$ rpki-client -vvf rpki.apnic.net/member_repository/A91203DF/927397B4CA3411E996837E56C4F9AE02/8EB36E60E6FE11EE90BD3C1FC4F9AE02.roa File: 8EB36E60E6FE11EE90BD3C1FC4F9AE02.roa (raw, json) Hash identifier: tBe8qmvHuHH6DXNS3CNAhI+GmhXFgG8JrevEcsqZkfM= Subject key identifier: 1E:A4:53:F2:BE:46:7E:FF:21:43:5E:08:E8:D7:54:60:4D:39:E4:07 Certificate issuer: /CN=A91203DF/serialNumber=56790B8C9507D9D4F3900950D329E275747767AC Certificate serial: 0CA8 Authority key identifier: 56:79:0B:8C:95:07:D9:D4:F3:90:09:50:D3:29:E2:75:74:77:67:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VnkLjJUH2dTzkAlQ0ynidXR3Z6w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91203DF/927397B4CA3411E996837E56C4F9AE02/8EB36E60E6FE11EE90BD3C1FC4F9AE02.roa Signing time: Wed 20 Mar 2024 21:14:01 +0000 ROA not before: Wed 20 Mar 2024 21:14:01 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 138397 IP address blocks: 103.124.110.0/23 maxlen: 23 103.124.111.0/24 maxlen: 24 2001:df1:d1c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91203DF/927397B4CA3411E996837E56C4F9AE02/VnkLjJUH2dTzkAlQ0ynidXR3Z6w.crl rsync://rpki.apnic.net/member_repository/A91203DF/927397B4CA3411E996837E56C4F9AE02/VnkLjJUH2dTzkAlQ0ynidXR3Z6w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VnkLjJUH2dTzkAlQ0ynidXR3Z6w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:59:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3240 (0xca8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91203DF/serialNumber=56790B8C9507D9D4F3900950D329E275747767AC Validity Not Before: Mar 20 21:14:01 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65fb5198-8a35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:c4:c1:98:e2:8d:a4:6c:f1:6f:e8:7f:36:97: c1:77:4c:d7:97:c6:a2:59:c9:ea:a5:2b:27:0e:9a: 88:dc:5a:6a:06:0f:73:77:ff:cb:01:13:83:4f:d8: d3:4c:bf:03:d1:3e:44:7f:e9:9a:c8:5f:e7:be:22: 82:a2:9d:72:f8:87:25:f7:dd:0b:86:4d:7e:03:1b: 6c:d1:ac:b7:fe:1c:bf:bf:3f:99:04:1e:87:44:52: bc:55:7d:ad:61:31:5c:9e:49:3e:db:b3:e9:02:d3: 92:e4:60:51:62:c9:b1:1e:9d:5d:db:f8:4f:95:30: 3e:14:d7:07:b5:d9:a3:75:0b:46:e2:b5:e6:59:e9: 65:a8:a0:c4:7b:b7:22:eb:00:07:0b:cd:31:8f:f6: 8c:e5:48:f3:86:6c:bc:56:f4:f9:f9:5f:23:ab:c9: 2b:b1:47:80:49:b2:dc:83:03:44:89:36:13:4f:96: 55:0f:e7:4c:33:f8:50:b3:55:71:e1:b0:1c:1f:2b: e5:45:3a:ab:86:a2:83:74:87:3f:bf:08:ef:ff:91: c2:cf:6a:8d:42:45:e0:54:2e:35:f3:e8:2b:e2:7a: a3:d3:be:1d:97:0a:c9:d2:c1:bf:a0:88:19:1b:57: ee:d7:11:11:37:93:b5:42:25:6f:7b:dd:87:f4:09: e8:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:A4:53:F2:BE:46:7E:FF:21:43:5E:08:E8:D7:54:60:4D:39:E4:07 X509v3 Authority Key Identifier: keyid:56:79:0B:8C:95:07:D9:D4:F3:90:09:50:D3:29:E2:75:74:77:67:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91203DF/927397B4CA3411E996837E56C4F9AE02/VnkLjJUH2dTzkAlQ0ynidXR3Z6w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VnkLjJUH2dTzkAlQ0ynidXR3Z6w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91203DF/927397B4CA3411E996837E56C4F9AE02/8EB36E60E6FE11EE90BD3C1FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.124.110.0/23 IPv6: 2001:df1:d1c0::/48 Signature Algorithm: sha256WithRSAEncryption 22:fb:7f:8e:c8:1a:88:2d:5c:3e:b4:cb:fc:67:04:77:45:48: 51:6f:33:8c:4b:2b:28:68:5e:ae:e2:98:37:1d:49:83:0d:77: 40:bf:37:98:90:b0:d3:bc:67:6f:6e:51:e2:c6:8e:5c:1d:c2: 98:00:cb:36:ee:20:65:6c:2e:2b:0c:a9:c6:5a:b5:27:fd:25: e9:d1:23:7d:c2:ac:74:7b:82:d9:be:89:8b:55:cd:fb:99:eb: 02:20:79:9b:15:9e:c6:90:07:f7:47:df:6e:c0:08:00:75:b0: e5:7b:1a:c3:40:09:ca:13:ac:58:c0:71:a7:32:47:ba:22:ab: 02:70:f4:13:41:f9:97:68:a8:a5:07:fd:38:29:69:67:8a:fb: 57:40:7e:30:65:d0:13:22:c2:02:a0:f6:f5:bb:da:56:e9:94: 2d:3f:ca:ae:1c:03:93:4f:f5:8b:1e:43:65:59:6a:7e:08:eb: d9:fa:35:b2:b3:44:d4:50:4c:c2:79:65:8d:7e:9f:24:dd:54: a4:50:e8:ba:09:3a:b9:e1:36:aa:b2:5e:dc:e1:01:8e:9d:a1: fb:57:98:bd:c6:8c:b9:77:6d:37:23:1d:b3:d7:17:18:9e:83: ab:9e:75:d7:8f:d4:14:a4:96:c6:50:8a:bf:a9:28:d4:39:ae: e7:99:c9:f8 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICDKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjAzREYxMTAvBgNVBAUTKDU2NzkwQjhDOTUwN0Q5RDRGMzkwMDk1MEQzMjlFMjc1 NzQ3NzY3QUMwHhcNMjQwMzIwMjExNDAxWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWZiNTE5OC04YTM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApMTBmOKNpGzxb+h/NpfBd0zXl8aiWcnqpSsnDpqI3FpqBg9zd//LARODT9jT TL8D0T5Ef+mayF/nviKCop1y+Icl990Lhk1+Axts0ay3/hy/vz+ZBB6HRFK8VX2t YTFcnkk+27PpAtOS5GBRYsmxHp1d2/hPlTA+FNcHtdmjdQtG4rXmWellqKDEe7ci 6wAHC80xj/aM5Ujzhmy8VvT5+V8jq8krsUeASbLcgwNEiTYTT5ZVD+dMM/hQs1Vx 4bAcHyvlRTqrhqKDdIc/vwjv/5HCz2qNQkXgVC418+gr4nqj074dlwrJ0sG/oIgZ G1fu1xERN5O1QiVve92H9Ano8QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFB6kU/K+ Rn7/IUNeCOjXVGBNOeQHMB8GA1UdIwQYMBaAFFZ5C4yVB9nU85AJUNMp4nV0d2es MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDNERi85MjczOTdCNENB MzQxMUU5OTY4MzdFNTZDNEY5QUUwMi9WbmtMakpVSDJkVHprQWxRMHluaWRYUjNa NncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Zua0xqSlVIMmRUemtBbFEweW5pZFhSM1o2dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjAzREYvOTI3Mzk3QjRDQTM0MTFFOTk2ODM3RTU2QzRGOUFFMDIvOEVCMzZFNjBF NkZFMTFFRTkwQkQzQzFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnfG4wDwQCAAIwCQMHACABDfHRwDANBgkqhkiG9w0BAQsF AAOCAQEAIvt/jsgaiC1cPrTL/GcEd0VIUW8zjEsrKGheruKYNx1Jgw13QL83mJCw 07xnb25R4saOXB3CmADLNu4gZWwuKwypxlq1J/0l6dEjfcKsdHuC2b6Ji1XN+5nr AiB5mxWexpAH90ffbsAIAHWw5Xsaw0AJyhOsWMBxpzJHuiKrAnD0E0H5l2iopQf9 OClpZ4r7V0B+MGXQEyLCAqD29bvaVumULT/KrhwDk0/1ix5DZVlqfgjr2fo1srNE 1FBMwnlljX6fJN1UpFDougk6ueE2qrJe3OEBjp2h+1eYvcaMuXdtNyMds9cXGJ6D q55114/UFKSWxlCKv6ko1Dmu55nJ+A== -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:56 2024 by rpki-client on console-fra.rpki-client.org