$ rpki-client -vvf rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/35A169488D8611E9B1106E6FC4F9AE02.roa File: 35A169488D8611E9B1106E6FC4F9AE02.roa (raw, json) Hash identifier: N5DA+WC/u1NASlrDagzy8orn68GI1lN08P1lx5z1UXs= Subject key identifier: 82:57:53:30:74:F4:CC:D2:FC:52:41:D6:84:08:9A:EB:11:52:24:3F Certificate issuer: /CN=A91D17E8/serialNumber=3027308159151941AB734C720617DF7FDCC2410C Certificate serial: 0EEF Authority key identifier: 30:27:30:81:59:15:19:41:AB:73:4C:72:06:17:DF:7F:DC:C2:41:0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MCcwgVkVGUGrc0xyBhfff9zCQQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/35A169488D8611E9B1106E6FC4F9AE02.roa Signing time: Thu 02 May 2024 18:37:13 +0000 ROA not before: Thu 02 May 2024 18:37:13 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 138978 IP address blocks: 103.138.32.0/24 maxlen: 24 103.139.90.0/24 maxlen: 24 2404:bb40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/MCcwgVkVGUGrc0xyBhfff9zCQQw.crl rsync://rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/MCcwgVkVGUGrc0xyBhfff9zCQQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MCcwgVkVGUGrc0xyBhfff9zCQQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 18:25:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3823 (0xeef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D17E8/serialNumber=3027308159151941AB734C720617DF7FDCC2410C Validity Not Before: May 2 18:37:13 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6633dd58-f429 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:3d:0a:16:39:2c:14:3d:37:bc:e1:cb:cd:cc: 56:8c:1c:e0:04:3f:35:35:69:80:6f:b2:0b:35:97: 1d:ec:50:a8:b0:58:c4:fb:97:4b:8c:98:c6:d5:2f: a6:0e:b7:f3:61:8b:52:44:91:eb:35:f8:8e:65:e7: af:2a:96:df:86:c7:4d:82:da:63:33:d3:c6:82:be: 9b:cb:03:66:ae:2f:6c:5a:70:e6:25:6f:58:44:5e: f6:aa:3e:e7:d1:bb:d6:e6:45:65:80:d4:54:75:8c: 2e:ad:1c:80:71:8b:a4:f5:81:68:a1:70:0c:df:03: 5c:5c:c4:0c:f8:4e:a3:85:d2:d6:e0:ae:76:6e:67: c1:6e:56:b2:a3:e9:5f:9d:41:25:cc:6c:31:2b:9b: 42:b9:47:8a:39:64:89:8d:0a:4d:b2:78:8f:5d:5c: c1:0c:07:c8:45:a7:79:d1:52:8a:4d:09:00:d4:0c: bd:e0:ba:f4:a2:f4:c8:69:fe:6d:07:60:6c:6f:54: 1c:fb:6c:3c:bd:a3:33:60:ef:91:82:5e:78:79:c6: 1c:05:4d:af:fc:1f:e3:2f:a0:b0:04:39:0c:78:e6: 46:1c:c4:e6:cc:b8:7e:4d:29:55:0a:11:36:9a:ef: a5:0c:91:46:11:10:28:98:9f:71:28:34:f6:39:1b: 0e:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:57:53:30:74:F4:CC:D2:FC:52:41:D6:84:08:9A:EB:11:52:24:3F X509v3 Authority Key Identifier: keyid:30:27:30:81:59:15:19:41:AB:73:4C:72:06:17:DF:7F:DC:C2:41:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/MCcwgVkVGUGrc0xyBhfff9zCQQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MCcwgVkVGUGrc0xyBhfff9zCQQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/35A169488D8611E9B1106E6FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.32.0/24 103.139.90.0/24 IPv6: 2404:bb40::/32 Signature Algorithm: sha256WithRSAEncryption 08:5a:84:b4:93:f7:c9:b9:31:10:87:77:d6:9c:fc:7b:af:fe: 73:f5:87:bd:d4:b6:82:ea:04:92:3d:dd:e8:9f:37:c7:ae:41: ed:d2:6c:dc:a8:de:9e:45:6c:64:a0:a4:cc:6a:a5:51:19:0d: 9a:db:a8:0b:18:58:61:b2:b1:12:ea:6a:65:b0:6e:a6:74:9a: b5:a4:fe:96:ce:ac:e1:71:18:3c:6a:85:fd:c3:94:d8:28:9b: 09:18:a3:dd:9e:63:95:1d:73:8b:ce:8c:4c:a9:c0:ed:4f:f1: 5b:4f:77:aa:e2:a8:31:4c:18:e4:0f:e1:b5:f0:2b:33:e1:a2: 3c:6d:c5:93:ba:02:59:53:79:38:14:64:fc:e8:65:3e:ab:be: 96:4d:56:90:22:a6:94:a6:ef:9a:5f:9f:0e:fe:1f:0b:63:61: fa:53:20:90:93:4e:d2:57:52:54:64:d1:11:b7:34:f3:53:f0: c9:0a:89:3c:09:28:ce:c3:be:89:ae:25:79:70:72:46:9c:cf: a4:82:51:4d:59:13:27:a3:3f:3c:0d:d4:73:42:01:8b:8e:ed: a8:b0:8d:72:64:4e:ff:d8:41:51:bb:ca:4f:e9:6f:c7:dc:47: 92:6d:bb:10:46:a7:dd:15:98:b8:4c:2e:d4:5f:43:48:fc:cc: 52:19:52:a7 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICDu8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE3RTgxMTAvBgNVBAUTKDMwMjczMDgxNTkxNTE5NDFBQjczNEM3MjA2MTdERjdG RENDMjQxMEMwHhcNMjQwNTAyMTgzNzEzWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMzZGQ1OC1mNDI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+D0KFjksFD03vOHLzcxWjBzgBD81NWmAb7ILNZcd7FCosFjE+5dLjJjG1S+m DrfzYYtSRJHrNfiOZeevKpbfhsdNgtpjM9PGgr6bywNmri9sWnDmJW9YRF72qj7n 0bvW5kVlgNRUdYwurRyAcYuk9YFooXAM3wNcXMQM+E6jhdLW4K52bmfBblayo+lf nUElzGwxK5tCuUeKOWSJjQpNsniPXVzBDAfIRad50VKKTQkA1Ay94Lr0ovTIaf5t B2Bsb1Qc+2w8vaMzYO+Rgl54ecYcBU2v/B/jL6CwBDkMeOZGHMTmzLh+TSlVChE2 mu+lDJFGERAomJ9xKDT2ORsOgQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFIJXUzB0 9MzS/FJB1oQImusRUiQ/MB8GA1UdIwQYMBaAFDAnMIFZFRlBq3NMcgYX33/cwkEM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTdFOC9GMTZFMTg1NjVD NTMxMUU5OUFCNUNGNjhDNEY5QUUwMi9NQ2N3Z1ZrVkdVR3JjMHh5QmhmZmY5ekNR UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01DY3dnVmtWR1VHcmMweHlCaGZmZjl6Q1FRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDE3RTgvRjE2RTE4NTY1QzUzMTFFOTlBQjVDRjY4QzRGOUFFMDIvMzVBMTY5NDg4 RDg2MTFFOUIxMTA2RTZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBABniiADBABni1owDQQCAAIwBwMFACQEu0AwDQYJKoZIhvcN AQELBQADggEBAAhahLST98m5MRCHd9ac/Huv/nP1h73UtoLqBJI93eifN8euQe3S bNyo3p5FbGSgpMxqpVEZDZrbqAsYWGGysRLqamWwbqZ0mrWk/pbOrOFxGDxqhf3D lNgomwkYo92eY5Udc4vOjEypwO1P8VtPd6riqDFMGOQP4bXwKzPhojxtxZO6AllT eTgUZPzoZT6rvpZNVpAippSm75pfnw7+HwtjYfpTIJCTTtJXUlRk0RG3NPNT8MkK iTwJKM7DvomuJXlwckacz6SCUU1ZEyejPzwN1HNCAYuO7aiwjXJkTv/YQVG7yk/p b8fcR5JtuxBGp90VmLhMLtRfQ0j8zFIZUqc= -----END CERTIFICATE-----Generated at Thu May 16 20:25:56 2024 by rpki-client on console-ams.rpki-client.org