$ rpki-client -vvf rpki.apnic.net/member_repository/A916D29F/691F74C4988811E991AF6636C4F9AE02/34DCFB18C94E11E9A4F6FE21C4F9AE02.roa File: 34DCFB18C94E11E9A4F6FE21C4F9AE02.roa (raw, json) Hash identifier: yNAuXC3bxbVW2q6g5cnbaShlQ1khFFz4/vuRmWJpqQo= Subject key identifier: 5C:E4:C8:89:E3:6F:58:F0:51:9C:A9:A0:9A:A7:8D:33:C5:42:CC:BC Certificate issuer: /CN=A916D29F/serialNumber=AA85CCD2DD3E1C003BF72FF53E58C7200E7CF0A8 Certificate serial: 0D84 Authority key identifier: AA:85:CC:D2:DD:3E:1C:00:3B:F7:2F:F5:3E:58:C7:20:0E:7C:F0:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qoXM0t0-HAA79y_1PljHIA588Kg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D29F/691F74C4988811E991AF6636C4F9AE02/34DCFB18C94E11E9A4F6FE21C4F9AE02.roa Signing time: Thu 04 Jan 2024 18:36:20 +0000 ROA not before: Thu 04 Jan 2024 18:36:20 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 9009 IP address blocks: 103.105.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D29F/691F74C4988811E991AF6636C4F9AE02/qoXM0t0-HAA79y_1PljHIA588Kg.crl rsync://rpki.apnic.net/member_repository/A916D29F/691F74C4988811E991AF6636C4F9AE02/qoXM0t0-HAA79y_1PljHIA588Kg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qoXM0t0-HAA79y_1PljHIA588Kg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 18:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3460 (0xd84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D29F/serialNumber=AA85CCD2DD3E1C003BF72FF53E58C7200E7CF0A8 Validity Not Before: Jan 4 18:36:20 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=6596faa4-599e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:1c:3d:dc:c6:cb:e6:28:9c:4b:3e:4c:71:36: b8:8c:ac:2b:95:a8:2b:d7:a3:9a:c9:64:94:5f:bc: 5f:c8:7d:11:a6:0c:08:9a:fa:2d:27:31:40:d2:cc: 99:b5:f3:d6:f7:1a:bd:34:a2:c9:eb:84:95:6b:53: 90:31:fd:e8:aa:f3:51:45:96:28:cb:fc:13:4a:5c: f5:90:30:1e:c3:8c:75:91:68:91:bd:16:a7:7b:10: 7c:db:13:e7:84:f7:ec:66:d2:2c:e3:9d:59:5f:e8: f3:ed:d7:70:2a:c0:1d:e8:bc:19:17:c5:b6:2f:7c: 1a:64:44:6e:2d:4a:26:8c:ac:13:f9:24:d3:58:c6: 1c:ad:e0:42:61:26:fe:12:ab:21:b7:ff:e8:4d:f2: 32:f8:11:67:77:29:e3:9e:2c:82:cc:5b:4e:33:28: 98:ba:08:bc:68:23:44:c5:c2:85:16:0f:ae:ae:f5: 55:26:14:42:2b:7f:8a:30:90:c7:e3:e0:ed:56:86: 65:b8:db:6c:59:a9:68:4d:d4:b0:2b:61:f6:9b:94: 79:17:58:d1:83:69:75:11:4c:5a:57:bd:b6:86:b2: c0:da:15:60:49:9d:d5:b6:d0:5c:d6:e5:a7:3d:97: 25:04:37:5d:4b:36:1b:52:b9:63:aa:3e:5b:20:12: 75:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:E4:C8:89:E3:6F:58:F0:51:9C:A9:A0:9A:A7:8D:33:C5:42:CC:BC X509v3 Authority Key Identifier: keyid:AA:85:CC:D2:DD:3E:1C:00:3B:F7:2F:F5:3E:58:C7:20:0E:7C:F0:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D29F/691F74C4988811E991AF6636C4F9AE02/qoXM0t0-HAA79y_1PljHIA588Kg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qoXM0t0-HAA79y_1PljHIA588Kg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D29F/691F74C4988811E991AF6636C4F9AE02/34DCFB18C94E11E9A4F6FE21C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.105.164.0/24 Signature Algorithm: sha256WithRSAEncryption 34:bd:52:63:23:88:a2:48:b2:29:cc:40:ac:da:18:f9:50:af: e3:67:7a:aa:87:c7:cf:51:4e:02:2f:c5:fa:ec:9e:c3:1d:64: 15:b0:b0:d3:91:b4:56:e0:be:24:04:d9:92:c5:96:61:d4:65: e8:cf:6e:5d:b9:af:a7:5b:70:45:7c:e2:5e:4b:48:73:c9:45: 22:5a:b0:1f:35:b5:db:6f:c5:c1:01:8d:7c:f9:96:86:80:c6: 31:cb:de:48:6b:5b:54:70:5a:2c:e6:e4:5d:0f:7f:05:b8:5e: 56:b0:e2:de:c7:0b:cb:10:40:a1:c5:05:a5:f7:23:7c:3d:83: 82:93:2a:df:ea:ca:7f:00:3a:a6:12:85:3c:ef:7f:3e:e7:3c: e8:7a:b3:a6:76:74:c1:6f:43:51:4e:6b:99:fd:25:d4:a9:3d: 27:dc:59:88:0f:c0:81:8c:85:b3:36:e8:57:f5:97:e4:24:af: 01:73:1a:97:fc:58:c0:68:dd:73:9e:70:fe:16:42:e4:18:7c: 16:6f:ed:4b:83:89:c1:87:a4:05:01:2a:69:95:76:da:65:55: bb:be:c4:44:7f:3a:98:2f:2f:cf:80:27:3e:8d:f2:1d:b2:05: fc:e1:f4:d2:b7:ec:f8:57:51:14:7d:30:8a:14:fb:39:00:b9: a3:9f:a8:57 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQyOUYxMTAvBgNVBAUTKEFBODVDQ0QyREQzRTFDMDAzQkY3MkZGNTNFNThDNzIw MEU3Q0YwQTgwHhcNMjQwMTA0MTgzNjIwWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk2ZmFhNC01OTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvRw93MbL5iicSz5McTa4jKwrlagr16OayWSUX7xfyH0RpgwImvotJzFA0syZ tfPW9xq9NKLJ64SVa1OQMf3oqvNRRZYoy/wTSlz1kDAew4x1kWiRvRanexB82xPn hPfsZtIs451ZX+jz7ddwKsAd6LwZF8W2L3waZERuLUomjKwT+STTWMYcreBCYSb+ Eqsht//oTfIy+BFndynjniyCzFtOMyiYugi8aCNExcKFFg+urvVVJhRCK3+KMJDH 4+DtVoZluNtsWaloTdSwK2H2m5R5F1jRg2l1EUxaV722hrLA2hVgSZ3VttBc1uWn PZclBDddSzYbUrljqj5bIBJ1mQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFzkyInj b1jwUZypoJqnjTPFQsy8MB8GA1UdIwQYMBaAFKqFzNLdPhwAO/cv9T5YxyAOfPCo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDI5Ri82OTFGNzRDNDk4 ODgxMUU5OTFBRjY2MzZDNEY5QUUwMi9xb1hNMHQwLUhBQTc5eV8xUGxqSElBNTg4 S2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FvWE0wdDAtSEFBNzl5XzFQbGpISUE1ODhLZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkQyOUYvNjkxRjc0QzQ5ODg4MTFFOTkxQUY2NjM2QzRGOUFFMDIvMzREQ0ZCMThD OTRFMTFFOUE0RjZGRTIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnaaQwDQYJKoZIhvcNAQELBQADggEBADS9UmMjiKJIsinM QKzaGPlQr+NneqqHx89RTgIvxfrsnsMdZBWwsNORtFbgviQE2ZLFlmHUZejPbl25 r6dbcEV84l5LSHPJRSJasB81tdtvxcEBjXz5loaAxjHL3khrW1RwWizm5F0PfwW4 Xlaw4t7HC8sQQKHFBaX3I3w9g4KTKt/qyn8AOqYShTzvfz7nPOh6s6Z2dMFvQ1FO a5n9JdSpPSfcWYgPwIGMhbM26Ff1l+QkrwFzGpf8WMBo3XOecP4WQuQYfBZv7UuD icGHpAUBKmmVdtplVbu+xER/OpgvL8+AJz6N8h2yBfzh9NK37PhXURR9MIoU+zkA uaOfqFc= -----END CERTIFICATE-----Generated at Wed Apr 24 21:18:15 2024 by rpki-client on console-ams.rpki-client.org