$ rpki-client -vvf rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/3BF0A4D868F511ECAB15DE18C4F9AE02.roa File: 3BF0A4D868F511ECAB15DE18C4F9AE02.roa (raw, json) Hash identifier: ZWM4HJUjC3JgAEYknxCATq6PGI5BXk42LHpdEZQRJ0I= Subject key identifier: 65:18:69:A2:AC:CE:A2:30:D3:E6:EA:92:53:61:F2:CD:F1:02:45:39 Certificate issuer: /CN=A9198D02/serialNumber=FCE3685545607AC3BCC3340D039B2168827127BE Certificate serial: 079E Authority key identifier: FC:E3:68:55:45:60:7A:C3:BC:C3:34:0D:03:9B:21:68:82:71:27:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/3BF0A4D868F511ECAB15DE18C4F9AE02.roa Signing time: Thu 08 Aug 2024 21:49:39 +0000 ROA not before: Thu 08 Aug 2024 21:49:39 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 45935 IP address blocks: 103.36.144.0/24 maxlen: 24 103.36.145.0/24 maxlen: 24 103.36.147.0/24 maxlen: 24 180.222.208.0/24 maxlen: 24 180.222.209.0/24 maxlen: 24 180.222.210.0/24 maxlen: 24 180.222.211.0/24 maxlen: 24 203.191.128.0/24 maxlen: 24 203.191.129.0/24 maxlen: 24 203.191.130.0/24 maxlen: 24 203.191.131.0/24 maxlen: 24 2400:3100::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.crl rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1950 (0x79e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198D02/serialNumber=FCE3685545607AC3BCC3340D039B2168827127BE Validity Not Before: Aug 8 21:49:39 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66b53d73-8947 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:98:a7:2a:77:5e:b9:a4:13:3b:a1:fd:15:2e: 0b:36:41:c2:b6:d2:e1:16:c5:6a:34:f2:44:e1:f5: 89:7b:bd:44:c7:da:34:ca:bd:1f:67:f1:f8:f7:81: 23:45:cf:75:79:ea:f4:1d:c4:49:2d:0c:56:f3:74: 1d:48:43:ea:6c:24:d8:dc:68:18:f9:b8:34:24:ea: c0:06:00:33:78:4e:19:18:52:30:59:17:ef:0b:3e: 57:4b:7d:3c:50:48:03:83:35:e1:f5:c2:9f:0b:9b: 64:04:70:60:44:ae:08:00:1a:22:f1:37:19:c2:22: 7a:8a:52:54:bc:81:78:06:be:ba:80:5f:8b:91:cc: 5c:b1:3f:18:6e:08:f9:8c:a0:5a:84:ea:d5:9f:96: b2:1c:68:23:46:9a:b2:7e:23:c2:0d:41:2c:0d:26: 97:ef:ab:2e:78:61:f1:c7:d9:f5:b2:3d:c8:f4:b5: 47:f9:b7:94:e1:d6:2f:f9:70:27:f8:ff:65:1a:b2: 35:66:01:5f:18:60:65:f8:35:5d:40:5d:09:76:91: 40:13:c8:6f:90:1f:90:0f:89:d2:62:39:47:9a:fd: 82:5d:39:cf:91:d4:ec:01:99:c3:0e:6a:92:5c:d6: 7d:cb:74:1d:e2:39:8e:f0:0c:0d:39:c1:9c:ed:61: a3:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:18:69:A2:AC:CE:A2:30:D3:E6:EA:92:53:61:F2:CD:F1:02:45:39 X509v3 Authority Key Identifier: keyid:FC:E3:68:55:45:60:7A:C3:BC:C3:34:0D:03:9B:21:68:82:71:27:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/_ONoVUVgesO8wzQNA5shaIJxJ74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ONoVUVgesO8wzQNA5shaIJxJ74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198D02/28A506FAD86711EA8B51620DC4F9AE02/3BF0A4D868F511ECAB15DE18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.36.144.0/23 103.36.147.0/24 180.222.208.0/22 203.191.128.0/22 IPv6: 2400:3100::/40 Signature Algorithm: sha256WithRSAEncryption a6:33:96:66:25:f5:82:aa:c9:66:13:a8:9b:b0:09:90:3a:1d: e3:ac:3d:38:06:76:3f:5e:0f:b6:a5:1a:5c:e0:9c:da:0b:61: 29:6d:ca:26:bd:73:d7:e0:31:b0:b3:a1:fb:2b:46:7e:11:ba: a9:27:b3:82:95:8d:2a:0e:fc:18:aa:41:e6:53:c8:d0:13:f2: 00:c5:cd:51:5c:b8:83:c0:ee:82:59:12:92:f5:db:94:f1:eb: 12:62:29:8a:f6:92:72:f9:65:28:ed:9e:5b:71:c1:d9:84:bf: 60:6a:d9:8d:ae:86:93:65:75:f0:86:e0:26:d6:14:93:42:37: bf:f3:38:e7:a3:ab:af:fe:e0:f1:58:8c:a9:2f:42:8c:8d:82: e6:25:aa:38:0d:e7:15:44:7e:29:f9:4c:c4:ae:dd:22:16:95: 91:be:59:51:cc:21:9d:7b:44:93:36:27:0c:ab:c5:3f:92:29: ca:86:4e:5b:8c:ac:fd:5c:e3:76:8a:c5:31:52:ba:ba:76:09: f0:0f:ba:5a:4a:48:40:dc:ac:06:6a:5d:dc:9b:23:d6:73:5b: fd:de:c5:1d:e3:50:fa:db:28:32:cf:c4:78:3e:19:f1:99:ac: 47:22:70:8a:3a:13:95:48:da:99:e5:38:48:31:d2:50:57:47: 25:01:c2:d4 -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgICB54wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThEMDIxMTAvBgNVBAUTKEZDRTM2ODU1NDU2MDdBQzNCQ0MzMzQwRDAzOUIyMTY4 ODI3MTI3QkUwHhcNMjQwODA4MjE0OTM5WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmI1M2Q3My04OTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwpinKndeuaQTO6H9FS4LNkHCttLhFsVqNPJE4fWJe71Ex9o0yr0fZ/H494Ej Rc91eer0HcRJLQxW83QdSEPqbCTY3GgY+bg0JOrABgAzeE4ZGFIwWRfvCz5XS308 UEgDgzXh9cKfC5tkBHBgRK4IABoi8TcZwiJ6ilJUvIF4Br66gF+LkcxcsT8Ybgj5 jKBahOrVn5ayHGgjRpqyfiPCDUEsDSaX76sueGHxx9n1sj3I9LVH+beU4dYv+XAn +P9lGrI1ZgFfGGBl+DVdQF0JdpFAE8hvkB+QD4nSYjlHmv2CXTnPkdTsAZnDDmqS XNZ9y3Qd4jmO8AwNOcGc7WGjEwIDAQABo4ICtzCCArMwHQYDVR0OBBYEFGUYaaKs zqIw0+bqklNh8s3xAkU5MB8GA1UdIwQYMBaAFPzjaFVFYHrDvMM0DQObIWiCcSe+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEQwMi8yOEE1MDZGQUQ4 NjcxMUVBOEI1MTYyMERDNEY5QUUwMi9fT05vVlVWZ2VzTzh3elFOQTVzaGFJSnhK NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19PTm9WVVZnZXNPOHd6UU5BNXNoYUlKeEo3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OThEMDIvMjhBNTA2RkFEODY3MTFFQThCNTE2MjBEQzRGOUFFMDIvM0JGMEE0RDg2 OEY1MTFFQ0FCMTVERTE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQQYIKwYBBQUHAQcBAf8E MjAwMB4EAgABMBgDBAFnJJADBABnJJMDBAK03tADBALLv4AwDgQCAAIwCAMGACQA MQAAMA0GCSqGSIb3DQEBCwUAA4IBAQCmM5ZmJfWCqslmE6ibsAmQOh3jrD04BnY/ Xg+2pRpc4JzaC2EpbcomvXPX4DGws6H7K0Z+EbqpJ7OClY0qDvwYqkHmU8jQE/IA xc1RXLiDwO6CWRKS9duU8esSYimK9pJy+WUo7Z5bccHZhL9gatmNroaTZXXwhuAm 1hSTQje/8zjno6uv/uDxWIypL0KMjYLmJao4DecVRH4p+UzErt0iFpWRvllRzCGd e0STNicMq8U/kinKhk5bjKz9XON2isUxUrq6dgnwD7paSkhA3KwGal3cmyPWc1v9 3sUd41D62ygyz8R4PhnxmaxHInCKOhOVSNqZ5ThIMdJQV0clAcLU -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:10 2024 by rpki-client on console-fra.rpki-client.org