$ rpki-client -vvf rpki.apnic.net/member_repository/A915BC2A/ED9F8DBADE1111ED85EC0A49C4F9AE02/3A173FE4DE1C11ED8935D41DC4F9AE02.roa File: 3A173FE4DE1C11ED8935D41DC4F9AE02.roa (raw, json) Hash identifier: YAYh7VPX1+fJkNqhGMAOJAwYwHnzOloh8Ae+N/XNZQY= Subject key identifier: 39:C7:4D:E4:FA:C1:77:F7:7F:AC:D6:BD:54:06:C4:23:58:45:0A:8C Certificate issuer: /CN=A915BC2A/serialNumber=9E055D35CF32925335CC940CC8828B63DD60730B Certificate serial: 0122 Authority key identifier: 9E:05:5D:35:CF:32:92:53:35:CC:94:0C:C8:82:8B:63:DD:60:73:0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ngVdNc8yklM1zJQMyIKLY91gcws.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915BC2A/ED9F8DBADE1111ED85EC0A49C4F9AE02/3A173FE4DE1C11ED8935D41DC4F9AE02.roa Signing time: Fri 25 Oct 2024 03:47:27 +0000 ROA not before: Fri 25 Oct 2024 03:47:27 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 7029 IP address blocks: 103.12.180.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915BC2A/ED9F8DBADE1111ED85EC0A49C4F9AE02/ngVdNc8yklM1zJQMyIKLY91gcws.crl rsync://rpki.apnic.net/member_repository/A915BC2A/ED9F8DBADE1111ED85EC0A49C4F9AE02/ngVdNc8yklM1zJQMyIKLY91gcws.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ngVdNc8yklM1zJQMyIKLY91gcws.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 290 (0x122) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915BC2A Validity Not Before: Oct 25 03:47:27 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671b14ce-8fc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:54:b9:ef:ef:68:ee:51:6d:7a:27:ff:f8:18: 13:ec:98:46:9b:be:1d:08:9c:62:cf:3e:38:44:1c: 11:41:43:9c:fe:c2:34:0f:54:fb:b8:25:89:78:a6: 6d:ab:94:ba:be:2e:81:92:ca:68:7b:17:b4:2f:4f: 81:3b:66:44:cd:6b:d7:dc:83:25:0d:b5:ff:91:e0: 35:48:4d:c0:d7:3d:b6:48:15:83:be:90:c9:a3:d5: 40:26:fb:29:08:a7:c8:9c:7a:3f:16:12:a2:f6:48: 2a:37:8d:ce:44:8d:ff:8c:c6:5c:9c:ef:07:da:df: 8b:8d:ce:2f:b3:31:e9:90:d5:90:eb:b9:c7:36:96: 3f:9d:eb:15:73:38:78:bd:b9:bb:95:dd:62:1d:ba: 5d:89:28:7d:07:50:c3:5d:c5:a1:46:92:6c:88:b1: 40:bb:1a:e9:00:72:52:28:a8:09:aa:36:87:69:ae: cd:fe:8e:b0:ee:8b:0a:47:33:04:04:0e:4f:7a:f1: d3:bc:45:b6:35:c7:be:5c:1d:89:12:df:92:dd:8d: 3b:4f:49:f9:18:ae:b9:79:b1:22:69:b7:14:95:1e: 54:30:13:44:e0:3f:82:97:0e:95:d7:59:eb:79:7c: c8:a5:1d:f9:41:66:fe:a4:4a:82:25:3b:c9:2b:82: ac:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:C7:4D:E4:FA:C1:77:F7:7F:AC:D6:BD:54:06:C4:23:58:45:0A:8C X509v3 Authority Key Identifier: keyid:9E:05:5D:35:CF:32:92:53:35:CC:94:0C:C8:82:8B:63:DD:60:73:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915BC2A/ED9F8DBADE1111ED85EC0A49C4F9AE02/ngVdNc8yklM1zJQMyIKLY91gcws.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ngVdNc8yklM1zJQMyIKLY91gcws.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BC2A/ED9F8DBADE1111ED85EC0A49C4F9AE02/3A173FE4DE1C11ED8935D41DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.12.180.0/23 Signature Algorithm: sha256WithRSAEncryption c2:1a:cb:5e:9e:9e:28:54:c8:d3:be:82:17:47:ff:eb:b2:d8: 1d:3b:50:e9:ff:bf:ab:6b:39:68:53:80:54:00:75:05:df:dd: 1a:5d:33:0c:fd:4b:99:9a:02:4a:87:b6:d4:6b:c2:56:df:bf: db:24:f3:58:cb:f9:43:6c:81:91:eb:5b:58:5b:52:72:a3:fe: 82:91:3d:b0:73:e5:ed:30:64:f8:99:49:aa:74:6d:6e:13:00: 3c:55:a9:f7:da:88:8d:59:8e:e4:ab:0e:42:fb:84:0e:13:f7: fb:48:a3:f8:d6:ef:3d:54:55:fa:44:62:a1:ee:17:97:d9:56: 63:ad:15:d0:ab:00:4d:f0:d7:21:11:e6:6d:32:11:01:66:20: d8:2a:e9:cc:48:c2:fa:aa:11:8d:7f:86:33:0c:b7:a6:c7:e9: b0:a4:cf:25:07:1d:44:9c:54:4c:b6:c1:77:56:36:4c:56:05: d2:49:f6:d5:d7:bd:6b:d3:7f:2e:f1:6d:af:89:00:fc:24:52: 14:aa:de:01:30:f7:f9:97:7d:fd:ca:a4:cc:06:00:8e:55:08: 73:a8:26:57:e8:ed:6f:de:f4:e6:c6:14:de:50:38:b1:b3:75: cf:c7:24:5f:86:db:fb:a8:1e:58:d4:22:bf:36:a8:aa:88:96: 21:2c:3b:48 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICASIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUJDMkExMTAvBgNVBAUTKDlFMDU1RDM1Q0YzMjkyNTMzNUNDOTQwQ0M4ODI4QjYz REQ2MDczMEIwHhcNMjQxMDI1MDM0NzI3WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFiMTRjZS04ZmMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4VS57+9o7lFteif/+BgT7JhGm74dCJxizz44RBwRQUOc/sI0D1T7uCWJeKZt q5S6vi6Bkspoexe0L0+BO2ZEzWvX3IMlDbX/keA1SE3A1z22SBWDvpDJo9VAJvsp CKfInHo/FhKi9kgqN43ORI3/jMZcnO8H2t+Ljc4vszHpkNWQ67nHNpY/nesVczh4 vbm7ld1iHbpdiSh9B1DDXcWhRpJsiLFAuxrpAHJSKKgJqjaHaa7N/o6w7osKRzME BA5PevHTvEW2Nce+XB2JEt+S3Y07T0n5GK65ebEiabcUlR5UMBNE4D+Clw6V11nr eXzIpR35QWb+pEqCJTvJK4KsBwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDnHTeT6 wXf3f6zWvVQGxCNYRQqMMB8GA1UdIwQYMBaAFJ4FXTXPMpJTNcyUDMiCi2PdYHML MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QkMyQS9FRDlGOERCQURF MTExMUVEODVFQzBBNDlDNEY5QUUwMi9uZ1ZkTmM4eWtsTTF6SlFNeUlLTFk5MWdj d3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25nVmROYzh5a2xNMXpKUU15SUtMWTkxZ2N3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUJDMkEvRUQ5RjhEQkFERTExMTFFRDg1RUMwQTQ5QzRGOUFFMDIvM0ExNzNGRTRE RTFDMTFFRDg5MzVENDFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnDLQwDQYJKoZIhvcNAQELBQADggEBAMIay16enihUyNO+ ghdH/+uy2B07UOn/v6trOWhTgFQAdQXf3RpdMwz9S5maAkqHttRrwlbfv9sk81jL +UNsgZHrW1hbUnKj/oKRPbBz5e0wZPiZSap0bW4TADxVqffaiI1ZjuSrDkL7hA4T 9/tIo/jW7z1UVfpEYqHuF5fZVmOtFdCrAE3w1yER5m0yEQFmINgq6cxIwvqqEY1/ hjMMt6bH6bCkzyUHHUScVEy2wXdWNkxWBdJJ9tXXvWvTfy7xba+JAPwkUhSq3gEw 9/mXff3KpMwGAI5VCHOoJlfo7W/e9ObGFN5QOLGzdc/HJF+G2/uoHljUIr82qKqI liEsO0g= -----END CERTIFICATE-----Generated at Sun Feb 16 15:51:30 2025 by rpki-client