$ rpki-client -vvf rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/354725E6763311EABAE64466C4F9AE02.roa File: 354725E6763311EABAE64466C4F9AE02.roa (raw, json) Hash identifier: Cq3lv6Zk0IbD7VRfp29jZdbfC7fvyWbXvi/cd+0Sx0c= Subject key identifier: 35:01:81:3F:6C:FE:52:A1:18:02:A1:3E:F9:52:37:EF:16:42:1A:FC Certificate issuer: /CN=A914E3F5/serialNumber=F1B724E40D85C54F51D621C72F896C9175C9B119 Certificate serial: 099A Authority key identifier: F1:B7:24:E4:0D:85:C5:4F:51:D6:21:C7:2F:89:6C:91:75:C9:B1:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/354725E6763311EABAE64466C4F9AE02.roa Signing time: Mon 28 Oct 2024 20:20:22 +0000 ROA not before: Mon 28 Oct 2024 20:20:22 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 137039 IP address blocks: 103.102.220.0/24 maxlen: 24 103.146.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.crl rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:48:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2458 (0x99a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E3F5/serialNumber=F1B724E40D85C54F51D621C72F896C9175C9B119 Validity Not Before: Oct 28 20:20:22 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671ff205-dfba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:1d:67:8d:d5:08:3d:86:fc:4c:a3:f4:6a:8c: 2b:c1:8a:88:c0:9e:9e:90:a0:78:eb:7b:62:8e:55: 56:6b:26:ae:b2:21:d2:de:b3:a7:22:4c:07:c2:33: fd:fd:9e:5d:ab:01:43:13:73:6a:e5:bc:48:19:02: db:c5:16:70:fd:f9:21:f1:99:41:16:13:f6:11:93: 5e:0d:03:5b:2b:57:0c:44:68:4f:de:6c:a5:3b:5f: 25:8c:4d:5f:52:90:78:fc:83:d0:2a:da:cb:10:73: b5:4e:0c:1e:b2:43:27:01:51:02:ec:9b:13:9c:9a: e1:46:3e:f8:16:66:53:b3:16:b9:10:a4:6b:1d:b3: 4d:50:f7:19:76:fe:60:f4:02:c9:09:a6:18:80:41: 40:7a:0c:f4:1b:f6:2e:43:e5:6d:fa:60:74:4a:e7: 35:21:26:94:1d:94:50:0f:24:f1:e6:cf:f9:45:e0: 6f:bf:d9:d0:25:df:a5:2e:79:c4:1d:14:30:12:e2: ef:ef:ca:28:9f:1b:8d:68:f6:1d:0f:17:b2:8a:24: 81:a4:5f:bf:09:51:26:8a:dc:6c:57:3c:db:1b:8c: 20:58:f8:a7:8e:0e:36:40:ce:2f:eb:e4:78:9c:93: 95:e0:71:56:71:25:0e:e1:96:1e:45:df:1d:2b:c4: 3d:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:01:81:3F:6C:FE:52:A1:18:02:A1:3E:F9:52:37:EF:16:42:1A:FC X509v3 Authority Key Identifier: keyid:F1:B7:24:E4:0D:85:C5:4F:51:D6:21:C7:2F:89:6C:91:75:C9:B1:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/8bck5A2FxU9R1iHHL4lskXXJsRk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bck5A2FxU9R1iHHL4lskXXJsRk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E3F5/811B604C763111EA9715F860C4F9AE02/354725E6763311EABAE64466C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.102.220.0/24 103.146.198.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:30:33:74:d0:69:19:d1:83:ac:af:e2:4f:ea:19:77:4d:e5: 92:2f:f7:72:df:98:67:56:61:bf:77:8e:8a:5f:5b:0b:51:f4: 41:3f:46:e6:af:0e:fe:3b:d0:f9:b4:58:e8:c0:a0:36:c2:0b: cd:b5:ab:92:93:85:29:ec:e3:4d:0e:d2:25:49:ec:1c:83:0d: 6f:dd:2a:fd:28:ef:8e:4e:15:86:ab:2d:03:93:15:f1:6b:70: 55:f7:80:7c:e6:21:85:e8:54:a0:1e:c0:70:24:44:94:d2:f7: eb:d9:37:35:67:64:69:c2:2c:a2:c0:32:2d:75:21:1c:6f:57: ea:07:63:68:8b:d8:ed:fb:87:14:77:2f:b3:91:6a:2e:e0:c6: e8:76:64:57:01:ba:11:10:6e:94:aa:1e:6a:cb:bc:fa:c3:a5: 35:9e:d0:3c:15:3a:dd:04:28:dd:73:af:f3:73:c1:db:4d:29: 90:05:e7:6f:fe:e2:ae:26:62:e7:29:19:6e:55:f4:92:a9:24: 95:c6:d0:7c:1a:b8:e9:a9:09:1a:7c:74:0b:53:9e:3d:a3:48: 65:9c:c3:14:f0:32:0c:d2:d3:3b:15:f3:27:26:ad:f5:8d:11: 7c:aa:63:66:f4:92:13:aa:99:82:a5:80:6d:14:b6:07:11:78: 81:03:74:53 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUzRjUxMTAvBgNVBAUTKEYxQjcyNEU0MEQ4NUM1NEY1MUQ2MjFDNzJGODk2Qzkx NzVDOUIxMTkwHhcNMjQxMDI4MjAyMDIyWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFmZjIwNS1kZmJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4x1njdUIPYb8TKP0aowrwYqIwJ6ekKB463tijlVWayausiHS3rOnIkwHwjP9 /Z5dqwFDE3Nq5bxIGQLbxRZw/fkh8ZlBFhP2EZNeDQNbK1cMRGhP3mylO18ljE1f UpB4/IPQKtrLEHO1TgweskMnAVEC7JsTnJrhRj74FmZTsxa5EKRrHbNNUPcZdv5g 9ALJCaYYgEFAegz0G/YuQ+Vt+mB0Suc1ISaUHZRQDyTx5s/5ReBvv9nQJd+lLnnE HRQwEuLv78oonxuNaPYdDxeyiiSBpF+/CVEmitxsVzzbG4wgWPinjg42QM4v6+R4 nJOV4HFWcSUO4ZYeRd8dK8Q9ZQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDUBgT9s /lKhGAKhPvlSN+8WQhr8MB8GA1UdIwQYMBaAFPG3JOQNhcVPUdYhxy+JbJF1ybEZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTNGNS84MTFCNjA0Qzc2 MzExMUVBOTcxNUY4NjBDNEY5QUUwMi84YmNrNUEyRnhVOVIxaUhITDRsc2tYWEpz UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhiY2s1QTJGeFU5UjFpSEhMNGxza1hYSnNSay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEUzRjUvODExQjYwNEM3NjMxMTFFQTk3MTVGODYwQzRGOUFFMDIvMzU0NzI1RTY3 NjMzMTFFQUJBRTY0NDY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnZtwDBABnksYwDQYJKoZIhvcNAQELBQADggEBAGowM3TQ aRnRg6yv4k/qGXdN5ZIv93LfmGdWYb93jopfWwtR9EE/RuavDv470Pm0WOjAoDbC C821q5KThSns400O0iVJ7ByDDW/dKv0o745OFYarLQOTFfFrcFX3gHzmIYXoVKAe wHAkRJTS9+vZNzVnZGnCLKLAMi11IRxvV+oHY2iL2O37hxR3L7ORai7gxuh2ZFcB uhEQbpSqHmrLvPrDpTWe0DwVOt0EKN1zr/NzwdtNKZAF52/+4q4mYucpGW5V9JKp JJXG0HwauOmpCRp8dAtTnj2jSGWcwxTwMgzS0zsV8ycmrfWNEXyqY2b0khOqmYKl gG0UtgcReIEDdFM= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:28 2024 by rpki-client on console-fra.rpki-client.org