$ rpki-client -vvf rpki.apnic.net/member_repository/A917270F/DC5E74CA08E811EDB9E1B633C4F9AE02/A48E2B14A73B11EF9933C14AC4F9AE02.roa File: A48E2B14A73B11EF9933C14AC4F9AE02.roa (raw, json) Hash identifier: sT4T0L9wC2fx0duV9VQHP26XXKTCr/0RUKMxWwegA4g= Subject key identifier: 1A:00:09:E4:94:A9:E6:F4:DF:11:3A:DA:9B:BF:2F:8F:06:31:BC:82 Certificate issuer: /CN=A917270F/serialNumber=7E44DCE972F13C80E534B2E685FE1D2A0D761512 Certificate serial: 0251 Authority key identifier: 7E:44:DC:E9:72:F1:3C:80:E5:34:B2:E6:85:FE:1D:2A:0D:76:15:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fkTc6XLxPIDlNLLmhf4dKg12FRI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917270F/DC5E74CA08E811EDB9E1B633C4F9AE02/A48E2B14A73B11EF9933C14AC4F9AE02.roa Signing time: Thu 21 Nov 2024 05:40:54 +0000 ROA not before: Thu 21 Nov 2024 05:40:54 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 140269 IP address blocks: 103.191.162.0/24 maxlen: 24 2400:96e0::/32 maxlen: 32 2400:96e0:1000::/36 maxlen: 36 2400:96e0:1000::/40 maxlen: 40 2400:96e0:3000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917270F/DC5E74CA08E811EDB9E1B633C4F9AE02/fkTc6XLxPIDlNLLmhf4dKg12FRI.crl rsync://rpki.apnic.net/member_repository/A917270F/DC5E74CA08E811EDB9E1B633C4F9AE02/fkTc6XLxPIDlNLLmhf4dKg12FRI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fkTc6XLxPIDlNLLmhf4dKg12FRI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 593 (0x251) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917270F/serialNumber=7E44DCE972F13C80E534B2E685FE1D2A0D761512 Validity Not Before: Nov 21 05:40:54 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=673ec7e6-18e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:1b:fd:01:a2:22:5b:9f:57:5e:a7:49:47:9a: c9:2d:ab:0f:29:54:0b:68:cd:fd:ef:d8:c9:a4:03: 27:55:f1:b9:46:9c:97:1a:13:0f:6d:7b:10:0d:84: 49:65:f6:b2:45:1f:54:77:a1:0d:15:88:36:7b:42: 80:a2:3a:e6:dc:3f:e4:63:31:c5:f7:a4:86:e0:40: 60:af:22:da:28:62:db:0a:2b:3c:f0:35:28:b5:bd: 5e:01:df:59:39:1c:6b:4c:a0:75:5b:19:50:eb:d5: d7:50:4a:47:29:2f:54:f1:21:38:7f:d4:b2:0a:5e: 93:a0:2e:08:7f:8a:3d:59:23:58:5d:bc:8f:4c:7c: 62:90:e9:38:51:c8:64:42:a8:cf:c8:30:0f:df:2f: f4:6e:04:ad:3d:4f:d4:e4:b1:ea:39:1c:a0:13:01: 34:c8:a2:09:5d:2c:35:d7:89:d6:b4:2d:0b:51:62: a0:76:b1:69:ca:55:39:3e:fa:e1:81:c7:ff:59:d8: a3:ae:e4:4f:ca:64:ea:f5:b8:2c:bf:fc:53:ec:5a: 32:50:e8:a0:12:2c:f8:0d:59:4a:01:51:9f:99:18: e1:38:02:73:44:a0:61:0b:b3:24:1a:bc:e0:34:e1: 80:1c:47:84:02:16:3a:bc:7d:59:dc:24:d5:a8:80: aa:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:00:09:E4:94:A9:E6:F4:DF:11:3A:DA:9B:BF:2F:8F:06:31:BC:82 X509v3 Authority Key Identifier: keyid:7E:44:DC:E9:72:F1:3C:80:E5:34:B2:E6:85:FE:1D:2A:0D:76:15:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917270F/DC5E74CA08E811EDB9E1B633C4F9AE02/fkTc6XLxPIDlNLLmhf4dKg12FRI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fkTc6XLxPIDlNLLmhf4dKg12FRI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917270F/DC5E74CA08E811EDB9E1B633C4F9AE02/A48E2B14A73B11EF9933C14AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.191.162.0/24 IPv6: 2400:96e0::/32 Signature Algorithm: sha256WithRSAEncryption bb:37:12:34:8c:f9:a0:23:93:2b:9d:3b:86:42:51:f6:49:64: c9:2e:a3:bb:19:fe:aa:8f:b7:49:04:15:f2:52:8b:e4:a0:65: df:41:3c:9f:6c:d4:be:b6:f2:34:5e:84:90:dc:b2:35:ce:6b: 4c:a0:37:ad:aa:c1:d7:12:9d:9b:32:f2:ab:eb:db:a6:8d:da: 41:e7:d4:e3:51:c0:62:68:cd:cf:5d:00:0a:3d:47:aa:84:63: c8:80:72:c4:f0:3a:a6:51:f8:a6:43:cb:59:33:df:92:86:27: ce:cf:cc:f1:70:b9:71:94:c6:45:83:27:8b:dc:f5:f4:4b:c7: 3f:c5:2b:69:34:56:cf:7f:4c:34:b9:56:ef:82:e9:95:cd:1b: e0:5d:64:26:dd:90:0e:81:8a:7e:13:bf:f2:b0:47:e8:6c:e2: 6f:ac:cb:bb:5d:38:fe:0f:4b:8b:e7:dc:d3:fe:28:c2:1e:26: f7:68:3c:67:b7:a5:c8:fc:e7:88:55:03:7a:38:b1:e3:16:39: 3f:82:32:27:70:36:5a:8f:bb:b2:7c:0f:4e:47:80:f3:5d:e9: 2a:13:77:7c:71:75:d4:77:52:b2:23:c4:ec:3e:f2:dd:fb:b6: cd:6e:ad:2a:05:68:3c:27:26:92:f0:e4:d7:15:17:99:86:7b: ce:64:0a:ad -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAlEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI3MEYxMTAvBgNVBAUTKDdFNDREQ0U5NzJGMTNDODBFNTM0QjJFNjg1RkUxRDJB MEQ3NjE1MTIwHhcNMjQxMTIxMDU0MDU0WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzNlYzdlNi0xOGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyhv9AaIiW59XXqdJR5rJLasPKVQLaM3979jJpAMnVfG5RpyXGhMPbXsQDYRJ ZfayRR9Ud6ENFYg2e0KAojrm3D/kYzHF96SG4EBgryLaKGLbCis88DUotb1eAd9Z ORxrTKB1WxlQ69XXUEpHKS9U8SE4f9SyCl6ToC4If4o9WSNYXbyPTHxikOk4Uchk QqjPyDAP3y/0bgStPU/U5LHqORygEwE0yKIJXSw114nWtC0LUWKgdrFpylU5Pvrh gcf/WdijruRPymTq9bgsv/xT7FoyUOigEiz4DVlKAVGfmRjhOAJzRKBhC7MkGrzg NOGAHEeEAhY6vH1Z3CTVqICqbQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFBoACeSU qeb03xE62pu/L48GMbyCMB8GA1UdIwQYMBaAFH5E3Oly8TyA5TSy5oX+HSoNdhUS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjcwRi9EQzVFNzRDQTA4 RTgxMUVEQjlFMUI2MzNDNEY5QUUwMi9ma1RjNlhMeFBJRGxOTExtaGY0ZEtnMTJG UkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZrVGM2WEx4UElEbE5MTG1oZjRkS2cxMkZSSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzI3MEYvREM1RTc0Q0EwOEU4MTFFREI5RTFCNjMzQzRGOUFFMDIvQTQ4RTJCMTRB NzNCMTFFRjk5MzNDMTRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBABnv6IwDQQCAAIwBwMFACQAluAwDQYJKoZIhvcNAQELBQAD ggEBALs3EjSM+aAjkyudO4ZCUfZJZMkuo7sZ/qqPt0kEFfJSi+SgZd9BPJ9s1L62 8jRehJDcsjXOa0ygN62qwdcSnZsy8qvr26aN2kHn1ONRwGJozc9dAAo9R6qEY8iA csTwOqZR+KZDy1kz35KGJ87PzPFwuXGUxkWDJ4vc9fRLxz/FK2k0Vs9/TDS5Vu+C 6ZXNG+BdZCbdkA6Bin4Tv/KwR+hs4m+sy7tdOP4PS4vn3NP+KMIeJvdoPGe3pcj8 54hVA3o4seMWOT+CMidwNlqPu7J8D05HgPNd6SoTd3xxddR3UrIjxOw+8t37ts1u rSoFaDwnJpLw5NcVF5mGe85kCq0= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:39 2024 by rpki-client on console-fra.rpki-client.org