$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2089/E1C4A41E4CE811ECBD05FA7CC4F9AE02/3C4374804CEC11ECAE6AB280C4F9AE02.roa File: 3C4374804CEC11ECAE6AB280C4F9AE02.roa (raw, json) Hash identifier: mJjeCtyHxCNosF5HfwQ7nQB51tUpTuQ6NkCRpAsEJCM= Subject key identifier: FE:E1:A1:A2:AF:16:DB:85:FF:48:82:05:29:A7:A8:27:27:B6:B0:C1 Certificate issuer: /CN=A91F2089/serialNumber=F14D6C3D3DE6CB1074F7A2E905D9F85451045A65 Certificate serial: 0341 Authority key identifier: F1:4D:6C:3D:3D:E6:CB:10:74:F7:A2:E9:05:D9:F8:54:51:04:5A:65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8U1sPT3myxB096LpBdn4VFEEWmU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2089/E1C4A41E4CE811ECBD05FA7CC4F9AE02/3C4374804CEC11ECAE6AB280C4F9AE02.roa Signing time: Tue 07 Nov 2023 02:34:11 +0000 ROA not before: Tue 07 Nov 2023 02:34:11 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 63991 IP address blocks: 103.176.228.0/23 maxlen: 24 2400:36a0::/32 maxlen: 32 2400:36a0::/48 maxlen: 48 2400:36a0:3c::/48 maxlen: 48 2400:36a0:3f::/48 maxlen: 48 2400:36a0:54::/48 maxlen: 48 2400:36a0:80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2089/E1C4A41E4CE811ECBD05FA7CC4F9AE02/8U1sPT3myxB096LpBdn4VFEEWmU.crl rsync://rpki.apnic.net/member_repository/A91F2089/E1C4A41E4CE811ECBD05FA7CC4F9AE02/8U1sPT3myxB096LpBdn4VFEEWmU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8U1sPT3myxB096LpBdn4VFEEWmU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:33:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 833 (0x341) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2089/serialNumber=F14D6C3D3DE6CB1074F7A2E905D9F85451045A65 Validity Not Before: Nov 7 02:34:11 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6549a223-6d41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:28:dd:46:46:1d:f4:68:49:fd:37:fd:fc:ef: 41:56:89:be:eb:9c:c4:4a:73:49:e3:5f:45:0d:ee: 56:13:81:b4:eb:ec:f2:41:b9:39:1a:b1:16:63:a2: a9:33:8e:49:62:64:5a:8f:33:2b:a2:3c:38:48:4a: 73:d4:0e:92:09:17:d9:36:14:a0:b2:e0:23:65:b4: 14:e6:a1:65:a4:b7:7b:a5:37:74:dd:f5:86:e0:dd: 90:9c:95:5f:cb:1d:b7:78:70:d4:a7:87:49:f0:3e: b1:5e:e4:a6:3f:cb:6e:14:96:bf:8e:6d:93:0f:1c: b4:d8:ea:83:18:88:86:2f:9d:7f:ca:c4:f9:71:e5: ce:fe:63:ba:65:0d:98:86:ac:c9:a4:8e:a4:f9:5f: 53:8d:5b:0d:80:eb:99:ac:4e:df:dc:71:19:ec:bb: 61:0f:7e:26:5f:7c:f4:4a:09:38:17:25:a4:58:e0: 8b:2f:ba:b4:02:c9:81:c0:af:32:1e:f8:8b:59:14: fb:a2:d0:a7:9d:58:39:df:b8:88:26:7e:16:bd:77: db:a5:2d:4f:15:3c:51:c8:a6:1d:92:f6:da:80:7a: 48:58:99:55:c0:aa:a7:30:6c:bc:0f:de:80:ce:cb: ba:c1:6b:cb:bf:d0:bc:43:9f:17:1e:d9:ed:08:1d: 78:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:E1:A1:A2:AF:16:DB:85:FF:48:82:05:29:A7:A8:27:27:B6:B0:C1 X509v3 Authority Key Identifier: keyid:F1:4D:6C:3D:3D:E6:CB:10:74:F7:A2:E9:05:D9:F8:54:51:04:5A:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2089/E1C4A41E4CE811ECBD05FA7CC4F9AE02/8U1sPT3myxB096LpBdn4VFEEWmU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8U1sPT3myxB096LpBdn4VFEEWmU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2089/E1C4A41E4CE811ECBD05FA7CC4F9AE02/3C4374804CEC11ECAE6AB280C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.176.228.0/23 IPv6: 2400:36a0::/32 Signature Algorithm: sha256WithRSAEncryption 90:43:1f:cc:31:0a:3c:b7:3b:f5:a5:21:c4:3b:21:ee:fa:30: 2b:f7:b4:2a:2d:82:ce:c2:6d:7c:3a:a0:34:d5:45:e0:8d:a8: 9a:ea:83:fe:fb:78:61:4f:dc:dc:22:cc:d6:3a:71:74:0a:ba: c0:f9:0f:ba:5d:cf:12:0c:34:f7:4e:46:9f:67:f1:4d:ae:3c: fc:dd:f0:58:73:0f:f2:9e:83:9f:93:e4:06:be:15:2d:56:a8: d4:03:99:00:ab:ed:74:6f:2a:71:f4:87:81:b7:6f:86:74:ab: e6:f1:3a:17:5a:66:0f:52:22:b4:d4:14:41:82:2e:56:fe:cd: db:43:6d:d8:51:a4:1e:a8:5e:ee:d5:8d:67:81:24:da:e3:12: 4f:f0:de:c2:05:36:c5:1d:46:c8:a2:58:84:93:1c:e0:cf:bb: 78:62:f2:2a:0a:ea:2a:73:b6:02:0b:f8:cf:3b:18:87:2e:18: 8d:e7:c6:c5:12:44:99:65:42:b4:33:07:22:e0:52:a3:af:10: 7e:d8:ec:3b:02:ec:70:fd:20:08:de:2e:10:7c:c1:83:21:49: c0:ad:ce:23:6c:f5:e0:c4:3f:c0:75:09:20:68:34:9d:e9:6b: 19:df:e6:55:c5:10:21:2b:1c:2b:bf:69:d2:e5:b3:20:16:d7: 9d:cc:74:c9 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICA0EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjIwODkxMTAvBgNVBAUTKEYxNEQ2QzNEM0RFNkNCMTA3NEY3QTJFOTA1RDlGODU0 NTEwNDVBNjUwHhcNMjMxMTA3MDIzNDExWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQ5YTIyMy02ZDQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8CjdRkYd9GhJ/Tf9/O9BVom+65zESnNJ419FDe5WE4G06+zyQbk5GrEWY6Kp M45JYmRajzMrojw4SEpz1A6SCRfZNhSgsuAjZbQU5qFlpLd7pTd03fWG4N2QnJVf yx23eHDUp4dJ8D6xXuSmP8tuFJa/jm2TDxy02OqDGIiGL51/ysT5ceXO/mO6ZQ2Y hqzJpI6k+V9TjVsNgOuZrE7f3HEZ7LthD34mX3z0Sgk4FyWkWOCLL7q0AsmBwK8y HviLWRT7otCnnVg537iIJn4WvXfbpS1PFTxRyKYdkvbagHpIWJlVwKqnMGy8D96A zsu6wWvLv9C8Q58XHtntCB142QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFP7hoaKv FtuF/0iCBSmnqCcntrDBMB8GA1UdIwQYMBaAFPFNbD095ssQdPei6QXZ+FRRBFpl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjA4OS9FMUM0QTQxRTRD RTgxMUVDQkQwNUZBN0NDNEY5QUUwMi84VTFzUFQzbXl4QjA5NkxwQmRuNFZGRUVX bVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhVMXNQVDNteXhCMDk2THBCZG40VkZFRVdtVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjIwODkvRTFDNEE0MUU0Q0U4MTFFQ0JEMDVGQTdDQzRGOUFFMDIvM0M0Mzc0ODA0 Q0VDMTFFQ0FFNkFCMjgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnsOQwDQQCAAIwBwMFACQANqAwDQYJKoZIhvcNAQELBQAD ggEBAJBDH8wxCjy3O/WlIcQ7Ie76MCv3tCotgs7CbXw6oDTVReCNqJrqg/77eGFP 3NwizNY6cXQKusD5D7pdzxIMNPdORp9n8U2uPPzd8FhzD/Keg5+T5Aa+FS1WqNQD mQCr7XRvKnH0h4G3b4Z0q+bxOhdaZg9SIrTUFEGCLlb+zdtDbdhRpB6oXu7VjWeB JNrjEk/w3sIFNsUdRsiiWISTHODPu3hi8ioK6ipztgIL+M87GIcuGI3nxsUSRJll QrQzByLgUqOvEH7Y7DsC7HD9IAjeLhB8wYMhScCtziNs9eDEP8B1CSBoNJ3paxnf 5lXFECErHCu/adLlsyAW153MdMk= -----END CERTIFICATE-----Generated at Sun May 19 03:38:16 2024 by rpki-client on console-ams.rpki-client.org