$ rpki-client -vvf rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/3E69AF9CDA5511EE96C5A383C4F9AE02.roa File: 3E69AF9CDA5511EE96C5A383C4F9AE02.roa (raw, json) Hash identifier: Zs7hy/Uoi1hKoj1Oe7WnNfUOoiD2Hkz73EDNXVqRyCc= Subject key identifier: 87:7C:D1:E5:E6:45:72:97:B4:FB:E2:01:18:65:16:1F:85:8E:42:82 Certificate issuer: /CN=A917357E/serialNumber=8352A734E82144F322C50B728A4F765A33D72256 Certificate serial: 011D Authority key identifier: 83:52:A7:34:E8:21:44:F3:22:C5:0B:72:8A:4F:76:5A:33:D7:22:56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/3E69AF9CDA5511EE96C5A383C4F9AE02.roa Signing time: Mon 04 Mar 2024 18:32:46 +0000 ROA not before: Mon 04 Mar 2024 18:32:46 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 152605 IP address blocks: 103.151.46.0/24 maxlen: 24 103.151.47.0/24 maxlen: 24 2400:3fa0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.crl rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 21 Mar 2024 18:52:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 285 (0x11d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917357E/serialNumber=8352A734E82144F322C50B728A4F765A33D72256 Validity Not Before: Mar 4 18:32:46 2024 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=65e613ce-19e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:32:de:44:c5:a9:da:1f:a4:d9:ba:d9:e7:d9: a5:cf:fa:7f:89:dd:6d:03:84:d1:ef:8c:be:c9:99: e6:ab:32:87:7d:4c:e0:4c:59:32:c2:61:97:b6:48: 3d:fe:86:5b:81:f3:52:ae:cf:d8:2a:52:bb:36:c5: 04:62:99:5d:4c:19:b9:bd:d0:77:b5:dd:99:34:89: 0b:be:a4:6a:bc:88:ea:61:0f:b0:e1:ec:d3:23:cc: 6d:49:9a:9d:e0:d6:b9:f8:4f:eb:20:de:d1:cd:ff: 51:62:83:b3:49:2a:d3:30:bf:75:cb:bb:01:32:82: 58:6a:81:16:b2:1e:c5:f2:f3:2d:f9:41:b8:5e:39: bb:d2:3e:c0:6d:01:64:a6:9e:7c:dd:8d:e0:85:ca: 4e:b5:f2:38:30:fe:ea:9f:5a:71:2d:00:5e:36:94: fb:6b:1d:b4:1b:34:57:7d:f2:1c:dd:1a:8a:1a:8c: af:a3:76:50:cf:b8:a4:ed:9c:b1:ee:a1:e2:a0:7f: bd:78:1c:6f:8e:5c:ee:15:bd:59:46:90:cb:4f:fc: a0:3f:ce:17:31:38:b4:c6:2d:14:87:58:b2:6d:c1: c6:4a:12:7c:fa:33:ba:4f:d8:1b:ca:fd:ce:9b:b1: 25:94:31:ae:55:6b:79:15:62:0e:e4:83:c6:2d:f7: aa:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:7C:D1:E5:E6:45:72:97:B4:FB:E2:01:18:65:16:1F:85:8E:42:82 X509v3 Authority Key Identifier: keyid:83:52:A7:34:E8:21:44:F3:22:C5:0B:72:8A:4F:76:5A:33:D7:22:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/g1KnNOghRPMixQtyik92WjPXIlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1KnNOghRPMixQtyik92WjPXIlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917357E/602D76D85D7311ECA3248853C4F9AE02/3E69AF9CDA5511EE96C5A383C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.46.0/23 IPv6: 2400:3fa0::/32 Signature Algorithm: sha256WithRSAEncryption 16:b8:57:14:9c:09:dd:a8:c6:21:48:be:23:ad:12:70:db:70: f3:16:73:60:72:44:ba:de:8d:8b:6c:7d:a3:ef:0b:0b:02:44: b6:30:d7:a1:41:b2:fb:82:8e:76:e2:ea:d9:d6:1f:81:1e:9e: 43:ff:96:d3:a3:26:80:00:19:4b:7e:7b:06:04:33:ca:1b:6e: 30:8a:85:11:50:c5:f5:c8:f0:5c:72:00:9d:df:be:10:52:46: ce:38:20:8a:c9:26:3b:d0:76:38:8a:3b:04:b8:66:3d:9c:5e: bd:20:78:0d:d9:0f:27:b2:3b:20:b7:5d:4e:dc:7c:77:6b:4d: b8:01:bd:db:81:d2:30:de:d0:d1:c9:1c:68:fc:ab:53:99:2c: 37:9a:99:aa:ed:5d:48:f2:35:f8:da:75:f5:f5:35:a6:e2:51: 36:cc:f1:05:c9:8c:28:67:76:1e:f7:2d:66:9a:df:c7:be:16: f6:70:f1:4e:a1:8b:db:dd:c2:c5:11:7f:99:35:4e:f2:0b:42: d7:fc:af:ae:aa:b9:58:30:e2:47:28:3a:03:d6:e5:59:97:3f: 9d:69:10:fa:a4:57:63:cf:14:41:b8:8a:55:d0:a1:06:5c:16: ab:fa:39:68:11:58:64:3c:eb:b5:a3:26:2c:e6:17:c5:69:56: c0:cf:ac:11 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM1N0UxMTAvBgNVBAUTKDgzNTJBNzM0RTgyMTQ0RjMyMkM1MEI3MjhBNEY3NjVB MzNENzIyNTYwHhcNMjQwMzA0MTgzMjQ2WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWU2MTNjZS0xOWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxTLeRMWp2h+k2brZ59mlz/p/id1tA4TR74y+yZnmqzKHfUzgTFkywmGXtkg9 /oZbgfNSrs/YKlK7NsUEYpldTBm5vdB3td2ZNIkLvqRqvIjqYQ+w4ezTI8xtSZqd 4Na5+E/rIN7Rzf9RYoOzSSrTML91y7sBMoJYaoEWsh7F8vMt+UG4Xjm70j7AbQFk pp583Y3ghcpOtfI4MP7qn1pxLQBeNpT7ax20GzRXffIc3RqKGoyvo3ZQz7ik7Zyx 7qHioH+9eBxvjlzuFb1ZRpDLT/ygP84XMTi0xi0Uh1iybcHGShJ8+jO6T9gbyv3O m7EllDGuVWt5FWIO5IPGLfeqqQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFId80eXm RXKXtPviARhlFh+FjkKCMB8GA1UdIwQYMBaAFINSpzToIUTzIsULcopPdloz1yJW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzU3RS82MDJENzZEODVE NzMxMUVDQTMyNDg4NTNDNEY5QUUwMi9nMUtuTk9naFJQTWl4UXR5aWs5MldqUFhJ bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2cxS25OT2doUlBNaXhRdHlpazkyV2pQWElsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzM1N0UvNjAyRDc2RDg1RDczMTFFQ0EzMjQ4ODUzQzRGOUFFMDIvM0U2OUFGOUNE QTU1MTFFRTk2QzVBMzgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnly4wDQQCAAIwBwMFACQAP6AwDQYJKoZIhvcNAQELBQAD ggEBABa4VxScCd2oxiFIviOtEnDbcPMWc2ByRLrejYtsfaPvCwsCRLYw16FBsvuC jnbi6tnWH4EenkP/ltOjJoAAGUt+ewYEM8obbjCKhRFQxfXI8FxyAJ3fvhBSRs44 IIrJJjvQdjiKOwS4Zj2cXr0geA3ZDyeyOyC3XU7cfHdrTbgBvduB0jDe0NHJHGj8 q1OZLDeamartXUjyNfjadfX1NabiUTbM8QXJjChndh73LWaa38e+FvZw8U6hi9vd wsURf5k1TvILQtf8r66quVgw4kcoOgPW5VmXP51pEPqkV2PPFEG4ilXQoQZcFqv6 OWgRWGQ867WjJizmF8VpVsDPrBE= -----END CERTIFICATE-----Generated at Thu Mar 14 22:27:10 2024 by rpki-client on console-fra.rpki-client.org