$ rpki-client -vvf rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/315EA0CCA9B111EC9C177A56C4F9AE02.roa File: 315EA0CCA9B111EC9C177A56C4F9AE02.roa (raw, json) Hash identifier: ySlmtl2wcCW6gEkXb9JScRCk7KmQx2Og/ntmePBVts4= Subject key identifier: E7:B7:D0:82:B6:BA:3B:13:D0:3D:BD:F1:65:2F:F8:F4:C7:B7:02:26 Certificate issuer: /CN=A91D16A3/serialNumber=793766084EFC06250650F0FDC9DBC553C0CECA32 Certificate serial: 105C Authority key identifier: 79:37:66:08:4E:FC:06:25:06:50:F0:FD:C9:DB:C5:53:C0:CE:CA:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eTdmCE78BiUGUPD9ydvFU8DOyjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/315EA0CCA9B111EC9C177A56C4F9AE02.roa Signing time: Thu 28 Mar 2024 18:26:16 +0000 ROA not before: Thu 28 Mar 2024 18:26:16 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 38136 IP address blocks: 103.135.102.0/23 maxlen: 24 2404:7ac0:4000::/34 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/eTdmCE78BiUGUPD9ydvFU8DOyjI.crl rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/eTdmCE78BiUGUPD9ydvFU8DOyjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eTdmCE78BiUGUPD9ydvFU8DOyjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4188 (0x105c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D16A3/serialNumber=793766084EFC06250650F0FDC9DBC553C0CECA32 Validity Not Before: Mar 28 18:26:16 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6605b648-ebe0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:b2:6d:a8:b5:17:c5:78:05:2c:be:fb:bc:da: f0:57:97:45:a1:fe:58:7b:12:83:88:f5:fe:a1:ed: 03:d4:b2:90:72:9f:aa:6a:94:36:f1:fa:3d:22:ea: 3f:4b:77:bf:e3:e4:d0:d9:13:b8:f1:ba:0c:31:7c: da:15:c6:26:07:7c:67:f8:49:49:c1:1f:68:22:a9: 86:ca:b7:95:e8:e4:85:19:00:05:c4:be:62:ef:0e: ec:99:d3:bf:b7:e8:a2:b2:bd:2b:e0:34:16:ac:c2: 63:64:14:84:28:45:b5:6e:30:00:7c:97:b0:62:2d: c8:37:25:e8:a9:db:31:c0:64:b1:a1:fc:d1:d3:ee: 4b:8a:11:97:de:68:39:c6:8b:6b:15:cc:d1:5f:09: 0e:75:2c:80:a1:bb:4b:da:b0:27:70:b0:5c:35:46: 84:10:c9:7a:c2:b7:eb:77:1b:fa:77:fd:04:42:6b: 02:25:c3:35:90:14:51:2d:cc:a8:04:0b:15:ae:80: e7:a3:c4:7f:f4:3f:e2:02:c4:ff:93:e0:bf:8c:37: b0:b3:0d:e6:31:a1:fb:b5:eb:11:9b:dc:96:dd:92: cd:f9:9d:3e:d0:24:e3:6f:71:55:df:ab:ec:af:e4: a3:e1:22:ac:e5:a4:13:c3:e0:67:92:a6:11:5c:a7: 24:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:B7:D0:82:B6:BA:3B:13:D0:3D:BD:F1:65:2F:F8:F4:C7:B7:02:26 X509v3 Authority Key Identifier: keyid:79:37:66:08:4E:FC:06:25:06:50:F0:FD:C9:DB:C5:53:C0:CE:CA:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/eTdmCE78BiUGUPD9ydvFU8DOyjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eTdmCE78BiUGUPD9ydvFU8DOyjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/315EA0CCA9B111EC9C177A56C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.135.102.0/23 IPv6: 2404:7ac0:4000::/34 Signature Algorithm: sha256WithRSAEncryption 8b:b8:ff:0f:80:61:24:db:b0:c7:22:48:17:06:ba:8d:4e:b1: 76:b4:70:3e:f4:ce:4a:af:ca:d4:ac:84:54:cd:92:3a:60:70: 07:c7:5a:66:f0:06:0c:b9:7e:dd:c8:d4:81:72:90:c2:80:6c: 5e:62:fe:f4:41:f9:21:43:f4:b7:78:97:5b:9d:70:fd:6f:8b: a4:ae:4e:ba:c5:43:a9:3f:0d:61:fb:ac:9b:d4:74:8d:35:3d: 81:c9:06:2b:55:c4:29:0c:22:10:f2:70:f1:53:45:25:4c:71: d4:47:c6:80:e1:8f:41:ca:7e:7b:2b:dd:84:c2:58:19:a3:48: a2:68:f9:7f:3c:c0:63:5b:de:d0:7e:af:12:a8:1c:d9:d2:f6: fe:e2:ab:7f:72:e4:a9:a5:c8:dd:76:c6:df:c2:ed:08:8a:da: e8:9d:1f:17:e8:1c:d9:f4:03:46:de:5a:77:73:b5:7d:f2:51: 07:1b:ef:b8:67:cc:f8:fc:88:fc:fe:aa:f9:8b:2c:06:db:fe: 6b:62:ca:b5:b7:50:6a:77:3e:6b:05:3b:20:94:5b:be:db:19: 2f:c1:82:db:c7:f5:05:ea:ee:02:55:a3:0e:34:e6:26:d5:c8: 2a:00:97:07:0a:e6:50:72:aa:a7:30:2c:b7:37:be:66:9d:44: a8:75:db:04 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgICEFwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE2QTMxMTAvBgNVBAUTKDc5Mzc2NjA4NEVGQzA2MjUwNjUwRjBGREM5REJDNTUz QzBDRUNBMzIwHhcNMjQwMzI4MTgyNjE2WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjA1YjY0OC1lYmUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7rJtqLUXxXgFLL77vNrwV5dFof5YexKDiPX+oe0D1LKQcp+qapQ28fo9Iuo/ S3e/4+TQ2RO48boMMXzaFcYmB3xn+ElJwR9oIqmGyreV6OSFGQAFxL5i7w7smdO/ t+iisr0r4DQWrMJjZBSEKEW1bjAAfJewYi3INyXoqdsxwGSxofzR0+5LihGX3mg5 xotrFczRXwkOdSyAobtL2rAncLBcNUaEEMl6wrfrdxv6d/0EQmsCJcM1kBRRLcyo BAsVroDno8R/9D/iAsT/k+C/jDewsw3mMaH7tesRm9yW3ZLN+Z0+0CTjb3FV36vs r+Sj4SKs5aQTw+BnkqYRXKckIwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFOe30IK2 ujsT0D298WUv+PTHtwImMB8GA1UdIwQYMBaAFHk3ZghO/AYlBlDw/cnbxVPAzsoy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTZBMy83NzI3Q0U1QzM4 QzcxMUU5QTdCNUMyMzNDNEY5QUUwMi9lVGRtQ0U3OEJpVUdVUEQ5eWR2RlU4RE95 akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VUZG1DRTc4QmlVR1VQRDl5ZHZGVThET3lqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDE2QTMvNzcyN0NFNUMzOEM3MTFFOUE3QjVDMjMzQzRGOUFFMDIvMzE1RUEwQ0NB OUIxMTFFQzlDMTc3QTU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLwYIKwYBBQUHAQcBAf8E IDAeMAwEAgABMAYDBAFnh2YwDgQCAAIwCAMGBiQEesBAMA0GCSqGSIb3DQEBCwUA A4IBAQCLuP8PgGEk27DHIkgXBrqNTrF2tHA+9M5Kr8rUrIRUzZI6YHAHx1pm8AYM uX7dyNSBcpDCgGxeYv70QfkhQ/S3eJdbnXD9b4ukrk66xUOpPw1h+6yb1HSNNT2B yQYrVcQpDCIQ8nDxU0UlTHHUR8aA4Y9Byn57K92EwlgZo0iiaPl/PMBjW97Qfq8S qBzZ0vb+4qt/cuSppcjddsbfwu0IitronR8X6BzZ9ANG3lp3c7V98lEHG++4Z8z4 /Ij8/qr5iywG2/5rYsq1t1Bqdz5rBTsglFu+2xkvwYLbx/UF6u4CVaMONOYm1cgq AJcHCuZQcqqnMCy3N75mnUSoddsE -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:57 2024 by rpki-client on console-ams.rpki-client.org