$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/38EF307A603B11EFBF7CD531C4F9AE02.roa File: 38EF307A603B11EFBF7CD531C4F9AE02.roa (raw, json) Hash identifier: lEnFNZrQWkPGM7YLZ4DzyvSSK530argI6K3VcwyVCE0= Subject key identifier: 76:D1:E3:33:52:A0:CD:45:4C:EE:35:A6:02:CB:24:0A:C4:4E:43:72 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 453F Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/38EF307A603B11EFBF7CD531C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:31:56 +0000 ROA not before: Thu 05 Sep 2024 03:31:56 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 131389 IP address blocks: 103.241.248.0/24 maxlen: 24 103.241.249.0/24 maxlen: 24 103.241.250.0/24 maxlen: 24 103.241.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17727 (0x453f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:31:56 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d9262c-8bd8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:7d:1e:7a:46:3a:a6:bf:11:8a:db:ca:15:6c: 9d:85:96:3f:4b:51:5a:42:a0:25:ca:a1:f8:76:68: fe:21:e3:2f:e3:ff:8c:00:74:b4:b6:54:a6:6e:65: e5:fe:04:4f:60:8b:7d:1e:49:82:5c:d0:d4:77:af: 62:47:11:d3:5d:f1:5b:d7:6d:65:92:f1:6b:48:52: 0a:e6:44:63:03:2a:23:bd:a7:d3:43:15:0b:33:a1: 28:40:cf:cb:c1:6f:c3:91:fe:51:a1:ca:b9:ba:f8: 47:75:a5:78:bc:6b:c5:5d:7c:8b:4f:35:3a:57:69: 44:cd:26:c5:a9:f3:96:3c:94:f6:ca:02:70:19:42: d1:d4:94:0c:d0:02:23:54:3a:27:a9:60:f8:8e:0c: 21:51:03:25:ae:79:4d:d3:62:b2:6c:1c:6a:33:f9: 9b:4f:2c:a0:92:28:b7:b8:d3:b2:6e:15:8b:38:2c: 7a:62:cc:ff:b3:fe:1e:ef:fe:f9:ab:73:bb:c1:87: 80:6b:66:5b:f2:e9:a3:a1:74:94:35:2d:08:af:f0: a1:36:fa:02:53:bf:14:da:fb:a6:13:c6:16:50:a6: 95:2b:a7:70:13:43:07:d0:69:c2:d3:25:18:be:09: 47:40:b7:42:5b:86:69:96:e0:67:25:49:c9:6d:e1: 3d:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:D1:E3:33:52:A0:CD:45:4C:EE:35:A6:02:CB:24:0A:C4:4E:43:72 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/38EF307A603B11EFBF7CD531C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.241.248.0/22 Signature Algorithm: sha256WithRSAEncryption 38:fb:45:f3:b4:aa:f4:c8:dc:ac:92:5a:1f:c3:42:05:47:e0: 12:ac:79:47:7d:7c:a5:e8:71:a6:4b:b8:5e:fd:b0:58:e3:91: c6:58:c6:21:75:9f:7c:19:c7:ba:a6:10:26:99:e7:92:c7:a8: 42:16:e9:8b:e8:ae:e1:16:b2:c4:39:56:f6:89:a9:b4:2a:5c: 9b:eb:25:58:6b:df:61:7e:75:9d:42:7c:a8:4a:cd:d4:2a:dd: dd:77:f8:8b:83:ca:34:25:bf:32:f9:24:3e:94:65:8a:1c:f2: 34:89:e1:82:ca:73:f7:32:8b:1d:1f:92:bd:fe:bb:df:31:7f: 51:8e:5c:f9:33:df:71:f1:00:ac:47:4a:82:2e:33:82:12:c2: cc:c3:92:04:c0:ee:7a:08:03:e4:c2:9b:93:a9:5d:b0:ed:ee: 56:f2:f5:e8:e4:85:5f:22:90:1e:51:ce:86:34:ac:53:e6:56: a4:23:d2:16:4c:ec:42:05:bd:1d:79:94:66:e7:32:b5:3d:f0: 58:a9:5b:68:b6:e9:85:98:69:b6:9e:2b:c4:87:c7:85:14:97: c8:0c:05:c3:e3:4e:a3:7e:60:53:59:2a:41:74:39:42:5e:ea: e0:cd:26:e9:aa:6e:11:15:1e:d7:d0:dc:3c:68:df:2d:6a:86: f0:70:bd:13 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICRT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzMTU2WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjYyYy04YmQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyH0eekY6pr8RitvKFWydhZY/S1FaQqAlyqH4dmj+IeMv4/+MAHS0tlSmbmXl /gRPYIt9HkmCXNDUd69iRxHTXfFb121lkvFrSFIK5kRjAyojvafTQxULM6EoQM/L wW/Dkf5Rocq5uvhHdaV4vGvFXXyLTzU6V2lEzSbFqfOWPJT2ygJwGULR1JQM0AIj VDonqWD4jgwhUQMlrnlN02KybBxqM/mbTyygkii3uNOybhWLOCx6Ysz/s/4e7/75 q3O7wYeAa2Zb8umjoXSUNS0Ir/ChNvoCU78U2vumE8YWUKaVK6dwE0MH0GnC0yUY vglHQLdCW4ZpluBnJUnJbeE94wIDAQABo4IClTCCApEwHQYDVR0OBBYEFHbR4zNS oM1FTO41pgLLJArETkNyMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMzhFRjMwN0E2 MDNCMTFFRkJGN0NENTMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn8fgwDQYJKoZIhvcNAQELBQADggEBADj7RfO0qvTI3KyS Wh/DQgVH4BKseUd9fKXocaZLuF79sFjjkcZYxiF1n3wZx7qmECaZ55LHqEIW6Yvo ruEWssQ5VvaJqbQqXJvrJVhr32F+dZ1CfKhKzdQq3d13+IuDyjQlvzL5JD6UZYoc 8jSJ4YLKc/cyix0fkr3+u98xf1GOXPkz33HxAKxHSoIuM4ISwszDkgTA7noIA+TC m5OpXbDt7lby9ejkhV8ikB5RzoY0rFPmVqQj0hZM7EIFvR15lGbnMrU98FipW2i2 6YWYabaeK8SHx4UUl8gMBcPjTqN+YFNZKkF0OUJe6uDNJumqbhEVHtfQ3Dxo3y1q hvBwvRM= -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:15 2024 by rpki-client on console-fra.rpki-client.org