$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/3BA851C63EB111EF9AD67663C4F9AE02.roa File: 3BA851C63EB111EF9AD67663C4F9AE02.roa (raw, json) Hash identifier: 4mppwDjl3W/rACgQ0R0xvE223w16XB4NKYTrWS/M89g= Subject key identifier: F4:EF:BE:D1:E5:99:33:7C:9B:62:B8:00:D1:0C:46:21:EA:AA:5C:E4 Certificate issuer: /CN=A915A0CD/serialNumber=38193720821E07D6918E3A79FBE0823C6732E264 Certificate serial: 0A13 Authority key identifier: 38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/3BA851C63EB111EF9AD67663C4F9AE02.roa Signing time: Wed 10 Jul 2024 11:40:40 +0000 ROA not before: Wed 10 Jul 2024 11:40:40 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 149977 IP address blocks: 111.92.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2579 (0xa13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0CD/serialNumber=38193720821E07D6918E3A79FBE0823C6732E264 Validity Not Before: Jul 10 11:40:40 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=668e7338-fc0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:87:81:77:ca:0c:39:67:3b:14:fd:95:53:ab: 0a:5d:98:1b:3f:b6:88:d2:f5:d7:d1:37:f7:40:c3: d9:e2:45:c7:ae:36:ca:37:c1:46:a0:50:5b:65:dc: 41:c6:9f:50:14:4b:ef:39:b5:12:dd:92:8a:e6:f9: 3f:8e:82:86:74:dc:27:6c:6f:a0:5c:7c:e2:24:c0: 70:68:d7:77:5d:6e:bd:f4:22:74:51:85:6a:d6:a3: f5:51:3d:12:2a:fb:fc:cc:ca:b7:89:5e:6b:a0:ae: e6:45:a1:ed:77:33:87:7e:41:f5:01:ec:25:fd:57: 7b:fd:bc:b7:c5:d7:bc:ab:86:5b:2d:12:a3:fb:73: a7:70:fa:93:c5:51:e2:ef:66:30:93:ce:19:fe:3e: ad:d4:2a:54:2c:3b:d4:8b:08:91:05:5a:f7:f6:51: 8e:d4:e5:61:5c:b2:af:cc:52:25:5c:f0:3d:c6:f8: 38:35:48:74:25:e2:84:d4:30:18:94:59:70:d5:3d: ad:9e:e1:34:17:be:00:cf:47:e2:04:44:45:4a:d8: b6:2e:68:ce:e6:ee:e3:34:75:ef:72:d9:5f:bc:de: a0:01:d5:4c:04:bf:9c:8d:3a:99:b2:9d:4a:22:e7: 79:94:ab:d2:c0:1b:8b:47:1b:05:a0:13:da:57:cb: 86:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:EF:BE:D1:E5:99:33:7C:9B:62:B8:00:D1:0C:46:21:EA:AA:5C:E4 X509v3 Authority Key Identifier: keyid:38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/3BA851C63EB111EF9AD67663C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 111.92.128.0/19 Signature Algorithm: sha256WithRSAEncryption 42:cd:ab:37:46:58:c1:e1:6b:08:75:14:c3:e0:03:e6:ec:14: 71:42:3a:2b:2e:e3:73:58:d4:2b:24:f3:2e:06:dd:29:af:d5: a1:80:db:8b:8b:8e:96:77:e2:7d:66:61:75:d0:4a:fa:23:2f: 87:9a:5a:25:01:5a:d1:b0:49:ea:94:a1:48:b4:ff:bd:f2:73: 9e:83:a2:76:b5:55:d4:b6:f5:30:ee:90:11:15:64:89:ed:b6: 0b:4f:41:e6:95:b4:cb:f2:df:55:a3:21:1f:d0:6d:49:ac:8f: b7:06:5b:51:14:47:3c:c4:a0:a2:ec:bd:0b:4c:42:5a:f3:d4: 63:eb:4e:6e:19:c1:f9:a3:17:de:41:50:32:07:d3:6c:04:7a: e3:d5:b0:a7:46:71:68:93:d1:3e:b3:8e:3c:92:4e:ab:30:72: 83:33:b2:f7:ef:d7:75:7f:53:5c:92:6c:c4:2b:83:51:57:45: 9e:72:02:92:0d:10:d7:ed:cc:45:da:9a:c3:4f:35:15:28:16: 6c:2b:71:e2:aa:6a:3f:69:15:2e:d9:d1:e0:3d:91:50:7f:65: 3e:2b:e5:53:eb:32:9b:c9:7b:0c:a3:a5:fb:d4:0f:3b:48:90: 50:ed:5a:b5:df:af:c5:a0:82:47:4a:86:22:3f:64:e2:0c:2f: e0:f6:0c:55 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICChMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwQ0QxMTAvBgNVBAUTKDM4MTkzNzIwODIxRTA3RDY5MThFM0E3OUZCRTA4MjND NjczMkUyNjQwHhcNMjQwNzEwMTE0MDQwWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjhlNzMzOC1mYzBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoIeBd8oMOWc7FP2VU6sKXZgbP7aI0vXX0Tf3QMPZ4kXHrjbKN8FGoFBbZdxB xp9QFEvvObUS3ZKK5vk/joKGdNwnbG+gXHziJMBwaNd3XW699CJ0UYVq1qP1UT0S Kvv8zMq3iV5roK7mRaHtdzOHfkH1Aewl/Vd7/by3xde8q4ZbLRKj+3OncPqTxVHi 72Ywk84Z/j6t1CpULDvUiwiRBVr39lGO1OVhXLKvzFIlXPA9xvg4NUh0JeKE1DAY lFlw1T2tnuE0F74Az0fiBERFSti2LmjO5u7jNHXvctlfvN6gAdVMBL+cjTqZsp1K Iud5lKvSwBuLRxsFoBPaV8uGcQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPTvvtHl mTN8m2K4ANEMRiHqqlzkMB8GA1UdIwQYMBaAFDgZNyCCHgfWkY46efvggjxnMuJk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBDRC80NjcyM0YxRTg5 RUMxMUVBODFDMDRGMUVDNEY5QUUwMi9PQmszSUlJZUI5YVJqanA1LS1DQ1BHY3k0 bVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09CazNJSUllQjlhUmpqcDUtLUNDUEdjeTRtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUEwQ0QvNDY3MjNGMUU4OUVDMTFFQTgxQzA0RjFFQzRGOUFFMDIvM0JBODUxQzYz RUIxMTFFRjlBRDY3NjYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAVvXIAwDQYJKoZIhvcNAQELBQADggEBAELNqzdGWMHhawh1 FMPgA+bsFHFCOisu43NY1Csk8y4G3Smv1aGA24uLjpZ34n1mYXXQSvojL4eaWiUB WtGwSeqUoUi0/73yc56Dona1VdS29TDukBEVZInttgtPQeaVtMvy31WjIR/QbUms j7cGW1EURzzEoKLsvQtMQlrz1GPrTm4ZwfmjF95BUDIH02wEeuPVsKdGcWiT0T6z jjySTqswcoMzsvfv13V/U1ySbMQrg1FXRZ5yApINENftzEXamsNPNRUoFmwrceKq aj9pFS7Z0eA9kVB/ZT4r5VPrMpvJewyjpfvUDztIkFDtWrXfr8WggkdKhiI/ZOIM L+D2DFU= -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:16 2024 by rpki-client on console-fra.rpki-client.org