$ rpki-client -vvf rpki.apnic.net/member_repository/A9173EFB/738DBFFAB42411EC96728235C4F9AE02/39F3DCDABBB711EC8B27B129C4F9AE02.roa File: 39F3DCDABBB711EC8B27B129C4F9AE02.roa (raw, json) Hash identifier: BjnEXUQnM/w5/elkxHxhuklRbVefDC0b1z2jDyjryYY= Subject key identifier: E2:6A:98:DD:C6:EA:69:1A:21:13:56:C6:BB:03:1A:D1:EF:C9:50:EE Certificate issuer: /CN=A9173EFB/serialNumber=DD8D2C83BB4A1EA9E137776FCC551104CAB2B823 Certificate serial: 0280 Authority key identifier: DD:8D:2C:83:BB:4A:1E:A9:E1:37:77:6F:CC:55:11:04:CA:B2:B8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y0sg7tKHqnhN3dvzFURBMqyuCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173EFB/738DBFFAB42411EC96728235C4F9AE02/39F3DCDABBB711EC8B27B129C4F9AE02.roa Signing time: Tue 05 Mar 2024 03:25:24 +0000 ROA not before: Tue 05 Mar 2024 03:25:24 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 14618 IP address blocks: 103.107.56.0/24 maxlen: 24 2001:df3:c300::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173EFB/738DBFFAB42411EC96728235C4F9AE02/3Y0sg7tKHqnhN3dvzFURBMqyuCM.crl rsync://rpki.apnic.net/member_repository/A9173EFB/738DBFFAB42411EC96728235C4F9AE02/3Y0sg7tKHqnhN3dvzFURBMqyuCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y0sg7tKHqnhN3dvzFURBMqyuCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 00:49:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 640 (0x280) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173EFB/serialNumber=DD8D2C83BB4A1EA9E137776FCC551104CAB2B823 Validity Not Before: Mar 5 03:25:24 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e690a4-d3ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:90:22:68:3a:4d:2f:e6:cf:8c:49:b9:de:47: b7:65:87:1d:e7:01:73:f4:c4:2b:36:40:11:af:18: b1:40:92:ea:0b:c1:c7:bf:62:cf:8c:58:47:1b:4b: ea:aa:03:30:c3:9b:9a:36:6b:81:e7:9f:e9:40:c8: a2:d7:9f:bd:82:cf:4f:90:d0:38:db:61:5a:0e:f0: 7b:df:7f:bd:f5:4e:b8:21:38:fc:bb:e9:32:8e:72: be:23:e2:af:6a:13:b6:75:dc:d1:c0:c1:e7:93:ef: 12:a5:31:39:03:ad:6a:ad:69:0f:12:ab:a5:12:00: f0:4b:6a:6b:72:ba:25:56:c7:cd:22:3d:c8:01:6c: ba:0c:98:a7:2b:44:36:d8:4f:4f:79:58:20:b7:e8: 4a:03:c3:00:2a:d6:8e:60:26:03:80:be:e1:1a:aa: 09:60:e2:27:de:69:bc:1e:55:dd:87:4d:ad:d5:6b: 73:95:a2:5a:76:60:15:ed:b7:1d:01:1e:ea:85:24: 4c:b2:47:53:79:61:19:10:8c:94:ba:08:12:54:c6: b6:4d:98:e3:b0:2a:88:0e:b4:fa:d7:67:97:b5:ab: 53:2b:ae:0d:bc:33:87:bf:cd:9a:1b:ff:53:9b:68: ca:38:ef:ce:05:07:9e:e5:9d:25:d0:6a:8e:48:5f: b3:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:6A:98:DD:C6:EA:69:1A:21:13:56:C6:BB:03:1A:D1:EF:C9:50:EE X509v3 Authority Key Identifier: keyid:DD:8D:2C:83:BB:4A:1E:A9:E1:37:77:6F:CC:55:11:04:CA:B2:B8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173EFB/738DBFFAB42411EC96728235C4F9AE02/3Y0sg7tKHqnhN3dvzFURBMqyuCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Y0sg7tKHqnhN3dvzFURBMqyuCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173EFB/738DBFFAB42411EC96728235C4F9AE02/39F3DCDABBB711EC8B27B129C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.107.56.0/24 IPv6: 2001:df3:c300::/48 Signature Algorithm: sha256WithRSAEncryption 1d:ef:d4:68:bf:4c:06:76:dc:7f:b1:17:e9:01:de:c8:b2:ea: 74:a7:93:1e:f6:8b:8b:fd:62:78:50:99:b2:73:d0:bc:c0:d5: b2:43:11:0a:a0:4b:6e:55:fc:f5:18:21:b7:ef:60:b1:2c:75: fc:f7:1e:af:63:6c:dd:d2:29:ae:94:bf:00:23:d7:ca:1f:02: c8:91:c5:64:3d:8d:fa:16:db:72:79:33:5a:83:39:c7:df:c6: 35:58:e9:c8:7c:8c:1b:73:3a:36:41:13:af:4b:5a:d5:fa:9a: 3f:b7:eb:23:ef:a4:0a:22:16:0b:18:a3:ce:69:28:69:21:e0: 80:4a:c0:66:08:3e:ec:c8:d1:6f:db:17:e7:3b:40:2f:6a:ca: 79:a6:8c:fe:9f:54:ba:88:fe:3f:b7:e6:a9:26:9f:2c:95:15: dd:b8:99:2b:24:3f:b9:59:58:05:db:b2:62:6f:06:40:60:15: db:17:e0:12:5c:9c:46:67:8e:cf:9e:d3:36:fc:91:66:44:0e: 46:08:14:09:6f:0c:10:7e:5b:08:69:9b:f3:cf:f0:c4:13:43: ef:fc:fa:b9:67:9d:8f:5d:f1:ad:b6:18:d5:4c:28:ac:54:61: 68:58:34:dc:f4:5b:94:f7:32:5d:41:90:2f:de:4c:55:ed:99: cd:a7:2e:fa -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAoAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNFRkIxMTAvBgNVBAUTKEREOEQyQzgzQkI0QTFFQTlFMTM3Nzc2RkNDNTUxMTA0 Q0FCMkI4MjMwHhcNMjQwMzA1MDMyNTI0WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWU2OTBhNC1kM2NhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv5AiaDpNL+bPjEm53ke3ZYcd5wFz9MQrNkARrxixQJLqC8HHv2LPjFhHG0vq qgMww5uaNmuB55/pQMii15+9gs9PkNA422FaDvB733+99U64ITj8u+kyjnK+I+Kv ahO2ddzRwMHnk+8SpTE5A61qrWkPEqulEgDwS2prcrolVsfNIj3IAWy6DJinK0Q2 2E9PeVggt+hKA8MAKtaOYCYDgL7hGqoJYOIn3mm8HlXdh02t1WtzlaJadmAV7bcd AR7qhSRMskdTeWEZEIyUuggSVMa2TZjjsCqIDrT612eXtatTK64NvDOHv82aG/9T m2jKOO/OBQee5Z0l0GqOSF+zRwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFOJqmN3G 6mkaIRNWxrsDGtHvyVDuMB8GA1UdIwQYMBaAFN2NLIO7Sh6p4Td3b8xVEQTKsrgj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0VGQi83MzhEQkZGQUI0 MjQxMUVDOTY3MjgyMzVDNEY5QUUwMi8zWTBzZzd0S0hxbmhOM2R2ekZVUkJNcXl1 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNZMHNnN3RLSHFuaE4zZHZ6RlVSQk1xeXVDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzNFRkIvNzM4REJGRkFCNDI0MTFFQzk2NzI4MjM1QzRGOUFFMDIvMzlGM0RDREFC QkI3MTFFQzhCMjdCMTI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnazgwDwQCAAIwCQMHACABDfPDADANBgkqhkiG9w0BAQsF AAOCAQEAHe/UaL9MBnbcf7EX6QHeyLLqdKeTHvaLi/1ieFCZsnPQvMDVskMRCqBL blX89Rght+9gsSx1/Pcer2Ns3dIprpS/ACPXyh8CyJHFZD2N+hbbcnkzWoM5x9/G NVjpyHyMG3M6NkETr0ta1fqaP7frI++kCiIWCxijzmkoaSHggErAZgg+7MjRb9sX 5ztAL2rKeaaM/p9Uuoj+P7fmqSafLJUV3biZKyQ/uVlYBduyYm8GQGAV2xfgElyc RmeOz57TNvyRZkQORggUCW8MEH5bCGmb88/wxBND7/z6uWedj13xrbYY1UworFRh aFg03PRblPcyXUGQL95MVe2Zzacu+g== -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:43 2024 by rpki-client on console-ams.rpki-client.org