$ rpki-client -vvf rpki.apnic.net/member_repository/A9171A1B/DC58CC5A5C4111EB81D7C60BC4F9AE02/34CC285A5C6011EB80D50F0CC4F9AE02.roa File: 34CC285A5C6011EB80D50F0CC4F9AE02.roa (raw, json) Hash identifier: 1vEsPhJeWhyQnwIKIqzXbxZ8WupHgagiJnru+3AAu00= Subject key identifier: 32:10:CF:D7:3D:28:F2:38:13:0B:0F:5F:0F:6D:2E:0E:81:5D:89:85 Certificate issuer: /CN=A9171A1B/serialNumber=4C349C51CA598907D5C07CB1F24851FC048DAD1A Certificate serial: 05B9 Authority key identifier: 4C:34:9C:51:CA:59:89:07:D5:C0:7C:B1:F2:48:51:FC:04:8D:AD:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TDScUcpZiQfVwHyx8khR_ASNrRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171A1B/DC58CC5A5C4111EB81D7C60BC4F9AE02/34CC285A5C6011EB80D50F0CC4F9AE02.roa Signing time: Fri 10 Nov 2023 23:31:26 +0000 ROA not before: Fri 10 Nov 2023 23:31:26 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 138399 IP address blocks: 103.124.132.0/22 maxlen: 22 103.124.132.0/24 maxlen: 24 103.124.133.0/24 maxlen: 24 103.124.134.0/24 maxlen: 24 103.124.135.0/24 maxlen: 24 2403:e040::/32 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171A1B/DC58CC5A5C4111EB81D7C60BC4F9AE02/TDScUcpZiQfVwHyx8khR_ASNrRo.crl rsync://rpki.apnic.net/member_repository/A9171A1B/DC58CC5A5C4111EB81D7C60BC4F9AE02/TDScUcpZiQfVwHyx8khR_ASNrRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TDScUcpZiQfVwHyx8khR_ASNrRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 23:59:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1465 (0x5b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171A1B/serialNumber=4C349C51CA598907D5C07CB1F24851FC048DAD1A Validity Not Before: Nov 10 23:31:26 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=654ebd4d-3bf4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b3:91:27:70:f8:f8:f8:78:de:f6:b1:b6:3d: b2:a6:5b:a7:29:63:9f:e6:70:30:97:83:13:92:cb: ca:fe:60:53:b0:e1:1a:6d:af:33:23:f2:00:ce:a3: 6a:a2:99:4e:20:3b:ce:59:d4:7f:2f:37:b1:61:b7: 4c:52:7c:7f:57:6c:d9:bb:e5:25:4a:0a:45:5a:b7: fa:58:27:e3:6d:b0:06:bf:c6:11:4a:b1:14:4c:03: 4c:f1:05:2d:c4:4a:c6:75:3d:cf:d8:1e:04:be:51: d7:e2:7b:b1:c3:08:11:a1:08:5f:8a:c3:81:b0:84: 61:06:50:f3:55:7c:53:3f:1c:dc:e5:2d:88:5d:e0: 1d:2f:78:62:34:3a:d1:d6:10:0b:58:61:7f:9f:75: 01:d2:d7:55:0e:ad:c8:69:01:8c:4b:bf:89:8c:a3: dc:27:4c:e7:c5:02:41:39:98:5d:a7:0b:14:23:09: 4a:b1:9c:a4:eb:6e:90:2b:9c:70:16:e3:40:0e:eb: ed:f5:0f:ad:74:81:77:b3:05:12:0b:0a:e3:52:41: fd:9f:46:4a:43:fa:69:78:d4:92:df:8d:81:4b:24: b6:67:ee:b6:6f:a7:33:9f:32:b7:61:90:a3:49:21: f9:69:69:31:1f:51:f4:2f:f2:c2:37:9b:fa:04:6b: 6e:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:10:CF:D7:3D:28:F2:38:13:0B:0F:5F:0F:6D:2E:0E:81:5D:89:85 X509v3 Authority Key Identifier: keyid:4C:34:9C:51:CA:59:89:07:D5:C0:7C:B1:F2:48:51:FC:04:8D:AD:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171A1B/DC58CC5A5C4111EB81D7C60BC4F9AE02/TDScUcpZiQfVwHyx8khR_ASNrRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TDScUcpZiQfVwHyx8khR_ASNrRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171A1B/DC58CC5A5C4111EB81D7C60BC4F9AE02/34CC285A5C6011EB80D50F0CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.124.132.0/22 IPv6: 2403:e040::/32 Signature Algorithm: sha256WithRSAEncryption ab:af:2c:4e:bd:bb:89:99:ab:a8:2a:01:0c:9f:42:93:71:a0: 7d:d7:13:b4:db:fe:9d:f1:dc:e7:b1:02:53:76:e0:2c:41:ae: 2a:e2:c0:bd:8f:9f:2e:84:18:d7:da:cd:ee:6e:f9:9b:27:7c: 19:f0:c6:84:3c:4b:1c:2c:5a:66:43:20:0d:51:5f:f5:33:aa: c0:1d:11:05:d8:63:dd:48:cc:dd:d6:93:55:67:4c:ca:4b:02: 2e:ab:63:0b:70:cf:8e:f5:74:51:48:42:b7:31:92:ff:b2:a2: 14:d5:5f:e4:37:81:7f:0b:53:81:08:e7:0b:c2:ce:18:a8:b4: 36:42:8d:90:89:82:3e:db:74:db:ff:b5:35:ac:cd:9d:d2:2e: d0:4f:2b:a3:62:9f:f6:6c:3b:c1:a8:de:9a:22:70:51:24:57: 58:5a:f5:45:34:dc:fe:d5:3c:67:24:82:ef:e9:ed:02:03:3a: 9b:ee:8a:a8:0e:0c:6a:b7:a4:29:b6:a7:ce:bb:b7:df:b1:a0: 4c:48:21:d1:0f:fe:5b:3e:88:e9:48:42:41:2c:61:7b:d0:51: 6c:26:65:d9:72:c5:ae:e0:bf:b1:a8:ec:8d:62:54:9c:42:b9: c3:e5:ec:3f:22:b8:09:b0:f8:ce:bb:f0:fa:1a:95:7c:79:95: 71:44:0f:fb -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFBMUIxMTAvBgNVBAUTKDRDMzQ5QzUxQ0E1OTg5MDdENUMwN0NCMUYyNDg1MUZD MDQ4REFEMUEwHhcNMjMxMTEwMjMzMTI2WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTRlYmQ0ZC0zYmY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt7ORJ3D4+Ph43vaxtj2yplunKWOf5nAwl4MTksvK/mBTsOEaba8zI/IAzqNq oplOIDvOWdR/LzexYbdMUnx/V2zZu+UlSgpFWrf6WCfjbbAGv8YRSrEUTANM8QUt xErGdT3P2B4EvlHX4nuxwwgRoQhfisOBsIRhBlDzVXxTPxzc5S2IXeAdL3hiNDrR 1hALWGF/n3UB0tdVDq3IaQGMS7+JjKPcJ0znxQJBOZhdpwsUIwlKsZyk626QK5xw FuNADuvt9Q+tdIF3swUSCwrjUkH9n0ZKQ/ppeNSS342BSyS2Z+62b6cznzK3YZCj SSH5aWkxH1H0L/LCN5v6BGtuLwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFDIQz9c9 KPI4EwsPXw9tLg6BXYmFMB8GA1UdIwQYMBaAFEw0nFHKWYkH1cB8sfJIUfwEja0a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUExQi9EQzU4Q0M1QTVD NDExMUVCODFEN0M2MEJDNEY5QUUwMi9URFNjVWNwWmlRZlZ3SHl4OGtoUl9BU05y Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1REU2NVY3BaaVFmVndIeXg4a2hSX0FTTnJSby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzFBMUIvREM1OENDNUE1QzQxMTFFQjgxRDdDNjBCQzRGOUFFMDIvMzRDQzI4NUE1 QzYwMTFFQjgwRDUwRjBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnfIQwDQQCAAIwBwMFACQD4EAwDQYJKoZIhvcNAQELBQAD ggEBAKuvLE69u4mZq6gqAQyfQpNxoH3XE7Tb/p3x3OexAlN24CxBririwL2Pny6E GNfaze5u+ZsnfBnwxoQ8SxwsWmZDIA1RX/UzqsAdEQXYY91IzN3Wk1VnTMpLAi6r Ywtwz471dFFIQrcxkv+yohTVX+Q3gX8LU4EI5wvCzhiotDZCjZCJgj7bdNv/tTWs zZ3SLtBPK6Nin/ZsO8Go3poicFEkV1ha9UU03P7VPGckgu/p7QIDOpvuiqgODGq3 pCm2p867t9+xoExIIdEP/ls+iOlIQkEsYXvQUWwmZdlyxa7gv7Go7I1iVJxCucPl 7D8iuAmw+M678PoalXx5lXFED/s= -----END CERTIFICATE-----Generated at Tue May 7 01:58:21 2024 by rpki-client on console-fra.rpki-client.org