$ rpki-client -vvf rpki.apnic.net/member_repository/A917C1DC/B2D1DE20594F11EB88F7A73EC4F9AE02/38EA642E56BD11EE8C084A30C4F9AE02.roa File: 38EA642E56BD11EE8C084A30C4F9AE02.roa (raw, json) Hash identifier: NPubn+unfjcZmVgNay2VpxJOoDeb/X30J30a9VYk6zI= Subject key identifier: 3C:39:84:8D:13:AE:DF:4D:35:53:AE:BF:D3:37:09:60:13:4E:82:71 Certificate issuer: /CN=A917C1DC/serialNumber=A8D576D4AFBB64045BB0295641B99427D7F878F2 Certificate serial: 0661 Authority key identifier: A8:D5:76:D4:AF:BB:64:04:5B:B0:29:56:41:B9:94:27:D7:F8:78:F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qNV21K-7ZARbsClWQbmUJ9f4ePI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C1DC/B2D1DE20594F11EB88F7A73EC4F9AE02/38EA642E56BD11EE8C084A30C4F9AE02.roa Signing time: Tue 09 Apr 2024 00:02:31 +0000 ROA not before: Tue 09 Apr 2024 00:02:31 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 209737 IP address blocks: 103.110.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C1DC/B2D1DE20594F11EB88F7A73EC4F9AE02/qNV21K-7ZARbsClWQbmUJ9f4ePI.crl rsync://rpki.apnic.net/member_repository/A917C1DC/B2D1DE20594F11EB88F7A73EC4F9AE02/qNV21K-7ZARbsClWQbmUJ9f4ePI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qNV21K-7ZARbsClWQbmUJ9f4ePI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1633 (0x661) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C1DC/serialNumber=A8D576D4AFBB64045BB0295641B99427D7F878F2 Validity Not Before: Apr 9 00:02:31 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66148597-4436 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e0:ae:c4:56:79:af:8e:28:24:1b:b0:ef:7f: e6:21:8c:f8:f7:28:53:dc:01:6e:a5:4a:c8:d7:0d: 8d:c8:80:e9:3c:ae:1a:ae:a9:4a:9f:7c:44:7f:d1: 5e:c9:e3:ad:08:24:f3:34:02:85:f7:66:03:2c:9f: 61:74:70:ba:15:22:69:7f:55:b1:89:88:77:d9:c9: 74:cd:89:de:99:a3:16:b2:7f:bf:ca:6b:65:1e:fa: 62:d5:08:2e:44:72:51:8b:4e:2f:86:b7:cc:d7:c0: a1:1e:80:e3:75:21:d5:f9:19:4c:14:97:bc:2a:81: 69:40:b3:4c:ec:f0:c9:f7:99:8f:05:06:f2:05:cd: 0e:fc:63:70:13:04:bb:75:9c:59:4b:69:a4:11:c4: 36:3c:ba:ee:04:eb:96:a8:19:22:25:15:af:04:e7: f7:99:58:df:6a:e8:4e:a9:5a:9e:6f:5e:0e:28:29: d9:73:5c:00:ac:ba:56:9b:0e:f7:97:fe:90:4a:e4: 4d:3a:38:92:8c:af:48:f4:78:6d:64:2d:2d:7a:f8: 31:ad:42:05:fc:38:76:46:86:06:66:32:f3:36:21: 0a:29:34:e5:12:fd:c9:ec:2d:aa:9e:6a:30:a3:d7: bd:96:1f:cd:ae:a0:90:0f:f1:c0:e2:ef:f8:ac:4f: 4f:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:39:84:8D:13:AE:DF:4D:35:53:AE:BF:D3:37:09:60:13:4E:82:71 X509v3 Authority Key Identifier: keyid:A8:D5:76:D4:AF:BB:64:04:5B:B0:29:56:41:B9:94:27:D7:F8:78:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C1DC/B2D1DE20594F11EB88F7A73EC4F9AE02/qNV21K-7ZARbsClWQbmUJ9f4ePI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qNV21K-7ZARbsClWQbmUJ9f4ePI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C1DC/B2D1DE20594F11EB88F7A73EC4F9AE02/38EA642E56BD11EE8C084A30C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.110.105.0/24 Signature Algorithm: sha256WithRSAEncryption a1:d0:e1:c5:dc:3e:11:fe:67:56:87:d3:3f:de:16:ff:98:5d: b4:bd:7f:e0:ba:9b:8b:ce:2d:6c:20:3f:80:a2:60:3b:83:95: 8a:51:a1:cf:cb:a2:7c:a1:9b:f5:7d:cf:e7:5d:23:2e:8e:59: 9e:90:db:fb:4e:92:98:26:55:84:e8:f2:f6:4c:02:98:0a:64: 62:52:a2:1a:60:9b:04:90:4d:ea:1b:d7:b1:12:29:f3:41:18: fd:b0:bb:5f:d3:e2:e1:05:8a:69:09:8b:0b:92:83:10:39:19: b1:74:6d:29:6c:58:d9:f2:3b:ce:7c:b5:68:b8:48:41:37:b6: 6c:dd:5f:d6:e8:f0:83:c4:c0:f4:df:46:21:57:0e:a2:7d:e6: 2a:e6:a0:48:1b:d5:54:8a:be:fd:26:35:f0:b0:25:40:e4:6b: 8b:bc:7e:4e:53:41:48:70:26:ec:5e:6b:54:0c:98:e1:09:f4: 99:9b:04:6a:b3:4d:20:88:ed:12:dd:28:59:23:47:68:8a:77: 8a:6a:5b:b8:d6:3c:0b:a8:fb:e4:89:b6:40:e3:72:73:9d:71: e5:02:a0:a1:fe:5d:8a:ad:8c:05:b4:b7:dd:3b:dd:06:6c:a2: 71:42:3a:a8:ff:2f:d9:bb:61:95:f5:89:a1:69:1a:ce:55:31: 71:9e:5a:4d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBmEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MxREMxMTAvBgNVBAUTKEE4RDU3NkQ0QUZCQjY0MDQ1QkIwMjk1NjQxQjk5NDI3 RDdGODc4RjIwHhcNMjQwNDA5MDAwMjMxWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjE0ODU5Ny00NDM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtuCuxFZ5r44oJBuw73/mIYz49yhT3AFupUrI1w2NyIDpPK4arqlKn3xEf9Fe yeOtCCTzNAKF92YDLJ9hdHC6FSJpf1WxiYh32cl0zYnemaMWsn+/ymtlHvpi1Qgu RHJRi04vhrfM18ChHoDjdSHV+RlMFJe8KoFpQLNM7PDJ95mPBQbyBc0O/GNwEwS7 dZxZS2mkEcQ2PLruBOuWqBkiJRWvBOf3mVjfauhOqVqeb14OKCnZc1wArLpWmw73 l/6QSuRNOjiSjK9I9HhtZC0tevgxrUIF/Dh2RoYGZjLzNiEKKTTlEv3J7C2qnmow o9e9lh/NrqCQD/HA4u/4rE9PuQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDw5hI0T rt9NNVOuv9M3CWATToJxMB8GA1UdIwQYMBaAFKjVdtSvu2QEW7ApVkG5lCfX+Hjy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzFEQy9CMkQxREUyMDU5 NEYxMUVCODhGN0E3M0VDNEY5QUUwMi9xTlYyMUstN1pBUmJzQ2xXUWJtVUo5ZjRl UEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FOVjIxSy03WkFSYnNDbFdRYm1VSjlmNGVQSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0MxREMvQjJEMURFMjA1OTRGMTFFQjg4RjdBNzNFQzRGOUFFMDIvMzhFQTY0MkU1 NkJEMTFFRThDMDg0QTMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnbmkwDQYJKoZIhvcNAQELBQADggEBAKHQ4cXcPhH+Z1aH 0z/eFv+YXbS9f+C6m4vOLWwgP4CiYDuDlYpRoc/Lonyhm/V9z+ddIy6OWZ6Q2/tO kpgmVYTo8vZMApgKZGJSohpgmwSQTeob17ESKfNBGP2wu1/T4uEFimkJiwuSgxA5 GbF0bSlsWNnyO858tWi4SEE3tmzdX9bo8IPEwPTfRiFXDqJ95irmoEgb1VSKvv0m NfCwJUDka4u8fk5TQUhwJuxea1QMmOEJ9JmbBGqzTSCI7RLdKFkjR2iKd4pqW7jW PAuo++SJtkDjcnOdceUCoKH+XYqtjAW0t9073QZsonFCOqj/L9m7YZX1iaFpGs5V MXGeWk0= -----END CERTIFICATE-----Generated at Wed Nov 20 23:11:45 2024 by rpki-client on console-fra.rpki-client.org