$ rpki-client -vvf rpki.apnic.net/member_repository/A913D16D/F04207A44F0211EC9D2D1E37C4F9AE02/3D546FCE4F0711EC960AFD0CC4F9AE02.roa File: 3D546FCE4F0711EC960AFD0CC4F9AE02.roa (raw, json) Hash identifier: olvikDhKtOHpoejSx0CBxdNeA8P8hk9v8NtYbJZS3cs= Subject key identifier: 3F:A3:C3:4C:60:EF:88:72:2F:DF:2A:DC:72:CB:55:D7:C5:3F:D1:2F Certificate issuer: /CN=A913D16D/serialNumber=F5C1E71FBB1A41D7980BE258D97C48739AAF82CA Certificate serial: 032D Authority key identifier: F5:C1:E7:1F:BB:1A:41:D7:98:0B:E2:58:D9:7C:48:73:9A:AF:82:CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9cHnH7saQdeYC-JY2XxIc5qvgso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D16D/F04207A44F0211EC9D2D1E37C4F9AE02/3D546FCE4F0711EC960AFD0CC4F9AE02.roa Signing time: Sun 01 Oct 2023 01:42:50 +0000 ROA not before: Sun 01 Oct 2023 01:42:50 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 142619 IP address blocks: 103.171.28.0/23 maxlen: 23 103.171.28.0/24 maxlen: 24 103.171.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D16D/F04207A44F0211EC9D2D1E37C4F9AE02/9cHnH7saQdeYC-JY2XxIc5qvgso.crl rsync://rpki.apnic.net/member_repository/A913D16D/F04207A44F0211EC9D2D1E37C4F9AE02/9cHnH7saQdeYC-JY2XxIc5qvgso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9cHnH7saQdeYC-JY2XxIc5qvgso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:42:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 813 (0x32d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D16D/serialNumber=F5C1E71FBB1A41D7980BE258D97C48739AAF82CA Validity Not Before: Oct 1 01:42:50 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6518ce9a-acbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:00:1a:a4:e9:84:d5:27:ad:f9:bf:e0:f6:eb: 10:ac:3c:ae:94:44:15:01:a2:b6:2e:0c:90:2e:36: 0c:2b:05:4d:de:57:7a:89:fb:92:5d:4a:60:55:e0: b6:c7:02:42:ca:05:61:f4:5d:92:75:1a:89:b0:a0: 50:7b:5b:d1:d2:1b:69:cb:33:ba:4b:cb:e0:37:40: c6:29:4b:02:49:c3:e0:94:1c:32:66:9c:77:31:fb: 11:34:96:50:90:16:ea:c4:2e:03:29:15:ec:ae:89: 02:79:e6:15:90:70:7e:7a:37:f2:c0:67:f5:0f:e7: 5d:5d:ca:a6:1c:13:62:c6:e9:5e:a1:d9:b6:31:31: ec:cb:da:ee:bd:d0:aa:46:77:fc:c8:ad:ae:11:9d: 15:5c:60:b2:91:0d:5c:50:a8:8c:88:29:ca:c1:a9: 2b:8d:80:f3:fe:94:a5:83:22:7d:57:57:b1:41:f7: 5d:b8:e9:a1:0d:8c:ca:f8:b9:cc:16:33:b5:af:14: 72:2a:5d:f9:91:e2:06:08:7a:4c:3e:19:45:97:76: 19:1c:3f:71:ed:e2:76:da:a0:49:f9:d2:b4:9b:fd: ac:00:ce:f7:6d:0d:f3:61:4d:9d:eb:bc:cc:5a:ec: fb:17:3e:9d:91:62:5e:1e:a4:c4:15:9b:3f:f7:89: c1:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:A3:C3:4C:60:EF:88:72:2F:DF:2A:DC:72:CB:55:D7:C5:3F:D1:2F X509v3 Authority Key Identifier: keyid:F5:C1:E7:1F:BB:1A:41:D7:98:0B:E2:58:D9:7C:48:73:9A:AF:82:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D16D/F04207A44F0211EC9D2D1E37C4F9AE02/9cHnH7saQdeYC-JY2XxIc5qvgso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9cHnH7saQdeYC-JY2XxIc5qvgso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D16D/F04207A44F0211EC9D2D1E37C4F9AE02/3D546FCE4F0711EC960AFD0CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.171.28.0/23 Signature Algorithm: sha256WithRSAEncryption 86:c4:d8:94:0c:e2:09:18:92:26:d2:70:5d:09:50:e4:f1:0a: 76:9f:02:91:86:88:1d:39:17:ef:1a:c9:16:18:43:79:16:94: 17:5e:65:45:77:1a:59:93:c5:f9:3a:76:c7:3b:58:17:2b:c3: 78:2d:dc:7b:30:0e:d5:23:53:b8:5e:2b:e9:08:fc:47:e9:51: ee:86:de:e0:03:1a:84:22:1b:56:4c:86:c7:f0:78:ca:73:cb: 3f:9f:cf:a4:a4:27:a6:91:b0:79:8b:e1:32:91:aa:1f:ea:2f: f2:61:d2:89:0b:f8:2b:77:f5:d2:67:e4:79:de:45:76:63:8a: 5b:77:c2:82:d5:cc:af:55:d3:7f:5f:25:e6:3f:a7:85:1a:4d: 0e:2a:df:c5:5b:de:3e:b7:76:05:2e:b0:27:31:cc:24:94:d6: ad:2c:b1:f2:33:00:6e:38:e2:55:63:86:81:d5:75:d7:1d:41: d7:37:87:e6:be:95:90:08:1d:35:79:6a:e4:ec:0b:be:c4:36: 3c:2a:78:92:23:d6:a3:6a:79:ec:f9:23:b3:5d:f0:1f:32:28: 5d:bc:84:a2:74:1b:c7:50:98:1e:d0:c3:43:c5:aa:32:30:ee: 77:44:cc:b4:5b:9d:ef:f4:cf:b6:e5:50:11:ba:b0:4e:0b:8a: 78:16:c3:2d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAy0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0QxNkQxMTAvBgNVBAUTKEY1QzFFNzFGQkIxQTQxRDc5ODBCRTI1OEQ5N0M0ODcz OUFBRjgyQ0EwHhcNMjMxMDAxMDE0MjUwWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTE4Y2U5YS1hY2JiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5gAapOmE1Set+b/g9usQrDyulEQVAaK2LgyQLjYMKwVN3ld6ifuSXUpgVeC2 xwJCygVh9F2SdRqJsKBQe1vR0htpyzO6S8vgN0DGKUsCScPglBwyZpx3MfsRNJZQ kBbqxC4DKRXsrokCeeYVkHB+ejfywGf1D+ddXcqmHBNixuleodm2MTHsy9ruvdCq Rnf8yK2uEZ0VXGCykQ1cUKiMiCnKwakrjYDz/pSlgyJ9V1exQfdduOmhDYzK+LnM FjO1rxRyKl35keIGCHpMPhlFl3YZHD9x7eJ22qBJ+dK0m/2sAM73bQ3zYU2d67zM Wuz7Fz6dkWJeHqTEFZs/94nBAQIDAQABo4IClTCCApEwHQYDVR0OBBYEFD+jw0xg 74hyL98q3HLLVdfFP9EvMB8GA1UdIwQYMBaAFPXB5x+7GkHXmAviWNl8SHOar4LK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDE2RC9GMDQyMDdBNDRG MDIxMUVDOUQyRDFFMzdDNEY5QUUwMi85Y0huSDdzYVFkZVlDLUpZMlh4SWM1cXZn c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzljSG5IN3NhUWRlWUMtSlkyWHhJYzVxdmdzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0QxNkQvRjA0MjA3QTQ0RjAyMTFFQzlEMkQxRTM3QzRGOUFFMDIvM0Q1NDZGQ0U0 RjA3MTFFQzk2MEFGRDBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnqxwwDQYJKoZIhvcNAQELBQADggEBAIbE2JQM4gkYkibS cF0JUOTxCnafApGGiB05F+8ayRYYQ3kWlBdeZUV3GlmTxfk6dsc7WBcrw3gt3Hsw DtUjU7heK+kI/EfpUe6G3uADGoQiG1ZMhsfweMpzyz+fz6SkJ6aRsHmL4TKRqh/q L/Jh0okL+Ct39dJn5HneRXZjilt3woLVzK9V039fJeY/p4UaTQ4q38Vb3j63dgUu sCcxzCSU1q0ssfIzAG444lVjhoHVddcdQdc3h+a+lZAIHTV5auTsC77ENjwqeJIj 1qNqeez5I7Nd8B8yKF28hKJ0G8dQmB7Qw0PFqjIw7ndEzLRbne/0z7blUBG6sE4L ingWwy0= -----END CERTIFICATE-----Generated at Fri May 17 03:52:20 2024 by rpki-client on console-ams.rpki-client.org