$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/3C3F21BAD6F011EE9B38B67DC4F9AE02.roa File: 3C3F21BAD6F011EE9B38B67DC4F9AE02.roa (raw, json) Hash identifier: Gf0OG44Gbrw/oSuWZaX2oN0pSzBlgivn+JOWWsA/Jy4= Subject key identifier: E1:79:D5:F6:3A:59:B9:A3:98:7F:CD:05:BF:E3:56:81:C2:5E:39:93 Certificate issuer: /CN=A91B3CA4/serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Certificate serial: 079B Authority key identifier: B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/3C3F21BAD6F011EE9B38B67DC4F9AE02.roa Signing time: Tue 28 May 2024 22:33:34 +0000 ROA not before: Tue 28 May 2024 22:33:33 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 150774 IP address blocks: 103.138.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Dec 2024 20:24:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1947 (0x79b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3CA4/serialNumber=B58D29F7B8107F1585B5FFE70C502C6C8F5D3302 Validity Not Before: May 28 22:33:33 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66565bbd-9806 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:06:c9:6f:c7:b5:21:98:30:2d:33:25:d5:c2: 4a:a6:c6:d2:13:f8:53:c4:de:b9:3c:09:eb:3f:1d: c0:9b:46:30:1f:44:af:42:32:89:02:ac:92:b0:36: 73:53:47:ec:3b:aa:e2:b7:44:d2:6e:13:ef:9a:04: 59:39:37:23:56:63:db:ca:a2:18:d4:f1:70:7c:fd: 07:43:de:8d:65:a3:94:da:e8:3d:f3:c2:9b:66:d7: ba:1d:bd:f2:42:3e:1d:0d:5b:0e:df:b0:7b:91:8c: 91:47:17:78:3a:63:7b:dd:96:0c:03:c8:80:4a:38: 1e:76:72:96:45:7b:25:08:6e:97:7e:9a:cd:00:da: 13:27:1e:27:6d:26:8e:f1:00:e4:82:f1:a6:67:98: 71:f5:df:dd:06:d0:24:dd:7b:be:0d:13:41:7a:10: 89:43:bd:aa:16:52:d1:d8:d8:d7:d5:f6:e3:ff:9b: d7:6d:9c:e7:d3:b7:3d:cb:6d:f9:c6:2d:c3:f2:f9: ce:18:33:90:9a:58:63:a2:33:3f:fd:c6:a0:94:07: 41:a6:a0:43:9d:60:d6:51:62:ee:ff:82:8a:e8:c0: 3c:33:75:9c:62:77:81:9a:d3:aa:03:91:94:dd:c6: 4f:0b:6b:e6:94:0d:ae:7e:2a:e8:c2:f6:85:bd:46: ec:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:79:D5:F6:3A:59:B9:A3:98:7F:CD:05:BF:E3:56:81:C2:5E:39:93 X509v3 Authority Key Identifier: keyid:B5:8D:29:F7:B8:10:7F:15:85:B5:FF:E7:0C:50:2C:6C:8F:5D:33:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/tY0p97gQfxWFtf_nDFAsbI9dMwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tY0p97gQfxWFtf_nDFAsbI9dMwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3CA4/15F68B5CCF1911EAAEF60B1EC4F9AE02/3C3F21BAD6F011EE9B38B67DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.215.0/24 Signature Algorithm: sha256WithRSAEncryption 43:00:1a:60:48:88:3a:ab:d1:4d:b7:4f:9b:9e:b9:41:dd:9a: d5:58:0c:fc:42:7e:4a:c2:fd:d9:1c:fd:53:b5:00:fe:f7:d2: 5c:77:d0:e1:03:0d:3c:2a:75:87:55:e2:24:40:e6:9f:6c:95: 70:b9:d0:f7:0a:30:90:c2:bf:cf:04:26:a7:19:a7:5b:79:81: 0b:44:13:7a:82:ac:64:dd:c5:75:ef:f3:ec:f1:89:d9:58:d0: d3:fd:97:05:8d:b6:f0:ab:fa:08:c4:1b:d6:1f:3d:15:ee:7b: 35:1c:72:48:49:83:07:b5:e9:95:4f:95:06:f9:37:5a:92:fa: 27:64:f2:e4:84:fb:9f:ce:0c:8b:2a:9e:8f:de:78:af:e9:82: a2:c8:0d:aa:cd:fe:7a:54:95:50:c3:fe:1a:7d:7e:09:d7:01: e3:c9:2c:1c:c4:fa:48:5c:1c:7b:a1:98:46:9d:be:8f:b5:3f: 6d:a0:f4:34:bc:2c:27:99:e6:b6:4e:ec:d1:78:84:84:26:9a: 39:9d:49:6f:7e:f4:b6:cf:72:97:c0:9b:93:6b:86:2b:e1:cf: 2b:65:98:aa:b6:aa:d5:04:12:21:a0:79:b0:ce:ad:03:4c:89: d3:73:b2:f1:5f:ea:9d:d7:6b:ab:1a:00:f6:ed:e1:89:de:c7: a7:a0:8e:29 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB5swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNDQTQxMTAvBgNVBAUTKEI1OEQyOUY3QjgxMDdGMTU4NUI1RkZFNzBDNTAyQzZD OEY1RDMzMDIwHhcNMjQwNTI4MjIzMzMzWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU2NWJiZC05ODA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArQbJb8e1IZgwLTMl1cJKpsbSE/hTxN65PAnrPx3Am0YwH0SvQjKJAqySsDZz U0fsO6rit0TSbhPvmgRZOTcjVmPbyqIY1PFwfP0HQ96NZaOU2ug988KbZte6Hb3y Qj4dDVsO37B7kYyRRxd4OmN73ZYMA8iASjgednKWRXslCG6XfprNANoTJx4nbSaO 8QDkgvGmZ5hx9d/dBtAk3Xu+DRNBehCJQ72qFlLR2NjX1fbj/5vXbZzn07c9y235 xi3D8vnOGDOQmlhjojM//caglAdBpqBDnWDWUWLu/4KK6MA8M3WcYneBmtOqA5GU 3cZPC2vmlA2ufirowvaFvUbs0wIDAQABo4IClTCCApEwHQYDVR0OBBYEFOF51fY6 WbmjmH/NBb/jVoHCXjmTMB8GA1UdIwQYMBaAFLWNKfe4EH8VhbX/5wxQLGyPXTMC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0NBNC8xNUY2OEI1Q0NG MTkxMUVBQUVGNjBCMUVDNEY5QUUwMi90WTBwOTdnUWZ4V0Z0Zl9uREZBc2JJOWRN d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RZMHA5N2dRZnhXRnRmX25ERkFzYkk5ZE13SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjNDQTQvMTVGNjhCNUNDRjE5MTFFQUFFRjYwQjFFQzRGOUFFMDIvM0MzRjIxQkFE NkYwMTFFRTlCMzhCNjdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnitcwDQYJKoZIhvcNAQELBQADggEBAEMAGmBIiDqr0U23 T5ueuUHdmtVYDPxCfkrC/dkc/VO1AP730lx30OEDDTwqdYdV4iRA5p9slXC50PcK MJDCv88EJqcZp1t5gQtEE3qCrGTdxXXv8+zxidlY0NP9lwWNtvCr+gjEG9YfPRXu ezUcckhJgwe16ZVPlQb5N1qS+idk8uSE+5/ODIsqno/eeK/pgqLIDarN/npUlVDD /hp9fgnXAePJLBzE+khcHHuhmEadvo+1P22g9DS8LCeZ5rZO7NF4hIQmmjmdSW9+ 9LbPcpfAm5NrhivhzytlmKq2qtUEEiGgebDOrQNMidNzsvFf6p3Xa6saAPbt4Yne x6egjik= -----END CERTIFICATE-----Generated at Tue Nov 26 21:53:00 2024 by rpki-client on console-ams.rpki-client.org