$ rpki-client -vvf rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/3FA4288CD29B11ED88E16742C4F9AE02.roa File: 3FA4288CD29B11ED88E16742C4F9AE02.roa (raw, json) Hash identifier: IKV0Cgq2EuODSbPKQtSmxiMFKVMR6YDH69S9tC4UdAU= Subject key identifier: AB:94:B0:D8:AA:F7:39:5A:B7:6F:A6:D1:54:5B:B3:30:79:35:D0:F4 Certificate issuer: /CN=A91638DD/serialNumber=7211E68B57CDCDF4EDA83CF0B4623B7693F6343A Certificate serial: E1 Authority key identifier: 72:11:E6:8B:57:CD:CD:F4:ED:A8:3C:F0:B4:62:3B:76:93:F6:34:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/3FA4288CD29B11ED88E16742C4F9AE02.roa Signing time: Wed 05 Jun 2024 06:45:47 +0000 ROA not before: Wed 05 Jun 2024 06:45:47 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 45352 IP address blocks: 103.93.72.0/24 maxlen: 24 103.93.73.0/24 maxlen: 24 103.93.74.0/24 maxlen: 24 103.93.75.0/24 maxlen: 24 123.253.112.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.crl rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:46:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 225 (0xe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91638DD/serialNumber=7211E68B57CDCDF4EDA83CF0B4623B7693F6343A Validity Not Before: Jun 5 06:45:47 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6660099b-f5f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:78:6f:8a:6d:97:ac:77:e4:6e:d0:28:de:f9: 84:60:e9:bb:d9:d1:4d:21:9f:7d:09:16:bc:4c:21: cc:80:d8:f1:92:7a:83:51:09:73:98:80:38:d3:65: 7a:cd:08:11:92:53:07:7e:e3:9b:52:b3:0e:19:78: 73:ae:0b:aa:99:23:7b:e6:11:81:24:e3:93:77:d3: a4:2b:03:f2:49:32:87:06:15:b4:29:f6:b9:09:4e: b2:43:e4:17:55:6c:e9:19:27:49:72:e2:80:e6:53: 3f:4b:97:f0:84:91:7c:b4:78:87:0a:9b:78:6c:30: 78:de:52:75:59:68:c6:53:83:4f:28:8d:71:9b:42: 38:ca:ab:1f:64:b0:d4:97:fd:d2:2f:f8:16:d6:f9: 26:26:b8:34:3a:9a:a2:75:13:00:14:0e:87:b1:47: e8:a2:3a:cb:ad:f7:b8:01:6e:f7:3f:4f:b9:41:bf: 28:a7:9e:cf:e9:51:4d:01:e1:a3:ac:9f:d3:c8:d8: 56:2a:39:ad:68:98:14:aa:90:35:6a:54:42:7b:1d: 37:eb:10:5f:12:3a:35:be:60:cc:1a:6a:09:bb:5f: 61:7b:e7:4a:f0:58:c4:56:ff:b9:f4:f4:7c:9d:2a: e3:3c:f3:7f:15:b4:81:cc:54:79:77:ae:2e:35:3c: f7:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:94:B0:D8:AA:F7:39:5A:B7:6F:A6:D1:54:5B:B3:30:79:35:D0:F4 X509v3 Authority Key Identifier: keyid:72:11:E6:8B:57:CD:CD:F4:ED:A8:3C:F0:B4:62:3B:76:93:F6:34:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/chHmi1fNzfTtqDzwtGI7dpP2NDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/chHmi1fNzfTtqDzwtGI7dpP2NDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91638DD/C8870CAED29711EDB0858B3DC4F9AE02/3FA4288CD29B11ED88E16742C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.93.72.0/22 123.253.112.0/22 Signature Algorithm: sha256WithRSAEncryption 12:fd:3b:6a:48:b2:bd:2d:7f:75:a8:99:2a:09:70:a3:ad:5a: ba:cc:b8:af:96:b1:2c:06:18:c1:a8:28:9b:06:1e:3a:dd:42: d0:3f:95:e0:b9:e7:4b:5b:ef:38:e2:22:1c:7d:05:5d:b6:26: 5a:47:0e:50:c1:20:7b:1d:36:2b:3a:8d:9c:f4:4e:70:05:59: ec:03:fb:95:fd:e2:5c:ad:2d:55:cd:16:15:5a:92:0c:95:cd: 3c:2a:6b:80:38:1d:17:09:dc:00:42:04:92:37:82:43:e9:86: 97:43:bf:b0:13:c6:19:20:4e:6a:67:b6:21:2a:72:3b:a6:9f: 6c:c9:98:26:8a:46:7a:fc:ae:03:32:8d:07:d5:72:fa:48:07: 4d:41:43:49:52:03:3f:55:d1:87:47:f6:58:c8:bb:46:95:1e: 47:75:d9:84:ea:a2:79:0e:41:c8:5f:23:15:37:7f:f4:6c:96: 31:47:d4:81:7b:95:9d:4f:5a:56:a6:7d:d3:0d:95:9c:3f:ba: 41:6a:df:81:46:b4:17:24:c4:75:24:c9:42:52:8f:39:ee:0a: 27:9c:24:fd:6a:8f:6f:d0:84:76:75:de:79:40:3c:d9:8e:d2: e7:93:70:a6:10:cc:f4:d9:c8:2b:c4:f3:09:d3:66:54:10:56: 51:28:76:81 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM4REQxMTAvBgNVBAUTKDcyMTFFNjhCNTdDRENERjRFREE4M0NGMEI0NjIzQjc2 OTNGNjM0M0EwHhcNMjQwNjA1MDY0NTQ3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjYwMDk5Yi1mNWYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw3hvim2XrHfkbtAo3vmEYOm72dFNIZ99CRa8TCHMgNjxknqDUQlzmIA402V6 zQgRklMHfuObUrMOGXhzrguqmSN75hGBJOOTd9OkKwPySTKHBhW0Kfa5CU6yQ+QX VWzpGSdJcuKA5lM/S5fwhJF8tHiHCpt4bDB43lJ1WWjGU4NPKI1xm0I4yqsfZLDU l/3SL/gW1vkmJrg0OpqidRMAFA6HsUfoojrLrfe4AW73P0+5Qb8op57P6VFNAeGj rJ/TyNhWKjmtaJgUqpA1alRCex036xBfEjo1vmDMGmoJu19he+dK8FjEVv+59PR8 nSrjPPN/FbSBzFR5d64uNTz3CQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKuUsNiq 9zlat2+m0VRbszB5NdD0MB8GA1UdIwQYMBaAFHIR5otXzc307ag88LRiO3aT9jQ6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzhERC9DODg3MENBRUQy OTcxMUVEQjA4NThCM0RDNEY5QUUwMi9jaEhtaTFmTnpmVHRxRHp3dEdJN2RwUDJO RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NoSG1pMWZOemZUdHFEend0R0k3ZHBQMk5Eby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjM4REQvQzg4NzBDQUVEMjk3MTFFREIwODU4QjNEQzRGOUFFMDIvM0ZBNDI4OENE MjlCMTFFRDg4RTE2NzQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnXUgDBAJ7/XAwDQYJKoZIhvcNAQELBQADggEBABL9O2pI sr0tf3WomSoJcKOtWrrMuK+WsSwGGMGoKJsGHjrdQtA/leC550tb7zjiIhx9BV22 JlpHDlDBIHsdNis6jZz0TnAFWewD+5X94lytLVXNFhVakgyVzTwqa4A4HRcJ3ABC BJI3gkPphpdDv7ATxhkgTmpntiEqcjumn2zJmCaKRnr8rgMyjQfVcvpIB01BQ0lS Az9V0YdH9ljIu0aVHkd12YTqonkOQchfIxU3f/RsljFH1IF7lZ1PWlamfdMNlZw/ ukFq34FGtBckxHUkyUJSjznuCiecJP1qj2/QhHZ13nlAPNmO0ueTcKYQzPTZyCvE 8wnTZlQQVlEodoE= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:40 2024 by rpki-client on console-ams.rpki-client.org