$ rpki-client -vvf rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/3FA4288CD29B11ED88E16742C4F9AE02.roa File: 3FA4288CD29B11ED88E16742C4F9AE02.roa (raw, json) Hash identifier: H9emNn1+9gPabzvTbS2TTIvL+llCIynh08CxKJhQGvs= Subject key identifier: 8B:C7:2D:3D:52:AC:82:B0:E4:11:73:0C:06:84:A4:08:79:12:93:8F Certificate issuer: /CN=A91638DD/serialNumber=7211E68B57CDCDF4EDA83CF0B4623B7693F6343A Certificate serial: 23 Authority key identifier: 72:11:E6:8B:57:CD:CD:F4:ED:A8:3C:F0:B4:62:3B:76:93:F6:34:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/3FA4288CD29B11ED88E16742C4F9AE02.roa Signing time: Sat 03 Jun 2023 08:17:19 +0000 ROA not before: Sat 03 Jun 2023 08:17:19 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 45352 IP address blocks: 103.93.72.0/24 maxlen: 24 103.93.73.0/24 maxlen: 24 103.93.74.0/24 maxlen: 24 103.93.75.0/24 maxlen: 24 123.253.112.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.crl rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91638DD/serialNumber=7211E68B57CDCDF4EDA83CF0B4623B7693F6343A Validity Not Before: Jun 3 08:17:19 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=647af70f-c8a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:81:77:e9:1d:a3:b3:1f:e2:9a:26:95:f6:31: 78:92:27:4d:ab:3a:4d:81:9c:de:70:c9:9b:59:2f: ca:85:7b:c3:e3:2f:a5:53:89:e9:e7:29:7a:21:dc: 95:fe:84:dc:fc:09:16:b7:22:fa:8a:7a:29:84:ce: 2f:b3:69:3c:76:f5:3f:bc:72:7c:96:53:0a:c8:23: 48:28:b9:f1:e7:7b:24:7c:3d:94:48:31:72:4b:ee: 62:29:7c:50:2d:d6:f9:86:56:8a:c5:ab:c8:a1:ae: 2d:23:6b:fb:62:16:a5:d2:72:dd:47:36:a5:b1:c1: 07:99:6d:85:7a:6e:11:8e:00:7b:3b:7b:b6:0d:a6: 1d:ac:35:6b:df:be:09:fb:96:2c:78:d7:22:49:20: 7e:6e:c6:b7:5b:cf:fa:5c:1f:2e:df:01:7a:c7:6a: 5e:9f:26:d8:3b:88:8f:d3:93:ea:57:21:f2:0a:24: 6b:97:6a:3c:3c:67:9c:ce:ba:94:4a:a6:f9:ae:42: 30:93:a1:c6:10:29:d0:6f:d9:4d:c0:d7:ae:1a:bf: 1a:15:07:2b:58:08:ca:57:b9:20:ea:96:09:06:b9: 9b:4b:a1:51:6e:88:1b:d6:5a:ed:39:50:21:72:6d: 44:d4:77:d4:8c:44:88:68:c4:e7:bc:9d:de:c9:f1: f8:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:C7:2D:3D:52:AC:82:B0:E4:11:73:0C:06:84:A4:08:79:12:93:8F X509v3 Authority Key Identifier: keyid:72:11:E6:8B:57:CD:CD:F4:ED:A8:3C:F0:B4:62:3B:76:93:F6:34:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/3FA4288CD29B11ED88E16742C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.93.72.0/22 123.253.112.0/22 Signature Algorithm: sha256WithRSAEncryption 18:e2:57:15:8c:2c:fb:3a:13:75:57:0b:3b:2c:b1:ab:a9:06: 91:5e:83:3d:4e:b4:3a:14:53:a3:8d:ce:d6:bb:14:53:0d:b6: 11:42:32:50:d2:9b:35:8e:f6:99:fb:b9:36:22:a7:ce:a6:d5: 62:e0:97:52:46:9d:85:90:4e:f5:6b:d8:39:32:9a:22:cc:a9: f0:2e:87:ef:8d:62:50:88:6b:b6:8a:56:75:47:e3:14:c6:52: e3:79:7a:04:0c:c2:20:a1:a6:66:88:e9:bd:bc:97:e1:7a:cc: bb:b2:14:72:6a:c2:08:5c:02:b6:37:09:3c:2b:32:91:56:e6: 3b:25:90:93:a0:04:6d:d6:c4:3e:70:2b:5f:18:91:73:04:39: 19:e5:1f:d8:db:89:a1:40:1f:b9:36:21:31:cf:4a:99:95:49: 33:96:e9:d6:c9:e0:86:c4:44:62:fb:95:d3:8b:06:fb:00:b5: df:2b:a8:96:3f:3c:96:73:2d:3f:f6:1f:8f:16:5e:14:b7:5e: 68:1c:22:94:3d:f3:af:70:4d:ed:93:2f:f0:65:21:ab:e9:2f: f6:b2:49:66:ef:07:10:56:b7:80:a1:29:c9:c1:24:ed:a1:4f: 0e:f9:bf:d9:01:64:8e:de:7a:38:12:f7:b2:d5:58:fd:15:38: 3e:69:2d:a3 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBIzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MzhERDExMC8GA1UEBRMoNzIxMUU2OEI1N0NEQ0RGNEVEQTgzQ0YwQjQ2MjNCNzY5 M0Y2MzQzQTAeFw0yMzA2MDMwODE3MTlaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0N2FmNzBmLWM4YTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8gXfpHaOzH+KaJpX2MXiSJ02rOk2BnN5wyZtZL8qFe8PjL6VTiennKXoh3JX+ hNz8CRa3IvqKeimEzi+zaTx29T+8cnyWUwrII0goufHneyR8PZRIMXJL7mIpfFAt 1vmGVorFq8ihri0ja/tiFqXSct1HNqWxwQeZbYV6bhGOAHs7e7YNph2sNWvfvgn7 lix41yJJIH5uxrdbz/pcHy7fAXrHal6fJtg7iI/Tk+pXIfIKJGuXajw8Z5zOupRK pvmuQjCTocYQKdBv2U3A164avxoVBytYCMpXuSDqlgkGuZtLoVFuiBvWWu05UCFy bUTUd9SMRIhoxOe8nd7J8fhFAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUi8ctPVKs grDkEXMMBoSkCHkSk48wHwYDVR0jBBgwFoAUchHmi1fNzfTtqDzwtGI7dpP2NDow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYzOEREL0M4ODcwQ0FFRDI5 NzExRURCMDg1OEIzREM0RjlBRTAyL2NoSG1pMWZOemZUdHFEend0R0k3ZHBQMk5E by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY2hIbWkxZk56ZlR0cUR6d3RHSTdkcFAyTkRvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzhERC9DODg3MENBRUQyOTcxMUVEQjA4NThCM0RDNEY5QUUwMi8zRkE0Mjg4Q0Qy OUIxMUVEODhFMTY3NDJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAmddSAMEAnv9cDANBgkqhkiG9w0BAQsFAAOCAQEAGOJXFYws +zoTdVcLOyyxq6kGkV6DPU60OhRTo43O1rsUUw22EUIyUNKbNY72mfu5NiKnzqbV YuCXUkadhZBO9WvYOTKaIsyp8C6H741iUIhrtopWdUfjFMZS43l6BAzCIKGmZojp vbyX4XrMu7IUcmrCCFwCtjcJPCsykVbmOyWQk6AEbdbEPnArXxiRcwQ5GeUf2NuJ oUAfuTYhMc9KmZVJM5bp1snghsREYvuV04sG+wC13yuolj88lnMtP/YfjxZeFLde aBwilD3zr3BN7ZMv8GUhq+kv9rJJZu8HEFa3gKEpycEk7aFPDvm/2QFkjt56OBL3 stVY/RU4Pmktow== -----END CERTIFICATE-----Generated at Sat May 11 08:03:39 2024 by rpki-client on console-fra.rpki-client.org