$ rpki-client -vvf rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/38B92F54E17D11EDBCAFC081C4F9AE02.roa File: 38B92F54E17D11EDBCAFC081C4F9AE02.roa (raw, json) Hash identifier: tWyNWbcGvommNE54pGTBI9V0mq0dDaX2rOT4IeoLLOA= Subject key identifier: 56:BC:7E:9E:A0:FC:99:BA:CE:3B:39:6E:50:15:81:09:F5:8D:F0:87 Certificate issuer: /CN=A918753F/serialNumber=7E72D801B38A72AB4B0376E12C954124AAE43C6D Certificate serial: 0790 Authority key identifier: 7E:72:D8:01:B3:8A:72:AB:4B:03:76:E1:2C:95:41:24:AA:E4:3C:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnLYAbOKcqtLA3bhLJVBJKrkPG0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/38B92F54E17D11EDBCAFC081C4F9AE02.roa Signing time: Fri 08 Dec 2023 21:48:41 +0000 ROA not before: Fri 08 Dec 2023 21:48:41 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 21859 IP address blocks: 103.146.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.crl rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnLYAbOKcqtLA3bhLJVBJKrkPG0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1936 (0x790) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918753F/serialNumber=7E72D801B38A72AB4B0376E12C954124AAE43C6D Validity Not Before: Dec 8 21:48:41 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65738f39-2d7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:9b:06:71:f3:3c:9e:18:57:77:3a:57:b8:2b: 47:da:33:f3:2d:07:a6:a7:af:e5:c8:98:7e:ae:fe: b6:b6:89:c3:a0:1d:37:d7:a5:6e:9e:70:7e:64:60: dc:b6:91:8d:cd:fd:b0:4e:0e:64:43:2f:96:b9:4d: d4:5e:d0:1d:a9:14:7a:f3:f5:84:ac:da:0c:b6:56: 1e:0e:d8:84:7f:9c:28:39:6e:fa:7f:7b:36:fa:f9: 17:5e:83:ad:56:23:4f:26:2d:79:4a:86:08:2a:f7: 69:6f:ad:96:31:3b:f4:ae:23:dc:5b:7c:af:ab:9a: ed:cc:49:7a:8b:13:c3:5e:6f:3c:30:09:f3:4a:65: d4:4a:10:a9:51:76:26:a3:4d:83:b4:9c:39:bc:fb: dc:42:4f:7d:65:7b:e1:da:67:b3:a3:80:8b:de:77: 00:db:eb:26:fe:f3:75:0e:6c:2e:d7:3d:3a:71:2b: c0:c0:70:01:04:da:48:cd:d6:6b:29:23:7d:33:12: 5e:87:c8:54:85:6c:85:f4:4a:61:98:e5:77:5c:fd: 3a:63:6f:2f:8b:42:bb:b0:d3:4f:aa:86:1e:65:29: 32:5e:18:b5:87:06:bc:31:b7:2a:07:3b:41:5d:e0: 7b:72:d9:8e:8a:79:33:35:1e:dd:3a:af:6c:59:f2: 12:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:BC:7E:9E:A0:FC:99:BA:CE:3B:39:6E:50:15:81:09:F5:8D:F0:87 X509v3 Authority Key Identifier: keyid:7E:72:D8:01:B3:8A:72:AB:4B:03:76:E1:2C:95:41:24:AA:E4:3C:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/fnLYAbOKcqtLA3bhLJVBJKrkPG0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnLYAbOKcqtLA3bhLJVBJKrkPG0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918753F/BDA57FFEBC1611EA9F2B7412C4F9AE02/38B92F54E17D11EDBCAFC081C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.146.83.0/24 Signature Algorithm: sha256WithRSAEncryption 32:33:b3:94:18:ec:88:14:e7:d0:ca:88:f4:6e:b6:4d:02:27: 58:42:df:e7:3a:c8:d7:0b:a1:74:6f:51:8b:ad:8d:d0:12:3d: 13:19:b6:fa:1b:34:5d:38:20:91:24:a2:8e:7f:5d:1e:1d:b6: a1:ae:2c:cb:b3:17:bc:26:e8:bf:b0:6c:fd:6b:f3:a6:d7:30: 97:8e:0b:14:db:54:50:f2:ae:3d:29:ab:04:db:c9:7d:8e:1f: a7:60:62:93:4e:5d:9e:12:c2:5a:8e:02:39:b5:d0:83:e5:ba: af:90:b9:d7:46:e2:80:7d:a3:f4:22:e6:df:36:ad:65:ac:6f: 38:db:00:26:38:0f:3a:0f:c9:c7:b9:9c:ae:ae:0b:56:8e:33: 49:0d:88:2b:72:ff:02:c2:c6:22:d0:9e:00:3f:48:b7:30:4f: c0:98:9e:25:b0:40:8f:d5:61:43:d2:94:40:d6:05:ac:11:f5: 93:f5:f5:8d:77:d4:9a:48:4d:95:58:46:b2:f6:38:88:08:eb: 56:66:14:28:0a:3a:ce:91:a9:54:2a:f5:dd:90:6b:73:82:1c: 7b:f5:83:63:17:b7:c2:f2:fb:5b:7a:cc:46:61:91:55:86:0c: 1b:54:71:83:0c:17:6e:04:ba:ec:6b:86:8a:b1:c0:32:28:b2: 61:fc:0c:02 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB5AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc1M0YxMTAvBgNVBAUTKDdFNzJEODAxQjM4QTcyQUI0QjAzNzZFMTJDOTU0MTI0 QUFFNDNDNkQwHhcNMjMxMjA4MjE0ODQxWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTczOGYzOS0yZDdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuJsGcfM8nhhXdzpXuCtH2jPzLQemp6/lyJh+rv62tonDoB0316VunnB+ZGDc tpGNzf2wTg5kQy+WuU3UXtAdqRR68/WErNoMtlYeDtiEf5woOW76f3s2+vkXXoOt ViNPJi15SoYIKvdpb62WMTv0riPcW3yvq5rtzEl6ixPDXm88MAnzSmXUShCpUXYm o02DtJw5vPvcQk99ZXvh2mezo4CL3ncA2+sm/vN1Dmwu1z06cSvAwHABBNpIzdZr KSN9MxJeh8hUhWyF9EphmOV3XP06Y28vi0K7sNNPqoYeZSkyXhi1hwa8MbcqBztB XeB7ctmOinkzNR7dOq9sWfISHwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFa8fp6g /Jm6zjs5blAVgQn1jfCHMB8GA1UdIwQYMBaAFH5y2AGzinKrSwN24SyVQSSq5Dxt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzUzRi9CREE1N0ZGRUJD MTYxMUVBOUYyQjc0MTJDNEY5QUUwMi9mbkxZQWJPS2NxdExBM2JoTEpWQkpLcmtQ RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZuTFlBYk9LY3F0TEEzYmhMSlZCSktya1BHMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODc1M0YvQkRBNTdGRkVCQzE2MTFFQTlGMkI3NDEyQzRGOUFFMDIvMzhCOTJGNTRF MTdEMTFFREJDQUZDMDgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnklMwDQYJKoZIhvcNAQELBQADggEBADIzs5QY7IgU59DK iPRutk0CJ1hC3+c6yNcLoXRvUYutjdASPRMZtvobNF04IJEkoo5/XR4dtqGuLMuz F7wm6L+wbP1r86bXMJeOCxTbVFDyrj0pqwTbyX2OH6dgYpNOXZ4SwlqOAjm10IPl uq+QuddG4oB9o/Qi5t82rWWsbzjbACY4DzoPyce5nK6uC1aOM0kNiCty/wLCxiLQ ngA/SLcwT8CYniWwQI/VYUPSlEDWBawR9ZP19Y131JpITZVYRrL2OIgI61ZmFCgK Os6RqVQq9d2Qa3OCHHv1g2MXt8Ly+1t6zEZhkVWGDBtUcYMMF24EuuxrhoqxwDIo smH8DAI= -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:55 2024 by rpki-client on console-ams.rpki-client.org