$ rpki-client -vvf rpki.apnic.net/member_repository/A9130BF5/6FC641347FA911ED9A3A4252C4F9AE02/B2233F6C7FAB11ED834D8D52C4F9AE02.roa File: B2233F6C7FAB11ED834D8D52C4F9AE02.roa (raw, json) Hash identifier: llDaqmH+y8fE9VgCGsEo5oS5AOl3PRMCXgiHtXZgVOA= Subject key identifier: E2:E2:25:0F:1A:81:FE:1C:58:86:B0:88:BB:C4:F3:56:A1:98:B1:B3 Certificate issuer: /CN=A9130BF5/serialNumber=2AEAEBA0F018DBEFD1874D226A14FB0B94A9587E Certificate serial: 016A Authority key identifier: 2A:EA:EB:A0:F0:18:DB:EF:D1:87:4D:22:6A:14:FB:0B:94:A9:58:7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KurroPAY2-_Rh00iahT7C5SpWH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130BF5/6FC641347FA911ED9A3A4252C4F9AE02/B2233F6C7FAB11ED834D8D52C4F9AE02.roa Signing time: Tue 12 Nov 2024 23:14:23 +0000 ROA not before: Tue 12 Nov 2024 23:14:23 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 150685 IP address blocks: 103.55.240.0/24 maxlen: 24 103.55.241.0/24 maxlen: 24 2001:df1:b3c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130BF5/6FC641347FA911ED9A3A4252C4F9AE02/KurroPAY2-_Rh00iahT7C5SpWH4.crl rsync://rpki.apnic.net/member_repository/A9130BF5/6FC641347FA911ED9A3A4252C4F9AE02/KurroPAY2-_Rh00iahT7C5SpWH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KurroPAY2-_Rh00iahT7C5SpWH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:16:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 362 (0x16a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130BF5/serialNumber=2AEAEBA0F018DBEFD1874D226A14FB0B94A9587E Validity Not Before: Nov 12 23:14:23 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=6733e14f-1f98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a3:b4:d6:9e:24:62:0c:d5:52:7e:ab:fe:3f: 05:58:b3:e2:8f:d7:90:12:b5:e3:ec:7e:1b:19:a7: a3:15:0f:ba:8e:c9:4d:90:f1:24:57:6b:d9:e8:00: 84:77:49:f0:5f:71:be:79:dc:32:7d:08:b4:28:dd: a9:1c:b2:10:67:79:f2:90:2f:ad:d8:6d:0a:6c:03: 3f:95:2b:e1:f6:2a:10:70:c2:e7:e2:3c:66:29:83: f4:7c:9b:29:d7:cf:0e:26:69:37:7a:c5:34:38:cc: bc:7c:14:7a:b7:ee:76:33:7b:3b:56:54:4a:3a:45: e8:cb:16:07:b6:ee:a4:7f:77:dc:fc:59:8f:5f:8e: 81:0d:fc:6a:0c:57:e0:a5:fb:8f:9d:98:75:1a:17: 0f:ce:68:13:a3:ba:8a:df:f4:9a:70:21:c8:f8:85: d3:92:c4:bc:32:0b:0e:05:ab:e8:cb:4a:62:89:37: d9:63:52:87:8d:b6:14:81:0e:b0:71:e3:32:73:c5: 73:02:61:e2:5f:d2:ec:df:8c:48:b5:91:09:e2:00: 28:85:94:50:31:b9:d8:25:25:b2:ff:b3:43:1d:48: ff:95:54:5a:5b:58:a9:38:e3:07:ea:4f:a5:64:11: c8:2c:b2:83:d7:a6:53:12:3d:9f:08:d8:1e:ef:ac: a1:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:E2:25:0F:1A:81:FE:1C:58:86:B0:88:BB:C4:F3:56:A1:98:B1:B3 X509v3 Authority Key Identifier: keyid:2A:EA:EB:A0:F0:18:DB:EF:D1:87:4D:22:6A:14:FB:0B:94:A9:58:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130BF5/6FC641347FA911ED9A3A4252C4F9AE02/KurroPAY2-_Rh00iahT7C5SpWH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KurroPAY2-_Rh00iahT7C5SpWH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130BF5/6FC641347FA911ED9A3A4252C4F9AE02/B2233F6C7FAB11ED834D8D52C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.55.240.0/23 IPv6: 2001:df1:b3c0::/48 Signature Algorithm: sha256WithRSAEncryption bb:58:50:d5:91:e7:c5:d0:0e:8a:44:8d:9d:f3:86:0e:2b:f5: 41:9f:a3:91:8c:5e:07:a3:31:6a:23:c1:48:a3:1c:eb:1e:05: 6c:05:49:c9:e6:27:12:b4:70:e9:66:ee:0e:bb:73:57:b4:5b: 47:f0:10:f7:f5:0f:13:2f:11:9e:d0:45:ac:50:a4:95:36:ad: b2:4d:9a:c9:9b:2a:42:0b:bd:e6:84:17:06:0e:c9:fa:79:80: ab:59:de:6d:fb:cc:80:79:31:f5:f8:d4:c2:e2:d2:a5:d0:54: 49:88:61:3f:f8:cd:6f:13:00:6c:9e:37:9b:29:ee:a1:81:cf: 08:e3:ae:19:82:39:d4:a7:0b:71:08:2c:af:4d:ce:91:e1:d5: 32:3f:31:61:06:8e:9b:dd:00:38:db:f8:f2:74:ba:f1:e2:71: 3c:df:5a:15:de:03:bd:db:e9:4f:e2:38:8c:a9:a8:bf:f1:f6: 2a:1b:26:96:c2:e7:08:15:8a:32:a1:c8:d1:25:23:ac:9b:23: a4:62:0f:43:4d:60:a6:72:43:28:8d:a1:78:fb:8e:17:9e:af: c9:75:3b:c4:6a:34:5a:2b:08:f6:c9:22:c8:28:cc:b4:e2:45: 86:35:e9:19:8f:94:54:0e:66:7a:b7:63:6b:77:6a:7e:9f:2d: 80:b4:c2:04 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAWowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzBCRjUxMTAvBgNVBAUTKDJBRUFFQkEwRjAxOERCRUZEMTg3NEQyMjZBMTRGQjBC OTRBOTU4N0UwHhcNMjQxMTEyMjMxNDIzWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzMzZTE0Zi0xZjk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtKO01p4kYgzVUn6r/j8FWLPij9eQErXj7H4bGaejFQ+6jslNkPEkV2vZ6ACE d0nwX3G+edwyfQi0KN2pHLIQZ3nykC+t2G0KbAM/lSvh9ioQcMLn4jxmKYP0fJsp 188OJmk3esU0OMy8fBR6t+52M3s7VlRKOkXoyxYHtu6kf3fc/FmPX46BDfxqDFfg pfuPnZh1GhcPzmgTo7qK3/SacCHI+IXTksS8MgsOBavoy0piiTfZY1KHjbYUgQ6w ceMyc8VzAmHiX9Ls34xItZEJ4gAohZRQMbnYJSWy/7NDHUj/lVRaW1ipOOMH6k+l ZBHILLKD16ZTEj2fCNge76yhKwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFOLiJQ8a gf4cWIawiLvE81ahmLGzMB8GA1UdIwQYMBaAFCrq66DwGNvv0YdNImoU+wuUqVh+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMEJGNS82RkM2NDEzNDdG QTkxMUVEOUEzQTQyNTJDNEY5QUUwMi9LdXJyb1BBWTItX1JoMDBpYWhUN0M1U3BX SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t1cnJvUEFZMi1fUmgwMGlhaFQ3QzVTcFdINC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzBCRjUvNkZDNjQxMzQ3RkE5MTFFRDlBM0E0MjUyQzRGOUFFMDIvQjIyMzNGNkM3 RkFCMTFFRDgzNEQ4RDUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnN/AwDwQCAAIwCQMHACABDfGzwDANBgkqhkiG9w0BAQsF AAOCAQEAu1hQ1ZHnxdAOikSNnfOGDiv1QZ+jkYxeB6MxaiPBSKMc6x4FbAVJyeYn ErRw6WbuDrtzV7RbR/AQ9/UPEy8RntBFrFCklTatsk2ayZsqQgu95oQXBg7J+nmA q1nebfvMgHkx9fjUwuLSpdBUSYhhP/jNbxMAbJ43mynuoYHPCOOuGYI51KcLcQgs r03OkeHVMj8xYQaOm90AONv48nS68eJxPN9aFd4DvdvpT+I4jKmov/H2KhsmlsLn CBWKMqHI0SUjrJsjpGIPQ01gpnJDKI2hePuOF56vyXU7xGo0WisI9skiyCjMtOJF hjXpGY+UVA5merdja3dqfp8tgLTCBA== -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:46 2024 by rpki-client on console-fra.rpki-client.org