$ rpki-client -vvf rpki.apnic.net/member_repository/A91623B9/78CEACBC2B3611ECAD595B7CC4F9AE02/3B943DB8A12F11EF8A121F33C4F9AE02.roa File: 3B943DB8A12F11EF8A121F33C4F9AE02.roa (raw, json) Hash identifier: Fio+E+TqjXWL7GwWwCwhglIfOmE4zI9QNWAbq0Ve0PY= Subject key identifier: 28:DB:75:45:77:11:6C:A9:67:B7:8F:37:EF:E7:A9:3E:94:3D:2C:DD Certificate issuer: /CN=A91623B9/serialNumber=98E1ECBD45D7879F9BC9439F4C6C2F2714AD36F5 Certificate serial: 048A Authority key identifier: 98:E1:EC:BD:45:D7:87:9F:9B:C9:43:9F:4C:6C:2F:27:14:AD:36:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mOHsvUXXh5-byUOfTGwvJxStNvU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91623B9/78CEACBC2B3611ECAD595B7CC4F9AE02/3B943DB8A12F11EF8A121F33C4F9AE02.roa Signing time: Tue 12 Nov 2024 19:49:31 +0000 ROA not before: Tue 12 Nov 2024 19:49:31 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 197537 IP address blocks: 103.174.96.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91623B9/78CEACBC2B3611ECAD595B7CC4F9AE02/mOHsvUXXh5-byUOfTGwvJxStNvU.crl rsync://rpki.apnic.net/member_repository/A91623B9/78CEACBC2B3611ECAD595B7CC4F9AE02/mOHsvUXXh5-byUOfTGwvJxStNvU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mOHsvUXXh5-byUOfTGwvJxStNvU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 23:31:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1162 (0x48a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91623B9/serialNumber=98E1ECBD45D7879F9BC9439F4C6C2F2714AD36F5 Validity Not Before: Nov 12 19:49:31 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6733b14a-aaae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:b9:b3:d4:ac:e2:78:18:be:90:43:52:79:41: 69:75:f5:a4:23:98:5a:51:34:9a:4b:62:45:8b:ee: f3:bb:f0:5b:64:8b:34:12:5f:f5:a7:75:ba:be:eb: 00:a5:b0:a2:41:2f:c8:70:27:b7:14:47:58:e7:1b: 10:e7:4d:5b:84:12:7d:80:71:44:b8:bc:44:74:ef: ad:ae:bf:1f:90:ca:ad:b8:04:a4:c5:79:17:65:6d: a6:64:36:30:23:64:28:cb:1b:3d:46:59:ed:7d:e0: 41:8b:84:98:94:a3:d9:a6:b4:1e:b0:15:a8:85:a4: df:bd:4d:77:ec:d3:cd:d9:77:68:4e:24:74:81:25: 14:1f:cb:71:3d:af:5d:74:45:eb:93:44:81:ab:46: 90:50:73:af:91:7c:53:27:c3:d1:fc:c4:12:6e:a3: 29:25:0f:71:eb:07:0b:c4:e6:ac:0d:ff:72:e9:ce: 66:ce:f5:41:00:24:30:9a:96:37:48:45:51:d0:03: 14:44:c2:96:59:b0:bf:c9:a8:dc:a1:22:82:38:44: a2:8a:8d:c8:af:5a:82:67:b2:cc:10:36:e2:24:88: 4b:fa:3b:ed:59:00:f1:38:9b:96:2b:36:40:6e:b5: 9c:7c:6f:28:ef:b6:48:ce:1e:f4:8c:bc:dc:19:9a: f5:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:DB:75:45:77:11:6C:A9:67:B7:8F:37:EF:E7:A9:3E:94:3D:2C:DD X509v3 Authority Key Identifier: keyid:98:E1:EC:BD:45:D7:87:9F:9B:C9:43:9F:4C:6C:2F:27:14:AD:36:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91623B9/78CEACBC2B3611ECAD595B7CC4F9AE02/mOHsvUXXh5-byUOfTGwvJxStNvU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mOHsvUXXh5-byUOfTGwvJxStNvU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91623B9/78CEACBC2B3611ECAD595B7CC4F9AE02/3B943DB8A12F11EF8A121F33C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.174.96.0/23 Signature Algorithm: sha256WithRSAEncryption 82:1a:b5:7a:74:41:7a:61:91:56:4b:ef:27:6f:48:f8:9c:68: d0:2e:66:ec:f5:af:4e:8d:cf:77:18:a8:a0:52:d0:85:f5:95: 3b:87:d4:17:38:88:aa:e8:5d:7e:c2:8e:ef:37:e0:7d:65:9f: dc:5b:aa:91:61:97:ec:c7:02:41:5a:36:0c:87:e1:92:aa:88: 01:46:ac:91:ca:ad:23:08:49:9a:4c:21:6d:61:44:de:4b:04: 44:fe:3f:56:ac:29:6a:f9:ae:0b:1b:2f:7f:2b:79:88:4a:35: b0:77:ff:b9:b8:e1:9e:e3:4b:bf:d6:ef:3b:9a:be:02:a1:20: e2:b1:77:61:4c:6c:ef:0a:70:e0:da:b8:55:ce:fb:5d:64:f8: 31:b0:25:79:ee:8c:03:2a:12:4f:09:e5:07:ac:9a:21:3e:d4: 6c:32:32:d0:90:58:08:81:2d:d8:43:cb:c6:fb:a2:8d:6e:b3: a9:27:47:61:21:67:81:2e:25:a8:d3:c4:04:6f:e6:c8:f0:a5: 45:2a:a6:6a:a5:88:4a:ed:9c:9a:33:14:0f:48:1e:b8:a3:c3: 0d:c5:e5:5c:27:6b:03:33:db:fe:45:0f:29:e5:51:8c:d8:65: dc:ee:98:ad:45:9b:d7:c5:87:8c:79:71:1d:f5:15:e8:25:d8: be:09:04:d2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjIzQjkxMTAvBgNVBAUTKDk4RTFFQ0JENDVENzg3OUY5QkM5NDM5RjRDNkMyRjI3 MTRBRDM2RjUwHhcNMjQxMTEyMTk0OTMxWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzMzYjE0YS1hYWFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq7mz1KzieBi+kENSeUFpdfWkI5haUTSaS2JFi+7zu/BbZIs0El/1p3W6vusA pbCiQS/IcCe3FEdY5xsQ501bhBJ9gHFEuLxEdO+trr8fkMqtuASkxXkXZW2mZDYw I2Qoyxs9RlntfeBBi4SYlKPZprQesBWohaTfvU137NPN2XdoTiR0gSUUH8txPa9d dEXrk0SBq0aQUHOvkXxTJ8PR/MQSbqMpJQ9x6wcLxOasDf9y6c5mzvVBACQwmpY3 SEVR0AMURMKWWbC/yajcoSKCOESiio3Ir1qCZ7LMEDbiJIhL+jvtWQDxOJuWKzZA brWcfG8o77ZIzh70jLzcGZr1XQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCjbdUV3 EWypZ7ePN+/nqT6UPSzdMB8GA1UdIwQYMBaAFJjh7L1F14efm8lDn0xsLycUrTb1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjNCOS83OENFQUNCQzJC MzYxMUVDQUQ1OTVCN0NDNEY5QUUwMi9tT0hzdlVYWGg1LWJ5VU9mVEd3dkp4U3RO dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21PSHN2VVhYaDUtYnlVT2ZUR3d2SnhTdE52VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjIzQjkvNzhDRUFDQkMyQjM2MTFFQ0FENTk1QjdDQzRGOUFFMDIvM0I5NDNEQjhB MTJGMTFFRjhBMTIxRjMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnrmAwDQYJKoZIhvcNAQELBQADggEBAIIatXp0QXphkVZL 7ydvSPicaNAuZuz1r06Nz3cYqKBS0IX1lTuH1Bc4iKroXX7Cju834H1ln9xbqpFh l+zHAkFaNgyH4ZKqiAFGrJHKrSMISZpMIW1hRN5LBET+P1asKWr5rgsbL38reYhK NbB3/7m44Z7jS7/W7zuavgKhIOKxd2FMbO8KcODauFXO+11k+DGwJXnujAMqEk8J 5QesmiE+1GwyMtCQWAiBLdhDy8b7oo1us6knR2EhZ4EuJajTxARv5sjwpUUqpmql iErtnJozFA9IHrijww3F5VwnawMz2/5FDynlUYzYZdzumK1Fm9fFh4x5cR31Fegl 2L4JBNI= -----END CERTIFICATE-----Generated at Mon Nov 25 01:01:28 2024 by rpki-client on console-ams.rpki-client.org