$ rpki-client -vvf rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/3E35840C523211EE84408677C4F9AE02.roa File: 3E35840C523211EE84408677C4F9AE02.roa (raw, json) Hash identifier: odJkbnbFNGEzA/PRiNLIwgSKK/+yDHEM4DmIe+O5Su4= Subject key identifier: 03:47:47:BC:8F:FC:DE:7F:D6:BB:05:18:53:F2:14:5A:9A:40:D3:9F Certificate issuer: /CN=A91409DC/serialNumber=14A6CABC302EC1E3DCE74DE98BF558A042BEAC56 Certificate serial: 0796 Authority key identifier: 14:A6:CA:BC:30:2E:C1:E3:DC:E7:4D:E9:8B:F5:58:A0:42:BE:AC:56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FKbKvDAuwePc503pi_VYoEK-rFY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/3E35840C523211EE84408677C4F9AE02.roa Signing time: Sat 04 May 2024 19:58:24 +0000 ROA not before: Sat 04 May 2024 19:58:24 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 63969 IP address blocks: 103.143.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.crl rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FKbKvDAuwePc503pi_VYoEK-rFY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 19:38:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1942 (0x796) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91409DC/serialNumber=14A6CABC302EC1E3DCE74DE98BF558A042BEAC56 Validity Not Before: May 4 19:58:24 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66369360-6d3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:fa:71:2a:0d:82:b9:94:ee:10:a7:d0:5c:ac: d8:6e:14:e5:b4:30:ca:f5:a2:6d:0d:17:66:c3:17: f6:da:b8:1e:5f:88:79:be:d5:db:59:f6:81:36:1e: 77:a0:a2:c2:fa:7d:d1:91:30:ac:1a:7b:f3:53:e1: 66:b8:74:01:66:c6:ad:ac:49:bd:22:40:54:ee:ac: f8:e2:02:55:68:5e:e2:da:17:c4:f9:07:24:b5:8e: 1c:48:19:50:ff:cb:5f:4a:e7:37:33:32:ca:16:53: fe:7b:14:9a:a3:b5:cf:91:03:70:c6:93:24:e1:34: 40:ef:f2:54:07:f7:39:8b:83:ff:46:48:3c:7c:14: 77:b1:5c:26:47:9f:e5:0d:f9:c5:d0:4f:9b:b3:6e: bd:84:a9:e2:22:ce:20:cf:eb:76:3c:83:4c:b8:27: 00:b9:ec:b0:ac:e9:c4:bb:56:60:cd:4e:c9:48:dc: 79:41:55:d2:46:47:44:11:cd:0c:2e:73:17:57:1c: ca:14:6a:15:b1:5e:a2:ed:0b:b0:bb:11:e4:ba:c8: 0b:68:fc:60:de:60:3e:cf:28:3a:46:fd:b6:6e:c5: 13:fd:9a:e8:eb:64:01:c4:95:3c:6b:1a:74:85:24: 57:69:e5:bb:01:21:5f:7b:3d:40:26:0f:f9:e4:03: 14:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:47:47:BC:8F:FC:DE:7F:D6:BB:05:18:53:F2:14:5A:9A:40:D3:9F X509v3 Authority Key Identifier: keyid:14:A6:CA:BC:30:2E:C1:E3:DC:E7:4D:E9:8B:F5:58:A0:42:BE:AC:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FKbKvDAuwePc503pi_VYoEK-rFY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/3E35840C523211EE84408677C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.143.148.0/24 Signature Algorithm: sha256WithRSAEncryption 45:ba:ed:41:c2:8b:2b:de:eb:08:5d:13:af:0e:58:7a:0e:91: df:30:1b:de:ed:c6:62:94:70:d6:be:ad:81:73:01:5e:d3:56: 40:45:e7:74:4c:a3:ba:32:c3:31:49:cd:3f:82:38:c8:5d:55: ac:8e:ca:a5:f3:b4:02:bf:10:97:27:0b:cf:ba:68:c6:b0:d6: ef:94:85:c6:b7:5a:7a:d3:16:84:e7:a7:23:1b:b3:f9:12:0a: a1:25:66:bd:cb:a4:18:ea:de:0c:e0:4e:7c:94:fb:5b:72:bd: d2:e8:e9:4c:0b:6b:fc:d3:fc:2c:9e:7a:fc:68:29:d9:60:7f: c3:0d:80:1c:d0:96:55:6b:7f:4e:8e:08:fb:df:74:34:0e:dd: 45:40:a8:ac:42:7f:56:c9:04:05:b4:ee:60:de:07:28:52:48: 85:50:ac:c5:3a:38:7f:f2:64:e3:b9:70:3d:58:75:65:3f:c3: 7e:f9:d0:c6:eb:ff:43:e5:de:34:ed:3c:83:c4:ec:2d:f7:db: 07:17:8a:a0:e0:b7:c8:c4:aa:d6:06:39:d4:ef:1a:bf:69:56: 47:fb:c2:e2:10:31:1b:ec:25:74:ab:18:6d:b0:0e:70:ee:a5: 17:3b:95:96:42:f4:1c:2c:95:ce:14:f1:cf:66:07:83:99:7e: 03:56:94:49 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB5YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA5REMxMTAvBgNVBAUTKDE0QTZDQUJDMzAyRUMxRTNEQ0U3NERFOThCRjU1OEEw NDJCRUFDNTYwHhcNMjQwNTA0MTk1ODI0WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjM2OTM2MC02ZDNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0vpxKg2CuZTuEKfQXKzYbhTltDDK9aJtDRdmwxf22rgeX4h5vtXbWfaBNh53 oKLC+n3RkTCsGnvzU+FmuHQBZsatrEm9IkBU7qz44gJVaF7i2hfE+QcktY4cSBlQ /8tfSuc3MzLKFlP+exSao7XPkQNwxpMk4TRA7/JUB/c5i4P/Rkg8fBR3sVwmR5/l DfnF0E+bs269hKniIs4gz+t2PINMuCcAueywrOnEu1ZgzU7JSNx5QVXSRkdEEc0M LnMXVxzKFGoVsV6i7QuwuxHkusgLaPxg3mA+zyg6Rv22bsUT/Zro62QBxJU8axp0 hSRXaeW7ASFfez1AJg/55AMUwwIDAQABo4IClTCCApEwHQYDVR0OBBYEFANHR7yP /N5/1rsFGFPyFFqaQNOfMB8GA1UdIwQYMBaAFBSmyrwwLsHj3OdN6Yv1WKBCvqxW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDlEQy9BNUJCRkFBNjA5 MzUxMUVBQUIxMEM5MUZDNEY5QUUwMi9GS2JLdkRBdXdlUGM1MDNwaV9WWW9FSy1y RlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZLYkt2REF1d2VQYzUwM3BpX1ZZb0VLLXJGWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDA5REMvQTVCQkZBQTYwOTM1MTFFQUFCMTBDOTFGQzRGOUFFMDIvM0UzNTg0MEM1 MjMyMTFFRTg0NDA4Njc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnj5QwDQYJKoZIhvcNAQELBQADggEBAEW67UHCiyve6whd E68OWHoOkd8wG97txmKUcNa+rYFzAV7TVkBF53RMo7oywzFJzT+COMhdVayOyqXz tAK/EJcnC8+6aMaw1u+Uhca3WnrTFoTnpyMbs/kSCqElZr3LpBjq3gzgTnyU+1ty vdLo6UwLa/zT/CyeevxoKdlgf8MNgBzQllVrf06OCPvfdDQO3UVAqKxCf1bJBAW0 7mDeByhSSIVQrMU6OH/yZOO5cD1YdWU/w3750Mbr/0Pl3jTtPIPE7C332wcXiqDg t8jEqtYGOdTvGr9pVkf7wuIQMRvsJXSrGG2wDnDupRc7lZZC9Bwslc4U8c9mB4OZ fgNWlEk= -----END CERTIFICATE-----Generated at Mon May 6 22:40:54 2024 by rpki-client on console-ams.rpki-client.org