$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/3F3E09C6D05311EC8B5FA324C4F9AE02.roa File: 3F3E09C6D05311EC8B5FA324C4F9AE02.roa (raw, json) Hash identifier: KIv7AjoXdHDIdgwab+NAZW7yffiO0Gmnn1FrlRALVPw= Subject key identifier: 8B:4C:05:90:AA:76:3E:79:A8:D8:33:37:27:FB:D8:07:B3:1B:67:CE Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 45BE Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/3F3E09C6D05311EC8B5FA324C4F9AE02.roa Signing time: Thu 05 Sep 2024 03:33:47 +0000 ROA not before: Thu 05 Sep 2024 03:33:47 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 149096 IP address blocks: 103.186.152.0/23 maxlen: 24 2400:7260::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17854 (0x45be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:33:47 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d9269b-137c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:70:bd:f1:0e:4d:76:be:c7:fa:7d:13:28:0e: 8b:f9:5e:be:40:02:0b:f6:88:4e:5c:4e:80:7d:0c: 90:2b:ed:4e:16:5e:ee:72:09:a0:51:03:2c:48:ac: fc:ff:66:21:db:1d:d0:bf:73:d1:a5:dc:7c:55:b2: f5:7e:ff:a8:3b:fa:85:14:49:1d:5a:00:e9:94:2b: e3:09:c2:2f:ba:fe:dc:57:e5:19:8e:a3:ec:6c:c4: 3f:e6:92:12:7f:1a:5f:c2:c1:85:5e:db:6a:98:f8: 8e:16:63:99:37:d8:6a:cf:a8:aa:c1:86:96:b2:1d: 65:70:f4:3e:29:83:95:53:30:a8:29:2f:1d:49:e4: b5:2d:ab:37:82:4f:81:82:f1:3d:2d:e3:30:d9:63: 48:3c:c6:f0:aa:15:4f:bc:46:e9:d1:b6:7a:56:15: 2d:6b:05:81:ed:64:f5:94:5a:cc:68:53:f7:4a:df: 71:26:f8:c6:95:0b:c3:9a:4c:4d:d3:07:0e:a7:bc: cc:c1:d0:84:97:8b:19:b9:63:2e:a8:a7:8b:86:33: 69:23:92:96:a0:59:0e:d3:61:57:47:d8:0d:91:7d: 65:ed:30:e5:82:13:90:c3:ad:f1:7d:c6:5b:29:65: 9b:b5:da:5f:e9:27:c8:83:05:86:20:4e:c7:7a:66: 4a:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:4C:05:90:AA:76:3E:79:A8:D8:33:37:27:FB:D8:07:B3:1B:67:CE X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/3F3E09C6D05311EC8B5FA324C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.186.152.0/23 IPv6: 2400:7260::/48 Signature Algorithm: sha256WithRSAEncryption 51:d3:1c:4b:41:6b:0e:9b:fb:df:23:b0:73:2b:aa:56:f9:68: 02:73:3e:eb:e4:5b:e2:a4:1d:80:e8:c1:e2:9a:85:f3:7f:bf: c7:78:06:9e:4f:1b:c5:05:6f:0c:75:f4:d0:2d:15:66:a3:dc: f9:a6:c8:91:ca:49:4f:05:f5:d7:80:d9:a0:18:60:45:70:59: f9:29:ac:52:2f:76:7f:54:c1:60:e4:9c:62:20:7c:e3:5d:f0: d9:bd:b9:af:2f:49:08:a8:b2:37:c1:b5:35:1b:56:92:ba:7f: f9:45:a1:63:ec:5d:ae:9d:e4:13:c1:53:b1:f0:23:3d:25:73: 97:81:48:39:82:e7:cc:dd:18:c9:f2:47:0b:1c:10:10:3a:7d: f3:93:d0:ec:9c:3d:8f:32:17:b3:af:a9:4f:3e:97:87:67:06: c5:ae:a8:20:5a:1c:af:6c:e0:4d:10:05:a4:16:34:c7:f4:c8: 16:a3:07:47:e8:aa:a2:b3:45:10:7d:07:3a:88:7a:37:a0:b1: bd:1d:38:71:1e:b6:90:3a:81:95:7d:b5:30:c6:71:a0:30:43: 52:ee:2e:4d:3e:78:bb:4d:a1:b0:09:54:a8:c0:d2:6a:e3:3d: d4:57:9f:f1:74:c5:90:ad:db:84:8f:da:04:25:31:9c:30:6d: 08:20:49:d6 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICRb4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzMzQ3WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjY5Yi0xMzdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqXC98Q5Ndr7H+n0TKA6L+V6+QAIL9ohOXE6AfQyQK+1OFl7ucgmgUQMsSKz8 /2Yh2x3Qv3PRpdx8VbL1fv+oO/qFFEkdWgDplCvjCcIvuv7cV+UZjqPsbMQ/5pIS fxpfwsGFXttqmPiOFmOZN9hqz6iqwYaWsh1lcPQ+KYOVUzCoKS8dSeS1Las3gk+B gvE9LeMw2WNIPMbwqhVPvEbp0bZ6VhUtawWB7WT1lFrMaFP3St9xJvjGlQvDmkxN 0wcOp7zMwdCEl4sZuWMuqKeLhjNpI5KWoFkO02FXR9gNkX1l7TDlghOQw63xfcZb KWWbtdpf6SfIgwWGIE7HemZK/wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFItMBZCq dj55qNgzNyf72AezG2fOMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvM0YzRTA5QzZE MDUzMTFFQzhCNUZBMzI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnupgwDwQCAAIwCQMHACQAcmAAADANBgkqhkiG9w0BAQsF AAOCAQEAUdMcS0FrDpv73yOwcyuqVvloAnM+6+Rb4qQdgOjB4pqF83+/x3gGnk8b xQVvDHX00C0VZqPc+abIkcpJTwX114DZoBhgRXBZ+SmsUi92f1TBYOScYiB8413w 2b25ry9JCKiyN8G1NRtWkrp/+UWhY+xdrp3kE8FTsfAjPSVzl4FIOYLnzN0YyfJH CxwQEDp985PQ7Jw9jzIXs6+pTz6Xh2cGxa6oIFocr2zgTRAFpBY0x/TIFqMHR+iq orNFEH0HOoh6N6CxvR04cR62kDqBlX21MMZxoDBDUu4uTT54u02hsAlUqMDSauM9 1Fef8XTFkK3bhI/aBCUxnDBtCCBJ1g== -----END CERTIFICATE-----Generated at Mon Nov 25 13:05:15 2024 by rpki-client on console-fra.rpki-client.org