$ rpki-client -vvf rpki.apnic.net/member_repository/A913C1CB/E38E3280405C11ECB17F6819C4F9AE02/3DDAFD5EA2B811ED8FED0B6EC4F9AE02.roa File: 3DDAFD5EA2B811ED8FED0B6EC4F9AE02.roa (raw, json) Hash identifier: itkg46kHl4+jUEx99hCfUiMMAkbk0/z6DJEUosAyuao= Subject key identifier: 00:84:BE:F7:A8:DC:D8:27:D2:7B:EF:B1:55:A4:E6:2C:68:B5:BD:39 Certificate issuer: /CN=A913C1CB/serialNumber=48C5DB5A1BBDEB2211058C07D27670B42B6D876A Certificate serial: 037E Authority key identifier: 48:C5:DB:5A:1B:BD:EB:22:11:05:8C:07:D2:76:70:B4:2B:6D:87:6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SMXbWhu96yIRBYwH0nZwtCtth2o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C1CB/E38E3280405C11ECB17F6819C4F9AE02/3DDAFD5EA2B811ED8FED0B6EC4F9AE02.roa Signing time: Sat 09 Dec 2023 01:53:34 +0000 ROA not before: Sat 09 Dec 2023 01:53:34 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 134562 IP address blocks: 103.175.242.0/24 maxlen: 24 103.175.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C1CB/E38E3280405C11ECB17F6819C4F9AE02/SMXbWhu96yIRBYwH0nZwtCtth2o.crl rsync://rpki.apnic.net/member_repository/A913C1CB/E38E3280405C11ECB17F6819C4F9AE02/SMXbWhu96yIRBYwH0nZwtCtth2o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SMXbWhu96yIRBYwH0nZwtCtth2o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 02:24:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 894 (0x37e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C1CB/serialNumber=48C5DB5A1BBDEB2211058C07D27670B42B6D876A Validity Not Before: Dec 9 01:53:34 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6573c89e-82a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ac:42:75:de:04:c0:f8:e0:17:d5:08:2e:6a: 9a:f4:b1:6f:b9:43:09:4f:10:63:bf:23:07:92:1d: fa:cb:cb:52:30:c6:e0:a5:5c:32:6b:91:bf:e3:56: 42:a6:7d:34:f3:54:cf:07:87:72:72:9c:12:cd:ad: 39:0f:42:f8:ee:cb:cc:aa:4e:69:41:60:60:1c:71: f8:6f:78:a8:9f:61:14:14:7e:87:77:56:3c:11:fb: a7:29:70:d8:8c:22:4e:d2:ea:85:7b:7b:b8:91:0b: 08:e8:2a:11:46:7e:a8:30:60:1c:e2:d3:ae:52:78: bf:25:10:dd:04:52:5e:6b:ff:b7:1d:12:7c:b7:50: c0:5c:7b:0b:da:63:61:13:7b:e2:5b:3b:2d:43:26: 43:7c:da:26:83:ec:58:2b:c0:0e:1a:66:ef:ea:4e: bd:21:26:e7:84:cd:de:ea:33:68:4d:f1:0c:84:6f: cb:65:15:8a:b6:63:7a:97:b6:86:0d:34:7a:9f:81: b9:25:ab:6d:a7:ce:af:23:cd:23:94:c7:9d:16:bd: a6:10:02:39:15:a4:d2:37:7c:62:42:1a:1c:f0:4f: 14:96:79:8e:03:8e:ce:d0:e3:bd:28:10:95:2d:a7: 98:77:6f:54:4b:c5:3e:25:6e:97:06:15:38:01:7d: 63:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:84:BE:F7:A8:DC:D8:27:D2:7B:EF:B1:55:A4:E6:2C:68:B5:BD:39 X509v3 Authority Key Identifier: keyid:48:C5:DB:5A:1B:BD:EB:22:11:05:8C:07:D2:76:70:B4:2B:6D:87:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C1CB/E38E3280405C11ECB17F6819C4F9AE02/SMXbWhu96yIRBYwH0nZwtCtth2o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SMXbWhu96yIRBYwH0nZwtCtth2o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C1CB/E38E3280405C11ECB17F6819C4F9AE02/3DDAFD5EA2B811ED8FED0B6EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.175.242.0/23 Signature Algorithm: sha256WithRSAEncryption 4d:ee:53:31:e7:ea:95:be:cc:b4:06:5a:b1:a2:75:ba:2c:be: 4d:af:a5:2e:b7:25:cd:a8:c2:b5:ba:87:9f:6c:9b:91:dd:bb: 80:94:6e:a7:6e:fc:1e:31:39:85:b4:7a:cd:b4:55:27:56:7f: 4e:6f:8d:a6:3a:9f:b1:d3:30:1a:7e:07:6b:c5:50:41:73:65: 13:94:b8:bd:57:6d:44:9c:38:0a:4d:22:75:a2:70:86:35:4c: f3:45:7e:67:b3:5c:c2:e5:1a:32:0e:ee:03:8b:f9:a3:fe:3c: 12:80:66:4b:00:79:02:86:e0:73:b1:ef:22:dc:0d:5c:7d:a0: a0:44:18:31:2e:4f:9e:a9:34:2c:0d:25:c6:98:3e:cd:45:c5: 3c:34:d5:d4:eb:83:44:30:66:8d:e1:1f:9e:2c:9a:91:28:7c: 2d:a5:c3:b5:6b:f0:73:46:82:5a:66:ba:78:ad:cb:8e:6e:40: c3:10:2a:27:44:5d:89:4e:27:5f:c2:fd:29:d5:f0:e2:a3:5e: 14:f2:eb:dd:98:c9:e1:ad:23:0b:d8:4c:4d:e3:e1:e2:10:3e: ee:f9:6c:a2:74:af:ec:02:11:48:34:5b:af:0b:02:39:0b:77: 5b:1f:88:14:97:de:32:d5:70:60:95:a8:d9:85:f4:2f:07:32: e0:8a:2c:0e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA34wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0MxQ0IxMTAvBgNVBAUTKDQ4QzVEQjVBMUJCREVCMjIxMTA1OEMwN0QyNzY3MEI0 MkI2RDg3NkEwHhcNMjMxMjA5MDE1MzM0WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTczYzg5ZS04MmEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsKxCdd4EwPjgF9UILmqa9LFvuUMJTxBjvyMHkh36y8tSMMbgpVwya5G/41ZC pn0081TPB4dycpwSza05D0L47svMqk5pQWBgHHH4b3ion2EUFH6Hd1Y8EfunKXDY jCJO0uqFe3u4kQsI6CoRRn6oMGAc4tOuUni/JRDdBFJea/+3HRJ8t1DAXHsL2mNh E3viWzstQyZDfNomg+xYK8AOGmbv6k69ISbnhM3e6jNoTfEMhG/LZRWKtmN6l7aG DTR6n4G5Jattp86vI80jlMedFr2mEAI5FaTSN3xiQhoc8E8UlnmOA47O0OO9KBCV LaeYd29US8U+JW6XBhU4AX1jlQIDAQABo4IClTCCApEwHQYDVR0OBBYEFACEvveo 3Ngn0nvvsVWk5ixotb05MB8GA1UdIwQYMBaAFEjF21obvesiEQWMB9J2cLQrbYdq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzFDQi9FMzhFMzI4MDQw NUMxMUVDQjE3RjY4MTlDNEY5QUUwMi9TTVhiV2h1OTZ5SVJCWXdIMG5ad3RDdHRo Mm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NNWGJXaHU5NnlJUkJZd0gwblp3dEN0dGgyby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0MxQ0IvRTM4RTMyODA0MDVDMTFFQ0IxN0Y2ODE5QzRGOUFFMDIvM0REQUZENUVB MkI4MTFFRDhGRUQwQjZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnr/IwDQYJKoZIhvcNAQELBQADggEBAE3uUzHn6pW+zLQG WrGidbosvk2vpS63Jc2owrW6h59sm5Hdu4CUbqdu/B4xOYW0es20VSdWf05vjaY6 n7HTMBp+B2vFUEFzZROUuL1XbUScOApNInWicIY1TPNFfmezXMLlGjIO7gOL+aP+ PBKAZksAeQKG4HOx7yLcDVx9oKBEGDEuT56pNCwNJcaYPs1FxTw01dTrg0QwZo3h H54smpEofC2lw7Vr8HNGglpmunity45uQMMQKidEXYlOJ1/C/SnV8OKjXhTy692Y yeGtIwvYTE3j4eIQPu75bKJ0r+wCEUg0W68LAjkLd1sfiBSX3jLVcGCVqNmF9C8H MuCKLA4= -----END CERTIFICATE-----Generated at Tue May 7 03:10:18 2024 by rpki-client on console-ams.rpki-client.org