$ rpki-client -vvf rpki.apnic.net/member_repository/A911F8BC/B1706F48D3D811EBAA1BF410C4F9AE02/5284A644D3DC11EB9FCD6135C4F9AE02.roa File: 5284A644D3DC11EB9FCD6135C4F9AE02.roa (raw, json) Hash identifier: KjSC+EBY/UPIqhkSiTjfbrlSvd1G9oxKPCBMNEBLTuc= Subject key identifier: 47:2C:CB:2C:39:CB:A1:F0:09:8A:6F:74:B0:0A:5C:4A:18:6D:AE:E8 Certificate issuer: /CN=A911F8BC/serialNumber=5A07E6D8F7197E34A93944EAF69398E4AA7428E9 Certificate serial: 0508 Authority key identifier: 5A:07:E6:D8:F7:19:7E:34:A9:39:44:EA:F6:93:98:E4:AA:74:28:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wgfm2PcZfjSpOUTq9pOY5Kp0KOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F8BC/B1706F48D3D811EBAA1BF410C4F9AE02/5284A644D3DC11EB9FCD6135C4F9AE02.roa Signing time: Sat 03 Aug 2024 00:52:35 +0000 ROA not before: Sat 03 Aug 2024 00:52:35 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 142542 IP address blocks: 103.168.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F8BC/B1706F48D3D811EBAA1BF410C4F9AE02/Wgfm2PcZfjSpOUTq9pOY5Kp0KOk.crl rsync://rpki.apnic.net/member_repository/A911F8BC/B1706F48D3D811EBAA1BF410C4F9AE02/Wgfm2PcZfjSpOUTq9pOY5Kp0KOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wgfm2PcZfjSpOUTq9pOY5Kp0KOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1288 (0x508) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F8BC/serialNumber=5A07E6D8F7197E34A93944EAF69398E4AA7428E9 Validity Not Before: Aug 3 00:52:35 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66ad7f52-a093 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:23:90:f6:c2:71:44:b8:7d:5c:08:a5:57:82: 0e:3c:c7:82:04:7f:23:8d:54:d0:23:10:94:9c:9d: 9c:bd:be:e1:fe:49:7c:69:00:b8:44:c3:ff:6f:4d: e7:b0:fc:f0:60:4b:78:ff:df:13:8e:86:4c:31:d9: 14:3e:eb:cd:b7:c5:41:3a:c5:36:27:ac:38:d1:77: 75:b5:75:7a:b5:89:df:d6:0f:e6:b1:8a:29:08:59: 61:98:35:8d:5b:b4:4a:aa:c2:61:10:ce:36:86:dc: 75:e4:d9:d4:b6:e6:91:07:96:3a:c3:09:24:29:9d: 5a:ec:f8:df:89:de:bd:46:39:54:0f:cc:b0:d6:35: 0e:c1:f2:db:92:99:72:ca:c4:fe:80:00:33:bf:89: af:2d:b1:98:e8:33:6e:1c:60:22:45:ec:2e:f8:be: 4a:67:eb:d0:c9:a1:95:94:2b:75:8a:ea:ab:20:23: 6d:d2:83:28:a2:89:33:c2:bd:b8:9f:b8:5c:67:00: 33:2a:2a:4c:71:d9:43:18:0f:92:21:2b:b6:10:39: 87:77:74:87:71:41:87:61:bd:e9:09:7d:ea:ea:9c: e4:61:fb:35:3d:41:ee:25:38:b9:2d:48:e1:83:a7: 0f:e0:f0:b4:30:e4:6a:71:f3:f5:da:20:bb:f3:33: f9:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:2C:CB:2C:39:CB:A1:F0:09:8A:6F:74:B0:0A:5C:4A:18:6D:AE:E8 X509v3 Authority Key Identifier: keyid:5A:07:E6:D8:F7:19:7E:34:A9:39:44:EA:F6:93:98:E4:AA:74:28:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F8BC/B1706F48D3D811EBAA1BF410C4F9AE02/Wgfm2PcZfjSpOUTq9pOY5Kp0KOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wgfm2PcZfjSpOUTq9pOY5Kp0KOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F8BC/B1706F48D3D811EBAA1BF410C4F9AE02/5284A644D3DC11EB9FCD6135C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.168.206.0/24 Signature Algorithm: sha256WithRSAEncryption c9:81:4b:02:f5:d1:31:f9:11:da:18:1e:92:e5:41:58:1f:41: 70:30:0a:db:72:c6:e1:68:33:35:77:d4:10:ed:b6:7b:78:1e: 74:9d:49:9c:ca:73:55:42:f0:08:a1:79:20:76:b1:e9:a3:98: 64:9f:f2:c3:53:fc:36:4f:2a:7b:d7:94:31:21:e4:c0:a8:34: a3:28:21:dc:b2:1f:6a:9d:e0:17:ec:18:5c:88:2e:77:20:5a: 08:85:7a:c2:fa:80:7c:e2:37:3a:19:22:aa:7a:6e:81:46:0f: b1:af:13:ed:ba:b5:d5:07:a5:f1:76:7b:0a:3b:69:32:4b:e7: 45:76:55:23:85:92:e7:95:e7:90:51:e5:8b:1a:4a:3f:15:2e: 12:38:7d:1b:5f:6c:01:3a:b3:33:ac:c2:d4:9a:da:3a:68:16: fb:8c:2f:88:d0:b2:35:d8:09:64:e7:66:66:9e:4f:f7:0e:21: f7:3d:8b:27:03:7c:7a:a3:22:27:d7:c6:0a:f5:c1:2d:b1:30: 3c:a6:3a:9a:9c:6d:9d:a3:83:6c:ae:e0:c4:ab:df:39:69:3e: 60:9e:86:62:71:0a:3e:bf:4b:72:f2:b1:56:d6:f5:ba:81:67: a5:cb:76:76:85:45:28:8a:18:6e:17:00:e1:8e:5e:51:fb:70: ad:23:fb:56 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY4QkMxMTAvBgNVBAUTKDVBMDdFNkQ4RjcxOTdFMzRBOTM5NDRFQUY2OTM5OEU0 QUE3NDI4RTkwHhcNMjQwODAzMDA1MjM1WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFkN2Y1Mi1hMDkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6COQ9sJxRLh9XAilV4IOPMeCBH8jjVTQIxCUnJ2cvb7h/kl8aQC4RMP/b03n sPzwYEt4/98TjoZMMdkUPuvNt8VBOsU2J6w40Xd1tXV6tYnf1g/msYopCFlhmDWN W7RKqsJhEM42htx15NnUtuaRB5Y6wwkkKZ1a7Pjfid69RjlUD8yw1jUOwfLbkply ysT+gAAzv4mvLbGY6DNuHGAiRewu+L5KZ+vQyaGVlCt1iuqrICNt0oMoookzwr24 n7hcZwAzKipMcdlDGA+SISu2EDmHd3SHcUGHYb3pCX3q6pzkYfs1PUHuJTi5LUjh g6cP4PC0MORqcfP12iC78zP5rQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEcsyyw5 y6HwCYpvdLAKXEoYba7oMB8GA1UdIwQYMBaAFFoH5tj3GX40qTlE6vaTmOSqdCjp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjhCQy9CMTcwNkY0OEQz RDgxMUVCQUExQkY0MTBDNEY5QUUwMi9XZ2ZtMlBjWmZqU3BPVVRxOXBPWTVLcDBL T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dnZm0yUGNaZmpTcE9VVHE5cE9ZNUtwMEtPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUY4QkMvQjE3MDZGNDhEM0Q4MTFFQkFBMUJGNDEwQzRGOUFFMDIvNTI4NEE2NDRE M0RDMTFFQjlGQ0Q2MTM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnqM4wDQYJKoZIhvcNAQELBQADggEBAMmBSwL10TH5EdoY HpLlQVgfQXAwCttyxuFoMzV31BDttnt4HnSdSZzKc1VC8AiheSB2semjmGSf8sNT /DZPKnvXlDEh5MCoNKMoIdyyH2qd4BfsGFyILncgWgiFesL6gHziNzoZIqp6boFG D7GvE+26tdUHpfF2ewo7aTJL50V2VSOFkueV55BR5YsaSj8VLhI4fRtfbAE6szOs wtSa2jpoFvuML4jQsjXYCWTnZmaeT/cOIfc9iycDfHqjIifXxgr1wS2xMDymOpqc bZ2jg2yu4MSr3zlpPmCehmJxCj6/S3LysVbW9bqBZ6XLdnaFRSiKGG4XAOGOXlH7 cK0j+1Y= -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:32 2024 by rpki-client on console-fra.rpki-client.org