$ rpki-client -vvf rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/3E734F70B9A311EE85D60B49C4F9AE02.roa File: 3E734F70B9A311EE85D60B49C4F9AE02.roa (raw, json) Hash identifier: KETtLjC6TzC1ChTU5VhPa2GsuKgnmsvYAWcO3cW4jgA= Subject key identifier: 5C:E6:AF:CF:7E:63:36:82:FC:0B:B8:CF:38:02:FC:23:99:C4:34:5B Certificate issuer: /CN=A91A352E/serialNumber=EF6702A7D0AEC834DEFB8F4168B2FE8F4D5843E8 Certificate serial: 76 Authority key identifier: EF:67:02:A7:D0:AE:C8:34:DE:FB:8F:41:68:B2:FE:8F:4D:58:43:E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72cCp9CuyDTe-49BaLL-j01YQ-g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/3E734F70B9A311EE85D60B49C4F9AE02.roa Signing time: Tue 23 Jan 2024 03:55:27 +0000 ROA not before: Tue 23 Jan 2024 03:55:27 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 17828 IP address blocks: 103.173.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/72cCp9CuyDTe-49BaLL-j01YQ-g.crl rsync://rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/72cCp9CuyDTe-49BaLL-j01YQ-g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72cCp9CuyDTe-49BaLL-j01YQ-g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:43:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A352E/serialNumber=EF6702A7D0AEC834DEFB8F4168B2FE8F4D5843E8 Validity Not Before: Jan 23 03:55:27 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65af38af-5193 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:22:0d:da:14:c8:86:14:1f:e2:62:8c:01:0e: 84:00:18:83:75:77:b4:b0:67:7e:1a:a9:b7:35:24: bf:60:9b:8b:a1:e1:18:f7:a7:fc:7e:c8:17:9f:09: c3:c5:8c:f5:53:aa:ab:e4:04:53:82:03:67:98:45: 4f:40:f7:80:a6:79:b2:61:4f:5e:f9:f9:1c:13:12: fa:99:cf:9e:d2:c7:98:f6:80:d5:84:0c:39:c1:f2: b0:2e:42:ae:73:3e:d3:20:82:8c:6a:5e:ce:21:ca: 91:6e:18:92:77:dc:ac:5a:57:76:0b:64:3a:ec:4d: 02:dd:e4:0c:d4:d7:d3:95:68:44:e9:e1:69:c1:c3: a1:98:79:9a:b9:f4:c9:c9:f8:e9:e9:a7:ca:1c:8c: 5a:3e:44:77:24:02:9f:ac:cf:a8:0e:48:dc:75:88: a5:19:bc:89:9c:ab:09:4e:42:51:fb:df:11:b5:41: 18:89:b9:a9:d0:e1:3f:e0:cc:04:54:d9:1c:54:5e: dc:fc:27:4d:b3:de:7b:e9:f1:0e:fe:3e:aa:6f:d3: 31:29:31:0d:2a:a2:21:9f:23:c0:d9:83:56:9e:d1: 83:c4:62:6a:bf:de:a5:9e:4a:cd:7a:d3:7d:99:cc: 44:cd:e2:50:85:fc:36:12:1f:6e:b9:20:ce:0f:17: 67:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:E6:AF:CF:7E:63:36:82:FC:0B:B8:CF:38:02:FC:23:99:C4:34:5B X509v3 Authority Key Identifier: keyid:EF:67:02:A7:D0:AE:C8:34:DE:FB:8F:41:68:B2:FE:8F:4D:58:43:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/72cCp9CuyDTe-49BaLL-j01YQ-g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72cCp9CuyDTe-49BaLL-j01YQ-g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/3E734F70B9A311EE85D60B49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.173.32.0/24 Signature Algorithm: sha256WithRSAEncryption 06:0a:e1:32:06:a9:0d:18:34:c1:bc:11:a9:79:6c:76:0b:f8: 9d:1d:0a:4e:73:ce:1a:2f:db:0b:7d:75:6e:76:0d:9b:26:31: 0a:b9:dd:6c:dd:b7:e7:d3:28:e0:ba:d5:9b:a1:ed:a6:36:62: 3c:e2:3f:9b:11:ef:ab:35:3d:ae:b5:e7:50:25:ea:fa:98:a3: 36:45:61:97:54:e1:fd:2d:51:c3:a0:3c:78:b0:7f:2b:28:77: f9:65:35:fe:b9:8c:31:7f:0c:38:d9:79:23:c4:fe:82:ff:1e: 1d:d6:1c:fd:0c:c4:d4:46:74:6d:09:a5:c4:2a:45:d2:27:03: 3c:05:1f:c3:6a:3a:de:17:81:5c:09:67:be:19:72:07:66:2b: c4:25:4e:99:a5:30:0f:a8:8b:b6:01:17:3a:b1:5e:db:61:8b: e1:13:9c:bf:db:d3:e1:53:a1:0f:10:cd:f8:a0:ff:13:6c:97: 5b:be:8c:30:49:62:07:99:3f:8f:5a:03:78:49:f8:31:99:96: 61:67:00:7a:56:d6:df:1a:24:ae:db:67:dd:d1:b6:f9:74:12: df:ff:40:fb:cb:39:2a:c2:c9:38:98:6e:89:cc:c1:f4:6b:ac: e7:e6:df:52:b4:33:4b:61:36:17:5d:8b:a8:86:a2:59:a1:60: 19:34:28:18 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBdjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MzUyRTExMC8GA1UEBRMoRUY2NzAyQTdEMEFFQzgzNERFRkI4RjQxNjhCMkZFOEY0 RDU4NDNFODAeFw0yNDAxMjMwMzU1MjdaFw0yNDEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1YWYzOGFmLTUxOTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDUIg3aFMiGFB/iYowBDoQAGIN1d7SwZ34aqbc1JL9gm4uh4Rj3p/x+yBefCcPF jPVTqqvkBFOCA2eYRU9A94CmebJhT175+RwTEvqZz57Sx5j2gNWEDDnB8rAuQq5z PtMggoxqXs4hypFuGJJ33KxaV3YLZDrsTQLd5AzU19OVaETp4WnBw6GYeZq59MnJ +Onpp8ocjFo+RHckAp+sz6gOSNx1iKUZvImcqwlOQlH73xG1QRiJuanQ4T/gzARU 2RxUXtz8J02z3nvp8Q7+Pqpv0zEpMQ0qoiGfI8DZg1ae0YPEYmq/3qWeSs16032Z zETN4lCF/DYSH265IM4PF2dHAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUXOavz35j NoL8C7jPOAL8I5nENFswHwYDVR0jBBgwFoAU72cCp9CuyDTe+49BaLL+j01YQ+gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEzNTJFL0RDMzM1OTdDMEI2 MDExRUVCMzIyMDQxQUM0RjlBRTAyLzcyY0NwOUN1eURUZS00OUJhTEwtajAxWVEt Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNzJjQ3A5Q3V5RFRlLTQ5QmFMTC1qMDFZUS1nLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzUyRS9EQzMzNTk3QzBCNjAxMUVFQjMyMjA0MUFDNEY5QUUwMi8zRTczNEY3MEI5 QTMxMUVFODVENjBCNDlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGetIDANBgkqhkiG9w0BAQsFAAOCAQEABgrhMgapDRg0wbwR qXlsdgv4nR0KTnPOGi/bC311bnYNmyYxCrndbN2359Mo4LrVm6HtpjZiPOI/mxHv qzU9rrXnUCXq+pijNkVhl1Th/S1Rw6A8eLB/Kyh3+WU1/rmMMX8MONl5I8T+gv8e HdYc/QzE1EZ0bQmlxCpF0icDPAUfw2o63heBXAlnvhlyB2YrxCVOmaUwD6iLtgEX OrFe22GL4ROcv9vT4VOhDxDN+KD/E2yXW76MMEliB5k/j1oDeEn4MZmWYWcAelbW 3xokrttn3dG2+XQS3/9A+8s5KsLJOJhuiczB9Gus5+bfUrQzS2E2F12LqIaiWaFg GTQoGA== -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:36 2024 by rpki-client on console-fra.rpki-client.org