$ rpki-client -vvf rpki.apnic.net/member_repository/A911E403/A1CCECFEF8BB11EA87B1DE6BC4F9AE02/71050646F8BC11EA9EC9436CC4F9AE02.roa File: 71050646F8BC11EA9EC9436CC4F9AE02.roa (raw, json) Hash identifier: YzGHsfeeblg8UomF4nvhwZvWUTAdoSinf5QhYl4p8b0= Subject key identifier: 31:A2:D7:95:62:F7:9F:B3:A8:16:8F:DC:88:56:F5:4B:79:9C:E1:EF Certificate issuer: /CN=A911E403/serialNumber=5FE30CAF6F5A32C919D335AA94D0E7333CD05435 Certificate serial: 0759 Authority key identifier: 5F:E3:0C:AF:6F:5A:32:C9:19:D3:35:AA:94:D0:E7:33:3C:D0:54:35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-MMr29aMskZ0zWqlNDnMzzQVDU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E403/A1CCECFEF8BB11EA87B1DE6BC4F9AE02/71050646F8BC11EA9EC9436CC4F9AE02.roa Signing time: Wed 28 Aug 2024 22:00:10 +0000 ROA not before: Wed 28 Aug 2024 22:00:10 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 9268 IP address blocks: 103.153.8.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E403/A1CCECFEF8BB11EA87B1DE6BC4F9AE02/X-MMr29aMskZ0zWqlNDnMzzQVDU.crl rsync://rpki.apnic.net/member_repository/A911E403/A1CCECFEF8BB11EA87B1DE6BC4F9AE02/X-MMr29aMskZ0zWqlNDnMzzQVDU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-MMr29aMskZ0zWqlNDnMzzQVDU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1881 (0x759) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E403/serialNumber=5FE30CAF6F5A32C919D335AA94D0E7333CD05435 Validity Not Before: Aug 28 22:00:10 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66cf9dea-51a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b3:ee:2f:93:d5:8f:07:eb:c3:2e:f7:be:41: 84:56:56:55:6f:d4:b1:b9:31:0a:17:0f:d7:ec:78: fe:d9:80:04:a1:d8:cb:50:d8:2b:ba:aa:03:a5:be: ee:a1:f8:42:25:cd:74:4d:65:84:d7:81:ff:ef:b1: d5:01:46:41:cf:9f:62:94:9f:95:e1:2e:1d:fa:00: f6:50:4e:3b:e8:5b:4f:c9:28:66:d9:05:f9:07:bd: 13:3b:f0:cc:9c:7b:fe:f7:35:cd:b1:46:80:78:f1: 81:c9:1b:e1:ad:1f:f6:2e:5f:7e:ee:db:24:0d:35: 09:4b:ab:47:18:de:34:2e:a3:17:3a:9a:b3:3c:60: 74:68:ca:b6:fe:96:01:d3:fa:c0:9d:cc:1d:cc:80: c7:22:53:c0:5c:93:e5:85:78:23:fe:88:9d:0c:ad: df:02:83:c8:b5:12:66:89:48:d9:d9:7b:bf:f2:b0: d8:e0:69:c1:12:4d:f1:66:5f:03:20:cd:ed:db:08: 1f:97:3b:c4:89:38:4d:d1:54:29:b9:2e:ba:74:64: 95:27:78:a6:a8:dd:80:15:36:bc:a9:3b:29:0b:c1: eb:b5:b8:ea:18:3e:a8:33:1e:01:0f:7e:36:15:af: dc:17:f0:85:f7:86:24:66:bd:ff:03:5b:10:87:bb: e8:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:A2:D7:95:62:F7:9F:B3:A8:16:8F:DC:88:56:F5:4B:79:9C:E1:EF X509v3 Authority Key Identifier: keyid:5F:E3:0C:AF:6F:5A:32:C9:19:D3:35:AA:94:D0:E7:33:3C:D0:54:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E403/A1CCECFEF8BB11EA87B1DE6BC4F9AE02/X-MMr29aMskZ0zWqlNDnMzzQVDU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-MMr29aMskZ0zWqlNDnMzzQVDU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E403/A1CCECFEF8BB11EA87B1DE6BC4F9AE02/71050646F8BC11EA9EC9436CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.8.0/23 Signature Algorithm: sha256WithRSAEncryption 38:9d:05:43:97:96:4d:a1:a8:4f:c6:bc:a0:a0:dd:10:b7:e0: 26:f1:07:fc:83:bf:3b:9d:f9:ee:01:69:b5:9c:06:58:a8:bf: 7f:64:a2:35:68:89:c5:34:1e:20:0f:35:63:fe:8a:9a:75:9f: e1:5a:b1:82:a7:86:49:4c:aa:c8:be:16:3e:98:8e:58:83:c1: 1e:ec:60:63:7a:be:75:56:40:f6:b6:92:13:3c:b2:78:14:ce: 27:3b:44:92:46:27:49:39:a0:80:d8:bb:71:ef:45:25:54:80: 04:3e:7f:09:39:ed:73:e7:af:5e:61:a0:61:ea:fa:f9:0b:e9: d9:a9:0c:f5:4e:4e:65:1b:d5:ae:ca:a4:8b:94:b6:d5:b2:73: 94:8a:94:6d:de:f5:8c:cb:6d:1b:99:96:a2:88:0e:8a:98:76: 62:b7:1b:f0:b3:b0:15:da:68:75:62:8c:1e:e4:3f:23:84:b7: a7:de:71:21:a7:20:a7:28:1e:d0:bd:c3:e7:a1:a4:e5:ce:af: 26:e5:22:d3:ec:c9:d1:53:9a:ca:87:3d:e9:eb:da:14:48:89: 8d:e7:98:d8:3c:12:03:57:c5:12:f2:73:26:72:36:f6:2c:a2: 1d:71:44:77:31:e9:cb:b7:05:89:6f:57:84:12:c1:89:7a:c2: 8a:1d:be:1a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB1kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU0MDMxMTAvBgNVBAUTKDVGRTMwQ0FGNkY1QTMyQzkxOUQzMzVBQTk0RDBFNzMz M0NEMDU0MzUwHhcNMjQwODI4MjIwMDEwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmNmOWRlYS01MWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxbPuL5PVjwfrwy73vkGEVlZVb9SxuTEKFw/X7Hj+2YAEodjLUNgruqoDpb7u ofhCJc10TWWE14H/77HVAUZBz59ilJ+V4S4d+gD2UE476FtPyShm2QX5B70TO/DM nHv+9zXNsUaAePGByRvhrR/2Ll9+7tskDTUJS6tHGN40LqMXOpqzPGB0aMq2/pYB 0/rAncwdzIDHIlPAXJPlhXgj/oidDK3fAoPItRJmiUjZ2Xu/8rDY4GnBEk3xZl8D IM3t2wgflzvEiThN0VQpuS66dGSVJ3imqN2AFTa8qTspC8HrtbjqGD6oMx4BD342 Fa/cF/CF94YkZr3/A1sQh7vo6QIDAQABo4IClTCCApEwHQYDVR0OBBYEFDGi15Vi 95+zqBaP3IhW9Ut5nOHvMB8GA1UdIwQYMBaAFF/jDK9vWjLJGdM1qpTQ5zM80FQ1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTQwMy9BMUNDRUNGRUY4 QkIxMUVBODdCMURFNkJDNEY5QUUwMi9YLU1NcjI5YU1za1oweldxbE5Ebk16elFW RFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gtTU1yMjlhTXNrWjB6V3FsTkRuTXp6UVZEVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUU0MDMvQTFDQ0VDRkVGOEJCMTFFQTg3QjFERTZCQzRGOUFFMDIvNzEwNTA2NDZG OEJDMTFFQTlFQzk0MzZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmQgwDQYJKoZIhvcNAQELBQADggEBADidBUOXlk2hqE/G vKCg3RC34CbxB/yDvzud+e4BabWcBliov39kojVoicU0HiAPNWP+ipp1n+FasYKn hklMqsi+Fj6YjliDwR7sYGN6vnVWQPa2khM8sngUzic7RJJGJ0k5oIDYu3HvRSVU gAQ+fwk57XPnr15hoGHq+vkL6dmpDPVOTmUb1a7KpIuUttWyc5SKlG3e9YzLbRuZ lqKIDoqYdmK3G/CzsBXaaHVijB7kPyOEt6fecSGnIKcoHtC9w+ehpOXOryblItPs ydFTmsqHPenr2hRIiY3nmNg8EgNXxRLycyZyNvYsoh1xRHcx6cu3BYlvV4QSwYl6 woodvho= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:06 2024 by rpki-client on console-fra.rpki-client.org