 136897 IP address blocks: 103.39.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.crl rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1918 (0x77e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91397C2/serialNumber=D3D15AEE9A4F8AE5C281108A7D2D3AD81D4E79CD Validity Not Before: Nov 4 08:10:18 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=6728816a-fc71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:7b:f9:68:59:66:69:8e:ae:fa:55:24:72:27: 14:b6:bf:72:06:fd:35:1b:1c:ed:ce:ee:19:95:31: 3b:b9:26:db:9b:7b:f0:33:bd:a3:04:a0:d1:dc:9d: 0a:83:8e:69:61:1a:37:95:db:d9:43:0b:6b:bc:b4: fd:7f:bd:db:25:d3:7e:0d:56:8c:23:0d:11:c9:d2: 89:39:8e:4a:dc:1e:02:e5:28:5c:9c:99:07:71:2f: fd:3a:fd:a4:a5:a9:fc:ac:4c:fe:64:d4:dd:61:57: d5:c5:91:df:0b:45:5b:57:75:91:00:6f:99:36:8f: fd:80:2d:74:36:e1:5e:2c:f6:6d:b4:fc:83:d2:3e: 98:5d:72:ef:2a:73:3b:96:d5:c2:1d:43:0f:3b:aa: 43:29:c4:5f:2f:03:87:49:b2:26:b9:6d:da:c4:53: e8:1d:7c:5b:cc:08:35:d8:7a:f1:e4:df:9a:1d:9c: 83:8c:29:30:0a:50:a0:5a:7a:eb:db:08:b3:4b:c9: 10:e4:88:8e:36:19:02:27:54:04:62:1c:de:3b:bd: e3:1f:5a:d2:86:46:78:bc:74:f0:18:c2:cf:dc:31: 3f:ed:c2:5d:1d:94:b0:cd:b3:5c:e2:09:a9:e5:af: 98:74:85:d5:d1:0a:f1:f9:eb:5c:71:17:aa:4e:46: 2c:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:65:14:BE:E4:FB:0D:D2:0A:6C:DF:4D:5F:C8:F9:D1:CE:8A:70:CB X509v3 Authority Key Identifier: keyid:D3:D1:5A:EE:9A:4F:8A:E5:C2:81:10:8A:7D:2D:3A:D8:1D:4E:79:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/3AA556009A8411EFB791ED77C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.39.110.0/24 Signature Algorithm: sha256WithRSAEncryption 62:17:c0:3b:27:58:65:53:94:b7:fb:0c:d3:9c:7e:07:31:9a: 47:ff:e9:6f:29:f8:6c:9a:33:3e:d2:69:e6:9b:99:7e:86:07: 5e:4d:e6:45:04:33:42:be:39:0b:27:a3:d8:c6:e7:d8:72:68: 51:13:b0:aa:b1:b7:a0:41:69:6d:cb:5d:6e:c8:b1:b4:27:0a: 90:ab:19:4e:5b:67:e5:6b:1d:03:df:94:b7:7f:b8:86:7d:23: 4f:37:f1:16:93:4b:16:a1:17:dd:e3:66:a7:e5:cc:7a:3e:db: 5e:73:ba:10:23:15:d5:f5:bd:2a:00:50:01:3e:b3:b8:7a:bb: 83:c9:f2:40:80:1f:9c:63:35:ce:4e:74:b2:a1:b2:40:08:97: cd:63:14:f0:1b:12:71:c5:ae:c7:fa:5b:ad:52:08:05:6a:54: 8c:56:ec:3b:0d:cc:4f:e1:05:db:1a:2f:6f:aa:66:53:df:6f: 2b:22:ab:50:e2:1d:d8:c7:a9:7b:40:9a:ba:09:ea:a7:8f:2a: ac:0e:2f:46:7c:95:78:75:5b:78:74:c1:46:93:4c:47:16:f8: 3f:89:90:72:25:b7:6b:8e:63:fb:08:64:8c:c3:a0:1f:5e:2b: 3e:56:f2:2c:55:07:b3:42:fb:6e:7b:91:be:a6:33:1d:63:af: a3:a0:2a:21 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB34wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk3QzIxMTAvBgNVBAUTKEQzRDE1QUVFOUE0RjhBRTVDMjgxMTA4QTdEMkQzQUQ4 MUQ0RTc5Q0QwHhcNMjQxMTA0MDgxMDE4WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI4ODE2YS1mYzcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Hv5aFlmaY6u+lUkcicUtr9yBv01Gxztzu4ZlTE7uSbbm3vwM72jBKDR3J0K g45pYRo3ldvZQwtrvLT9f73bJdN+DVaMIw0RydKJOY5K3B4C5ShcnJkHcS/9Ov2k pan8rEz+ZNTdYVfVxZHfC0VbV3WRAG+ZNo/9gC10NuFeLPZttPyD0j6YXXLvKnM7 ltXCHUMPO6pDKcRfLwOHSbImuW3axFPoHXxbzAg12Hrx5N+aHZyDjCkwClCgWnrr 2wizS8kQ5IiONhkCJ1QEYhzeO73jH1rShkZ4vHTwGMLP3DE/7cJdHZSwzbNc4gmp 5a+YdIXV0Qrx+etccReqTkYsTwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDplFL7k +w3SCmzfTV/I+dHOinDLMB8GA1UdIwQYMBaAFNPRWu6aT4rlwoEQin0tOtgdTnnN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTdDMi80RTQyNkRFOEZC RUExMUVBOTQwQTFEMTlDNEY5QUUwMi8wOUZhN3BwUGl1WENnUkNLZlMwNjJCMU9l YzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA5RmE3cHBQaXVYQ2dSQ0tmUzA2MkIxT2VjMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mzk3QzIvNEU0MjZERThGQkVBMTFFQTk0MEExRDE5QzRGOUFFMDIvM0FBNTU2MDA5 QTg0MTFFRkI3OTFFRDc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnJ24wDQYJKoZIhvcNAQELBQADggEBAGIXwDsnWGVTlLf7 DNOcfgcxmkf/6W8p+GyaMz7SaeabmX6GB15N5kUEM0K+OQsno9jG59hyaFETsKqx t6BBaW3LXW7IsbQnCpCrGU5bZ+VrHQPflLd/uIZ9I0838RaTSxahF93jZqflzHo+ 215zuhAjFdX1vSoAUAE+s7h6u4PJ8kCAH5xjNc5OdLKhskAIl81jFPAbEnHFrsf6 W61SCAVqVIxW7DsNzE/hBdsaL2+qZlPfbysiq1DiHdjHqXtAmroJ6qePKqwOL0Z8 lXh1W3h0wUaTTEcW+D+JkHIlt2uOY/sIZIzDoB9eKz5W8ixVB7NC+257kb6mMx1j r6OgKiE= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:06 2024 by rpki-client on console-fra.rpki-client.org