$ rpki-client -vvf rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/6920E4D8D0F411EC8DAD6D11C4F9AE02.roa File: 6920E4D8D0F411EC8DAD6D11C4F9AE02.roa (raw, json) Hash identifier: 6/3DevyJRKnv1xx6SHWcr3LVBgvTH0u4H55ECTrHATk= Subject key identifier: FC:AA:5F:D9:E2:C5:7F:04:83:81:25:EA:6F:7C:F6:F9:D9:95:7A:B5 Certificate issuer: /CN=A91346B1/serialNumber=2F3EF5B9013714E3174C6700AE04824E2F05C230 Certificate serial: 02AD Authority key identifier: 2F:3E:F5:B9:01:37:14:E3:17:4C:67:00:AE:04:82:4E:2F:05:C2:30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lz71uQE3FOMXTGcArgSCTi8FwjA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/6920E4D8D0F411EC8DAD6D11C4F9AE02.roa Signing time: Thu 19 Sep 2024 01:35:02 +0000 ROA not before: Thu 19 Sep 2024 01:35:02 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 134414 IP address blocks: 103.42.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.crl rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lz71uQE3FOMXTGcArgSCTi8FwjA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 685 (0x2ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91346B1/serialNumber=2F3EF5B9013714E3174C6700AE04824E2F05C230 Validity Not Before: Sep 19 01:35:02 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=66eb7fc5-a9fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:50:ca:4a:c8:7f:71:08:7a:6a:8f:18:80:01: 58:a8:d3:19:f5:10:cf:a3:f2:9d:e5:2c:3c:f0:e0: 4c:e7:72:ae:94:df:9c:9b:9c:6f:1f:96:d5:4d:c4: ad:d7:c3:04:bb:84:92:15:df:15:b4:37:6b:34:ca: 96:0b:e2:4b:f7:40:d5:49:d7:59:4a:0c:90:63:1c: 67:8e:a1:24:6c:07:59:7c:41:00:a9:3d:38:84:df: af:d2:a0:32:58:7a:9f:18:7b:04:b1:49:eb:e9:a9: 96:e8:aa:99:50:48:82:e5:13:47:72:d0:e5:b4:1e: 0d:23:18:ae:6f:5d:5e:0d:f1:63:c4:82:7b:5a:f5: 5a:56:2c:62:71:d3:5b:3f:fb:52:4a:dd:df:b1:8e: b1:7f:01:9d:07:19:1a:30:76:86:57:5b:f2:ab:f1: ae:33:b9:37:be:82:5a:c1:67:a8:55:0a:fa:92:74: a4:d5:c4:fd:3a:16:81:43:67:e3:7c:9a:e4:99:b0: 78:60:e9:42:8d:55:99:dc:a6:35:4c:a3:0a:44:a6: c8:cd:4e:f5:9e:12:db:7c:dc:d2:61:0e:8f:2f:37: 10:ab:67:e0:25:8b:8a:93:10:60:f0:6b:f9:94:58: b9:46:fc:ae:09:4c:ac:db:af:78:9e:05:6e:33:c7: 93:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:AA:5F:D9:E2:C5:7F:04:83:81:25:EA:6F:7C:F6:F9:D9:95:7A:B5 X509v3 Authority Key Identifier: keyid:2F:3E:F5:B9:01:37:14:E3:17:4C:67:00:AE:04:82:4E:2F:05:C2:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lz71uQE3FOMXTGcArgSCTi8FwjA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/6920E4D8D0F411EC8DAD6D11C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.42.99.0/24 Signature Algorithm: sha256WithRSAEncryption aa:fa:6b:25:06:8d:92:2d:84:8b:0a:04:1c:8a:74:0c:02:7a: 8f:97:3e:a5:76:06:ac:11:5e:ef:83:09:c0:6a:35:1e:df:21: 71:f2:b8:05:cb:36:46:12:45:ad:1d:96:38:96:d4:bc:f9:3d: 7d:33:84:a8:d1:eb:37:47:83:18:4b:80:1c:19:1c:e9:9c:2c: 5f:98:26:cd:56:c9:eb:03:41:78:37:74:a5:09:ac:03:dc:00: 89:97:65:24:01:39:61:89:37:50:fb:bc:bb:04:04:3c:48:c3: f5:20:c6:23:6d:19:21:b3:e4:fb:6d:84:5f:b6:1c:b3:53:cb: 7d:cf:b5:4d:6e:48:1c:08:f9:36:44:48:25:3a:f3:58:06:e3: b2:8e:00:9c:03:35:ea:84:39:19:e3:4c:30:b0:76:8f:9b:bb: 6b:a2:32:b9:46:53:ed:8d:09:6f:e8:43:ba:36:fd:82:e7:ff: 64:f8:ce:56:b5:d6:11:e0:91:57:9a:8b:d9:43:18:c3:ac:77: 9e:ac:55:25:dd:0f:77:8b:2c:0b:ee:37:ed:59:85:56:b0:0e: 4e:79:43:36:c4:01:10:14:3c:b1:58:37:c6:4e:5b:6f:0d:8a: bd:3e:a2:fd:cb:3b:28:ff:0b:6c:52:6b:b1:ef:1e:2a:99:f8: 5f:1d:97:da -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAq0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQ2QjExMTAvBgNVBAUTKDJGM0VGNUI5MDEzNzE0RTMxNzRDNjcwMEFFMDQ4MjRF MkYwNUMyMzAwHhcNMjQwOTE5MDEzNTAyWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmViN2ZjNS1hOWZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA01DKSsh/cQh6ao8YgAFYqNMZ9RDPo/Kd5Sw88OBM53KulN+cm5xvH5bVTcSt 18MEu4SSFd8VtDdrNMqWC+JL90DVSddZSgyQYxxnjqEkbAdZfEEAqT04hN+v0qAy WHqfGHsEsUnr6amW6KqZUEiC5RNHctDltB4NIxiub11eDfFjxIJ7WvVaVixicdNb P/tSSt3fsY6xfwGdBxkaMHaGV1vyq/GuM7k3voJawWeoVQr6knSk1cT9OhaBQ2fj fJrkmbB4YOlCjVWZ3KY1TKMKRKbIzU71nhLbfNzSYQ6PLzcQq2fgJYuKkxBg8Gv5 lFi5RvyuCUys2694ngVuM8eT2QIDAQABo4IClTCCApEwHQYDVR0OBBYEFPyqX9ni xX8Eg4El6m989vnZlXq1MB8GA1UdIwQYMBaAFC8+9bkBNxTjF0xnAK4Egk4vBcIw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDZCMS85QTBFQ0UxMEQw RjAxMUVDOEVDREJGNjNDNEY5QUUwMi9MejcxdVFFM0ZPTVhUR2NBcmdTQ1RpOEZ3 akEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0x6NzF1UUUzRk9NWFRHY0FyZ1NDVGk4RndqQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzQ2QjEvOUEwRUNFMTBEMEYwMTFFQzhFQ0RCRjYzQzRGOUFFMDIvNjkyMEU0RDhE MEY0MTFFQzhEQUQ2RDExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnKmMwDQYJKoZIhvcNAQELBQADggEBAKr6ayUGjZIthIsK BByKdAwCeo+XPqV2BqwRXu+DCcBqNR7fIXHyuAXLNkYSRa0dljiW1Lz5PX0zhKjR 6zdHgxhLgBwZHOmcLF+YJs1WyesDQXg3dKUJrAPcAImXZSQBOWGJN1D7vLsEBDxI w/UgxiNtGSGz5PtthF+2HLNTy33PtU1uSBwI+TZESCU681gG47KOAJwDNeqEORnj TDCwdo+bu2uiMrlGU+2NCW/oQ7o2/YLn/2T4zla11hHgkVeai9lDGMOsd56sVSXd D3eLLAvuN+1ZhVawDk55QzbEARAUPLFYN8ZOW28Nir0+ov3LOyj/C2xSa7HvHiqZ +F8dl9o= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:33 2024 by rpki-client on console-fra.rpki-client.org