$ rpki-client -vvf rpki.apnic.net/member_repository/A916DA3F/04FF89D8B6CD11EB8E108026C4F9AE02/3A32764C9E8C11EFABFC2A54C4F9AE02.roa File: 3A32764C9E8C11EFABFC2A54C4F9AE02.roa (raw, json) Hash identifier: VFDwDUHmotxSYcWM5gTje5vELEKOiQb/SybdGX5Q6/g= Subject key identifier: A7:0B:26:B8:3D:B4:58:68:EF:9B:04:FC:18:CD:FC:A9:9D:87:D9:A4 Certificate issuer: /CN=A916DA3F/serialNumber=7FF3EA9AC083251F5D30B01D056BCBCDE1A7EE2D Certificate serial: 058A Authority key identifier: 7F:F3:EA:9A:C0:83:25:1F:5D:30:B0:1D:05:6B:CB:CD:E1:A7:EE:2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_PqmsCDJR9dMLAdBWvLzeGn7i0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916DA3F/04FF89D8B6CD11EB8E108026C4F9AE02/3A32764C9E8C11EFABFC2A54C4F9AE02.roa Signing time: Sat 09 Nov 2024 11:17:38 +0000 ROA not before: Sat 09 Nov 2024 11:17:38 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 4766 IP address blocks: 103.116.64.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916DA3F/04FF89D8B6CD11EB8E108026C4F9AE02/f_PqmsCDJR9dMLAdBWvLzeGn7i0.crl rsync://rpki.apnic.net/member_repository/A916DA3F/04FF89D8B6CD11EB8E108026C4F9AE02/f_PqmsCDJR9dMLAdBWvLzeGn7i0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_PqmsCDJR9dMLAdBWvLzeGn7i0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1418 (0x58a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916DA3F/serialNumber=7FF3EA9AC083251F5D30B01D056BCBCDE1A7EE2D Validity Not Before: Nov 9 11:17:38 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=672f44d2-fae8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:c5:00:f4:b8:9a:fc:50:db:a0:8a:c2:48:58: d2:76:1f:c2:40:85:bd:fc:b9:62:7a:a2:3f:ea:b1: 68:8e:93:96:21:90:95:2a:27:3e:93:e0:33:74:3c: 12:4f:ba:4b:38:4a:92:7e:ca:1c:0c:dd:01:2a:47: 5d:78:9b:56:77:f2:11:96:11:c0:c3:a4:e2:15:ca: f3:dc:b4:ad:63:ea:b7:cd:e0:5f:d2:de:fa:86:6b: 25:41:f4:aa:7c:eb:76:a4:dc:f0:84:d5:0c:12:47: 35:a0:9f:7b:95:c8:a8:cc:74:8d:18:bd:d3:65:99: a3:48:99:0b:40:73:04:73:dc:4e:81:57:ca:bf:32: ec:07:03:42:73:80:b6:6a:8b:60:24:57:52:b8:02: d4:ef:ef:30:1d:e3:da:48:15:6f:73:0f:bb:8b:bd: 80:53:69:f3:66:60:5b:8b:f4:d8:ad:79:fa:a8:db: 39:f6:61:cb:b3:54:13:4c:bb:4a:08:2e:1c:a5:95: ad:18:87:24:72:9a:ac:6a:a6:3a:e8:e9:34:34:9a: 2f:46:91:4f:8f:ef:e0:ba:82:81:a9:48:33:cf:32: 28:6c:9f:ae:e2:c0:18:32:af:3b:e0:81:de:6e:cc: e3:d7:10:94:7d:de:a5:46:3c:7f:81:a9:05:d9:52: 71:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:0B:26:B8:3D:B4:58:68:EF:9B:04:FC:18:CD:FC:A9:9D:87:D9:A4 X509v3 Authority Key Identifier: keyid:7F:F3:EA:9A:C0:83:25:1F:5D:30:B0:1D:05:6B:CB:CD:E1:A7:EE:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916DA3F/04FF89D8B6CD11EB8E108026C4F9AE02/f_PqmsCDJR9dMLAdBWvLzeGn7i0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_PqmsCDJR9dMLAdBWvLzeGn7i0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916DA3F/04FF89D8B6CD11EB8E108026C4F9AE02/3A32764C9E8C11EFABFC2A54C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.116.64.0/22 Signature Algorithm: sha256WithRSAEncryption d1:20:76:cb:e7:5d:8c:cb:8e:21:c4:1f:55:4f:6e:4c:c8:c7: 5c:c4:2d:8d:03:8b:c1:0a:b1:9e:d1:49:35:6f:06:c9:43:b4: b1:a9:47:f7:a9:35:d1:37:6b:7b:dd:da:ec:bb:0b:fa:26:90: d5:c9:89:60:40:4d:04:f5:01:08:33:9a:f4:97:c9:be:aa:e4: 8a:ea:30:fa:3c:4d:b8:83:bd:a7:ba:61:61:e6:bf:8c:c4:e7: 07:64:a5:c0:9a:e8:28:4b:d0:de:a6:f2:f5:55:d6:63:b2:77: fa:db:18:86:b1:4c:cd:b4:43:b0:2f:a2:4a:37:d0:13:51:ed: 7c:b2:d8:da:7c:f3:93:5b:06:27:f8:8d:06:1c:93:13:8c:71: 6a:79:a1:1e:d4:05:42:8c:5b:35:05:8b:eb:07:46:47:0b:28: 27:01:c1:3c:ae:63:1c:52:da:a7:7d:69:cf:ac:6f:fd:09:b1: 13:7f:22:50:ff:ae:53:d5:65:72:e5:50:64:fe:88:61:8a:c0: f0:45:49:f9:c0:f6:76:36:61:98:e6:ca:a4:37:2c:71:7e:04: 72:75:96:56:1d:44:1e:da:b8:73:2f:63:01:cc:42:4c:0f:19: 1b:7c:9f:be:4e:37:ef:b4:cf:30:90:b5:90:1d:0d:c8:c8:12: 98:76:cf:00 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBYowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkRBM0YxMTAvBgNVBAUTKDdGRjNFQTlBQzA4MzI1MUY1RDMwQjAxRDA1NkJDQkNE RTFBN0VFMkQwHhcNMjQxMTA5MTExNzM4WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJmNDRkMi1mYWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1sUA9Lia/FDboIrCSFjSdh/CQIW9/LlieqI/6rFojpOWIZCVKic+k+AzdDwS T7pLOEqSfsocDN0BKkddeJtWd/IRlhHAw6TiFcrz3LStY+q3zeBf0t76hmslQfSq fOt2pNzwhNUMEkc1oJ97lciozHSNGL3TZZmjSJkLQHMEc9xOgVfKvzLsBwNCc4C2 aotgJFdSuALU7+8wHePaSBVvcw+7i72AU2nzZmBbi/TYrXn6qNs59mHLs1QTTLtK CC4cpZWtGIckcpqsaqY66Ok0NJovRpFPj+/guoKBqUgzzzIobJ+u4sAYMq874IHe bszj1xCUfd6lRjx/gakF2VJxMwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKcLJrg9 tFho75sE/BjN/Kmdh9mkMB8GA1UdIwQYMBaAFH/z6prAgyUfXTCwHQVry83hp+4t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2REEzRi8wNEZGODlEOEI2 Q0QxMUVCOEUxMDgwMjZDNEY5QUUwMi9mX1BxbXNDREpSOWRNTEFkQld2THplR243 aTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZfUHFtc0NESlI5ZE1MQWRCV3ZMemVHbjdpMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkRBM0YvMDRGRjg5RDhCNkNEMTFFQjhFMTA4MDI2QzRGOUFFMDIvM0EzMjc2NEM5 RThDMTFFRkFCRkMyQTU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJndEAwDQYJKoZIhvcNAQELBQADggEBANEgdsvnXYzLjiHE H1VPbkzIx1zELY0Di8EKsZ7RSTVvBslDtLGpR/epNdE3a3vd2uy7C/omkNXJiWBA TQT1AQgzmvSXyb6q5IrqMPo8TbiDvae6YWHmv4zE5wdkpcCa6ChL0N6m8vVV1mOy d/rbGIaxTM20Q7Avoko30BNR7Xyy2Np885NbBif4jQYckxOMcWp5oR7UBUKMWzUF i+sHRkcLKCcBwTyuYxxS2qd9ac+sb/0JsRN/IlD/rlPVZXLlUGT+iGGKwPBFSfnA 9nY2YZjmyqQ3LHF+BHJ1llYdRB7auHMvYwHMQkwPGRt8n75ON++0zzCQtZAdDcjI Eph2zwA= -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:28 2024 by rpki-client on console-fra.rpki-client.org