$ rpki-client -vvf rpki.apnic.net/member_repository/A91841D2/F7223FB4845411EA8D6E350EC4F9AE02/3489F9BE7A5411EB9AC2283DC4F9AE02.roa File: 3489F9BE7A5411EB9AC2283DC4F9AE02.roa (raw, json) Hash identifier: EBnXmNp6pTupj85+HC37Errz7xWTGrLIfMOv4d/yBFo= Subject key identifier: 4A:D9:B2:9F:F2:9C:9A:D9:22:72:94:80:9D:D9:DA:D0:D5:35:99:D2 Certificate issuer: /CN=A91841D2/serialNumber=7EE71AD847E9D56810CD49E27785C6385CCCF96B Certificate serial: 0925 Authority key identifier: 7E:E7:1A:D8:47:E9:D5:68:10:CD:49:E2:77:85:C6:38:5C:CC:F9:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fuca2Efp1WgQzUnid4XGOFzM-Ws.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91841D2/F7223FB4845411EA8D6E350EC4F9AE02/3489F9BE7A5411EB9AC2283DC4F9AE02.roa Signing time: Sat 22 Jun 2024 21:13:42 +0000 ROA not before: Sat 22 Jun 2024 21:13:42 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 132825 IP address blocks: 103.150.181.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91841D2/F7223FB4845411EA8D6E350EC4F9AE02/fuca2Efp1WgQzUnid4XGOFzM-Ws.crl rsync://rpki.apnic.net/member_repository/A91841D2/F7223FB4845411EA8D6E350EC4F9AE02/fuca2Efp1WgQzUnid4XGOFzM-Ws.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fuca2Efp1WgQzUnid4XGOFzM-Ws.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2341 (0x925) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91841D2/serialNumber=7EE71AD847E9D56810CD49E27785C6385CCCF96B Validity Not Before: Jun 22 21:13:42 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66773e86-0a68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e1:55:44:2b:c9:b4:0a:d0:ec:c1:d3:d6:35: 57:7d:f7:17:8b:56:42:d8:88:b0:48:c9:4e:6f:aa: 90:32:d7:0c:19:7a:53:b5:7a:18:18:2b:6a:e8:d0: 33:76:54:d0:e0:8f:5a:5f:c2:f0:e0:2c:4e:f2:5b: 5e:fd:f0:93:08:b8:10:ba:94:85:50:ce:08:c0:21: cb:3b:b6:8c:9f:88:30:c4:7b:ed:09:2c:5d:01:b7: dc:8e:81:04:64:05:f2:f1:05:e1:3f:35:73:6e:24: d9:33:9b:48:51:97:d6:8e:29:7f:a0:60:1f:04:26: 43:55:b4:33:ad:47:e0:dc:ca:7d:e8:9a:08:44:5b: 03:4e:ac:9b:06:ea:9d:e7:9b:fe:f5:1f:74:6b:46: e9:52:6f:24:2b:79:1b:21:28:02:55:76:dc:57:da: 8a:24:1f:d9:e0:a5:d2:49:da:86:cc:dc:b6:9b:05: 1a:12:5e:b0:86:4a:80:4a:95:fe:57:e3:7b:3c:2e: 85:d5:4c:2d:16:a0:7d:9e:d3:f0:17:45:f5:7c:2b: 39:20:4e:a8:2f:a8:ba:f6:cb:50:86:d9:79:88:16: 38:62:65:b3:20:c5:84:45:18:11:60:d3:05:68:0c: 03:c2:2b:7d:74:f2:4a:57:9d:d9:a4:c3:c7:f8:bf: 59:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:D9:B2:9F:F2:9C:9A:D9:22:72:94:80:9D:D9:DA:D0:D5:35:99:D2 X509v3 Authority Key Identifier: keyid:7E:E7:1A:D8:47:E9:D5:68:10:CD:49:E2:77:85:C6:38:5C:CC:F9:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91841D2/F7223FB4845411EA8D6E350EC4F9AE02/fuca2Efp1WgQzUnid4XGOFzM-Ws.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fuca2Efp1WgQzUnid4XGOFzM-Ws.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91841D2/F7223FB4845411EA8D6E350EC4F9AE02/3489F9BE7A5411EB9AC2283DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.181.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:f4:12:87:52:7d:26:6a:6d:b6:6a:ec:8d:82:4c:df:00:e0: 6c:99:b7:10:55:b2:28:29:8d:d5:0c:d1:cc:c2:d6:b0:48:69: c6:8b:69:0c:10:40:1f:4c:6d:8e:2e:c7:3c:87:48:96:79:74: bd:29:23:8b:e7:cb:15:a7:70:c4:05:0f:66:bb:de:b1:59:b7: f9:7a:c7:1d:cb:a0:55:f0:02:ad:6c:83:1e:ad:73:c2:03:0f: d9:b0:66:d5:8c:7a:c8:ab:9b:85:fb:54:83:42:25:27:36:c5: 71:fd:00:e1:ac:52:c1:0a:47:b3:54:fe:b0:81:08:c0:2c:9d: c8:4e:4b:70:ab:7d:4d:84:75:09:f1:32:33:87:a5:dc:3e:a2: 3d:88:30:27:a2:57:bb:fc:1b:0c:76:e4:3d:2c:b5:56:3a:58: 81:04:05:69:54:a1:20:cd:af:4a:71:cd:27:ef:94:4c:c0:f1: cd:dd:40:3d:bc:03:5d:49:dd:3a:b7:6b:0c:c0:a1:9d:db:95: d6:9c:fc:83:0f:e1:e2:cf:77:93:13:53:58:f1:df:3a:4d:e3: ca:83:07:7d:79:07:f6:cc:13:98:6b:e5:6a:85:9b:58:30:0b: 32:7b:48:51:df:01:b5:8a:f4:e3:4f:bc:db:ce:e0:01:90:4c: fe:96:0d:43 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCSUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQxRDIxMTAvBgNVBAUTKDdFRTcxQUQ4NDdFOUQ1NjgxMENENDlFMjc3ODVDNjM4 NUNDQ0Y5NkIwHhcNMjQwNjIyMjExMzQyWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njc3M2U4Ni0wYTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0uFVRCvJtArQ7MHT1jVXffcXi1ZC2IiwSMlOb6qQMtcMGXpTtXoYGCtq6NAz dlTQ4I9aX8Lw4CxO8lte/fCTCLgQupSFUM4IwCHLO7aMn4gwxHvtCSxdAbfcjoEE ZAXy8QXhPzVzbiTZM5tIUZfWjil/oGAfBCZDVbQzrUfg3Mp96JoIRFsDTqybBuqd 55v+9R90a0bpUm8kK3kbISgCVXbcV9qKJB/Z4KXSSdqGzNy2mwUaEl6whkqASpX+ V+N7PC6F1UwtFqB9ntPwF0X1fCs5IE6oL6i69stQhtl5iBY4YmWzIMWERRgRYNMF aAwDwit9dPJKV53ZpMPH+L9ZnQIDAQABo4IClTCCApEwHQYDVR0OBBYEFErZsp/y nJrZInKUgJ3Z2tDVNZnSMB8GA1UdIwQYMBaAFH7nGthH6dVoEM1J4neFxjhczPlr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDFEMi9GNzIyM0ZCNDg0 NTQxMUVBOEQ2RTM1MEVDNEY5QUUwMi9mdWNhMkVmcDFXZ1F6VW5pZDRYR09Gek0t V3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Z1Y2EyRWZwMVdnUXpVbmlkNFhHT0Z6TS1Xcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODQxRDIvRjcyMjNGQjQ4NDU0MTFFQThENkUzNTBFQzRGOUFFMDIvMzQ4OUY5QkU3 QTU0MTFFQjlBQzIyODNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnlrUwDQYJKoZIhvcNAQELBQADggEBAEv0EodSfSZqbbZq 7I2CTN8A4GyZtxBVsigpjdUM0czC1rBIacaLaQwQQB9MbY4uxzyHSJZ5dL0pI4vn yxWncMQFD2a73rFZt/l6xx3LoFXwAq1sgx6tc8IDD9mwZtWMesirm4X7VINCJSc2 xXH9AOGsUsEKR7NU/rCBCMAsnchOS3CrfU2EdQnxMjOHpdw+oj2IMCeiV7v8Gwx2 5D0stVY6WIEEBWlUoSDNr0pxzSfvlEzA8c3dQD28A11J3Tq3awzAoZ3bldac/IMP 4eLPd5MTU1jx3zpN48qDB315B/bME5hr5WqFm1gwCzJ7SFHfAbWK9ONPvNvO4AGQ TP6WDUM= -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:54 2024 by rpki-client on console-ams.rpki-client.org