$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3B8A/08C43924384D11EAA4F55B73C4F9AE02/3C726724C06211EC93514712C4F9AE02.roa File: 3C726724C06211EC93514712C4F9AE02.roa (raw, json) Hash identifier: KMcvzUrwYvv7qojBnwefCUmBg96+35aVlS8PqzGenGg= Subject key identifier: 66:4D:35:4A:CD:63:5A:49:BD:C5:ED:85:3B:F0:3B:EC:AE:CE:80:2D Certificate issuer: /CN=A91C3B8A/serialNumber=4550C69051BAA18AF112DC76B5F5DF9E6B7940D5 Certificate serial: 0A76 Authority key identifier: 45:50:C6:90:51:BA:A1:8A:F1:12:DC:76:B5:F5:DF:9E:6B:79:40:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RVDGkFG6oYrxEtx2tfXfnmt5QNU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3B8A/08C43924384D11EAA4F55B73C4F9AE02/3C726724C06211EC93514712C4F9AE02.roa Signing time: Tue 06 Feb 2024 20:18:42 +0000 ROA not before: Tue 06 Feb 2024 20:18:42 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 397373 IP address blocks: 103.229.198.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3B8A/08C43924384D11EAA4F55B73C4F9AE02/RVDGkFG6oYrxEtx2tfXfnmt5QNU.crl rsync://rpki.apnic.net/member_repository/A91C3B8A/08C43924384D11EAA4F55B73C4F9AE02/RVDGkFG6oYrxEtx2tfXfnmt5QNU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RVDGkFG6oYrxEtx2tfXfnmt5QNU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 18:35:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2678 (0xa76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3B8A/serialNumber=4550C69051BAA18AF112DC76B5F5DF9E6B7940D5 Validity Not Before: Feb 6 20:18:42 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65c29422-61ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:09:00:71:76:c1:fb:9f:b4:5f:4b:0b:96:64: 09:68:35:52:1f:ec:6b:37:d9:5d:a3:38:f0:ce:10: 22:0a:99:20:2f:85:88:f8:32:72:9c:e2:ee:40:62: c7:53:2a:04:9f:47:3c:1d:cc:2f:cc:7b:aa:30:97: 4e:a3:f2:95:09:83:3f:b8:38:33:90:65:6c:f5:43: c0:9f:aa:ec:01:23:c9:8b:0a:62:f2:a4:cc:d8:55: 92:6e:b9:69:f2:35:6a:14:ee:85:d0:a3:ee:16:91: 7d:7b:fc:7e:3b:fc:64:c2:2a:88:a1:16:e1:12:d4: 74:f6:c9:7d:98:8d:a1:91:88:d5:05:44:fc:5e:c9: 3c:65:fd:03:3f:eb:bd:5f:03:ee:33:a2:79:48:fe: bc:2b:3a:c7:84:00:3c:45:db:0e:d3:1a:da:15:a6: 0f:e2:68:4a:1b:dc:35:6b:02:37:9d:5b:92:6b:0e: 4a:f4:b2:ed:5f:05:50:8a:d9:46:3a:7f:e6:95:e5: 87:38:db:aa:c8:92:d1:85:11:df:d6:91:44:4e:99: 89:02:d1:b7:de:86:b8:04:1b:b4:21:be:28:d1:33: 29:e4:05:c8:79:eb:77:59:89:97:c3:9f:72:88:3d: 13:f9:1b:0a:fb:80:ab:28:70:c1:03:5c:45:78:58: 05:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:4D:35:4A:CD:63:5A:49:BD:C5:ED:85:3B:F0:3B:EC:AE:CE:80:2D X509v3 Authority Key Identifier: keyid:45:50:C6:90:51:BA:A1:8A:F1:12:DC:76:B5:F5:DF:9E:6B:79:40:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3B8A/08C43924384D11EAA4F55B73C4F9AE02/RVDGkFG6oYrxEtx2tfXfnmt5QNU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RVDGkFG6oYrxEtx2tfXfnmt5QNU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3B8A/08C43924384D11EAA4F55B73C4F9AE02/3C726724C06211EC93514712C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.229.198.0/23 Signature Algorithm: sha256WithRSAEncryption 09:27:09:71:15:b1:1f:6e:77:d1:e1:7e:67:11:ee:72:97:87: 16:42:e1:62:4c:b0:0f:d3:dc:23:dc:20:59:3c:fc:b0:76:a5: cf:b7:86:41:e8:6d:d4:67:0e:20:cc:be:8f:a9:6c:89:5c:9a: db:88:c9:c2:1d:41:69:11:a8:87:2b:89:3d:21:66:78:49:30: 3a:0f:a7:86:f8:6c:0c:7c:e1:b0:25:5a:26:3f:5b:a2:03:31: 1c:af:f1:58:d9:7b:d4:ae:1a:95:84:bf:0f:a7:0d:f1:05:e3: 70:08:f8:34:cb:64:64:7c:fb:16:67:58:bf:dc:21:ac:da:91: 28:b9:32:35:80:50:75:12:7a:d1:68:1a:d8:e7:e0:57:9e:c3: d3:1d:9c:8a:bb:6b:02:6a:df:25:ca:5c:51:dc:b1:fc:34:00: d3:55:b0:f1:39:47:aa:ce:b1:d1:2e:a2:47:da:22:6c:09:7f: a7:de:64:b4:e5:9c:ba:58:d5:1d:16:54:59:6f:5c:90:f1:b0: c7:f5:7d:da:16:ac:1d:a6:86:07:02:51:68:dd:e8:be:40:06: a2:e3:cb:3b:ba:e3:76:83:25:e1:12:4e:6b:b7:fc:d8:72:9d: 20:00:1a:e3:de:26:33:52:84:91:19:a0:fa:0c:86:4c:fd:40: d4:4c:81:6e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCnYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzNCOEExMTAvBgNVBAUTKDQ1NTBDNjkwNTFCQUExOEFGMTEyREM3NkI1RjVERjlF NkI3OTQwRDUwHhcNMjQwMjA2MjAxODQyWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWMyOTQyMi02MWNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5AkAcXbB+5+0X0sLlmQJaDVSH+xrN9ldozjwzhAiCpkgL4WI+DJynOLuQGLH UyoEn0c8HcwvzHuqMJdOo/KVCYM/uDgzkGVs9UPAn6rsASPJiwpi8qTM2FWSbrlp 8jVqFO6F0KPuFpF9e/x+O/xkwiqIoRbhEtR09sl9mI2hkYjVBUT8Xsk8Zf0DP+u9 XwPuM6J5SP68KzrHhAA8RdsO0xraFaYP4mhKG9w1awI3nVuSaw5K9LLtXwVQitlG On/mleWHONuqyJLRhRHf1pFETpmJAtG33oa4BBu0Ib4o0TMp5AXIeet3WYmXw59y iD0T+RsK+4CrKHDBA1xFeFgFWwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGZNNUrN Y1pJvcXthTvwO+yuzoAtMB8GA1UdIwQYMBaAFEVQxpBRuqGK8RLcdrX1355reUDV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDM0I4QS8wOEM0MzkyNDM4 NEQxMUVBQTRGNTVCNzNDNEY5QUUwMi9SVkRHa0ZHNm9ZcnhFdHgydGZYZm5tdDVR TlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JWREdrRkc2b1lyeEV0eDJ0Zlhmbm10NVFOVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzNCOEEvMDhDNDM5MjQzODREMTFFQUE0RjU1QjczQzRGOUFFMDIvM0M3MjY3MjRD MDYyMTFFQzkzNTE0NzEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn5cYwDQYJKoZIhvcNAQELBQADggEBAAknCXEVsR9ud9Hh fmcR7nKXhxZC4WJMsA/T3CPcIFk8/LB2pc+3hkHobdRnDiDMvo+pbIlcmtuIycId QWkRqIcriT0hZnhJMDoPp4b4bAx84bAlWiY/W6IDMRyv8VjZe9SuGpWEvw+nDfEF 43AI+DTLZGR8+xZnWL/cIazakSi5MjWAUHUSetFoGtjn4Feew9MdnIq7awJq3yXK XFHcsfw0ANNVsPE5R6rOsdEuokfaImwJf6feZLTlnLpY1R0WVFlvXJDxsMf1fdoW rB2mhgcCUWjd6L5ABqLjyzu643aDJeESTmu3/NhynSAAGuPeJjNShJEZoPoMhkz9 QNRMgW4= -----END CERTIFICATE-----Generated at Wed Apr 24 21:18:19 2024 by rpki-client on console-ams.rpki-client.org