$ rpki-client -vvf rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/3E4B01008BDA11EFA4A11684C4F9AE02.roa File: 3E4B01008BDA11EFA4A11684C4F9AE02.roa (raw, json) Hash identifier: zwx+U9J08Id0maPwN81wQAKGfgxb2cKuo5oynZYPQgE= Subject key identifier: 6E:F0:14:F3:47:1D:04:42:BA:74:89:CF:3C:8A:65:D3:D6:20:5C:85 Certificate issuer: /CN=A91B37C4/serialNumber=B276F15A6D4A97C48191E92BD1661F368BEF21E4 Certificate serial: 07 Authority key identifier: B2:76:F1:5A:6D:4A:97:C4:81:91:E9:2B:D1:66:1F:36:8B:EF:21:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/snbxWm1Kl8SBkekr0WYfNovvIeQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/3E4B01008BDA11EFA4A11684C4F9AE02.roa Signing time: Wed 16 Oct 2024 16:20:36 +0000 ROA not before: Wed 16 Oct 2024 16:20:36 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 137186 IP address blocks: 103.166.22.0/23 maxlen: 23 103.166.22.0/24 maxlen: 24 103.166.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.crl rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/snbxWm1Kl8SBkekr0WYfNovvIeQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B37C4/serialNumber=B276F15A6D4A97C48191E92BD1661F368BEF21E4 Validity Not Before: Oct 16 16:20:36 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=670fe7d4-812a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:9d:d0:fa:a9:ac:fa:4d:82:ae:8b:72:05:b1: bd:08:c4:e4:ac:54:5c:b5:98:c4:37:70:2e:1c:69: 5e:fd:37:4c:b7:cc:35:3f:4c:42:dc:8c:1b:b1:25: c9:4c:a5:f1:d7:1a:f9:b9:9f:e2:60:e4:fc:db:32: ac:73:fd:e7:88:de:14:4a:20:74:8a:86:2b:ab:19: 70:88:0b:13:b5:37:bb:32:fb:82:83:f2:03:1c:e1: 1d:48:58:72:7a:1f:fb:1f:99:1a:e0:0f:ae:80:cc: 2f:a4:c2:cb:a3:fe:62:f6:b4:da:3c:87:ed:99:13: 5e:3e:b6:ed:a6:a4:87:28:51:6e:3d:42:bc:2f:8e: f2:2b:61:f4:7e:e0:72:92:ba:ab:90:9f:b8:65:41: 76:71:a3:cc:10:50:dc:c8:34:d2:b5:30:eb:7a:81: d2:34:70:ce:91:1a:11:e2:0c:01:81:e0:6d:f5:79: 30:2b:57:8e:26:6f:bc:7d:12:ca:03:f3:41:a7:7d: d5:71:ee:ea:4c:7e:dc:f4:53:c5:cf:f3:cd:57:c3: 64:5f:b7:c2:db:00:28:39:35:26:7b:db:ac:32:5d: 56:53:26:24:8e:ea:15:83:82:6c:68:c8:55:e1:2b: 74:fd:87:73:74:74:78:15:72:60:2b:bf:38:78:04: 17:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:F0:14:F3:47:1D:04:42:BA:74:89:CF:3C:8A:65:D3:D6:20:5C:85 X509v3 Authority Key Identifier: keyid:B2:76:F1:5A:6D:4A:97:C4:81:91:E9:2B:D1:66:1F:36:8B:EF:21:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/snbxWm1Kl8SBkekr0WYfNovvIeQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/snbxWm1Kl8SBkekr0WYfNovvIeQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B37C4/A2ABA72C8BD911EF9F96BA4EC4F9AE02/3E4B01008BDA11EFA4A11684C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.166.22.0/23 Signature Algorithm: sha256WithRSAEncryption 7a:9c:d3:7f:dd:a5:cf:78:cd:10:31:ea:b0:c0:14:c7:52:6c: a7:6f:90:da:f5:e7:32:a7:ee:71:95:6a:ac:05:84:50:23:eb: a7:8b:b6:83:9d:30:25:82:33:76:47:73:6e:0b:76:2f:aa:8c: 01:59:37:0c:68:3d:5b:61:ff:17:d9:ed:99:d9:15:47:22:fe: a7:79:71:ff:8b:04:c9:8d:e1:16:98:d8:39:26:3a:d2:97:a7: cd:12:9c:20:e0:32:fc:c5:df:fc:82:0e:d2:7e:ae:de:a2:29: 22:31:06:fd:13:68:ee:0e:d4:e3:74:3b:49:61:b3:60:81:26: 86:9c:a2:93:1e:4b:68:d5:71:9d:e5:92:46:ef:74:ca:c7:83: e2:20:c2:d5:b8:ff:dc:b6:f5:72:a1:bf:04:b3:c2:6d:78:d4: 61:43:21:bb:52:4f:2e:bb:39:b8:eb:33:35:e3:85:dc:c3:21: 6d:92:39:90:47:fc:46:85:a7:18:a5:b3:83:25:22:60:ba:6b: a6:ab:54:a0:3d:7e:e8:c4:71:19:65:f5:b3:37:7f:92:43:ac: d2:f0:79:6b:c4:2e:c7:33:e4:cd:2c:b6:42:96:ab:72:13:07: 91:11:7e:aa:ca:1e:a3:08:56:41:51:b1:0b:50:fd:14:9a:de: 09:04:4e:1f -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MzdDNDExMC8GA1UEBRMoQjI3NkYxNUE2RDRBOTdDNDgxOTFFOTJCRDE2NjFGMzY4 QkVGMjFFNDAeFw0yNDEwMTYxNjIwMzZaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MGZlN2Q0LTgxMmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/ndD6qaz6TYKui3IFsb0IxOSsVFy1mMQ3cC4caV79N0y3zDU/TELcjBuxJclM pfHXGvm5n+Jg5PzbMqxz/eeI3hRKIHSKhiurGXCICxO1N7sy+4KD8gMc4R1IWHJ6 H/sfmRrgD66AzC+kwsuj/mL2tNo8h+2ZE14+tu2mpIcoUW49QrwvjvIrYfR+4HKS uquQn7hlQXZxo8wQUNzINNK1MOt6gdI0cM6RGhHiDAGB4G31eTArV44mb7x9EsoD 80GnfdVx7upMftz0U8XP881Xw2Rft8LbACg5NSZ726wyXVZTJiSO6hWDgmxoyFXh K3T9h3N0dHgVcmArvzh4BBclAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUbvAU80cd BEK6dInPPIpl09YgXIUwHwYDVR0jBBgwFoAUsnbxWm1Kl8SBkekr0WYfNovvIeQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIzN0M0L0EyQUJBNzJDOEJE OTExRUY5Rjk2QkE0RUM0RjlBRTAyL3NuYnhXbTFLbDhTQmtla3IwV1lmTm92dkll US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc25ieFdtMUtsOFNCa2VrcjBXWWZOb3Z2SWVRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzdDNC9BMkFCQTcyQzhCRDkxMUVGOUY5NkJBNEVDNEY5QUUwMi8zRTRCMDEwMDhC REExMUVGQTRBMTE2ODRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWemFjANBgkqhkiG9w0BAQsFAAOCAQEAepzTf92lz3jNEDHq sMAUx1Jsp2+Q2vXnMqfucZVqrAWEUCPrp4u2g50wJYIzdkdzbgt2L6qMAVk3DGg9 W2H/F9ntmdkVRyL+p3lx/4sEyY3hFpjYOSY60penzRKcIOAy/MXf/IIO0n6u3qIp IjEG/RNo7g7U43Q7SWGzYIEmhpyikx5LaNVxneWSRu90yseD4iDC1bj/3Lb1cqG/ BLPCbXjUYUMhu1JPLrs5uOszNeOF3MMhbZI5kEf8RoWnGKWzgyUiYLprpqtUoD1+ 6MRxGWX1szd/kkOs0vB5a8QuxzPkzSy2QparchMHkRF+qsoeowhWQVGxC1D9FJre CQROHw== -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:04 2024 by rpki-client on console-ams.rpki-client.org