$ rpki-client -vvf rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/3FF298D41AFF11EFB20C2648C4F9AE02.roa File: 3FF298D41AFF11EFB20C2648C4F9AE02.roa (raw, json) Hash identifier: h/4RQkDOLBBPlrQUpebdiQb7wWMHpGVL3kG7tSUKXbM= Subject key identifier: DD:8F:CF:9A:F3:52:B9:E4:CA:C7:F5:63:E9:E7:D8:04:99:C6:1E:8B Certificate issuer: /CN=A9140BA4/serialNumber=E66BA892595014794BB6451D14281C8400206203 Certificate serial: 13CE Authority key identifier: E6:6B:A8:92:59:50:14:79:4B:B6:45:1D:14:28:1C:84:00:20:62:03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5muokllQFHlLtkUdFCgchAAgYgM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/3FF298D41AFF11EFB20C2648C4F9AE02.roa Signing time: Wed 24 Jul 2024 17:34:39 +0000 ROA not before: Wed 24 Jul 2024 17:34:39 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 4770 IP address blocks: 103.116.188.0/23 maxlen: 23 2001:df5:5d00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/5muokllQFHlLtkUdFCgchAAgYgM.crl rsync://rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/5muokllQFHlLtkUdFCgchAAgYgM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5muokllQFHlLtkUdFCgchAAgYgM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5070 (0x13ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140BA4/serialNumber=E66BA892595014794BB6451D14281C8400206203 Validity Not Before: Jul 24 17:34:39 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a13b2f-048a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:33:fb:09:25:ca:74:e6:51:27:bd:05:13:a1: 3d:ed:1b:24:4b:f1:c9:66:4a:7e:67:f1:d2:23:a6: 70:43:55:f7:87:6c:6f:ce:b3:ad:4a:7f:fa:35:46: 35:f2:63:ca:97:b6:23:a7:a0:5c:f3:2a:c5:46:db: 86:21:9d:3f:52:3e:e4:21:25:1d:bf:b0:2c:5f:87: 9a:b1:3c:f8:b1:6e:bc:c0:3e:9b:41:35:77:d8:a1: 79:97:bf:b9:43:6e:55:65:02:f4:31:63:20:6e:3f: 19:be:b1:e8:37:31:f9:49:b7:56:69:6c:2d:fb:22: 65:7c:2c:66:f1:f1:94:67:d1:6a:07:5e:22:51:fd: ef:bc:52:3a:5e:f9:f8:0d:dd:40:c1:9c:6e:07:f9: 24:00:a8:a9:e3:37:ca:8a:07:1f:97:ab:e3:71:c2: e2:84:e5:03:8d:c1:a3:4d:0d:00:0f:e8:a3:1e:c8: 53:05:00:77:93:96:8b:1f:4e:62:66:05:6c:01:93: 23:fe:e4:51:88:22:42:c4:27:26:2c:56:14:2b:ea: e5:41:48:c4:3f:2c:a9:dc:c1:15:17:86:be:c9:17: a5:b4:09:13:e8:45:01:ea:c0:5e:8c:e8:e8:00:4f: 02:a9:c4:16:a9:a2:61:9d:d3:44:31:8b:b8:1b:8f: cb:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:8F:CF:9A:F3:52:B9:E4:CA:C7:F5:63:E9:E7:D8:04:99:C6:1E:8B X509v3 Authority Key Identifier: keyid:E6:6B:A8:92:59:50:14:79:4B:B6:45:1D:14:28:1C:84:00:20:62:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/5muokllQFHlLtkUdFCgchAAgYgM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5muokllQFHlLtkUdFCgchAAgYgM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/3FF298D41AFF11EFB20C2648C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.116.188.0/23 IPv6: 2001:df5:5d00::/48 Signature Algorithm: sha256WithRSAEncryption 7a:fd:d5:90:3a:a5:ef:4c:d7:07:00:ad:50:1b:32:9b:0d:9f: c8:ae:67:2d:c9:6a:5e:cc:33:a8:61:f1:09:dc:dd:0b:2b:89: ac:ab:80:d0:7f:5d:25:4b:86:78:5f:e1:d1:bc:e6:00:f2:1d: d9:e5:2f:1f:ca:fa:a8:37:56:85:06:25:40:a1:88:d5:23:02: 34:32:af:06:49:1e:03:ea:30:a9:6f:e5:36:df:49:db:4d:79: ca:a8:27:de:da:c0:a6:6a:6b:3e:02:cd:fc:41:33:be:ca:69: db:1e:58:98:1d:ac:5d:6c:e6:3d:9d:e4:85:df:18:bf:66:3e: 38:14:2d:c8:69:15:e9:43:e5:13:1a:df:18:5a:e0:bb:7a:87: 0f:93:10:ed:c8:08:5e:87:24:3a:56:fd:9e:84:7d:0c:35:6c: 85:fc:5f:bf:b2:7a:e2:ff:aa:dc:73:95:22:9b:3c:d2:85:6b: 60:a8:81:d1:3b:a2:b7:b7:1d:5c:3f:45:ea:d0:6e:29:d8:e8: 7e:a9:c6:b5:30:f9:04:f7:9f:22:2a:4e:47:29:f8:ef:85:3e: 30:d5:3d:47:64:47:9b:a0:bb:a7:b4:ff:a6:82:a7:d3:a2:ea: d7:cd:d4:59:30:09:65:63:81:b8:7b:f7:0a:30:68:76:be:e0: c5:a1:d9:f4 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICE84wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBCQTQxMTAvBgNVBAUTKEU2NkJBODkyNTk1MDE0Nzk0QkI2NDUxRDE0MjgxQzg0 MDAyMDYyMDMwHhcNMjQwNzI0MTczNDM5WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmExM2IyZi0wNDhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyzP7CSXKdOZRJ70FE6E97RskS/HJZkp+Z/HSI6ZwQ1X3h2xvzrOtSn/6NUY1 8mPKl7Yjp6Bc8yrFRtuGIZ0/Uj7kISUdv7AsX4easTz4sW68wD6bQTV32KF5l7+5 Q25VZQL0MWMgbj8ZvrHoNzH5SbdWaWwt+yJlfCxm8fGUZ9FqB14iUf3vvFI6Xvn4 Dd1AwZxuB/kkAKip4zfKigcfl6vjccLihOUDjcGjTQ0AD+ijHshTBQB3k5aLH05i ZgVsAZMj/uRRiCJCxCcmLFYUK+rlQUjEPyyp3MEVF4a+yReltAkT6EUB6sBejOjo AE8CqcQWqaJhndNEMYu4G4/LpQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFN2Pz5rz Urnkysf1Y+nn2ASZxh6LMB8GA1UdIwQYMBaAFOZrqJJZUBR5S7ZFHRQoHIQAIGID MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEJBNC80N0U5MjY4NjY4 RUQxMUU4OTBFMzk1NDlDNEY5QUUwMi81bXVva2xsUUZIbEx0a1VkRkNnY2hBQWdZ Z00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVtdW9rbGxRRkhsTHRrVWRGQ2djaEFBZ1lnTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDBCQTQvNDdFOTI2ODY2OEVEMTFFODkwRTM5NTQ5QzRGOUFFMDIvM0ZGMjk4RDQx QUZGMTFFRkIyMEMyNjQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFndLwwDwQCAAIwCQMHACABDfVdADANBgkqhkiG9w0BAQsF AAOCAQEAev3VkDql70zXBwCtUBsymw2fyK5nLclqXswzqGHxCdzdCyuJrKuA0H9d JUuGeF/h0bzmAPId2eUvH8r6qDdWhQYlQKGI1SMCNDKvBkkeA+owqW/lNt9J2015 yqgn3trApmprPgLN/EEzvspp2x5YmB2sXWzmPZ3khd8Yv2Y+OBQtyGkV6UPlExrf GFrgu3qHD5MQ7cgIXockOlb9noR9DDVshfxfv7J64v+q3HOVIps80oVrYKiB0Tui t7cdXD9F6tBuKdjofqnGtTD5BPefIipORyn474U+MNU9R2RHm6C7p7T/poKn06Lq 183UWTAJZWOBuHv3CjBodr7gxaHZ9A== -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:00 2024 by rpki-client on console-ams.rpki-client.org