$ rpki-client -vvf rpki.apnic.net/member_repository/A9155374/336E58EC012B11EBB6C89E1CC4F9AE02/334C06CE012C11EBA97D451DC4F9AE02.roa File: 334C06CE012C11EBA97D451DC4F9AE02.roa (raw, json) Hash identifier: laoioFpup0/R4a51Kz+uVq1E8ssrCy6169Ky/npe8Zo= Subject key identifier: 48:9C:24:14:AD:83:62:7A:C7:8C:49:04:CD:F7:09:5B:3E:FC:7A:B9 Certificate issuer: /CN=A9155374/serialNumber=9BF574DF5E7F99BD436BAA5052F8CA8CFB31A2B9 Certificate serial: 06FD Authority key identifier: 9B:F5:74:DF:5E:7F:99:BD:43:6B:AA:50:52:F8:CA:8C:FB:31:A2:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m_V0315_mb1Da6pQUvjKjPsxork.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155374/336E58EC012B11EBB6C89E1CC4F9AE02/334C06CE012C11EBA97D451DC4F9AE02.roa Signing time: Tue 04 Jun 2024 23:21:43 +0000 ROA not before: Tue 04 Jun 2024 23:21:43 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 138973 IP address blocks: 103.137.245.0/24 maxlen: 24 103.157.98.0/24 maxlen: 24 2001:df0:2780::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155374/336E58EC012B11EBB6C89E1CC4F9AE02/m_V0315_mb1Da6pQUvjKjPsxork.crl rsync://rpki.apnic.net/member_repository/A9155374/336E58EC012B11EBB6C89E1CC4F9AE02/m_V0315_mb1Da6pQUvjKjPsxork.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m_V0315_mb1Da6pQUvjKjPsxork.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1789 (0x6fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155374/serialNumber=9BF574DF5E7F99BD436BAA5052F8CA8CFB31A2B9 Validity Not Before: Jun 4 23:21:43 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=665fa187-c108 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:5f:7b:23:e6:f1:fb:25:9f:04:28:59:41:84: 19:16:39:26:5b:02:c5:29:3a:b3:d9:af:d0:7b:e2: 4a:55:eb:d7:3b:db:4b:fa:34:81:20:74:e5:91:32: de:f9:f9:ff:d4:61:0d:77:27:98:f9:b2:c2:74:45: 64:54:50:3b:34:19:9c:52:0f:14:b5:ed:91:67:66: 65:99:12:bd:d5:cd:32:dd:18:1d:0e:3a:36:b4:f5: 22:35:9c:90:6b:2d:c8:16:2b:bc:07:b0:6d:d7:f7: b2:85:8c:a0:dc:0b:ba:5a:f7:c4:d0:0f:1e:ff:cd: c0:2a:15:49:bc:10:9a:18:a1:7f:4a:0b:9c:33:4f: ac:13:3b:e5:26:e5:f4:43:b5:f7:6f:db:7c:0c:e0: 51:37:ae:14:fa:92:f7:1f:d8:b1:08:fc:d1:a3:04: 44:6a:d2:d0:aa:e4:76:42:b7:a6:af:2a:b3:98:16: eb:3b:70:bc:46:39:a6:1f:eb:f2:58:b2:60:90:28: 61:9a:6b:92:9f:7a:49:ab:e5:68:72:ff:65:79:e9: 8e:6d:1d:78:e9:7e:d0:65:8a:c5:6f:9c:5e:70:d8: 53:00:23:3a:39:92:a0:be:65:40:eb:f1:6f:72:e2: 42:54:d8:3a:d1:bb:0c:40:28:ff:83:0c:94:50:31: e2:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:9C:24:14:AD:83:62:7A:C7:8C:49:04:CD:F7:09:5B:3E:FC:7A:B9 X509v3 Authority Key Identifier: keyid:9B:F5:74:DF:5E:7F:99:BD:43:6B:AA:50:52:F8:CA:8C:FB:31:A2:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155374/336E58EC012B11EBB6C89E1CC4F9AE02/m_V0315_mb1Da6pQUvjKjPsxork.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m_V0315_mb1Da6pQUvjKjPsxork.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155374/336E58EC012B11EBB6C89E1CC4F9AE02/334C06CE012C11EBA97D451DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.137.245.0/24 103.157.98.0/24 IPv6: 2001:df0:2780::/48 Signature Algorithm: sha256WithRSAEncryption ba:8a:0f:36:53:d7:da:7f:64:c9:0f:21:6f:75:c4:bb:22:76: 1d:8d:c6:45:b5:97:0f:68:69:1c:db:2c:e4:34:84:ff:87:84: 00:29:4a:d0:35:4b:7c:85:bc:96:e2:b1:2e:2a:77:2b:6c:3a: f7:46:44:1b:aa:b8:e1:42:34:fc:3c:df:99:11:13:6e:02:25: 50:d9:8a:24:04:6d:85:46:dd:a4:f1:06:93:94:c6:dc:db:60: 5d:d6:53:26:96:69:dd:ce:08:0f:e2:bc:21:b6:cb:18:6e:05: 05:76:f3:da:ec:33:36:f6:67:48:c2:e4:ef:88:76:2d:7c:b1: 93:a4:3a:79:7e:b4:e4:a7:2f:d0:9e:8e:7b:5f:13:e0:8a:88: 4b:9d:a6:01:e8:9d:4f:3a:da:4b:c7:7b:b2:07:26:29:6f:1d: 92:77:af:90:a5:51:27:ff:e5:c6:17:a0:95:b7:6d:88:0f:fc: 1b:d0:99:86:fc:e0:43:2c:10:c2:3d:86:91:27:15:02:4b:bf: b8:25:96:53:8c:26:a0:80:85:d6:62:9d:37:39:18:74:8a:b4: cd:f1:0d:82:58:23:eb:a1:3b:a4:77:f8:61:2b:42:b2:6e:31: 29:7f:de:af:28:db:94:46:2e:54:53:e8:42:00:ea:ce:3a:e6: 6d:dc:ca:26 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICBv0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTUzNzQxMTAvBgNVBAUTKDlCRjU3NERGNUU3Rjk5QkQ0MzZCQUE1MDUyRjhDQThD RkIzMUEyQjkwHhcNMjQwNjA0MjMyMTQzWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVmYTE4Ny1jMTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyl97I+bx+yWfBChZQYQZFjkmWwLFKTqz2a/Qe+JKVevXO9tL+jSBIHTlkTLe +fn/1GENdyeY+bLCdEVkVFA7NBmcUg8Ute2RZ2ZlmRK91c0y3RgdDjo2tPUiNZyQ ay3IFiu8B7Bt1/eyhYyg3Au6WvfE0A8e/83AKhVJvBCaGKF/SgucM0+sEzvlJuX0 Q7X3b9t8DOBRN64U+pL3H9ixCPzRowREatLQquR2QremryqzmBbrO3C8RjmmH+vy WLJgkChhmmuSn3pJq+Vocv9leemObR146X7QZYrFb5xecNhTACM6OZKgvmVA6/Fv cuJCVNg60bsMQCj/gwyUUDHifwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFEicJBSt g2J6x4xJBM33CVs+/Hq5MB8GA1UdIwQYMBaAFJv1dN9ef5m9Q2uqUFL4yoz7MaK5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTM3NC8zMzZFNThFQzAx MkIxMUVCQjZDODlFMUNDNEY5QUUwMi9tX1YwMzE1X21iMURhNnBRVXZqS2pQc3hv cmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21fVjAzMTVfbWIxRGE2cFFVdmpLalBzeG9yay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTUzNzQvMzM2RTU4RUMwMTJCMTFFQkI2Qzg5RTFDQzRGOUFFMDIvMzM0QzA2Q0Uw MTJDMTFFQkE5N0Q0NTFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnifUDBABnnWIwDwQCAAIwCQMHACABDfAngDANBgkqhkiG 9w0BAQsFAAOCAQEAuooPNlPX2n9kyQ8hb3XEuyJ2HY3GRbWXD2hpHNss5DSE/4eE AClK0DVLfIW8luKxLip3K2w690ZEG6q44UI0/DzfmRETbgIlUNmKJARthUbdpPEG k5TG3NtgXdZTJpZp3c4ID+K8IbbLGG4FBXbz2uwzNvZnSMLk74h2LXyxk6Q6eX60 5Kcv0J6Oe18T4IqIS52mAeidTzraS8d7sgcmKW8dknevkKVRJ//lxheglbdtiA/8 G9CZhvzgQywQwj2GkScVAku/uCWWU4wmoICF1mKdNzkYdIq0zfENglgj66E7pHf4 YStCsm4xKX/eryjblEYuVFPoQgDqzjrmbdzKJg== -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:08 2024 by rpki-client on console-fra.rpki-client.org