$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/3CC77D02EE8811EA9225690DC4F9AE02.roa File: 3CC77D02EE8811EA9225690DC4F9AE02.roa (raw, json) Hash identifier: IS2j0d/zVkxwnqe+1txywwwV0QyYZmwCTkV8FQIqSXQ= Subject key identifier: CC:47:D7:23:35:9B:24:EC:BF:E2:33:0F:F3:B5:30:B5:4F:1E:08:5B Certificate issuer: /CN=A91D6503/serialNumber=933EF72606D9D5B29FE3A41F20C52B20CAF555BA Certificate serial: 0767 Authority key identifier: 93:3E:F7:26:06:D9:D5:B2:9F:E3:A4:1F:20:C5:2B:20:CA:F5:55:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kz73JgbZ1bKf46QfIMUrIMr1Vbo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/3CC77D02EE8811EA9225690DC4F9AE02.roa Signing time: Fri 04 Oct 2024 21:30:27 +0000 ROA not before: Fri 04 Oct 2024 21:30:27 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 132890 IP address blocks: 103.38.192.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.crl rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kz73JgbZ1bKf46QfIMUrIMr1Vbo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1895 (0x767) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6503/serialNumber=933EF72606D9D5B29FE3A41F20C52B20CAF555BA Validity Not Before: Oct 4 21:30:27 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67005e73-870d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:bf:8f:0e:d0:6f:5a:42:c4:f9:56:fa:86:c4: 91:fe:7a:7b:cf:f9:b4:2f:81:76:4c:fc:8a:e8:97: 96:0d:2a:76:9b:6e:c5:55:71:7b:3e:53:f5:cb:5c: 6f:57:5d:7c:ac:0a:65:b2:e1:c1:93:fe:14:43:e7: d3:e2:8a:34:05:1e:c7:8f:b9:46:08:2f:b0:12:21: a8:bb:fc:94:ff:d3:30:12:2c:5c:56:8d:24:00:df: 90:d1:0e:5c:e0:ac:d3:b1:9e:c7:92:0c:95:43:df: dd:c5:f0:ab:68:f1:9d:c5:16:e2:18:3f:71:29:0c: f9:9a:48:4b:c6:28:01:fb:04:2e:07:0a:9e:94:fb: 43:07:40:21:58:4e:35:5c:39:7e:7a:30:e3:b7:83: c0:59:94:24:8f:ce:ce:05:ca:0c:98:58:90:7f:44: 70:54:d9:f4:55:cf:1e:d4:1c:df:9b:6f:01:35:f6: fd:0c:5e:c9:57:fd:15:a5:69:d3:ae:37:0e:57:71: e9:55:8f:c7:69:76:4d:f0:96:77:77:33:2b:d4:a1: d8:b3:20:28:9e:59:b0:3a:e3:f3:3f:8c:dc:8c:f9: ab:a3:d1:ba:93:a5:c0:04:8f:06:6c:a3:6f:43:78: 93:78:82:b6:37:05:e9:48:3d:e3:b7:28:1e:9f:e5: 74:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:47:D7:23:35:9B:24:EC:BF:E2:33:0F:F3:B5:30:B5:4F:1E:08:5B X509v3 Authority Key Identifier: keyid:93:3E:F7:26:06:D9:D5:B2:9F:E3:A4:1F:20:C5:2B:20:CA:F5:55:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kz73JgbZ1bKf46QfIMUrIMr1Vbo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/3CC77D02EE8811EA9225690DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.38.192.0/22 Signature Algorithm: sha256WithRSAEncryption 96:55:f4:73:55:df:98:8e:08:ac:bc:3e:9f:8c:97:90:f5:08: 41:61:e9:fa:3d:ee:96:b7:6e:f0:6b:0a:8a:f6:b9:9a:1b:69: 0a:ef:68:32:98:6b:89:ee:25:f9:32:76:83:49:9c:20:a5:78: bb:21:f7:b8:52:0a:38:a7:03:5e:d5:f8:83:90:e0:21:6b:26: 6d:25:28:8d:a9:46:71:85:6d:8d:ad:78:4a:b4:f3:a4:4a:4e: d1:04:c1:ef:ac:33:91:8c:9d:e4:b9:7c:94:ba:12:0d:a2:2f: c7:f3:b8:af:74:2f:31:02:69:1c:97:07:c4:ab:bb:39:80:ed: 16:fd:5c:f5:75:63:e8:d8:e8:3b:86:f6:cd:2e:83:33:22:47: 30:15:b1:ab:9b:26:a2:9a:8e:ba:10:b3:6d:67:ed:01:a8:b1: 3a:eb:b8:5d:72:66:13:a4:38:53:05:82:c2:51:fe:63:94:4f: a5:eb:7d:e0:90:b5:79:ad:1a:84:ce:dc:5d:83:72:f3:76:54: cf:e0:05:e5:d4:7e:32:9e:a2:5f:01:ce:39:29:c5:ef:3e:e8: fe:55:02:3e:6e:ed:b8:16:00:3e:d7:73:da:4b:c1:f7:6c:64: 4f:ec:35:4d:2b:98:f4:5b:6e:41:a0:6f:6a:b1:8c:da:88:ee: 54:d3:b2:18 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB2cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY1MDMxMTAvBgNVBAUTKDkzM0VGNzI2MDZEOUQ1QjI5RkUzQTQxRjIwQzUyQjIw Q0FGNTU1QkEwHhcNMjQxMDA0MjEzMDI3WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzAwNWU3My04NzBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA47+PDtBvWkLE+Vb6hsSR/np7z/m0L4F2TPyK6JeWDSp2m27FVXF7PlP1y1xv V118rAplsuHBk/4UQ+fT4oo0BR7Hj7lGCC+wEiGou/yU/9MwEixcVo0kAN+Q0Q5c 4KzTsZ7HkgyVQ9/dxfCraPGdxRbiGD9xKQz5mkhLxigB+wQuBwqelPtDB0AhWE41 XDl+ejDjt4PAWZQkj87OBcoMmFiQf0RwVNn0Vc8e1Bzfm28BNfb9DF7JV/0VpWnT rjcOV3HpVY/HaXZN8JZ3dzMr1KHYsyAonlmwOuPzP4zcjPmro9G6k6XABI8GbKNv Q3iTeIK2NwXpSD3jtygen+V0mQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMxH1yM1 myTsv+IzD/O1MLVPHghbMB8GA1UdIwQYMBaAFJM+9yYG2dWyn+OkHyDFKyDK9VW6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjUwMy8wMTU0QjRCNkVF ODcxMUVBQjUyQTVDMDlDNEY5QUUwMi9rejczSmdiWjFiS2Y0NlFmSU1VcklNcjFW Ym8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t6NzNKZ2JaMWJLZjQ2UWZJTVVySU1yMVZiby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDY1MDMvMDE1NEI0QjZFRTg3MTFFQUI1MkE1QzA5QzRGOUFFMDIvM0NDNzdEMDJF RTg4MTFFQTkyMjU2OTBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnJsAwDQYJKoZIhvcNAQELBQADggEBAJZV9HNV35iOCKy8 Pp+Ml5D1CEFh6fo97pa3bvBrCor2uZobaQrvaDKYa4nuJfkydoNJnCCleLsh97hS CjinA17V+IOQ4CFrJm0lKI2pRnGFbY2teEq086RKTtEEwe+sM5GMneS5fJS6Eg2i L8fzuK90LzECaRyXB8SruzmA7Rb9XPV1Y+jY6DuG9s0ugzMiRzAVsaubJqKajroQ s21n7QGosTrruF1yZhOkOFMFgsJR/mOUT6XrfeCQtXmtGoTO3F2DcvN2VM/gBeXU fjKeol8Bzjkpxe8+6P5VAj5u7bgWAD7Xc9pLwfdsZE/sNU0rmPRbbkGgb2qxjNqI 7lTTshg= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:13 2024 by rpki-client on console-fra.rpki-client.org