$ rpki-client -vvf rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/3BEF1820AFBA11EA8449B980C4F9AE02.roa File: 3BEF1820AFBA11EA8449B980C4F9AE02.roa (raw, json) Hash identifier: gPKeAauxJO04bI49waq1qk9LVY9PKcMS2qliPpV085E= Subject key identifier: CC:DB:48:AE:98:C0:A7:F7:35:5A:E4:59:49:23:DD:1C:E2:BD:74:62 Certificate issuer: /CN=A915418F/serialNumber=D1B6BE7CD51545813EC31766807ACDD987A90FDF Certificate serial: 0770 Authority key identifier: D1:B6:BE:7C:D5:15:45:81:3E:C3:17:66:80:7A:CD:D9:87:A9:0F:DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ba-fNUVRYE-wxdmgHrN2YepD98.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/3BEF1820AFBA11EA8449B980C4F9AE02.roa Signing time: Fri 02 Jun 2023 23:04:49 +0000 ROA not before: Fri 02 Jun 2023 23:04:49 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 135386 IP address blocks: 103.118.48.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/0ba-fNUVRYE-wxdmgHrN2YepD98.crl rsync://rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/0ba-fNUVRYE-wxdmgHrN2YepD98.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ba-fNUVRYE-wxdmgHrN2YepD98.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 09 Jun 2023 22:17:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1904 (0x770) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915418F/serialNumber=D1B6BE7CD51545813EC31766807ACDD987A90FDF Validity Not Before: Jun 2 23:04:49 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=647a7590-c4e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a5:4d:a1:59:90:ff:da:d6:77:30:5a:3c:94: e9:91:e6:3e:50:ba:dc:a4:0e:67:d2:15:22:93:42: 76:b2:d5:d6:d9:bb:ae:44:e0:06:98:fb:4b:1a:40: 82:06:81:bf:2b:77:4f:8d:73:8c:a4:9e:1b:24:e1: eb:41:22:37:a1:81:bc:ab:49:c4:7e:8e:b1:a4:99: e9:71:0e:01:02:75:ca:dc:0d:d5:77:21:df:b6:46: 01:f4:d9:95:02:48:75:59:2e:6c:7b:8e:e7:ad:90: 4e:29:75:aa:2d:60:c1:40:c3:17:f0:ed:53:b1:43: 8d:5e:4f:17:d0:4c:5a:7c:6c:99:7a:59:36:77:40: 32:e2:7f:e0:12:8e:f7:b4:7c:c1:85:af:0a:2a:76: fa:af:ea:c8:ac:b3:74:97:af:c8:c8:0f:68:9a:80: 5e:f0:6b:02:8f:14:ad:f4:c7:09:05:4f:ec:19:a8: 49:01:b4:70:87:5a:ba:5e:7b:92:88:fa:d2:d0:a1: 02:ae:71:5e:6c:4b:e8:1e:62:ae:8a:38:09:2b:48: bd:27:13:b3:2b:b3:7e:ff:15:86:7e:33:a2:6a:53: fd:c0:06:25:93:d6:b7:8a:cf:81:98:89:f8:77:85: 5d:e0:5f:85:57:38:6c:51:a6:20:ce:b7:33:58:e5: 6c:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:DB:48:AE:98:C0:A7:F7:35:5A:E4:59:49:23:DD:1C:E2:BD:74:62 X509v3 Authority Key Identifier: keyid:D1:B6:BE:7C:D5:15:45:81:3E:C3:17:66:80:7A:CD:D9:87:A9:0F:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/0ba-fNUVRYE-wxdmgHrN2YepD98.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0ba-fNUVRYE-wxdmgHrN2YepD98.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915418F/75B90D24AFB811EAA76E5E7BC4F9AE02/3BEF1820AFBA11EA8449B980C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.118.48.0/23 Signature Algorithm: sha256WithRSAEncryption 1b:ea:58:f3:e2:49:71:b3:ea:86:e6:64:ee:f3:7c:70:74:df: f8:01:63:6d:dd:15:22:13:54:09:0d:72:ae:d8:dd:3d:98:b9: 05:52:fa:74:ae:7d:1b:c8:26:b4:bb:35:7b:37:54:73:5d:18: af:e9:88:49:a8:2c:d8:a9:65:e2:d9:c9:32:24:8f:ca:cb:ec: 8d:85:35:fc:65:22:90:95:a8:77:7b:74:44:6e:ce:77:b5:24: ed:24:ba:a8:5d:11:c7:e3:42:2b:be:13:0a:3a:3f:c0:12:36: ba:42:6b:af:4d:3c:ee:25:98:ef:83:c5:82:ca:75:d4:26:0d: 17:69:b2:52:cc:fb:cc:ba:bf:d1:10:9d:54:b1:b8:82:4e:ce: a7:96:ca:70:55:df:5e:d5:6b:d2:80:b1:d1:dd:86:ff:98:21: e2:96:91:c3:b9:e5:84:18:28:6f:e5:d7:ea:36:50:e7:b6:25: 6d:36:13:f8:1a:49:2a:a0:4c:36:20:ab:2d:ef:be:32:f4:87: 49:35:d7:27:2e:02:a7:fe:4a:0f:32:7c:b8:62:27:9b:c0:d0: db:59:e7:8b:fd:cd:06:62:fb:3b:f0:f5:64:cd:ca:2f:ef:8c: 36:0c:cb:bd:78:26:70:a3:4b:f3:c8:3b:62:7b:aa:84:fa:33: 05:03:22:86 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB3AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQxOEYxMTAvBgNVBAUTKEQxQjZCRTdDRDUxNTQ1ODEzRUMzMTc2NjgwN0FDREQ5 ODdBOTBGREYwHhcNMjMwNjAyMjMwNDQ5WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDdhNzU5MC1jNGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtaVNoVmQ/9rWdzBaPJTpkeY+ULrcpA5n0hUik0J2stXW2buuROAGmPtLGkCC BoG/K3dPjXOMpJ4bJOHrQSI3oYG8q0nEfo6xpJnpcQ4BAnXK3A3VdyHftkYB9NmV Akh1WS5se47nrZBOKXWqLWDBQMMX8O1TsUONXk8X0ExafGyZelk2d0Ay4n/gEo73 tHzBha8KKnb6r+rIrLN0l6/IyA9omoBe8GsCjxSt9McJBU/sGahJAbRwh1q6XnuS iPrS0KECrnFebEvoHmKuijgJK0i9JxOzK7N+/xWGfjOialP9wAYlk9a3is+BmIn4 d4Vd4F+FVzhsUaYgzrczWOVsOQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMzbSK6Y wKf3NVrkWUkj3RzivXRiMB8GA1UdIwQYMBaAFNG2vnzVFUWBPsMXZoB6zdmHqQ/f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDE4Ri83NUI5MEQyNEFG QjgxMUVBQTc2RTVFN0JDNEY5QUUwMi8wYmEtZk5VVlJZRS13eGRtZ0hyTjJZZXBE OTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBiYS1mTlVWUllFLXd4ZG1nSHJOMlllcEQ5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTQxOEYvNzVCOTBEMjRBRkI4MTFFQUE3NkU1RTdCQzRGOUFFMDIvM0JFRjE4MjBB RkJBMTFFQTg0NDlCOTgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFndjAwDQYJKoZIhvcNAQELBQADggEBABvqWPPiSXGz6obm ZO7zfHB03/gBY23dFSITVAkNcq7Y3T2YuQVS+nSufRvIJrS7NXs3VHNdGK/piEmo LNipZeLZyTIkj8rL7I2FNfxlIpCVqHd7dERuzne1JO0kuqhdEcfjQiu+Ewo6P8AS NrpCa69NPO4lmO+DxYLKddQmDRdpslLM+8y6v9EQnVSxuIJOzqeWynBV317Va9KA sdHdhv+YIeKWkcO55YQYKG/l1+o2UOe2JW02E/gaSSqgTDYgqy3vvjL0h0k11ycu Aqf+Sg8yfLhiJ5vA0NtZ54v9zQZi+zvw9WTNyi/vjDYMy714JnCjS/PIO2J7qoT6 MwUDIoY= -----END CERTIFICATE-----Generated at Fri Jun 2 23:28:23 2023 by rpki-client on console-ams.rpki-client.org