$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1DCF/36978A7C30BC11ECA303EF86C4F9AE02/3F3532743C8311ECA86D031EC4F9AE02.roa File: 3F3532743C8311ECA86D031EC4F9AE02.roa (raw, json) Hash identifier: QdzbFvcmoCOklNgvm9AlMI67x/chhtGICIx1wK950zU= Subject key identifier: 1D:28:08:C7:3C:F4:41:DD:FF:F8:63:E8:86:19:4F:5A:43:29:D3:43 Certificate issuer: /CN=A91B1DCF/serialNumber=704BFF4ECAA9DC8A8B7209264C607DB5F22F2482 Certificate serial: 03F7 Authority key identifier: 70:4B:FF:4E:CA:A9:DC:8A:8B:72:09:26:4C:60:7D:B5:F2:2F:24:82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cEv_Tsqp3IqLcgkmTGB9tfIvJII.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1DCF/36978A7C30BC11ECA303EF86C4F9AE02/3F3532743C8311ECA86D031EC4F9AE02.roa Signing time: Sat 25 May 2024 02:36:59 +0000 ROA not before: Sat 25 May 2024 02:36:59 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 45753 IP address blocks: 103.212.96.0/22 maxlen: 24 139.5.200.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1DCF/36978A7C30BC11ECA303EF86C4F9AE02/cEv_Tsqp3IqLcgkmTGB9tfIvJII.crl rsync://rpki.apnic.net/member_repository/A91B1DCF/36978A7C30BC11ECA303EF86C4F9AE02/cEv_Tsqp3IqLcgkmTGB9tfIvJII.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cEv_Tsqp3IqLcgkmTGB9tfIvJII.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1015 (0x3f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1DCF Validity Not Before: May 25 02:36:59 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66514ecb-d3de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:39:1b:9a:a3:15:b9:f8:b9:dd:25:83:75:4d: 2f:9b:54:eb:cb:6d:12:d4:87:15:cd:cc:88:83:5a: 94:6f:af:a9:19:49:42:76:61:e7:64:fb:6a:db:35: 59:46:ca:0b:37:87:1b:bf:da:65:13:e7:97:d2:a9: 07:52:71:cf:42:6d:56:80:3f:de:62:8e:4a:3b:13: ed:9b:cb:f8:22:19:1d:1b:37:20:5b:ec:9e:cb:96: 56:45:80:f6:42:2c:16:69:66:6b:f1:49:7f:ed:40: ba:27:19:90:9f:8b:93:cf:ef:ce:72:84:17:de:6a: 44:1e:2a:ad:36:ef:16:46:e8:ae:4f:00:24:89:c8: e1:74:6d:ba:08:5f:f1:b3:0e:cb:c8:00:28:80:92: 23:c5:ea:fe:fa:7a:b0:61:fd:00:a9:f1:09:4e:d7: 8c:37:15:b2:c1:12:04:77:44:ea:bb:98:fe:5e:3c: 2f:89:ba:8f:3f:c4:83:fc:5d:a8:d8:0e:97:1f:92: dd:4f:cf:9c:de:84:c7:d3:f6:21:42:31:35:fa:cb: a1:28:6d:93:bd:d7:f8:e4:f1:ef:84:b7:d5:fd:87: 46:57:3a:45:35:83:4c:a1:40:ae:0e:6b:66:b4:7b: 76:2c:df:b6:92:c0:62:39:e1:97:e6:e8:30:2d:ec: dd:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:28:08:C7:3C:F4:41:DD:FF:F8:63:E8:86:19:4F:5A:43:29:D3:43 X509v3 Authority Key Identifier: keyid:70:4B:FF:4E:CA:A9:DC:8A:8B:72:09:26:4C:60:7D:B5:F2:2F:24:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1DCF/36978A7C30BC11ECA303EF86C4F9AE02/cEv_Tsqp3IqLcgkmTGB9tfIvJII.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cEv_Tsqp3IqLcgkmTGB9tfIvJII.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1DCF/36978A7C30BC11ECA303EF86C4F9AE02/3F3532743C8311ECA86D031EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.212.96.0/22 139.5.200.0/22 Signature Algorithm: sha256WithRSAEncryption c5:ec:c8:8a:09:80:be:0d:d5:cd:00:c2:91:de:e3:c9:dc:5f: a8:23:bb:ce:44:be:45:bc:b0:ec:18:a6:55:9a:96:23:c2:cf: 69:64:1f:3d:b0:a1:45:bc:7b:59:75:c6:82:19:60:9b:ad:71: 32:ca:48:73:b6:2e:0e:50:68:ac:b7:b4:96:af:d4:86:0d:8d: f7:ba:16:0c:53:bb:c7:07:52:3e:74:31:80:42:5f:3f:85:8f: e0:e5:9d:84:25:f3:8d:f4:b2:de:e4:c4:b4:53:6b:cb:e0:59: 84:bd:ed:2a:64:00:4a:6f:8a:4d:02:e0:cb:ae:f6:ed:7a:67: 74:6e:57:2d:2a:f5:9a:6e:64:03:c6:d2:b7:ca:86:22:b6:b7: 34:33:bf:fb:84:0e:51:f1:cd:fd:c0:9b:5e:0f:fe:2d:32:ed: fb:86:8e:b2:16:7a:f1:a1:bb:4d:ff:1a:53:04:7f:12:a0:e1: 16:1d:2c:ef:6e:43:74:49:f4:c2:e0:07:d6:ca:f4:6d:ee:1b: 56:60:ee:c7:81:c0:0b:d7:5f:e4:bd:15:c6:f6:0a:da:e9:9a: e9:f3:d9:0f:25:ae:f6:0a:32:1f:40:46:c6:03:32:3a:a9:f8: 37:4e:b9:c4:e8:41:6e:ac:5f:e3:d6:7a:bf:b4:8b:86:c4:e0: a7:24:2c:80 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICA/cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFEQ0YxMTAvBgNVBAUTKDcwNEJGRjRFQ0FBOURDOEE4QjcyMDkyNjRDNjA3REI1 RjIyRjI0ODIwHhcNMjQwNTI1MDIzNjU5WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUxNGVjYi1kM2RlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApDkbmqMVufi53SWDdU0vm1Try20S1IcVzcyIg1qUb6+pGUlCdmHnZPtq2zVZ RsoLN4cbv9plE+eX0qkHUnHPQm1WgD/eYo5KOxPtm8v4IhkdGzcgW+yey5ZWRYD2 QiwWaWZr8Ul/7UC6JxmQn4uTz+/OcoQX3mpEHiqtNu8WRuiuTwAkicjhdG26CF/x sw7LyAAogJIjxer++nqwYf0AqfEJTteMNxWywRIEd0Tqu5j+XjwvibqPP8SD/F2o 2A6XH5LdT8+c3oTH0/YhQjE1+suhKG2Tvdf45PHvhLfV/YdGVzpFNYNMoUCuDmtm tHt2LN+2ksBiOeGX5ugwLezd0QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFB0oCMc8 9EHd//hj6IYZT1pDKdNDMB8GA1UdIwQYMBaAFHBL/07KqdyKi3IJJkxgfbXyLySC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMURDRi8zNjk3OEE3QzMw QkMxMUVDQTMwM0VGODZDNEY5QUUwMi9jRXZfVHNxcDNJcUxjZ2ttVEdCOXRmSXZK SUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NFdl9Uc3FwM0lxTGNna21UR0I5dGZJdkpJSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjFEQ0YvMzY5NzhBN0MzMEJDMTFFQ0EzMDNFRjg2QzRGOUFFMDIvM0YzNTMyNzQz QzgzMTFFQ0E4NkQwMzFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJn1GADBAKLBcgwDQYJKoZIhvcNAQELBQADggEBAMXsyIoJ gL4N1c0AwpHe48ncX6gju85EvkW8sOwYplWaliPCz2lkHz2woUW8e1l1xoIZYJut cTLKSHO2Lg5QaKy3tJav1IYNjfe6FgxTu8cHUj50MYBCXz+Fj+DlnYQl8430st7k xLRTa8vgWYS97SpkAEpvik0C4Muu9u16Z3RuVy0q9ZpuZAPG0rfKhiK2tzQzv/uE DlHxzf3Am14P/i0y7fuGjrIWevGhu03/GlMEfxKg4RYdLO9uQ3RJ9MLgB9bK9G3u G1Zg7seBwAvXX+S9Fcb2Ctrpmunz2Q8lrvYKMh9ARsYDMjqp+DdOucToQW6sX+PW er+0i4bE4KckLIA= -----END CERTIFICATE-----Generated at Sun Feb 16 20:23:03 2025 by rpki-client