$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/38E45CE08C2511EDB64DB410C4F9AE02.roa File: 38E45CE08C2511EDB64DB410C4F9AE02.roa (raw, json) Hash identifier: P4Z6BspdcfvH0rYX+TT2qY8cpf0u8Fd6+AJpGOvZqU8= Subject key identifier: CC:AF:29:66:A2:26:2B:16:9C:A5:1B:CE:FF:49:1F:0C:75:9F:2E:BA Certificate issuer: /CN=A91DE2AE/serialNumber=697620515E7B1EE8AC7F3F6D13BEAEBA62C4EDA9 Certificate serial: 0170 Authority key identifier: 69:76:20:51:5E:7B:1E:E8:AC:7F:3F:6D:13:BE:AE:BA:62:C4:ED:A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aXYgUV57Huisfz9tE76uumLE7ak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/38E45CE08C2511EDB64DB410C4F9AE02.roa Signing time: Sun 03 Nov 2024 02:36:10 +0000 ROA not before: Sun 03 Nov 2024 02:36:10 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 131471 IP address blocks: 103.152.42.0/24 maxlen: 24 103.152.43.0/24 maxlen: 24 2001:df7:1f80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/aXYgUV57Huisfz9tE76uumLE7ak.crl rsync://rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/aXYgUV57Huisfz9tE76uumLE7ak.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aXYgUV57Huisfz9tE76uumLE7ak.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:20:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 368 (0x170) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE2AE/serialNumber=697620515E7B1EE8AC7F3F6D13BEAEBA62C4EDA9 Validity Not Before: Nov 3 02:36:10 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=6726e19a-772d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e0:5c:38:ac:61:90:e6:44:20:93:ca:88:88: c7:b3:9a:4b:2f:74:53:d5:99:e7:96:f6:8c:7f:e5: c1:ff:ba:40:c6:a0:8a:6f:60:33:19:c8:a8:04:b0: bd:54:59:e1:0a:32:bd:a7:7c:b1:1c:84:aa:e7:3a: e0:39:11:a3:ff:45:f6:1f:0f:c4:97:e3:e9:27:9e: dc:01:e9:99:4f:d6:9e:32:6c:b7:3d:30:c8:65:0b: 38:6a:4a:50:71:73:c6:f4:37:07:32:d1:f1:78:c0: 60:2f:1d:d9:9d:b9:49:5e:ba:8f:58:8f:84:51:98: 8f:c4:70:4f:4b:99:18:f7:93:5e:4f:b0:9b:51:28: 01:26:54:c5:23:36:da:3d:5d:ea:30:01:b0:58:16: 33:41:de:df:1b:e1:46:cc:c5:92:12:50:25:e0:78: 77:29:82:10:97:b3:9f:e2:f7:db:be:21:98:15:1e: 41:89:87:8a:1b:91:6b:54:fd:1f:94:5a:95:b4:b8: 6f:2a:12:db:3d:18:84:ca:f1:b9:55:db:13:47:01: fd:71:93:35:cd:b2:50:23:59:4e:c8:0c:63:b0:15: ae:5d:d0:e9:ad:05:13:d8:8f:63:9c:b5:55:cd:a0: e3:59:50:15:83:20:53:2f:57:59:97:5f:df:3c:b3: 69:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:AF:29:66:A2:26:2B:16:9C:A5:1B:CE:FF:49:1F:0C:75:9F:2E:BA X509v3 Authority Key Identifier: keyid:69:76:20:51:5E:7B:1E:E8:AC:7F:3F:6D:13:BE:AE:BA:62:C4:ED:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/aXYgUV57Huisfz9tE76uumLE7ak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aXYgUV57Huisfz9tE76uumLE7ak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/38E45CE08C2511EDB64DB410C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.42.0/23 IPv6: 2001:df7:1f80::/48 Signature Algorithm: sha256WithRSAEncryption 65:9f:da:bd:6a:9b:07:d0:be:de:77:66:cc:85:6d:02:ea:f8: 2f:04:1b:57:b3:50:9b:5d:16:e4:e7:e7:60:cd:72:4b:dd:d1: 9d:4a:dd:f2:db:d9:0c:d3:70:bf:41:dd:bf:0d:cb:4f:ed:8f: 5b:53:e9:2a:d9:a0:2e:13:24:de:a8:46:18:01:6c:c5:87:c6: 55:ba:3b:1d:81:f9:93:49:54:21:84:a0:27:56:ab:b9:43:76: a4:2b:88:e4:79:ca:e2:e6:06:6b:42:5e:d7:6f:a0:78:68:fa: 3f:53:a9:05:29:80:05:db:b3:71:b8:2c:6f:8f:5e:28:69:ed: b6:e4:1a:da:c6:61:0f:b6:b1:c7:57:11:bb:7e:48:55:de:8b: 6b:1a:20:39:4b:40:cb:08:34:e8:90:85:f0:be:49:b0:51:e8: 36:83:af:7d:29:5a:c0:73:fe:eb:d4:76:16:23:6a:f2:6c:a1: 5d:6d:e9:ae:aa:83:69:7c:e1:2a:8a:48:98:35:22:73:4e:b7: fa:c3:c0:eb:0d:9d:c3:8a:5a:09:e6:dd:e5:6b:ee:80:a3:c2: 5b:4c:36:d6:66:b2:0c:82:a2:d0:a8:9b:6f:17:86:c2:58:e4: 3f:ee:47:c8:7d:bf:83:77:99:ba:99:83:d6:38:74:18:d5:02: 71:df:f8:3f -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAXAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REUyQUUxMTAvBgNVBAUTKDY5NzYyMDUxNUU3QjFFRThBQzdGM0Y2RDEzQkVBRUJB NjJDNEVEQTkwHhcNMjQxMTAzMDIzNjEwWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2ZTE5YS03NzJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwOBcOKxhkOZEIJPKiIjHs5pLL3RT1ZnnlvaMf+XB/7pAxqCKb2AzGcioBLC9 VFnhCjK9p3yxHISq5zrgORGj/0X2Hw/El+PpJ57cAemZT9aeMmy3PTDIZQs4akpQ cXPG9DcHMtHxeMBgLx3ZnblJXrqPWI+EUZiPxHBPS5kY95NeT7CbUSgBJlTFIzba PV3qMAGwWBYzQd7fG+FGzMWSElAl4Hh3KYIQl7Of4vfbviGYFR5BiYeKG5FrVP0f lFqVtLhvKhLbPRiEyvG5VdsTRwH9cZM1zbJQI1lOyAxjsBWuXdDprQUT2I9jnLVV zaDjWVAVgyBTL1dZl1/fPLNpVQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFMyvKWai JisWnKUbzv9JHwx1ny66MB8GA1UdIwQYMBaAFGl2IFFeex7orH8/bRO+rrpixO2p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTJBRS9DNzBGRUEyQThD MjAxMUVEQURENUM4MDlDNEY5QUUwMi9hWFlnVVY1N0h1aXNmejl0RTc2dXVtTEU3 YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FYWWdVVjU3SHVpc2Z6OXRFNzZ1dW1MRTdhay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REUyQUUvQzcwRkVBMkE4QzIwMTFFREFERDVDODA5QzRGOUFFMDIvMzhFNDVDRTA4 QzI1MTFFREI2NERCNDEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnmCowDwQCAAIwCQMHACABDfcfgDANBgkqhkiG9w0BAQsF AAOCAQEAZZ/avWqbB9C+3ndmzIVtAur4LwQbV7NQm10W5OfnYM1yS93RnUrd8tvZ DNNwv0Hdvw3LT+2PW1PpKtmgLhMk3qhGGAFsxYfGVbo7HYH5k0lUIYSgJ1aruUN2 pCuI5HnK4uYGa0Je12+geGj6P1OpBSmABduzcbgsb49eKGnttuQa2sZhD7axx1cR u35IVd6LaxogOUtAywg06JCF8L5JsFHoNoOvfSlawHP+69R2FiNq8myhXW3prqqD aXzhKopImDUic063+sPA6w2dw4paCebd5WvugKPCW0w21mayDIKi0KibbxeGwljk P+5HyH2/g3eZupmD1jh0GNUCcd/4Pw== -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:53 2024 by rpki-client on console-ams.rpki-client.org