$ rpki-client -vvf rpki.apnic.net/member_repository/A91E54CF/D8F3ACACCC8F11EABC1F1442C4F9AE02/3443D714D46111ECB708EA24C4F9AE02.roa File: 3443D714D46111ECB708EA24C4F9AE02.roa (raw, json) Hash identifier: cLcDxJaeMDwKIqi4j9iCoiD5WtzTHERGSbREs6JVCus= Subject key identifier: D0:82:A9:52:DB:A4:78:53:BA:20:AC:82:4B:DC:ED:0A:E8:91:C7:74 Certificate issuer: /CN=A91E54CF/serialNumber=C1BECF97CA95E06DC06E00C239F62CC6942416D1 Certificate serial: 07B3 Authority key identifier: C1:BE:CF:97:CA:95:E0:6D:C0:6E:00:C2:39:F6:2C:C6:94:24:16:D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wb7Pl8qV4G3AbgDCOfYsxpQkFtE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E54CF/D8F3ACACCC8F11EABC1F1442C4F9AE02/3443D714D46111ECB708EA24C4F9AE02.roa Signing time: Fri 02 Aug 2024 21:59:48 +0000 ROA not before: Fri 02 Aug 2024 21:59:48 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 132325 IP address blocks: 103.70.224.0/22 maxlen: 22 103.70.224.0/24 maxlen: 24 103.70.225.0/24 maxlen: 24 103.70.226.0/24 maxlen: 24 103.70.227.0/24 maxlen: 24 182.255.60.0/22 maxlen: 22 182.255.60.0/24 maxlen: 24 182.255.61.0/24 maxlen: 24 182.255.62.0/24 maxlen: 24 182.255.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E54CF/D8F3ACACCC8F11EABC1F1442C4F9AE02/wb7Pl8qV4G3AbgDCOfYsxpQkFtE.crl rsync://rpki.apnic.net/member_repository/A91E54CF/D8F3ACACCC8F11EABC1F1442C4F9AE02/wb7Pl8qV4G3AbgDCOfYsxpQkFtE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wb7Pl8qV4G3AbgDCOfYsxpQkFtE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:39:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1971 (0x7b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E54CF/serialNumber=C1BECF97CA95E06DC06E00C239F62CC6942416D1 Validity Not Before: Aug 2 21:59:48 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66ad56d4-eb26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ec:6a:cd:52:1d:9a:eb:b1:ef:f4:dd:8a:66: cb:d2:a1:f9:1d:65:ba:65:42:a4:ea:9c:81:bb:2b: 47:db:21:53:e3:78:9a:e0:ff:b6:f9:fc:bf:71:77: a0:bd:80:27:a9:2a:11:15:c9:ba:c8:99:9d:27:47: 38:90:30:b9:b3:5d:2c:a3:0f:90:b2:d2:04:4d:8d: b2:80:68:f0:b5:d7:8e:62:d8:5c:71:17:10:94:47: b5:9a:c8:f2:71:5f:87:af:a4:86:4c:70:a4:54:3d: 22:53:64:0c:63:cc:7f:d5:42:e4:d2:da:7b:93:67: 5a:aa:09:b5:70:7f:fe:82:8b:97:f6:bb:7b:f7:1e: d0:14:66:7b:7b:15:6e:35:86:f9:19:4a:2d:e8:1e: bd:b6:3b:d0:30:a3:02:a6:ef:92:67:cf:1f:15:b6: 9f:6a:07:3f:81:04:f0:81:bd:44:f8:22:d3:5e:fc: e2:ba:3f:fe:c5:33:16:41:5d:01:d2:82:ad:57:39: 36:c4:29:74:c9:49:ae:a0:eb:81:6a:fa:77:31:70: 6c:2c:6d:69:f4:ec:62:bc:24:99:95:56:21:dd:31: e6:13:cc:b6:fd:c9:5a:82:d6:58:83:47:5f:99:93: 0c:1b:03:95:cf:da:4d:5b:86:62:ef:cf:6a:30:48: 3f:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:82:A9:52:DB:A4:78:53:BA:20:AC:82:4B:DC:ED:0A:E8:91:C7:74 X509v3 Authority Key Identifier: keyid:C1:BE:CF:97:CA:95:E0:6D:C0:6E:00:C2:39:F6:2C:C6:94:24:16:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E54CF/D8F3ACACCC8F11EABC1F1442C4F9AE02/wb7Pl8qV4G3AbgDCOfYsxpQkFtE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wb7Pl8qV4G3AbgDCOfYsxpQkFtE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E54CF/D8F3ACACCC8F11EABC1F1442C4F9AE02/3443D714D46111ECB708EA24C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.70.224.0/22 182.255.60.0/22 Signature Algorithm: sha256WithRSAEncryption 88:8e:68:ee:e2:5d:c6:24:01:31:70:b4:77:ff:58:4f:51:e4: 14:59:7f:4e:72:28:b3:a7:ec:c0:b9:c6:88:f0:6c:7a:5b:9e: 00:d4:8e:82:35:c7:07:14:48:78:dd:6c:32:ab:36:6a:d7:97: 2c:cf:55:b0:b0:7d:6a:3f:f0:5b:3c:39:55:38:9b:2d:95:84: 09:67:b0:6d:69:30:90:2f:24:78:c3:3e:44:18:16:52:48:07: fd:e4:3b:26:4b:06:16:9f:95:71:9b:5a:75:0d:7d:dd:74:b1: 0a:2a:74:fe:13:d3:59:28:37:38:20:6f:69:da:df:94:f5:da: c0:f8:39:9a:8b:6a:94:79:9d:ba:a0:a3:a9:ad:27:bf:ba:24: 3c:48:f7:96:89:3b:7e:96:98:37:86:7c:f0:b2:52:a3:3b:85: e6:b2:c5:4c:6a:56:c3:64:18:59:f2:a7:2b:06:a4:2f:29:91: f7:67:5f:a0:1a:01:b2:b8:53:22:6d:e6:54:97:f7:53:47:87: 6e:5d:c9:a0:26:d1:56:87:31:79:e3:c9:6b:f3:64:80:7f:08: 17:60:e8:1b:da:ef:ae:62:86:c3:22:c8:9c:a3:a0:1f:48:62: 5a:e4:38:cd:6f:83:c4:a6:1d:72:99:2a:4d:f7:24:5c:4b:71: ae:11:e5:b2 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICB7MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU0Q0YxMTAvBgNVBAUTKEMxQkVDRjk3Q0E5NUUwNkRDMDZFMDBDMjM5RjYyQ0M2 OTQyNDE2RDEwHhcNMjQwODAyMjE1OTQ4WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFkNTZkNC1lYjI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwOxqzVIdmuux7/TdimbL0qH5HWW6ZUKk6pyBuytH2yFT43ia4P+2+fy/cXeg vYAnqSoRFcm6yJmdJ0c4kDC5s10sow+QstIETY2ygGjwtdeOYthccRcQlEe1msjy cV+Hr6SGTHCkVD0iU2QMY8x/1ULk0tp7k2daqgm1cH/+gouX9rt79x7QFGZ7exVu NYb5GUot6B69tjvQMKMCpu+SZ88fFbafagc/gQTwgb1E+CLTXvziuj/+xTMWQV0B 0oKtVzk2xCl0yUmuoOuBavp3MXBsLG1p9OxivCSZlVYh3THmE8y2/clagtZYg0df mZMMGwOVz9pNW4Zi789qMEg/FwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNCCqVLb pHhTuiCsgkvc7Qrokcd0MB8GA1UdIwQYMBaAFMG+z5fKleBtwG4Awjn2LMaUJBbR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTRDRi9EOEYzQUNBQ0ND OEYxMUVBQkMxRjE0NDJDNEY5QUUwMi93YjdQbDhxVjRHM0FiZ0RDT2ZZc3hwUWtG dEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3diN1BsOHFWNEczQWJnRENPZllzeHBRa0Z0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTU0Q0YvRDhGM0FDQUNDQzhGMTFFQUJDMUYxNDQyQzRGOUFFMDIvMzQ0M0Q3MTRE NDYxMTFFQ0I3MDhFQTI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnRuADBAK2/zwwDQYJKoZIhvcNAQELBQADggEBAIiOaO7i XcYkATFwtHf/WE9R5BRZf05yKLOn7MC5xojwbHpbngDUjoI1xwcUSHjdbDKrNmrX lyzPVbCwfWo/8Fs8OVU4my2VhAlnsG1pMJAvJHjDPkQYFlJIB/3kOyZLBhaflXGb WnUNfd10sQoqdP4T01koNzggb2na35T12sD4OZqLapR5nbqgo6mtJ7+6JDxI95aJ O36WmDeGfPCyUqM7heayxUxqVsNkGFnypysGpC8pkfdnX6AaAbK4UyJt5lSX91NH h25dyaAm0VaHMXnjyWvzZIB/CBdg6Bva765ihsMiyJyjoB9IYlrkOM1vg8SmHXKZ Kk33JFxLca4R5bI= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:48 2024 by rpki-client on console-ams.rpki-client.org