$ rpki-client -vvf rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/6A430D5AD0F411EC8DAD6D11C4F9AE02.roa File: 6A430D5AD0F411EC8DAD6D11C4F9AE02.roa (raw, json) Hash identifier: Vk4lMkqK5ng6B+iZp/Sl6mPlRDRoZ3QpBy8plRdehn4= Subject key identifier: 74:67:2D:4C:19:DB:C8:B9:8E:FF:DE:96:95:7A:17:F8:9A:47:83:C0 Certificate issuer: /CN=A91346B1/serialNumber=2F3EF5B9013714E3174C6700AE04824E2F05C230 Certificate serial: 02B0 Authority key identifier: 2F:3E:F5:B9:01:37:14:E3:17:4C:67:00:AE:04:82:4E:2F:05:C2:30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lz71uQE3FOMXTGcArgSCTi8FwjA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/6A430D5AD0F411EC8DAD6D11C4F9AE02.roa Signing time: Thu 19 Sep 2024 01:35:05 +0000 ROA not before: Thu 19 Sep 2024 01:35:05 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 63848 IP address blocks: 103.42.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.crl rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lz71uQE3FOMXTGcArgSCTi8FwjA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 688 (0x2b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91346B1/serialNumber=2F3EF5B9013714E3174C6700AE04824E2F05C230 Validity Not Before: Sep 19 01:35:05 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=66eb7fc9-4543 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:3e:14:cf:02:77:62:2c:52:5d:5f:35:eb:f9: a9:11:0a:4a:da:ca:7b:17:b0:d8:aa:62:ed:b6:2f: a8:e9:5a:ac:d6:64:e9:fa:70:a0:56:36:ff:e7:a3: d3:fa:6c:37:aa:40:57:5f:4d:0e:79:8f:d3:22:ea: d0:14:9c:8c:eb:5e:37:be:91:2e:a5:14:71:63:14: 13:4f:05:98:a5:a0:2d:03:cb:3e:f2:e8:54:25:7c: f0:0b:eb:9b:33:8a:43:52:0c:8e:7b:d5:3a:e2:40: 30:71:2d:51:71:b2:ea:84:b8:4d:b8:4f:8a:b1:12: f5:ff:0c:db:1c:78:d5:b2:d6:fd:29:8f:12:8b:b1: a7:e0:8d:f9:7b:96:92:10:c6:5e:e5:fc:49:9d:ed: ca:7b:2f:db:f3:6b:36:c1:f9:28:09:7a:b8:4d:31: 17:68:ca:42:fb:57:02:f8:4a:c3:fb:83:2f:db:2e: 7b:ac:5e:73:13:5b:f5:64:5a:02:9e:9d:96:b4:92: 3b:cf:8e:22:44:fc:50:a2:3d:1e:9b:42:7e:0a:3a: be:a0:01:b8:7b:c5:a2:3c:da:c5:8c:b5:91:b8:d1: 14:15:2b:d9:f4:62:38:0c:fc:b8:e6:4a:a3:18:b3: a1:1e:44:ab:3f:b9:c6:09:f1:e2:bc:cb:29:c5:bc: 0d:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:67:2D:4C:19:DB:C8:B9:8E:FF:DE:96:95:7A:17:F8:9A:47:83:C0 X509v3 Authority Key Identifier: keyid:2F:3E:F5:B9:01:37:14:E3:17:4C:67:00:AE:04:82:4E:2F:05:C2:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lz71uQE3FOMXTGcArgSCTi8FwjA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/6A430D5AD0F411EC8DAD6D11C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.42.98.0/24 Signature Algorithm: sha256WithRSAEncryption 30:5e:18:0b:6b:8a:26:cf:45:de:2f:97:83:5f:b8:f3:cf:73: 3b:ee:ce:0d:b5:41:b1:52:d6:3b:64:ee:f2:85:d2:c1:29:e9: e2:4b:70:64:5c:d3:50:20:2a:70:1a:d2:56:33:43:6a:42:0f: 8c:51:e2:2c:20:5b:da:bb:82:ee:33:10:e7:54:35:87:43:12: f5:f1:78:9b:44:f5:2a:e2:1f:1e:e8:52:80:32:9d:b9:49:7d: 45:de:b4:ce:c6:88:35:73:b2:b0:6f:d1:45:e6:20:a3:42:56: a5:fc:42:a7:fa:49:93:46:13:f2:00:60:dc:9b:4c:cd:a7:f3: b6:8a:92:77:87:4d:a6:f9:4b:2a:fe:7f:a6:dd:85:6c:85:48: 51:e7:6c:0f:df:96:c5:79:d0:5a:73:ad:5b:73:93:03:2b:a6: af:a7:99:10:6e:fb:56:dc:09:d2:e3:0d:0e:27:ea:18:0c:93: e2:45:3b:25:18:54:21:7c:72:99:d0:9f:9b:bc:15:e2:45:4b: d0:0a:49:93:d2:c8:ed:0e:d0:09:8f:eb:9f:df:c7:38:76:99: 48:0b:6f:2c:d0:5c:9d:da:1c:31:e9:4e:f1:ad:46:d5:fc:09: c0:4f:51:12:a1:27:aa:cf:3b:78:33:e3:d7:64:d6:f3:b8:b4: 45:74:11:9d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICArAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQ2QjExMTAvBgNVBAUTKDJGM0VGNUI5MDEzNzE0RTMxNzRDNjcwMEFFMDQ4MjRF MkYwNUMyMzAwHhcNMjQwOTE5MDEzNTA1WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmViN2ZjOS00NTQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0j4UzwJ3YixSXV816/mpEQpK2sp7F7DYqmLtti+o6Vqs1mTp+nCgVjb/56PT +mw3qkBXX00OeY/TIurQFJyM6143vpEupRRxYxQTTwWYpaAtA8s+8uhUJXzwC+ub M4pDUgyOe9U64kAwcS1RcbLqhLhNuE+KsRL1/wzbHHjVstb9KY8Si7Gn4I35e5aS EMZe5fxJne3Key/b82s2wfkoCXq4TTEXaMpC+1cC+ErD+4Mv2y57rF5zE1v1ZFoC np2WtJI7z44iRPxQoj0em0J+Cjq+oAG4e8WiPNrFjLWRuNEUFSvZ9GI4DPy45kqj GLOhHkSrP7nGCfHivMspxbwN2wIDAQABo4IClTCCApEwHQYDVR0OBBYEFHRnLUwZ 28i5jv/elpV6F/iaR4PAMB8GA1UdIwQYMBaAFC8+9bkBNxTjF0xnAK4Egk4vBcIw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDZCMS85QTBFQ0UxMEQw RjAxMUVDOEVDREJGNjNDNEY5QUUwMi9MejcxdVFFM0ZPTVhUR2NBcmdTQ1RpOEZ3 akEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0x6NzF1UUUzRk9NWFRHY0FyZ1NDVGk4RndqQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzQ2QjEvOUEwRUNFMTBEMEYwMTFFQzhFQ0RCRjYzQzRGOUFFMDIvNkE0MzBENUFE MEY0MTFFQzhEQUQ2RDExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnKmIwDQYJKoZIhvcNAQELBQADggEBADBeGAtriibPRd4v l4NfuPPPczvuzg21QbFS1jtk7vKF0sEp6eJLcGRc01AgKnAa0lYzQ2pCD4xR4iwg W9q7gu4zEOdUNYdDEvXxeJtE9SriHx7oUoAynblJfUXetM7GiDVzsrBv0UXmIKNC VqX8Qqf6SZNGE/IAYNybTM2n87aKkneHTab5Syr+f6bdhWyFSFHnbA/flsV50Fpz rVtzkwMrpq+nmRBu+1bcCdLjDQ4n6hgMk+JFOyUYVCF8cpnQn5u8FeJFS9AKSZPS yO0O0AmP65/fxzh2mUgLbyzQXJ3aHDHpTvGtRtX8CcBPURKhJ6rPO3gz49dk1vO4 tEV0EZ0= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:33 2024 by rpki-client on console-fra.rpki-client.org