$ rpki-client -vvf rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/C3835BF6B9A311EEB293524AC4F9AE02.roa File: C3835BF6B9A311EEB293524AC4F9AE02.roa (raw, json) Hash identifier: d9ZhGU94CxjAU4bAS3pBSunhF0F9voc5kw0tZ3gpDNw= Subject key identifier: 6C:CD:4A:38:94:13:70:09:45:86:2F:09:58:E0:7C:BF:9A:30:59:3B Certificate issuer: /CN=A91A352E/serialNumber=EF6702A7D0AEC834DEFB8F4168B2FE8F4D5843E8 Certificate serial: 0107 Authority key identifier: EF:67:02:A7:D0:AE:C8:34:DE:FB:8F:41:68:B2:FE:8F:4D:58:43:E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72cCp9CuyDTe-49BaLL-j01YQ-g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/C3835BF6B9A311EEB293524AC4F9AE02.roa Signing time: Fri 25 Oct 2024 04:18:11 +0000 ROA not before: Fri 25 Oct 2024 04:18:11 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 147024 IP address blocks: 103.173.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/72cCp9CuyDTe-49BaLL-j01YQ-g.crl rsync://rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/72cCp9CuyDTe-49BaLL-j01YQ-g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72cCp9CuyDTe-49BaLL-j01YQ-g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 263 (0x107) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A352E/serialNumber=EF6702A7D0AEC834DEFB8F4168B2FE8F4D5843E8 Validity Not Before: Oct 25 04:18:11 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671b1c03-8212 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:df:84:3c:49:69:6d:08:55:9c:a4:c1:ad:ea: 79:13:bc:ea:b9:d7:19:e4:40:bd:8c:d1:0d:98:9e: f0:d7:0c:5c:85:cb:b7:41:b8:e0:e8:eb:7f:44:6e: 9b:d9:c4:f5:49:7b:d7:d2:3e:4b:a8:03:b1:f9:69: 6f:5f:a9:6e:25:91:37:00:4b:e5:a0:b8:c2:5b:fb: 12:dd:0a:a8:9f:13:d6:bc:3d:51:6f:a3:aa:a4:0d: 3a:a7:a4:33:1a:6a:7e:3b:9a:39:88:f4:f4:a8:4a: 8b:70:80:10:38:b6:d2:f0:68:9a:18:ad:4a:7a:62: 2a:4c:03:c1:87:a5:85:b3:35:14:00:d1:5c:7f:53: 39:75:79:68:88:a5:1a:6b:78:68:aa:27:8b:c6:51: 5a:77:de:be:67:c1:08:a4:f8:51:f6:5c:2e:6c:87: 87:3c:82:77:0f:fa:e5:72:be:f9:36:42:04:3f:b5: b1:2d:ba:10:16:ad:54:71:a3:3c:0f:45:db:5d:7f: 3e:68:0d:2b:a2:ec:bf:20:a8:fe:a2:01:fb:da:0a: db:2a:08:09:75:d8:95:d8:60:2e:5a:f9:0b:05:58: 0c:f9:96:04:42:41:7a:3b:e5:21:a0:8d:94:36:4d: 11:61:61:ab:01:6a:d3:7d:61:93:c8:7e:6f:d3:e1: d2:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:CD:4A:38:94:13:70:09:45:86:2F:09:58:E0:7C:BF:9A:30:59:3B X509v3 Authority Key Identifier: keyid:EF:67:02:A7:D0:AE:C8:34:DE:FB:8F:41:68:B2:FE:8F:4D:58:43:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/72cCp9CuyDTe-49BaLL-j01YQ-g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72cCp9CuyDTe-49BaLL-j01YQ-g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A352E/DC33597C0B6011EEB322041AC4F9AE02/C3835BF6B9A311EEB293524AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.173.33.0/24 Signature Algorithm: sha256WithRSAEncryption ba:ad:4a:be:98:b6:a1:88:0b:fa:4a:df:5c:14:e5:32:f5:da: 14:25:a4:d1:a7:2c:c9:06:4c:cb:8f:a1:44:1f:a3:d3:a7:60: a4:c9:80:28:e1:bc:50:15:fd:a4:b8:e5:68:ff:1f:84:c4:79: 17:95:87:96:3d:1f:6f:94:09:ef:89:71:80:6a:78:75:43:28: 81:e8:84:b7:75:67:35:aa:9c:46:8c:6e:11:44:d7:06:a8:55: 62:79:c9:ca:6b:b2:e6:2b:9a:e3:13:0b:2a:62:0d:47:d7:b4: ec:40:d1:27:a0:e1:fc:cb:c6:a4:4b:23:6e:7e:ec:0c:48:95: 07:56:d5:40:da:97:1c:49:05:41:db:25:2a:59:4e:c5:82:f1: 86:af:75:fe:41:31:15:37:90:67:ad:78:18:18:97:71:46:23: 34:01:cd:e7:e1:ef:5c:26:ff:98:36:9c:e4:66:b4:95:ac:f1: 09:00:09:67:f2:48:03:a0:13:79:8d:69:96:4a:85:77:34:dd: d9:5b:a1:77:ce:9e:59:b0:dc:f1:53:dc:fb:fe:b3:eb:1f:d9: 16:75:26:0a:96:db:92:7f:e0:27:ee:ca:2b:df:b3:a7:12:0f: a3:2c:32:b3:1c:45:c7:bb:32:4b:74:86:3a:df:72:41:b3:92: fc:d6:ad:44 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM1MkUxMTAvBgNVBAUTKEVGNjcwMkE3RDBBRUM4MzRERUZCOEY0MTY4QjJGRThG NEQ1ODQzRTgwHhcNMjQxMDI1MDQxODExWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFiMWMwMy04MjEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnN+EPElpbQhVnKTBrep5E7zqudcZ5EC9jNENmJ7w1wxchcu3Qbjg6Ot/RG6b 2cT1SXvX0j5LqAOx+WlvX6luJZE3AEvloLjCW/sS3QqonxPWvD1Rb6OqpA06p6Qz Gmp+O5o5iPT0qEqLcIAQOLbS8GiaGK1KemIqTAPBh6WFszUUANFcf1M5dXloiKUa a3hoqieLxlFad96+Z8EIpPhR9lwubIeHPIJ3D/rlcr75NkIEP7WxLboQFq1UcaM8 D0XbXX8+aA0rouy/IKj+ogH72grbKggJddiV2GAuWvkLBVgM+ZYEQkF6O+UhoI2U Nk0RYWGrAWrTfWGTyH5v0+HSowIDAQABo4IClTCCApEwHQYDVR0OBBYEFGzNSjiU E3AJRYYvCVjgfL+aMFk7MB8GA1UdIwQYMBaAFO9nAqfQrsg03vuPQWiy/o9NWEPo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzUyRS9EQzMzNTk3QzBC NjAxMUVFQjMyMjA0MUFDNEY5QUUwMi83MmNDcDlDdXlEVGUtNDlCYUxMLWowMVlR LWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyY0NwOUN1eURUZS00OUJhTEwtajAxWVEtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTM1MkUvREMzMzU5N0MwQjYwMTFFRUIzMjIwNDFBQzRGOUFFMDIvQzM4MzVCRjZC OUEzMTFFRUIyOTM1MjRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnrSEwDQYJKoZIhvcNAQELBQADggEBALqtSr6YtqGIC/pK 31wU5TL12hQlpNGnLMkGTMuPoUQfo9OnYKTJgCjhvFAV/aS45Wj/H4TEeReVh5Y9 H2+UCe+JcYBqeHVDKIHohLd1ZzWqnEaMbhFE1waoVWJ5ycprsuYrmuMTCypiDUfX tOxA0Seg4fzLxqRLI25+7AxIlQdW1UDalxxJBUHbJSpZTsWC8Yavdf5BMRU3kGet eBgYl3FGIzQBzefh71wm/5g2nORmtJWs8QkACWfySAOgE3mNaZZKhXc03dlboXfO nlmw3PFT3Pv+s+sf2RZ1JgqW25J/4Cfuyivfs6cSD6MsMrMcRce7Mkt0hjrfckGz kvzWrUQ= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:18 2024 by rpki-client on console-ams.rpki-client.org