$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/34C7EB4010F411EFB4CD9614C4F9AE02.roa File: 34C7EB4010F411EFB4CD9614C4F9AE02.roa (raw, json) Hash identifier: fhHN+wika6qw4BQ5YkJmWVk33R5FKnY5aL2UuUzBHhw= Subject key identifier: CE:BE:81:2D:1F:1E:DF:09:67:69:CC:C8:EB:52:3E:B0:2C:56:CF:00 Certificate issuer: /CN=A91C8347/serialNumber=2ADBB71B11523CA3392E5F37D9DC76B211DBE083 Certificate serial: 33 Authority key identifier: 2A:DB:B7:1B:11:52:3C:A3:39:2E:5F:37:D9:DC:76:B2:11:DB:E0:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/34C7EB4010F411EFB4CD9614C4F9AE02.roa Signing time: Wed 05 Jun 2024 09:19:43 +0000 ROA not before: Wed 05 Jun 2024 09:19:43 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 23470 IP address blocks: 103.219.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.crl rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 07:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51 (0x33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8347/serialNumber=2ADBB71B11523CA3392E5F37D9DC76B211DBE083 Validity Not Before: Jun 5 09:19:43 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66602daf-b02b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:41:9a:7a:62:15:da:6f:b3:c5:0a:e2:98:e2: 2f:38:e9:79:c6:06:54:cb:77:de:cb:a6:ea:91:f8: 23:8d:4d:37:eb:f0:e4:02:01:8b:2e:47:9c:47:0a: d6:b6:70:cc:b4:c5:fd:a5:dd:42:26:01:90:25:4e: a2:9c:e5:4e:ef:a5:f2:bf:65:57:b4:4b:f7:b2:ef: 9f:6e:94:d3:63:00:cd:17:0a:8b:6b:22:cc:a8:18: a8:14:2c:aa:b1:21:f8:a0:c9:07:d9:57:32:a5:1c: 6d:06:a5:78:77:a9:14:ed:82:0c:ac:df:91:56:3f: 7e:52:f9:6e:fc:9e:59:8b:23:65:8b:02:e3:f8:23: f4:88:0b:0d:9c:06:33:c9:27:0a:6c:6b:ac:e8:95: 46:16:6a:8c:8e:72:20:96:66:4d:07:44:f4:99:4b: f4:e1:e2:a9:16:e2:5b:d1:bf:ad:41:32:32:5c:94: b3:b2:1c:b4:cf:f0:83:06:03:ac:e4:02:7f:05:bf: 0e:b3:a5:cb:80:2e:5e:16:2c:7a:36:d6:a6:2e:9a: f5:23:eb:2d:82:24:8c:9a:ea:ff:35:ff:ef:90:25: 40:3e:ac:1a:2d:96:af:4e:b2:4e:38:41:48:29:51: 07:b5:f7:ee:a1:73:ec:54:3c:76:6a:4a:d7:7a:b5: a2:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:BE:81:2D:1F:1E:DF:09:67:69:CC:C8:EB:52:3E:B0:2C:56:CF:00 X509v3 Authority Key Identifier: keyid:2A:DB:B7:1B:11:52:3C:A3:39:2E:5F:37:D9:DC:76:B2:11:DB:E0:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/34C7EB4010F411EFB4CD9614C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.219.193.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:6a:f6:87:cc:da:4d:e5:4a:c9:f1:70:f4:0e:1d:67:fa:e5: 80:f3:84:17:94:7e:3a:4c:a5:e6:0f:9b:e8:d4:d1:a2:70:30: f7:67:67:0a:46:94:ff:53:fc:37:a7:c3:6f:1e:df:16:d3:77: 45:9a:c8:2d:d0:cd:86:a9:69:57:68:7d:55:d4:e0:95:a5:b3: c0:69:41:66:67:01:15:1d:0f:15:d7:f0:f4:c8:c2:82:d8:61: 4c:5e:b8:27:4a:e2:57:b7:e3:77:72:b3:10:90:f6:a1:fb:30: 89:7b:5d:cd:1a:f3:d1:f6:94:38:36:07:18:5f:21:15:14:8c: e1:6e:1c:34:e9:96:fa:31:8c:1f:35:8a:51:8f:bb:e6:90:64: bf:23:b3:5e:04:4c:8f:40:da:e0:85:2c:68:8e:71:72:d2:63: 5f:32:a1:d0:e5:1b:6d:a7:a2:ad:7b:ed:c2:cb:ca:4a:09:ab: 83:31:09:11:cb:06:47:21:48:9f:07:9b:bb:d0:72:c7:b1:6c: a1:e8:a2:e7:90:1c:38:b8:4c:66:ba:b1:b8:f0:cc:9b:71:de: 35:71:d3:b3:79:ef:bb:1d:a5:26:a4:da:3d:42:bd:cb:d6:a6: 22:95:94:eb:fe:54:d6:88:f0:aa:d5:e1:ef:a6:64:21:12:81: ba:0c:ec:27 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBMzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD ODM0NzExMC8GA1UEBRMoMkFEQkI3MUIxMTUyM0NBMzM5MkU1RjM3RDlEQzc2QjIx MURCRTA4MzAeFw0yNDA2MDUwOTE5NDNaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NjAyZGFmLWIwMmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAQZp6YhXab7PFCuKY4i846XnGBlTLd97LpuqR+CONTTfr8OQCAYsuR5xHCta2 cMy0xf2l3UImAZAlTqKc5U7vpfK/ZVe0S/ey759ulNNjAM0XCotrIsyoGKgULKqx IfigyQfZVzKlHG0GpXh3qRTtggys35FWP35S+W78nlmLI2WLAuP4I/SICw2cBjPJ Jwpsa6zolUYWaoyOciCWZk0HRPSZS/Th4qkW4lvRv61BMjJclLOyHLTP8IMGA6zk An8Fvw6zpcuALl4WLHo21qYumvUj6y2CJIya6v81/++QJUA+rBotlq9Osk44QUgp UQe19+6hc+xUPHZqStd6taKTAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUzr6BLR8e 3wlnaczI61I+sCxWzwAwHwYDVR0jBBgwFoAUKtu3GxFSPKM5Ll832dx2shHb4IMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM4MzQ3L0MzRTcyMTkwRjlB OTExRUVBODJBNzkxQUM0RjlBRTAyL0t0dTNHeEZTUEtNNUxsODMyZHgyc2hIYjRJ TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS3R1M0d4RlNQS001TGw4MzJkeDJzaEhiNElNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD ODM0Ny9DM0U3MjE5MEY5QTkxMUVFQTgyQTc5MUFDNEY5QUUwMi8zNEM3RUI0MDEw RjQxMUVGQjRDRDk2MTRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGfbwTANBgkqhkiG9w0BAQsFAAOCAQEATWr2h8zaTeVKyfFw 9A4dZ/rlgPOEF5R+Okyl5g+b6NTRonAw92dnCkaU/1P8N6fDbx7fFtN3RZrILdDN hqlpV2h9VdTglaWzwGlBZmcBFR0PFdfw9MjCgthhTF64J0riV7fjd3KzEJD2ofsw iXtdzRrz0faUODYHGF8hFRSM4W4cNOmW+jGMHzWKUY+75pBkvyOzXgRMj0Da4IUs aI5xctJjXzKh0OUbbaeirXvtwsvKSgmrgzEJEcsGRyFInwebu9Byx7Fsoeii55Ac OLhMZrqxuPDMm3HeNXHTs3nvux2lJqTaPUK9y9amIpWU6/5U1ojwqtXh76ZkIRKB ugzsJw== -----END CERTIFICATE-----Generated at Fri Jun 7 11:02:54 2024 by rpki-client on console-fra.rpki-client.org