$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/3A851EE273E411EA9572F76EC4F9AE02.roa File: 3A851EE273E411EA9572F76EC4F9AE02.roa (raw, json) Hash identifier: vR/hsH9Zhb8FIZHjA0oIM8YiJ7UXh8ADZ/D+wU+8mAM= Subject key identifier: 58:82:ED:CE:5A:2B:D2:00:16:B7:7C:B7:06:90:FD:4B:13:7E:06:A8 Certificate issuer: /CN=A91D2ACF/serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Certificate serial: 09AE Authority key identifier: C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/3A851EE273E411EA9572F76EC4F9AE02.roa Signing time: Wed 06 Nov 2024 20:09:23 +0000 ROA not before: Wed 06 Nov 2024 20:09:23 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 137969 IP address blocks: 103.144.40.0/23 maxlen: 23 103.144.40.0/24 maxlen: 24 103.144.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2478 (0x9ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2ACF/serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Validity Not Before: Nov 6 20:09:23 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=672bccf3-7e74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:3c:63:74:39:09:4b:d1:fc:49:2f:3c:84:2c: 82:92:10:f1:fd:68:1b:66:9d:6f:7c:00:3c:da:3f: aa:11:9a:84:27:09:4b:55:af:8e:c7:58:93:8d:49: b2:b6:97:94:6b:59:20:40:7e:f9:86:6e:97:e0:4a: 0f:6e:cc:e1:77:a9:7f:f1:78:4f:57:92:1d:12:53: d8:c4:7a:f3:21:85:fd:02:9e:a8:9c:b1:c1:12:26: c8:f3:a3:3c:42:96:a7:78:37:f0:0e:a4:3f:08:b4: 3e:aa:14:28:34:dd:d6:d4:f3:27:63:3b:0b:8c:f7: e8:9c:87:c6:51:02:72:4c:f7:87:70:df:4f:74:bf: fb:0b:60:42:64:c6:d5:40:e7:1f:51:c2:c3:d7:cf: 3c:70:e5:09:0e:05:3e:25:a7:ef:bb:63:4a:94:4e: 40:ae:6c:7d:51:24:c7:06:d3:af:d2:6b:8a:59:23: ef:a8:7f:ee:8f:79:f1:ae:b1:13:e0:f4:5e:3f:95: 53:cf:28:c9:9b:43:40:91:b4:39:28:55:97:80:ae: 2c:c0:4b:a1:bc:a0:44:6e:ae:78:e4:ac:db:4e:67: 9b:83:bf:c9:aa:92:68:57:89:ca:9f:f6:c6:8f:44: f0:d0:19:cf:41:e0:b3:1d:38:ad:2c:5f:60:6d:73: 61:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:82:ED:CE:5A:2B:D2:00:16:B7:7C:B7:06:90:FD:4B:13:7E:06:A8 X509v3 Authority Key Identifier: keyid:C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/3A851EE273E411EA9572F76EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.144.40.0/23 Signature Algorithm: sha256WithRSAEncryption 48:76:49:30:a5:0d:fc:2b:df:c3:fa:d1:3b:c6:e9:2a:38:04: 85:36:d6:19:6a:de:8b:61:78:bb:3b:18:10:2d:8c:ba:26:53: 29:0b:52:66:53:2d:00:b9:54:9e:30:a1:63:aa:31:4e:f4:33: 12:27:21:81:99:0e:9e:cc:93:6c:6b:f4:7c:a5:63:a9:7e:44: 55:f1:b8:9b:36:d0:9f:8e:73:25:61:0b:62:e2:0c:fb:ff:a0: 4e:68:3e:66:3e:b9:dc:d3:bf:7a:87:f3:8b:d9:32:84:24:33: 57:fa:85:6d:61:8c:83:20:ee:91:e2:f1:31:83:50:54:d9:56: 14:97:0c:94:0b:69:d4:c3:f3:3c:4d:5b:f6:4f:f4:6c:77:05: 52:b2:d0:14:1e:a9:d3:bd:55:84:ed:e4:d1:f2:88:d7:4b:b7: 90:0f:a0:f3:e1:40:a8:6d:c4:b1:45:61:6e:cc:aa:e4:c8:c8: c0:29:16:85:ab:b1:83:0d:a4:d9:b6:f9:c7:1a:c9:b5:ec:f8: 18:05:ba:82:3c:e4:74:eb:8b:36:61:6b:6c:99:c1:31:07:7a: 1f:57:44:11:7b:bf:c9:e7:d4:7c:bb:fa:a9:92:7b:79:0b:e6: e4:be:64:bd:55:21:84:6d:48:43:b9:d0:e6:7d:d4:a3:4d:00: 9d:b1:22:dc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJBQ0YxMTAvBgNVBAUTKEM5RUQ0Qjc2NzZFM0Y1QTVCMUY4QTZBMEREN0UyMjFC NjNFNTM0QUIwHhcNMjQxMTA2MjAwOTIzWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJiY2NmMy03ZTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqjxjdDkJS9H8SS88hCyCkhDx/WgbZp1vfAA82j+qEZqEJwlLVa+Ox1iTjUmy tpeUa1kgQH75hm6X4EoPbszhd6l/8XhPV5IdElPYxHrzIYX9Ap6onLHBEibI86M8 QpaneDfwDqQ/CLQ+qhQoNN3W1PMnYzsLjPfonIfGUQJyTPeHcN9PdL/7C2BCZMbV QOcfUcLD1888cOUJDgU+Jafvu2NKlE5Armx9USTHBtOv0muKWSPvqH/uj3nxrrET 4PReP5VTzyjJm0NAkbQ5KFWXgK4swEuhvKBEbq545KzbTmebg7/JqpJoV4nKn/bG j0Tw0BnPQeCzHTitLF9gbXNhNwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFiC7c5a K9IAFrd8twaQ/UsTfgaoMB8GA1UdIwQYMBaAFMntS3Z24/WlsfimoN1+Ihtj5TSr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkFDRi81QUM2MkIyQTcz RTMxMUVBOUI1OTQzNkVDNEY5QUUwMi95ZTFMZG5iajlhV3gtS2FnM1g0aUcyUGxO S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3llMUxkbmJqOWFXeC1LYWczWDRpRzJQbE5Lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDJBQ0YvNUFDNjJCMkE3M0UzMTFFQTlCNTk0MzZFQzRGOUFFMDIvM0E4NTFFRTI3 M0U0MTFFQTk1NzJGNzZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnkCgwDQYJKoZIhvcNAQELBQADggEBAEh2STClDfwr38P6 0TvG6So4BIU21hlq3otheLs7GBAtjLomUykLUmZTLQC5VJ4woWOqMU70MxInIYGZ Dp7Mk2xr9HylY6l+RFXxuJs20J+OcyVhC2LiDPv/oE5oPmY+udzTv3qH84vZMoQk M1f6hW1hjIMg7pHi8TGDUFTZVhSXDJQLadTD8zxNW/ZP9Gx3BVKy0BQeqdO9VYTt 5NHyiNdLt5APoPPhQKhtxLFFYW7MquTIyMApFoWrsYMNpNm2+ccaybXs+BgFuoI8 5HTrizZha2yZwTEHeh9XRBF7v8nn1Hy7+qmSe3kL5uS+ZL1VIYRtSEO50OZ91KNN AJ2xItw= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:33 2024 by rpki-client on console-fra.rpki-client.org