$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6BFA/40D4B7EC660311EA99AD4F46C4F9AE02/3AFE6DA8F72911EDB956BA86C4F9AE02.roa File: 3AFE6DA8F72911EDB956BA86C4F9AE02.roa (raw, json) Hash identifier: FyzTLc6q4QxjkF8ADy/p1n3nRtCccHutyKoH8IBWzj8= Subject key identifier: 01:37:64:42:A1:43:B2:20:CA:B9:8C:11:E1:BD:80:AE:69:BA:3D:50 Certificate issuer: /CN=A91F6BFA/serialNumber=AA62C79FE18439412C5B02CF4BEB54AB2EBBE188 Certificate serial: 09AF Authority key identifier: AA:62:C7:9F:E1:84:39:41:2C:5B:02:CF:4B:EB:54:AB:2E:BB:E1:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qmLHn-GEOUEsWwLPS-tUqy674Yg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6BFA/40D4B7EC660311EA99AD4F46C4F9AE02/3AFE6DA8F72911EDB956BA86C4F9AE02.roa Signing time: Thu 18 Apr 2024 20:59:16 +0000 ROA not before: Thu 18 Apr 2024 20:59:16 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 142647 IP address blocks: 103.149.32.0/24 maxlen: 24 103.149.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6BFA/40D4B7EC660311EA99AD4F46C4F9AE02/qmLHn-GEOUEsWwLPS-tUqy674Yg.crl rsync://rpki.apnic.net/member_repository/A91F6BFA/40D4B7EC660311EA99AD4F46C4F9AE02/qmLHn-GEOUEsWwLPS-tUqy674Yg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qmLHn-GEOUEsWwLPS-tUqy674Yg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2479 (0x9af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6BFA/serialNumber=AA62C79FE18439412C5B02CF4BEB54AB2EBBE188 Validity Not Before: Apr 18 20:59:16 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=662189a4-672a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:9e:cf:50:90:f5:c7:3f:bb:74:4e:d2:41:50: 1b:4d:06:e1:e1:c2:73:33:b0:f7:fe:ee:b9:6e:6b: 55:4b:d1:be:a0:f7:93:5a:dc:8e:64:31:cd:cb:f9: 2b:f7:55:1d:35:bc:be:3e:f9:cc:8f:3d:c8:6f:86: 9e:29:ab:97:ce:59:eb:82:4d:f8:55:fd:a6:5d:f7: e9:8b:17:34:86:49:5c:b7:76:f6:bc:db:03:5c:5a: 7c:5b:06:d8:20:34:39:4f:3f:37:9d:3b:6b:0b:4e: 53:08:4d:d2:eb:e3:ae:88:7c:4b:9a:3b:50:9f:25: 9f:e1:17:b8:d9:74:a6:fd:4e:92:90:35:ca:13:3b: e4:b3:62:60:f1:9b:22:06:8b:54:9f:70:7a:b9:97: 50:f3:3d:a0:da:0f:de:c9:69:79:2a:c0:3a:9d:58: 2f:c5:e6:46:14:d6:3d:fe:aa:fa:18:51:d1:ed:98: d5:ef:f2:13:ca:ab:22:4e:26:d0:72:75:3e:03:7f: 81:df:10:31:9f:7a:6f:1e:7f:dd:5c:a8:49:8f:27: 39:ea:0f:38:8e:00:d2:e1:52:95:bf:60:d4:b5:5f: 89:c2:74:8d:2a:08:25:6e:42:cc:27:4f:dc:d7:ba: 69:52:cb:83:47:b8:50:a1:46:8e:54:dc:b1:b3:d2: 11:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:37:64:42:A1:43:B2:20:CA:B9:8C:11:E1:BD:80:AE:69:BA:3D:50 X509v3 Authority Key Identifier: keyid:AA:62:C7:9F:E1:84:39:41:2C:5B:02:CF:4B:EB:54:AB:2E:BB:E1:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6BFA/40D4B7EC660311EA99AD4F46C4F9AE02/qmLHn-GEOUEsWwLPS-tUqy674Yg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qmLHn-GEOUEsWwLPS-tUqy674Yg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6BFA/40D4B7EC660311EA99AD4F46C4F9AE02/3AFE6DA8F72911EDB956BA86C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.149.32.0/23 Signature Algorithm: sha256WithRSAEncryption c5:61:c6:5a:3d:1a:00:a5:f2:b8:70:24:b7:f5:2d:15:c8:fd: 03:f9:04:32:5b:92:c6:e1:bd:21:1b:61:c0:8c:aa:1b:98:d7: 44:c8:a9:b6:65:52:c7:69:c0:c9:a8:b9:35:0e:9e:d0:0d:ed: 47:f0:1c:a1:01:b5:ef:e1:db:54:ec:a0:2a:6d:3d:48:30:b5: 11:0e:d7:cc:28:3a:c8:8b:cf:24:57:53:62:dc:2c:28:c6:13: e9:7e:c2:4b:c5:43:73:62:9e:9d:23:40:4e:11:b5:70:d3:95: 84:03:d3:ba:14:df:54:91:07:a2:49:68:d5:3d:66:b9:7b:16: b0:95:79:83:c0:11:af:59:4c:44:26:82:c3:14:83:ba:ff:22: 00:be:f8:3d:9f:3f:0f:82:2b:b4:ac:73:ec:9f:3f:f0:56:3e: 9c:99:9f:94:ad:fa:7c:d3:e3:ab:70:1b:a7:a5:57:49:bc:53: 1a:34:d8:10:70:f2:4f:85:d4:b5:fd:1f:b9:ac:60:6e:73:7b: 5b:12:42:11:17:84:43:0a:1d:d4:0a:be:d7:19:bb:06:7d:cc: f6:20:ef:cc:04:53:52:05:b4:8e:f1:fb:72:cc:9d:65:7b:2a: 90:35:e9:57:da:b6:61:67:3e:8f:02:a4:51:5f:2e:fa:21:61: 0e:51:ef:d2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZCRkExMTAvBgNVBAUTKEFBNjJDNzlGRTE4NDM5NDEyQzVCMDJDRjRCRUI1NEFC MkVCQkUxODgwHhcNMjQwNDE4MjA1OTE2WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjIxODlhNC02NzJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA157PUJD1xz+7dE7SQVAbTQbh4cJzM7D3/u65bmtVS9G+oPeTWtyOZDHNy/kr 91UdNby+PvnMjz3Ib4aeKauXzlnrgk34Vf2mXffpixc0hklct3b2vNsDXFp8WwbY IDQ5Tz83nTtrC05TCE3S6+OuiHxLmjtQnyWf4Re42XSm/U6SkDXKEzvks2Jg8Zsi BotUn3B6uZdQ8z2g2g/eyWl5KsA6nVgvxeZGFNY9/qr6GFHR7ZjV7/ITyqsiTibQ cnU+A3+B3xAxn3pvHn/dXKhJjyc56g84jgDS4VKVv2DUtV+JwnSNKgglbkLMJ0/c 17ppUsuDR7hQoUaOVNyxs9IRUQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAE3ZEKh Q7IgyrmMEeG9gK5puj1QMB8GA1UdIwQYMBaAFKpix5/hhDlBLFsCz0vrVKsuu+GI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkJGQS80MEQ0QjdFQzY2 MDMxMUVBOTlBRDRGNDZDNEY5QUUwMi9xbUxIbi1HRU9VRXNXd0xQUy10VXF5Njc0 WWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FtTEhuLUdFT1VFc1d3TFBTLXRVcXk2NzRZZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjZCRkEvNDBENEI3RUM2NjAzMTFFQTk5QUQ0RjQ2QzRGOUFFMDIvM0FGRTZEQThG NzI5MTFFREI5NTZCQTg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnlSAwDQYJKoZIhvcNAQELBQADggEBAMVhxlo9GgCl8rhw JLf1LRXI/QP5BDJbksbhvSEbYcCMqhuY10TIqbZlUsdpwMmouTUOntAN7UfwHKEB te/h21TsoCptPUgwtREO18woOsiLzyRXU2LcLCjGE+l+wkvFQ3Ninp0jQE4RtXDT lYQD07oU31SRB6JJaNU9Zrl7FrCVeYPAEa9ZTEQmgsMUg7r/IgC++D2fPw+CK7Ss c+yfP/BWPpyZn5St+nzT46twG6elV0m8Uxo02BBw8k+F1LX9H7msYG5ze1sSQhEX hEMKHdQKvtcZuwZ9zPYg78wEU1IFtI7x+3LMnWV7KpA16VfatmFnPo8CpFFfLvoh YQ5R79I= -----END CERTIFICATE-----Generated at Sat May 18 21:24:23 2024 by rpki-client on console-fra.rpki-client.org