$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/3F9678DA78E811E79F549F43C4F9AE02.roa File: 3F9678DA78E811E79F549F43C4F9AE02.roa (raw, json) Hash identifier: +daQjZCtj/iFgYwkyCAkGhBq6sawPkuH3kf3beOi0Po= Subject key identifier: 43:79:27:64:69:4D:5B:D3:5C:45:BC:B8:CF:91:E1:3D:2E:17:3F:99 Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Certificate serial: 3404 Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/3F9678DA78E811E79F549F43C4F9AE02.roa Signing time: Tue 30 Jul 2024 16:02:23 +0000 ROA not before: Tue 30 Jul 2024 16:02:23 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 133339 IP address blocks: 103.225.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 00:51:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13316 (0x3404) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Validity Not Before: Jul 30 16:02:23 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66a90e8f-e3fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:fe:1c:38:d9:9f:bd:f3:b0:4b:8b:ef:f9:c5: 48:40:d8:29:c3:0b:6b:56:d2:28:7a:f2:f7:67:d0: f2:a6:80:70:c2:fd:ba:6c:93:65:5d:aa:13:5d:a9: 8d:bc:db:36:b3:45:ca:30:1a:18:24:2d:9b:bc:1a: 91:ed:4b:be:d5:cb:e9:00:74:e8:c7:fe:cb:ff:a4: 11:99:eb:43:27:fe:1f:68:e5:41:88:e9:07:1e:c9: 43:17:e7:34:f9:c0:b6:b5:fb:46:aa:7c:df:51:d1: 8b:c3:8d:5e:89:4b:d2:59:2f:93:fa:5e:8a:72:fc: 89:7b:84:6f:d2:1f:6e:68:3e:f8:2d:15:9b:4e:0d: b5:60:f5:b9:6b:51:6b:a1:2f:b6:05:25:9c:f4:19: 53:5f:77:00:e4:07:74:44:b6:8c:d7:ae:91:0c:d2: 8b:2a:56:36:19:2a:3c:84:7a:ee:9b:3d:0a:c1:fb: 41:be:8f:fc:9e:8a:84:1a:e0:2e:98:af:f0:77:7b: 2e:4a:b4:7a:bd:d2:1b:7d:d5:08:83:c7:f6:4c:60: 76:c4:e6:d1:e8:3f:1d:24:28:6f:57:f0:e4:8a:1f: 7e:43:4c:9e:61:f6:09:80:e3:f4:38:a3:d3:64:eb: dc:ac:c0:f6:cc:55:d1:7f:9e:93:c8:18:f6:a7:5f: 2e:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:79:27:64:69:4D:5B:D3:5C:45:BC:B8:CF:91:E1:3D:2E:17:3F:99 X509v3 Authority Key Identifier: keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/3F9678DA78E811E79F549F43C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.225.171.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:03:d7:dc:7c:a9:fa:c0:54:0a:f4:da:ab:c8:b4:f4:6b:ac: 0b:56:44:06:95:07:43:2c:92:a2:40:84:30:de:0f:7a:55:11: 97:4e:e2:d1:c7:8c:ba:2e:4e:f4:b6:3c:48:a8:84:d4:99:3c: c0:fa:fa:f8:7c:9f:90:f3:9a:17:f8:d4:f0:72:ec:67:5b:58: 62:1e:86:a9:15:a3:e9:8b:27:9b:e8:81:af:7b:b2:17:23:0a: 78:d5:e7:89:71:c6:13:fa:c9:ae:95:83:23:67:3e:bf:39:aa: 9e:cd:25:16:c2:5b:15:2b:f7:f6:8c:b4:6a:28:ed:69:ca:41: 17:c0:da:bc:66:53:66:74:8f:83:f1:d7:48:66:05:e0:47:8a: 23:4e:16:1f:57:11:84:13:7e:93:7e:b4:2b:2c:ff:97:92:7f: 7e:58:cb:f0:d6:e8:1d:c9:aa:af:54:8d:b2:0a:35:cd:34:0f: f3:a8:f7:94:9e:05:a7:22:21:d5:20:ff:d8:95:f1:31:ed:6c: b7:03:9b:cc:7a:d1:5d:bb:2a:62:98:c1:54:99:5f:68:73:b1: 36:7e:61:eb:0a:88:d2:61:59:79:b7:e1:4c:2f:5b:fc:b2:46: 87:93:2e:51:fd:eb:4d:9d:de:04:da:76:44:56:8e:a2:e3:aa: fb:b8:d2:3b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNAQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKEYzREI5RjE2MjAwOEJENjY2Q0JGOEM5OTYwNzgxNENG QUIyNEQ3RTcwHhcNMjQwNzMwMTYwMjIzWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5MGU4Zi1lM2ZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnf4cONmfvfOwS4vv+cVIQNgpwwtrVtIoevL3Z9DypoBwwv26bJNlXaoTXamN vNs2s0XKMBoYJC2bvBqR7Uu+1cvpAHTox/7L/6QRmetDJ/4faOVBiOkHHslDF+c0 +cC2tftGqnzfUdGLw41eiUvSWS+T+l6KcvyJe4Rv0h9uaD74LRWbTg21YPW5a1Fr oS+2BSWc9BlTX3cA5Ad0RLaM166RDNKLKlY2GSo8hHrumz0KwftBvo/8noqEGuAu mK/wd3suSrR6vdIbfdUIg8f2TGB2xObR6D8dJChvV/Dkih9+Q0yeYfYJgOP0OKPT ZOvcrMD2zFXRf56TyBj2p18unQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEN5J2Rp TVvTXEW8uM+R4T0uFz+ZMB8GA1UdIwQYMBaAFPPbnxYgCL1mbL+MmWB4FM+rJNfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9DNjVENTM2NDMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi84OXVmRmlBSXZXWnN2NHlaWUhnVXo2c2sx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5dWZGaUFJdldac3Y0eVpZSGdVejZzazEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQzY1RDUzNjQzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvM0Y5Njc4REE3 OEU4MTFFNzlGNTQ5RjQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn4aswDQYJKoZIhvcNAQELBQADggEBADoD19x8qfrAVAr0 2qvItPRrrAtWRAaVB0MskqJAhDDeD3pVEZdO4tHHjLouTvS2PEiohNSZPMD6+vh8 n5Dzmhf41PBy7GdbWGIehqkVo+mLJ5voga97shcjCnjV54lxxhP6ya6VgyNnPr85 qp7NJRbCWxUr9/aMtGoo7WnKQRfA2rxmU2Z0j4Px10hmBeBHiiNOFh9XEYQTfpN+ tCss/5eSf35Yy/DW6B3Jqq9UjbIKNc00D/Oo95SeBaciIdUg/9iV8THtbLcDm8x6 0V27KmKYwVSZX2hzsTZ+YesKiNJhWXm34UwvW/yyRoeTLlH9602d3gTadkRWjqLj qvu40js= -----END CERTIFICATE-----Generated at Fri Nov 22 04:05:35 2024 by rpki-client on console-ams.rpki-client.org