$ rpki-client -vvf rpki.apnic.net/member_repository/A91126F4/3B8E02E476B711EDB6ED5B5AC4F9AE02/0D086D9476BA11EDB6CB335CC4F9AE02.roa File: 0D086D9476BA11EDB6CB335CC4F9AE02.roa (raw, json) Hash identifier: 3vEc00Lhvt9vpvk+3SYKGQbU7UkYV0E+RqierHIRRXs= Subject key identifier: A9:D1:DB:CF:F1:86:E2:4F:63:AF:6B:61:7B:C6:40:5D:E7:95:12:1B Certificate issuer: /CN=A91126F4/serialNumber=B66A92770F98ED6759C8E457E8F03F104D975606 Certificate serial: C3 Authority key identifier: B6:6A:92:77:0F:98:ED:67:59:C8:E4:57:E8:F0:3F:10:4D:97:56:06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tmqSdw-Y7WdZyORX6PA_EE2XVgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91126F4/3B8E02E476B711EDB6ED5B5AC4F9AE02/0D086D9476BA11EDB6CB335CC4F9AE02.roa Signing time: Wed 13 Dec 2023 04:56:33 +0000 ROA not before: Wed 13 Dec 2023 04:56:33 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 150665 IP address blocks: 103.108.82.0/24 maxlen: 24 2001:df1:a4c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91126F4/3B8E02E476B711EDB6ED5B5AC4F9AE02/tmqSdw-Y7WdZyORX6PA_EE2XVgY.crl rsync://rpki.apnic.net/member_repository/A91126F4/3B8E02E476B711EDB6ED5B5AC4F9AE02/tmqSdw-Y7WdZyORX6PA_EE2XVgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tmqSdw-Y7WdZyORX6PA_EE2XVgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:12:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 195 (0xc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91126F4/serialNumber=B66A92770F98ED6759C8E457E8F03F104D975606 Validity Not Before: Dec 13 04:56:33 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65793981-db42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b2:08:6b:36:1b:86:c3:a7:4e:78:f3:8b:a8: 44:31:b1:c1:05:68:c4:3f:8f:13:38:24:5b:05:43: 5d:44:44:1c:55:36:90:f5:73:1d:16:ad:4c:17:c9: 3a:cf:f3:6f:af:fd:87:a1:14:50:c0:95:0b:e2:87: c5:5f:ab:a9:8d:e3:f9:3f:a1:9f:6a:42:12:45:73: 5f:3a:b5:1f:38:20:79:53:99:20:1b:57:c8:1c:36: 7c:ac:b4:b3:83:e3:24:41:03:8c:c0:d9:42:fa:de: 19:25:47:37:d0:5a:d9:da:b2:65:73:6c:6d:33:3f: 9c:ba:a0:9e:cf:4a:67:36:0e:7d:00:bd:2d:2b:19: 34:e2:1e:a5:17:44:91:96:28:7b:41:a0:11:27:b7: d5:1a:01:14:14:ce:90:69:f3:ab:b3:88:7a:74:c6: 49:50:c4:ea:23:c0:0d:6f:39:5e:26:9f:0e:c9:81: bf:37:d9:84:8a:56:c0:e9:d2:20:b3:3d:95:d5:08: c4:31:c2:cb:d6:f7:bd:4f:69:4b:41:d9:6e:b9:3c: d8:4b:ae:a0:30:28:d1:bc:d7:d7:97:f9:e2:85:30: 93:ea:bf:6f:5b:da:0a:9b:65:df:8f:49:a5:cd:96: b1:fb:46:e5:5f:1e:70:70:33:c0:0f:ca:f4:34:40: f6:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:D1:DB:CF:F1:86:E2:4F:63:AF:6B:61:7B:C6:40:5D:E7:95:12:1B X509v3 Authority Key Identifier: keyid:B6:6A:92:77:0F:98:ED:67:59:C8:E4:57:E8:F0:3F:10:4D:97:56:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91126F4/3B8E02E476B711EDB6ED5B5AC4F9AE02/tmqSdw-Y7WdZyORX6PA_EE2XVgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tmqSdw-Y7WdZyORX6PA_EE2XVgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91126F4/3B8E02E476B711EDB6ED5B5AC4F9AE02/0D086D9476BA11EDB6CB335CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.108.82.0/24 IPv6: 2001:df1:a4c0::/48 Signature Algorithm: sha256WithRSAEncryption 74:a2:5f:b7:bf:6d:b1:d9:cb:bf:12:8a:60:de:7f:74:5b:94: 2a:6b:ec:ba:4d:33:70:d6:f5:0d:69:49:39:c2:4f:7a:18:64: 92:7d:7f:f4:88:01:df:a3:40:cd:5c:62:8c:36:6b:f4:e7:e0: ae:d3:15:24:dc:33:e6:b4:a1:e6:b8:78:38:a9:82:43:fb:9e: 6f:68:45:cc:d8:34:8c:10:97:e5:9a:5c:6a:b6:0c:be:38:08: 09:2a:fc:fa:be:b7:ed:c7:e1:46:ce:e0:84:2d:dd:92:4c:ff: e9:26:ce:d5:aa:e2:88:57:e3:a7:36:8f:6a:51:9f:8b:e6:6e: 0b:cb:95:32:78:25:84:ba:69:d9:80:45:88:ea:d5:fa:2c:50: 69:09:65:f2:19:0a:2d:d9:c8:32:bb:95:3f:9d:83:ea:5f:9c: fe:31:02:26:0b:1a:76:f7:65:09:58:2f:ed:60:3a:e2:82:da: 04:ce:31:7f:f1:93:8b:d8:6e:6f:f7:e9:97:be:bf:28:bb:64: 6b:e6:f5:bb:0c:5a:c1:4a:b3:53:40:b4:71:3a:74:cf:ed:f3: d7:3f:27:f9:67:aa:87:22:b6:4d:2b:1e:7d:5c:4b:1a:2b:73: 42:1a:fc:c2:52:6d:90:a0:84:3b:80:f0:be:51:c6:c0:09:57: b4:1f:d1:ac -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI2RjQxMTAvBgNVBAUTKEI2NkE5Mjc3MEY5OEVENjc1OUM4RTQ1N0U4RjAzRjEw NEQ5NzU2MDYwHhcNMjMxMjEzMDQ1NjMzWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTc5Mzk4MS1kYjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt7IIazYbhsOnTnjzi6hEMbHBBWjEP48TOCRbBUNdREQcVTaQ9XMdFq1MF8k6 z/Nvr/2HoRRQwJUL4ofFX6upjeP5P6GfakISRXNfOrUfOCB5U5kgG1fIHDZ8rLSz g+MkQQOMwNlC+t4ZJUc30FrZ2rJlc2xtMz+cuqCez0pnNg59AL0tKxk04h6lF0SR lih7QaARJ7fVGgEUFM6QafOrs4h6dMZJUMTqI8ANbzleJp8OyYG/N9mEilbA6dIg sz2V1QjEMcLL1ve9T2lLQdluuTzYS66gMCjRvNfXl/nihTCT6r9vW9oKm2Xfj0ml zZax+0blXx5wcDPAD8r0NED2aQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFKnR28/x huJPY69rYXvGQF3nlRIbMB8GA1UdIwQYMBaAFLZqkncPmO1nWcjkV+jwPxBNl1YG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjZGNC8zQjhFMDJFNDc2 QjcxMUVEQjZFRDVCNUFDNEY5QUUwMi90bXFTZHctWTdXZFp5T1JYNlBBX0VFMlhW Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RtcVNkdy1ZN1dkWnlPUlg2UEFfRUUyWFZnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTI2RjQvM0I4RTAyRTQ3NkI3MTFFREI2RUQ1QjVBQzRGOUFFMDIvMEQwODZEOTQ3 NkJBMTFFREI2Q0IzMzVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnbFIwDwQCAAIwCQMHACABDfGkwDANBgkqhkiG9w0BAQsF AAOCAQEAdKJft79tsdnLvxKKYN5/dFuUKmvsuk0zcNb1DWlJOcJPehhkkn1/9IgB 36NAzVxijDZr9OfgrtMVJNwz5rSh5rh4OKmCQ/ueb2hFzNg0jBCX5ZpcarYMvjgI CSr8+r637cfhRs7ghC3dkkz/6SbO1ariiFfjpzaPalGfi+ZuC8uVMnglhLpp2YBF iOrV+ixQaQll8hkKLdnIMruVP52D6l+c/jECJgsadvdlCVgv7WA64oLaBM4xf/GT i9hub/fpl76/KLtka+b1uwxawUqzU0C0cTp0z+3z1z8n+WeqhyK2TSsefVxLGitz Qhr8wlJtkKCEO4DwvlHGwAlXtB/RrA== -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:43 2024 by rpki-client on console-fra.rpki-client.org