$ rpki-client -vvf rpki.apnic.net/member_repository/A915465A/8894A70A1C5511EBAB88C182C4F9AE02/3ABCE5008B9811EE9C0BA252C4F9AE02.roa File: 3ABCE5008B9811EE9C0BA252C4F9AE02.roa (raw, json) Hash identifier: wlyD169BX96xOiFFRFEDGAmZtHB8cN4i1GCqPo9RNQA= Subject key identifier: 54:FE:C4:B2:D3:36:33:D6:FB:9B:75:F8:09:09:28:D6:91:E9:9F:5E Certificate issuer: /CN=A915465A/serialNumber=785E0BFF07B9037C60334B2DF3369281A4DC3F5A Certificate serial: 06F5 Authority key identifier: 78:5E:0B:FF:07:B9:03:7C:60:33:4B:2D:F3:36:92:81:A4:DC:3F:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eF4L_we5A3xgM0st8zaSgaTcP1o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915465A/8894A70A1C5511EBAB88C182C4F9AE02/3ABCE5008B9811EE9C0BA252C4F9AE02.roa Signing time: Wed 24 Jul 2024 22:40:59 +0000 ROA not before: Wed 24 Jul 2024 22:40:59 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 63916 IP address blocks: 103.42.212.0/22 maxlen: 22 103.42.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915465A/8894A70A1C5511EBAB88C182C4F9AE02/eF4L_we5A3xgM0st8zaSgaTcP1o.crl rsync://rpki.apnic.net/member_repository/A915465A/8894A70A1C5511EBAB88C182C4F9AE02/eF4L_we5A3xgM0st8zaSgaTcP1o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eF4L_we5A3xgM0st8zaSgaTcP1o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1781 (0x6f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915465A/serialNumber=785E0BFF07B9037C60334B2DF3369281A4DC3F5A Validity Not Before: Jul 24 22:40:59 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66a182fb-c036 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:34:49:cc:d6:71:26:a8:a5:8c:9a:43:ef:91: 28:fc:d6:6b:1e:78:c3:5c:b1:f0:64:ed:3c:84:fc: 7b:7d:04:dc:ff:9c:ce:5c:e6:df:b4:41:ee:5c:f9: 53:70:64:84:2d:95:79:b7:46:70:8f:77:d2:e3:fd: 2c:8a:5c:eb:80:a9:11:40:3a:aa:b4:84:0c:31:3b: 23:3d:d2:65:b9:22:34:5b:de:7b:d2:61:43:25:72: d0:59:0f:55:69:30:f2:9d:a6:db:c2:f2:df:45:2a: 52:bd:99:91:7a:6b:a7:eb:b4:19:d5:06:6c:c0:fe: 5a:a2:78:b8:da:65:f9:e5:e4:7d:9f:55:ba:cf:53: 33:d8:0f:31:59:ff:79:cc:5c:2f:97:46:a7:22:a0: 6d:3f:ed:aa:ef:da:d5:94:13:fc:81:b2:0f:ba:73: 04:4d:81:a4:98:91:a2:15:7b:77:e8:d0:2a:8b:9b: a0:c2:c2:d1:3c:ea:b1:0c:27:83:55:27:5e:01:ad: b5:85:a8:2a:26:17:69:50:f6:ed:7b:cf:57:2d:28: 83:c5:59:94:16:28:75:2d:2d:ec:ce:2c:45:bf:5c: a4:ac:91:da:2b:f5:82:b5:b5:a1:49:e8:3f:ad:f5: ae:37:53:ba:05:12:d2:7f:27:fa:74:bd:f6:a5:d4: 3b:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:FE:C4:B2:D3:36:33:D6:FB:9B:75:F8:09:09:28:D6:91:E9:9F:5E X509v3 Authority Key Identifier: keyid:78:5E:0B:FF:07:B9:03:7C:60:33:4B:2D:F3:36:92:81:A4:DC:3F:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915465A/8894A70A1C5511EBAB88C182C4F9AE02/eF4L_we5A3xgM0st8zaSgaTcP1o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eF4L_we5A3xgM0st8zaSgaTcP1o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915465A/8894A70A1C5511EBAB88C182C4F9AE02/3ABCE5008B9811EE9C0BA252C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.42.212.0/22 Signature Algorithm: sha256WithRSAEncryption 34:e7:e2:2a:98:63:47:2c:95:a4:95:56:b9:4c:5c:86:6a:1a: a4:03:08:33:90:46:a6:58:27:93:4f:8c:c6:34:f8:fc:6f:4d: ea:6a:50:bf:fc:44:99:2c:8d:7c:02:19:d7:a9:bf:04:46:3e: bc:c2:76:21:1c:ef:01:bd:2a:df:83:07:c8:50:32:06:fe:a9: 36:48:e4:f2:28:4a:5c:b4:b4:1a:e8:06:d3:7b:69:12:88:60: 8c:98:0f:0b:86:b9:d2:a1:08:a7:4b:b8:e0:ad:a7:b9:eb:30: f6:91:3b:1d:f8:30:c1:fd:a6:2f:c2:75:b2:62:4d:7d:38:a7: e5:b4:df:bd:9e:4a:e0:18:14:0d:d0:88:a5:50:b3:3c:73:dd: 89:1a:2b:d2:f9:0c:6a:b4:d5:17:a3:89:f2:79:9d:f6:36:c6: f6:c0:26:26:10:2e:ef:8f:62:46:27:31:12:6e:7f:4d:c3:0c: 7b:2f:1c:3b:20:88:e4:ad:de:b3:da:7d:d0:c1:c3:b1:a8:94: 27:66:03:7d:2b:a7:88:f3:32:c0:61:ff:b2:47:9f:e1:a2:2b: 3f:d9:ff:6b:7c:7c:9e:0f:0e:96:a7:7e:cb:22:e5:6f:92:0a: bf:d1:b9:23:94:73:db:d9:40:13:3a:e5:27:2e:ec:42:41:6d: ca:e9:7d:78 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBvUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQ2NUExMTAvBgNVBAUTKDc4NUUwQkZGMDdCOTAzN0M2MDMzNEIyREYzMzY5Mjgx QTREQzNGNUEwHhcNMjQwNzI0MjI0MDU5WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmExODJmYi1jMDM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4zRJzNZxJqiljJpD75Eo/NZrHnjDXLHwZO08hPx7fQTc/5zOXObftEHuXPlT cGSELZV5t0Zwj3fS4/0silzrgKkRQDqqtIQMMTsjPdJluSI0W9570mFDJXLQWQ9V aTDynabbwvLfRSpSvZmRemun67QZ1QZswP5aoni42mX55eR9n1W6z1Mz2A8xWf95 zFwvl0anIqBtP+2q79rVlBP8gbIPunMETYGkmJGiFXt36NAqi5ugwsLRPOqxDCeD VSdeAa21hagqJhdpUPbte89XLSiDxVmUFih1LS3szixFv1ykrJHaK/WCtbWhSeg/ rfWuN1O6BRLSfyf6dL32pdQ7gwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFT+xLLT NjPW+5t1+AkJKNaR6Z9eMB8GA1UdIwQYMBaAFHheC/8HuQN8YDNLLfM2koGk3D9a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDY1QS84ODk0QTcwQTFD NTUxMUVCQUI4OEMxODJDNEY5QUUwMi9lRjRMX3dlNUEzeGdNMHN0OHphU2dhVGNQ MW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VGNExfd2U1QTN4Z00wc3Q4emFTZ2FUY1Axby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTQ2NUEvODg5NEE3MEExQzU1MTFFQkFCODhDMTgyQzRGOUFFMDIvM0FCQ0U1MDA4 Qjk4MTFFRTlDMEJBMjUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnKtQwDQYJKoZIhvcNAQELBQADggEBADTn4iqYY0cslaSV VrlMXIZqGqQDCDOQRqZYJ5NPjMY0+PxvTepqUL/8RJksjXwCGdepvwRGPrzCdiEc 7wG9Kt+DB8hQMgb+qTZI5PIoSly0tBroBtN7aRKIYIyYDwuGudKhCKdLuOCtp7nr MPaROx34MMH9pi/CdbJiTX04p+W0372eSuAYFA3QiKVQszxz3YkaK9L5DGq01Rej ifJ5nfY2xvbAJiYQLu+PYkYnMRJuf03DDHsvHDsgiOSt3rPafdDBw7GolCdmA30r p4jzMsBh/7JHn+GiKz/Z/2t8fJ4PDpanfssi5W+SCr/RuSOUc9vZQBM65Scu7EJB bcrpfXg= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:08 2024 by rpki-client on console-fra.rpki-client.org