$ rpki-client -vvf rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/3802A98EC8AC11E9877DCE2FC4F9AE02.roa File: 3802A98EC8AC11E9877DCE2FC4F9AE02.roa (raw, json) Hash identifier: pTMoVBZCsEARFbs1aGExyarMu+r7tLUk6ACYjZUvCyg= Subject key identifier: 6A:0D:7F:61:BB:34:D7:1D:6E:A4:5B:3A:0C:CE:C9:B7:AB:41:3B:A5 Certificate issuer: /CN=A91A08FD/serialNumber=3C1FDD8BA301DCE3DB3F0BCC25C8694CE1BCDC7D Certificate serial: 0D15 Authority key identifier: 3C:1F:DD:8B:A3:01:DC:E3:DB:3F:0B:CC:25:C8:69:4C:E1:BC:DC:7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PB_di6MB3OPbPwvMJchpTOG83H0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/3802A98EC8AC11E9877DCE2FC4F9AE02.roa Signing time: Sat 02 Nov 2024 18:26:45 +0000 ROA not before: Sat 02 Nov 2024 18:26:45 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 135589 IP address blocks: 103.129.76.0/22 maxlen: 22 103.129.76.0/24 maxlen: 24 103.129.77.0/24 maxlen: 24 103.129.78.0/24 maxlen: 24 103.129.79.0/24 maxlen: 24 2403:79c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.crl rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PB_di6MB3OPbPwvMJchpTOG83H0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:58:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3349 (0xd15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A08FD/serialNumber=3C1FDD8BA301DCE3DB3F0BCC25C8694CE1BCDC7D Validity Not Before: Nov 2 18:26:45 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67266ee4-f3eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:7d:33:00:4d:5b:5a:e5:7c:50:de:39:f1:89: fc:9f:5b:dd:1d:c6:71:5b:dd:28:80:31:07:b9:80: 73:10:0f:59:41:df:87:1c:bd:19:ab:69:b4:75:6d: 02:16:cf:10:e6:3d:43:8b:38:92:f4:2b:3c:fe:b5: 7d:46:85:5d:ff:fd:bd:af:ca:3e:50:ca:09:d9:58: 5f:89:13:14:21:df:7c:c4:25:75:52:d0:82:0d:15: 5b:7b:4a:2a:20:56:63:68:a1:23:b9:1a:21:91:c5: 02:a3:ea:11:c0:a9:53:7c:1c:05:d0:02:3b:9b:50: f0:3e:48:01:66:f6:5c:af:b0:8e:44:fb:28:6b:d2: 68:6a:57:43:fa:0d:a1:9c:13:16:9a:d9:78:bb:2b: 2e:fe:c1:9b:ce:9b:d2:1e:f3:56:d1:a7:b5:a6:f5: 82:01:bd:7b:ed:6d:c8:ba:73:7c:43:88:4f:e0:0a: 1a:9a:ad:a4:3d:fb:6d:b1:64:81:ce:db:af:dd:70: d6:dd:93:10:51:50:3c:e3:3f:32:5f:ef:7c:4c:0b: 7c:45:87:5d:9f:eb:f5:f0:56:1d:ef:0e:7f:52:8a: 6b:4b:f5:3f:6a:b4:1c:bd:68:50:d9:9d:5a:91:61: 87:7b:f3:66:d1:40:b9:ee:a2:70:b0:bc:b5:f3:8d: 2a:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:0D:7F:61:BB:34:D7:1D:6E:A4:5B:3A:0C:CE:C9:B7:AB:41:3B:A5 X509v3 Authority Key Identifier: keyid:3C:1F:DD:8B:A3:01:DC:E3:DB:3F:0B:CC:25:C8:69:4C:E1:BC:DC:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/PB_di6MB3OPbPwvMJchpTOG83H0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PB_di6MB3OPbPwvMJchpTOG83H0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A08FD/9F42EAD8C8AB11E9829D282FC4F9AE02/3802A98EC8AC11E9877DCE2FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.129.76.0/22 IPv6: 2403:79c0::/32 Signature Algorithm: sha256WithRSAEncryption aa:9d:14:b7:5a:cc:78:08:0a:ac:94:8c:0e:c8:ca:32:43:4d: c9:b2:99:73:bb:6b:89:39:21:a3:4b:d5:b8:82:c0:e7:a5:9c: 03:79:e6:dd:82:a2:9e:a3:2a:b9:1d:86:f7:82:16:ea:8a:f0: 74:26:ab:5e:9e:c2:3b:48:36:1e:5e:e7:83:f3:d2:e2:cd:7b: 6c:9f:16:fb:f8:da:dd:5f:ea:af:29:43:d5:47:5b:9a:ee:72: 26:60:9c:57:e8:fc:b7:e3:34:cf:bc:93:af:21:20:66:48:f6: 0c:a4:05:f8:82:41:15:f5:bc:06:3f:bc:a3:08:be:9d:2b:d8: d4:34:46:4e:fa:4b:ec:12:4a:b8:96:c0:b6:1b:73:80:84:99: 09:d7:d9:3a:74:00:d9:8d:ed:93:7e:21:ec:67:f9:b2:59:0b: ea:3e:23:bb:79:97:d4:e9:22:c3:5b:21:02:f5:a8:ee:94:6d: 05:b1:14:3b:c4:92:c2:a3:77:51:67:ef:52:62:88:65:58:d4: 3b:24:f0:31:2f:04:f4:5d:13:b2:76:ad:08:a2:f2:8a:d6:a9: c5:88:8c:45:1c:63:88:b9:2d:c5:df:b0:53:d8:df:d3:f2:59: 35:4f:d6:2c:67:e8:7f:e0:36:24:74:d1:f5:11:4c:d5:89:18: 07:9a:65:d8 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDRUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4RkQxMTAvBgNVBAUTKDNDMUZERDhCQTMwMURDRTNEQjNGMEJDQzI1Qzg2OTRD RTFCQ0RDN0QwHhcNMjQxMTAyMTgyNjQ1WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2NmVlNC1mM2ViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAun0zAE1bWuV8UN458Yn8n1vdHcZxW90ogDEHuYBzEA9ZQd+HHL0Zq2m0dW0C Fs8Q5j1DiziS9Cs8/rV9RoVd//29r8o+UMoJ2VhfiRMUId98xCV1UtCCDRVbe0oq IFZjaKEjuRohkcUCo+oRwKlTfBwF0AI7m1DwPkgBZvZcr7CORPsoa9JoaldD+g2h nBMWmtl4uysu/sGbzpvSHvNW0ae1pvWCAb177W3IunN8Q4hP4Aoamq2kPfttsWSB ztuv3XDW3ZMQUVA84z8yX+98TAt8RYddn+v18FYd7w5/UoprS/U/arQcvWhQ2Z1a kWGHe/Nm0UC57qJwsLy1840qIQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFGoNf2G7 NNcdbqRbOgzOyberQTulMB8GA1UdIwQYMBaAFDwf3YujAdzj2z8LzCXIaUzhvNx9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDhGRC85RjQyRUFEOEM4 QUIxMUU5ODI5RDI4MkZDNEY5QUUwMi9QQl9kaTZNQjNPUGJQd3ZNSmNocFRPRzgz SDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BCX2RpNk1CM09QYlB3dk1KY2hwVE9HODNIMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA4RkQvOUY0MkVBRDhDOEFCMTFFOTgyOUQyODJGQzRGOUFFMDIvMzgwMkE5OEVD OEFDMTFFOTg3N0RDRTJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJngUwwDQQCAAIwBwMFACQDecAwDQYJKoZIhvcNAQELBQAD ggEBAKqdFLdazHgICqyUjA7IyjJDTcmymXO7a4k5IaNL1biCwOelnAN55t2Cop6j KrkdhveCFuqK8HQmq16ewjtINh5e54Pz0uLNe2yfFvv42t1f6q8pQ9VHW5ruciZg nFfo/LfjNM+8k68hIGZI9gykBfiCQRX1vAY/vKMIvp0r2NQ0Rk76S+wSSriWwLYb c4CEmQnX2Tp0ANmN7ZN+Iexn+bJZC+o+I7t5l9TpIsNbIQL1qO6UbQWxFDvEksKj d1Fn71JiiGVY1Dsk8DEvBPRdE7J2rQii8orWqcWIjEUcY4i5LcXfsFPY39PyWTVP 1ixn6H/gNiR00fURTNWJGAeaZdg= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:14 2024 by rpki-client on console-ams.rpki-client.org