$ rpki-client -vvf rpki.apnic.net/member_repository/A91B85B2/208FF9D2574911EBBB23D509C4F9AE02/3DD34804574A11EBB748600AC4F9AE02.roa File: 3DD34804574A11EBB748600AC4F9AE02.roa (raw, json) Hash identifier: LBebV0Evm/UGpPLphMH1G/iMGgilZT2vx+yzYjP/e3o= Subject key identifier: D1:D5:B8:2A:D8:0B:A3:08:1C:80:07:FC:CB:E5:98:00:58:88:75:C6 Certificate issuer: /CN=A91B85B2/serialNumber=58408D2C9EF799511A6E5D70F82EC86996F313F4 Certificate serial: 060F Authority key identifier: 58:40:8D:2C:9E:F7:99:51:1A:6E:5D:70:F8:2E:C8:69:96:F3:13:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WECNLJ73mVEabl1w-C7IaZbzE_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B85B2/208FF9D2574911EBBB23D509C4F9AE02/3DD34804574A11EBB748600AC4F9AE02.roa Signing time: Fri 03 May 2024 00:13:19 +0000 ROA not before: Fri 03 May 2024 00:13:19 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 134700 IP address blocks: 103.6.192.0/24 maxlen: 24 103.6.194.0/24 maxlen: 24 103.6.195.0/24 maxlen: 24 203.7.160.0/24 maxlen: 24 203.7.161.0/24 maxlen: 24 203.7.162.0/24 maxlen: 24 203.7.163.0/24 maxlen: 24 203.7.164.0/24 maxlen: 24 203.7.165.0/24 maxlen: 24 203.7.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B85B2/208FF9D2574911EBBB23D509C4F9AE02/WECNLJ73mVEabl1w-C7IaZbzE_Q.crl rsync://rpki.apnic.net/member_repository/A91B85B2/208FF9D2574911EBBB23D509C4F9AE02/WECNLJ73mVEabl1w-C7IaZbzE_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WECNLJ73mVEabl1w-C7IaZbzE_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1551 (0x60f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B85B2/serialNumber=58408D2C9EF799511A6E5D70F82EC86996F313F4 Validity Not Before: May 3 00:13:19 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66342c1f-e72d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b8:2e:ac:5a:08:b2:14:7f:34:b1:67:c2:37: d9:8f:b5:60:01:ee:2c:29:cb:22:2f:58:bf:9e:bc: 27:32:0a:80:39:71:4a:4e:3b:ad:d6:aa:ff:6e:20: d5:0c:24:ba:3d:99:d3:a7:4b:ac:41:68:3a:86:77: 08:bb:6d:71:9b:ae:d4:fe:32:7d:9a:5d:09:f4:86: eb:9f:1e:1f:e6:7d:74:64:a7:8e:b0:3d:00:4f:b7: 0f:22:71:ff:e1:0a:fc:c6:fa:71:68:34:8c:22:20: 55:eb:ce:89:6a:c7:7a:38:16:ea:6b:7b:3d:b2:b8: d1:ba:46:c5:36:46:2e:7b:95:05:aa:54:0a:7c:81: 4a:7e:b1:e0:f9:2f:16:25:c9:5d:c5:cf:25:04:49: 1a:73:bd:1b:e9:48:b7:bb:8a:9e:b6:4d:db:2a:19: c4:16:be:0f:32:7a:05:22:e4:93:0a:eb:e6:45:3f: 7d:85:27:58:55:01:86:98:11:86:be:4f:d8:af:dd: 89:69:1c:9e:44:49:0e:06:fe:4f:60:68:e6:73:25: ad:d5:4e:dd:6b:a8:23:a1:25:bb:61:a3:6e:82:eb: ba:3e:f8:e1:8a:9c:85:36:81:41:a8:0d:34:07:9b: ea:4d:37:51:ed:12:7a:e0:10:cd:e2:cd:8e:1a:fe: 3e:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:D5:B8:2A:D8:0B:A3:08:1C:80:07:FC:CB:E5:98:00:58:88:75:C6 X509v3 Authority Key Identifier: keyid:58:40:8D:2C:9E:F7:99:51:1A:6E:5D:70:F8:2E:C8:69:96:F3:13:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B85B2/208FF9D2574911EBBB23D509C4F9AE02/WECNLJ73mVEabl1w-C7IaZbzE_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WECNLJ73mVEabl1w-C7IaZbzE_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B85B2/208FF9D2574911EBBB23D509C4F9AE02/3DD34804574A11EBB748600AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.6.192.0/24 103.6.194.0/23 203.7.160.0-203.7.166.255 Signature Algorithm: sha256WithRSAEncryption b1:50:3c:6b:04:75:71:f2:b6:34:68:48:e8:32:28:74:4c:51: 0e:87:eb:e4:6c:ff:b9:fe:7b:7f:77:1e:d9:cc:3c:34:df:b3: a9:12:31:9a:a5:a4:2a:86:3d:dc:10:1c:8d:ef:5b:35:1f:9d: 5b:f7:d8:3f:51:86:3f:40:c7:af:d3:e2:b3:a3:89:ca:17:bf: ef:ec:03:cd:6a:c0:94:5a:88:f5:72:8a:66:b1:16:86:09:0f: f5:af:d7:b1:cd:14:c3:ba:11:00:50:7d:25:0e:22:61:6e:47: a5:1e:2a:67:b6:91:d1:41:ff:a4:9e:cc:9e:e4:2a:4a:66:c8: 65:65:22:ca:3a:c8:fd:51:09:a7:4c:ef:7d:06:da:9f:03:17: 6d:4a:e8:a5:ef:e8:57:dc:8d:7c:90:71:be:45:47:88:19:79: 20:a2:30:da:b7:26:60:48:27:58:6a:1b:20:0b:30:7b:68:19: 11:e1:19:b5:03:47:36:0e:8d:fd:b4:ac:63:bd:c8:e4:00:5f: cd:1d:72:7e:e8:f9:28:c6:e2:d0:5e:c3:a7:b0:0f:23:1f:25: c5:d4:77:4e:d2:0a:2c:b7:c6:c1:80:80:79:13:07:13:b2:2f: db:14:c3:8d:1e:40:6b:f3:67:6e:69:6e:c8:a1:07:f7:71:4a: 6d:f9:e9:9c -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICBg8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjg1QjIxMTAvBgNVBAUTKDU4NDA4RDJDOUVGNzk5NTExQTZFNUQ3MEY4MkVDODY5 OTZGMzEzRjQwHhcNMjQwNTAzMDAxMzE5WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjM0MmMxZi1lNzJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyLgurFoIshR/NLFnwjfZj7VgAe4sKcsiL1i/nrwnMgqAOXFKTjut1qr/biDV DCS6PZnTp0usQWg6hncIu21xm67U/jJ9ml0J9Ibrnx4f5n10ZKeOsD0AT7cPInH/ 4Qr8xvpxaDSMIiBV686Jasd6OBbqa3s9srjRukbFNkYue5UFqlQKfIFKfrHg+S8W Jcldxc8lBEkac70b6Ui3u4qetk3bKhnEFr4PMnoFIuSTCuvmRT99hSdYVQGGmBGG vk/Yr92JaRyeREkOBv5PYGjmcyWt1U7da6gjoSW7YaNuguu6PvjhipyFNoFBqA00 B5vqTTdR7RJ64BDN4s2OGv4+TwIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFNHVuCrY C6MIHIAH/MvlmABYiHXGMB8GA1UdIwQYMBaAFFhAjSye95lRGm5dcPguyGmW8xP0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODVCMi8yMDhGRjlEMjU3 NDkxMUVCQkIyM0Q1MDlDNEY5QUUwMi9XRUNOTEo3M21WRWFibDF3LUM3SWFaYnpF X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dFQ05MSjczbVZFYWJsMXctQzdJYVpiekVfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qjg1QjIvMjA4RkY5RDI1NzQ5MTFFQkJCMjNENTA5QzRGOUFFMDIvM0REMzQ4MDQ1 NzRBMTFFQkI3NDg2MDBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBoDBABnBsADBAFnBsIwDAMEBcsHoAMEAMsHpjANBgkqhkiG9w0B AQsFAAOCAQEAsVA8awR1cfK2NGhI6DIodExRDofr5Gz/uf57f3ce2cw8NN+zqRIx mqWkKoY93BAcje9bNR+dW/fYP1GGP0DHr9Pis6OJyhe/7+wDzWrAlFqI9XKKZrEW hgkP9a/Xsc0Uw7oRAFB9JQ4iYW5HpR4qZ7aR0UH/pJ7MnuQqSmbIZWUiyjrI/VEJ p0zvfQbanwMXbUrope/oV9yNfJBxvkVHiBl5IKIw2rcmYEgnWGobIAswe2gZEeEZ tQNHNg6N/bSsY73I5ABfzR1yfuj5KMbi0F7Dp7APIx8lxdR3TtIKLLfGwYCAeRMH E7Iv2xTDjR5Aa/NnbmluyKEH93FKbfnpnA== -----END CERTIFICATE-----Generated at Wed Nov 20 23:11:48 2024 by rpki-client on console-fra.rpki-client.org