$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5EF2/DA47E560944811EBA5AE3609C4F9AE02/3520A4C0DDA711EBA436967CC4F9AE02.roa File: 3520A4C0DDA711EBA436967CC4F9AE02.roa (raw, json) Hash identifier: LHhvzFN8jei3TpgCNYUV3r6ZavWd7Cg3TVQ8AX0DXvE= Subject key identifier: 19:42:50:DD:C2:04:71:55:A7:CD:D4:83:E6:8C:5C:E1:50:10:C1:09 Certificate issuer: /CN=A91A5EF2/serialNumber=7BF180CEAC476DBD18392910FA22DAA1EF5BA6D5 Certificate serial: 0572 Authority key identifier: 7B:F1:80:CE:AC:47:6D:BD:18:39:29:10:FA:22:DA:A1:EF:5B:A6:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e_GAzqxHbb0YOSkQ-iLaoe9bptU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5EF2/DA47E560944811EBA5AE3609C4F9AE02/3520A4C0DDA711EBA436967CC4F9AE02.roa Signing time: Fri 19 Apr 2024 01:02:47 +0000 ROA not before: Fri 19 Apr 2024 01:02:47 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 141731 IP address blocks: 103.162.228.0/23 maxlen: 24 2001:df6:180::/48 maxlen: 56 2001:df6:180:fffe::/64 maxlen: 64 2001:df6:180:ffff::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5EF2/DA47E560944811EBA5AE3609C4F9AE02/e_GAzqxHbb0YOSkQ-iLaoe9bptU.crl rsync://rpki.apnic.net/member_repository/A91A5EF2/DA47E560944811EBA5AE3609C4F9AE02/e_GAzqxHbb0YOSkQ-iLaoe9bptU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e_GAzqxHbb0YOSkQ-iLaoe9bptU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1394 (0x572) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5EF2/serialNumber=7BF180CEAC476DBD18392910FA22DAA1EF5BA6D5 Validity Not Before: Apr 19 01:02:47 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6621c2b7-a5d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ae:47:19:bb:73:65:75:c7:c7:21:2f:4d:94: b5:67:1e:d1:d9:d0:10:04:88:00:bc:0d:72:18:9b: 6d:9f:2a:c9:50:00:18:23:ef:75:5c:49:74:1b:01: ec:5d:8c:6b:7f:3a:83:ea:ec:02:5d:d7:46:86:aa: 7d:1e:eb:b8:4a:af:2e:4e:e9:a9:64:37:c2:26:e3: 0c:78:2a:47:c6:63:e1:dd:c3:eb:3e:4a:e7:60:e6: aa:54:f1:8b:a4:21:7a:4b:16:f9:9f:dd:2b:66:a5: a7:e2:28:8e:9d:0c:93:76:cc:d4:36:1e:4e:57:b7: 37:ee:cc:bd:84:71:bb:b3:df:56:e6:bc:28:19:0a: 55:28:db:6a:f2:af:c9:33:bc:ed:50:52:c0:26:67: fa:96:fe:6a:27:be:99:4b:e0:17:59:df:1e:e5:65: ee:34:e2:38:5d:9c:a2:1e:23:53:27:08:64:d3:64: d4:9f:bd:fe:90:4c:5e:4f:60:d4:0c:e6:71:8b:55: 88:d1:43:b4:8b:3c:d4:53:78:b5:7a:38:19:46:a9: 4c:ea:00:5f:f6:a8:a2:46:57:24:3a:e3:9f:f2:79: 19:d6:23:56:9f:8f:ef:d1:77:69:8c:62:f3:15:85: 67:fc:8a:0b:e8:aa:e3:c7:ac:6e:55:3a:5c:38:fa: 47:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:42:50:DD:C2:04:71:55:A7:CD:D4:83:E6:8C:5C:E1:50:10:C1:09 X509v3 Authority Key Identifier: keyid:7B:F1:80:CE:AC:47:6D:BD:18:39:29:10:FA:22:DA:A1:EF:5B:A6:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5EF2/DA47E560944811EBA5AE3609C4F9AE02/e_GAzqxHbb0YOSkQ-iLaoe9bptU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e_GAzqxHbb0YOSkQ-iLaoe9bptU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5EF2/DA47E560944811EBA5AE3609C4F9AE02/3520A4C0DDA711EBA436967CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.162.228.0/23 IPv6: 2001:df6:180::/48 Signature Algorithm: sha256WithRSAEncryption 2f:25:26:c2:3e:34:5d:b4:18:f9:46:55:e1:00:26:60:4c:a2: ad:ea:bd:60:7a:5f:8f:30:ff:ba:27:97:9f:11:33:b5:dc:94: 04:dd:79:f5:ee:a9:e0:0b:9d:5f:61:52:6d:5d:9d:79:f9:65: a4:c6:8d:81:aa:eb:03:7c:d9:9b:b5:87:9a:af:41:a2:dc:10: b5:af:d3:29:b7:20:7f:05:5d:6e:c5:b2:b4:6f:0c:7c:a0:92: 57:24:ed:f0:96:c8:9f:5d:12:9f:d8:e0:3e:fd:e4:48:68:21: 3a:5c:9e:83:c0:b7:f8:98:ab:cc:46:21:27:44:0b:ab:40:1c: 99:2d:71:f3:5b:b2:15:e5:41:5e:8b:02:76:b7:c4:8b:55:c1: a5:ec:b2:7a:a1:88:3a:1e:6b:1f:1f:b8:63:db:a4:16:89:fd: 7d:b5:1b:f3:83:df:16:17:4c:e9:6c:93:d5:0a:7c:78:20:19: de:67:37:ac:26:2b:9e:c3:f0:46:9c:70:a4:f3:29:68:94:31: d1:95:2b:90:9f:b2:30:c5:6f:7f:a1:09:21:1e:36:83:f2:01: b0:f2:67:89:7a:2d:b2:69:23:8f:0b:0d:46:09:cc:6d:c7:35: 70:f2:45:75:03:07:3f:84:bc:e5:2a:05:e8:7a:2c:92:01:4f: 45:4b:9c:7f -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVFRjIxMTAvBgNVBAUTKDdCRjE4MENFQUM0NzZEQkQxODM5MjkxMEZBMjJEQUEx RUY1QkE2RDUwHhcNMjQwNDE5MDEwMjQ3WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjIxYzJiNy1hNWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy65HGbtzZXXHxyEvTZS1Zx7R2dAQBIgAvA1yGJttnyrJUAAYI+91XEl0GwHs XYxrfzqD6uwCXddGhqp9Huu4Sq8uTumpZDfCJuMMeCpHxmPh3cPrPkrnYOaqVPGL pCF6Sxb5n90rZqWn4iiOnQyTdszUNh5OV7c37sy9hHG7s99W5rwoGQpVKNtq8q/J M7ztUFLAJmf6lv5qJ76ZS+AXWd8e5WXuNOI4XZyiHiNTJwhk02TUn73+kExeT2DU DOZxi1WI0UO0izzUU3i1ejgZRqlM6gBf9qiiRlckOuOf8nkZ1iNWn4/v0XdpjGLz FYVn/IoL6Krjx6xuVTpcOPpH4wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBlCUN3C BHFVp83Ug+aMXOFQEMEJMB8GA1UdIwQYMBaAFHvxgM6sR229GDkpEPoi2qHvW6bV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUVGMi9EQTQ3RTU2MDk0 NDgxMUVCQTVBRTM2MDlDNEY5QUUwMi9lX0dBenF4SGJiMFlPU2tRLWlMYW9lOWJw dFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VfR0F6cXhIYmIwWU9Ta1EtaUxhb2U5YnB0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTVFRjIvREE0N0U1NjA5NDQ4MTFFQkE1QUUzNjA5QzRGOUFFMDIvMzUyMEE0QzBE REE3MTFFQkE0MzY5NjdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnouQwDwQCAAIwCQMHACABDfYBgDANBgkqhkiG9w0BAQsF AAOCAQEALyUmwj40XbQY+UZV4QAmYEyireq9YHpfjzD/uieXnxEztdyUBN159e6p 4AudX2FSbV2defllpMaNgarrA3zZm7WHmq9BotwQta/TKbcgfwVdbsWytG8MfKCS VyTt8JbIn10Sn9jgPv3kSGghOlyeg8C3+JirzEYhJ0QLq0AcmS1x81uyFeVBXosC drfEi1XBpeyyeqGIOh5rHx+4Y9ukFon9fbUb84PfFhdM6WyT1Qp8eCAZ3mc3rCYr nsPwRpxwpPMpaJQx0ZUrkJ+yMMVvf6EJIR42g/IBsPJniXotsmkjjwsNRgnMbcc1 cPJFdQMHP4S85SoF6HoskgFPRUucfw== -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:47 2024 by rpki-client on console-ams.rpki-client.org