$ rpki-client -vvf rpki.apnic.net/member_repository/A915617E/E1ADB746C99511E9BAAAB174C4F9AE02/3F67E64E62BD11EE8F393D25C4F9AE02.roa File: 3F67E64E62BD11EE8F393D25C4F9AE02.roa (raw, json) Hash identifier: 27YGiOVHeYRZmfLChwQ0MVLlQEu8P+YtfErwSj+QIxo= Subject key identifier: C4:DD:27:05:64:6B:7B:46:73:BF:80:E0:7C:A0:EA:99:38:A3:01:2E Certificate issuer: /CN=A915617E/serialNumber=D28C52ED090C539C10F222DEECD9A73C49A16804 Certificate serial: 0CE0 Authority key identifier: D2:8C:52:ED:09:0C:53:9C:10:F2:22:DE:EC:D9:A7:3C:49:A1:68:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0oxS7QkMU5wQ8iLe7NmnPEmhaAQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915617E/E1ADB746C99511E9BAAAB174C4F9AE02/3F67E64E62BD11EE8F393D25C4F9AE02.roa Signing time: Thu 08 Aug 2024 18:26:25 +0000 ROA not before: Thu 08 Aug 2024 18:26:25 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 23688 IP address blocks: 103.141.66.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915617E/E1ADB746C99511E9BAAAB174C4F9AE02/0oxS7QkMU5wQ8iLe7NmnPEmhaAQ.crl rsync://rpki.apnic.net/member_repository/A915617E/E1ADB746C99511E9BAAAB174C4F9AE02/0oxS7QkMU5wQ8iLe7NmnPEmhaAQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0oxS7QkMU5wQ8iLe7NmnPEmhaAQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:58:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3296 (0xce0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915617E/serialNumber=D28C52ED090C539C10F222DEECD9A73C49A16804 Validity Not Before: Aug 8 18:26:25 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66b50dd0-779c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:21:61:21:8f:0e:1b:aa:ef:b9:5f:c2:fe:0c: 95:66:6d:0d:ef:1c:26:ec:21:93:0f:a6:51:e3:fc: c9:c4:f8:96:1e:6b:e2:fb:ea:9a:8d:66:50:7a:51: 74:20:55:ef:05:16:84:16:d9:d9:c2:aa:55:60:fc: 20:cd:4c:41:2f:89:5f:88:25:59:98:ad:ed:97:b6: aa:aa:8d:45:b2:cd:cf:5f:91:ae:d8:d6:29:58:c8: 93:5b:8f:65:29:5d:0d:ad:9a:9e:ac:76:0b:41:f0: 32:45:81:8f:1a:df:b2:e7:71:57:1e:b2:04:d3:df: e5:44:80:70:84:df:dc:c4:10:ad:83:47:0c:e0:7d: f6:a8:cb:9f:ed:8f:2b:cf:f9:14:d2:41:d2:bb:b0: 6b:67:a4:3b:03:10:91:27:40:6b:3c:8f:4f:8b:89: 2d:c0:ea:f0:c3:e8:0d:fd:9f:95:75:cf:ab:1c:3d: d8:5f:8a:72:e2:a0:6e:6f:a9:75:69:4a:76:9e:15: d3:5e:a9:5d:75:de:8b:e0:21:20:60:02:28:1d:71: 45:47:cc:9e:cc:41:f9:12:12:2d:de:e3:15:fd:0e: f7:e8:69:af:8a:96:e8:69:e3:01:a0:10:b7:8e:a0: 26:93:a0:1c:40:6f:39:c4:69:cc:4a:db:a2:bb:39: 2b:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:DD:27:05:64:6B:7B:46:73:BF:80:E0:7C:A0:EA:99:38:A3:01:2E X509v3 Authority Key Identifier: keyid:D2:8C:52:ED:09:0C:53:9C:10:F2:22:DE:EC:D9:A7:3C:49:A1:68:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915617E/E1ADB746C99511E9BAAAB174C4F9AE02/0oxS7QkMU5wQ8iLe7NmnPEmhaAQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0oxS7QkMU5wQ8iLe7NmnPEmhaAQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915617E/E1ADB746C99511E9BAAAB174C4F9AE02/3F67E64E62BD11EE8F393D25C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.141.66.0/23 Signature Algorithm: sha256WithRSAEncryption 4b:30:73:c7:0e:71:5f:c7:93:78:70:a7:b0:5f:0c:2f:c4:85: 61:eb:1b:7b:f3:c7:ec:83:16:68:39:88:ba:ec:6e:8b:ec:29: 0e:05:14:0c:3a:31:46:27:a1:fd:f2:56:6b:8e:c6:ce:13:82: 4e:c3:a4:20:a2:bf:1d:46:8e:e7:68:9d:e3:19:28:19:ee:be: 1b:13:e0:b5:33:f1:04:b3:4f:07:bf:06:5d:4c:7f:fa:56:d8: 90:fa:5e:47:08:aa:02:2c:5d:89:16:a3:3c:10:31:95:77:6b: f1:14:87:f3:4a:39:42:65:49:0a:5c:3e:bc:4b:fa:7f:c8:ba: 40:46:0d:b0:74:d2:76:a4:be:3d:26:54:58:06:0e:7b:ef:fb: 71:e6:81:42:94:a9:4c:a3:f9:72:f4:c2:1c:48:6a:6f:12:e1: a6:b0:47:29:9e:93:fa:e3:01:62:f9:76:c3:76:8d:9e:46:fa: 01:c6:09:2a:3a:15:7a:69:c2:e6:a0:4e:49:89:74:49:eb:4f: 06:c0:35:dc:5e:5e:f8:5a:a9:e3:03:e4:34:1e:ed:da:fe:38: b0:d2:61:63:34:c0:1c:90:02:c9:80:14:37:0d:f7:d2:3b:d9: da:5e:f3:25:f8:ae:d5:07:c4:53:26:ef:55:10:13:b2:59:de: ae:70:b3:0a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYxN0UxMTAvBgNVBAUTKEQyOEM1MkVEMDkwQzUzOUMxMEYyMjJERUVDRDlBNzND NDlBMTY4MDQwHhcNMjQwODA4MTgyNjI1WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmI1MGRkMC03NzljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0CFhIY8OG6rvuV/C/gyVZm0N7xwm7CGTD6ZR4/zJxPiWHmvi++qajWZQelF0 IFXvBRaEFtnZwqpVYPwgzUxBL4lfiCVZmK3tl7aqqo1Fss3PX5Gu2NYpWMiTW49l KV0NrZqerHYLQfAyRYGPGt+y53FXHrIE09/lRIBwhN/cxBCtg0cM4H32qMuf7Y8r z/kU0kHSu7BrZ6Q7AxCRJ0BrPI9Pi4ktwOrww+gN/Z+Vdc+rHD3YX4py4qBub6l1 aUp2nhXTXqlddd6L4CEgYAIoHXFFR8yezEH5EhIt3uMV/Q736GmvipboaeMBoBC3 jqAmk6AcQG85xGnMStuiuzkr/wIDAQABo4IClTCCApEwHQYDVR0OBBYEFMTdJwVk a3tGc7+A4Hyg6pk4owEuMB8GA1UdIwQYMBaAFNKMUu0JDFOcEPIi3uzZpzxJoWgE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjE3RS9FMUFEQjc0NkM5 OTUxMUU5QkFBQUIxNzRDNEY5QUUwMi8wb3hTN1FrTVU1d1E4aUxlN05tblBFbWhh QVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBveFM3UWtNVTV3UThpTGU3Tm1uUEVtaGFBUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTYxN0UvRTFBREI3NDZDOTk1MTFFOUJBQUFCMTc0QzRGOUFFMDIvM0Y2N0U2NEU2 MkJEMTFFRThGMzkzRDI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjUIwDQYJKoZIhvcNAQELBQADggEBAEswc8cOcV/Hk3hw p7BfDC/EhWHrG3vzx+yDFmg5iLrsbovsKQ4FFAw6MUYnof3yVmuOxs4Tgk7DpCCi vx1GjudoneMZKBnuvhsT4LUz8QSzTwe/Bl1Mf/pW2JD6XkcIqgIsXYkWozwQMZV3 a/EUh/NKOUJlSQpcPrxL+n/IukBGDbB00nakvj0mVFgGDnvv+3HmgUKUqUyj+XL0 whxIam8S4aawRymek/rjAWL5dsN2jZ5G+gHGCSo6FXppwuagTkmJdEnrTwbANdxe XvhaqeMD5DQe7dr+OLDSYWM0wByQAsmAFDcN99I72dpe8yX4rtUHxFMm71UQE7JZ 3q5wswo= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:03 2024 by rpki-client on console-ams.rpki-client.org