$ rpki-client -vvf rpki.apnic.net/member_repository/A91735C9/EA96E6D435C911EA8E5A2F16C4F9AE02/32DDB7DA368B11EA9713E971C4F9AE02.roa File: 32DDB7DA368B11EA9713E971C4F9AE02.roa (raw, json) Hash identifier: KCGgayyIaV9bw3+jN02UdfN4476+RHEdK89wpH03TIg= Subject key identifier: FE:37:47:97:AA:14:AC:99:8D:11:A9:AC:C5:1D:AC:E1:D1:99:05:1A Certificate issuer: /CN=A91735C9/serialNumber=006323A8DD01DEA95BD1AE44C9FFC453404425CB Certificate serial: 0AE4 Authority key identifier: 00:63:23:A8:DD:01:DE:A9:5B:D1:AE:44:C9:FF:C4:53:40:44:25:CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91735C9/EA96E6D435C911EA8E5A2F16C4F9AE02/32DDB7DA368B11EA9713E971C4F9AE02.roa Signing time: Mon 28 Oct 2024 19:49:34 +0000 ROA not before: Mon 28 Oct 2024 19:49:34 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 134714 IP address blocks: 103.197.196.0/24 maxlen: 24 103.197.197.0/24 maxlen: 24 103.197.198.0/24 maxlen: 24 103.197.199.0/24 maxlen: 24 2404:1780::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91735C9/EA96E6D435C911EA8E5A2F16C4F9AE02/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.crl rsync://rpki.apnic.net/member_repository/A91735C9/EA96E6D435C911EA8E5A2F16C4F9AE02/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:05:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2788 (0xae4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91735C9/serialNumber=006323A8DD01DEA95BD1AE44C9FFC453404425CB Validity Not Before: Oct 28 19:49:34 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671feace-7447 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:ca:2d:f3:70:b0:09:d5:50:0d:88:59:50:46: a3:5b:92:1c:28:07:90:e9:55:6b:fc:fe:c8:4b:eb: b8:41:b3:39:71:4f:97:c8:7e:05:4f:63:5c:8a:f1: 20:f1:e2:48:e9:6b:31:eb:14:d0:6c:08:af:cd:62: 24:f8:15:e9:45:7d:70:6f:41:61:91:dd:88:e3:d5: e4:ed:9c:2e:f7:4a:f9:79:65:44:99:f8:51:bd:1c: 55:c7:6b:f6:1e:15:9e:26:23:fe:34:b1:c6:2f:f0: 28:03:ae:d5:6a:52:c1:0d:a9:96:f9:96:a8:71:e2: b4:8b:f6:9e:02:05:bd:7d:87:00:a4:a1:07:de:ff: 81:8c:31:44:92:36:03:a5:07:5b:4a:a6:6f:74:6c: 5e:5d:5b:5c:47:96:89:af:e8:c6:b6:ee:b0:72:32: 8d:fc:e2:d5:6a:23:c3:13:ef:c9:15:a5:68:5c:43: 69:0c:23:1c:08:0c:71:4e:92:93:48:1d:a7:65:85: 4f:78:04:68:d2:5d:ae:3a:8a:63:75:98:ce:5e:f6: a8:ec:da:15:40:bf:68:55:e2:91:b6:34:82:19:18: f8:a6:41:96:e8:b9:22:56:0a:71:58:63:58:a7:68: 89:9e:c3:d2:44:18:30:c8:b7:dc:ee:63:35:19:4d: dc:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:37:47:97:AA:14:AC:99:8D:11:A9:AC:C5:1D:AC:E1:D1:99:05:1A X509v3 Authority Key Identifier: keyid:00:63:23:A8:DD:01:DE:A9:5B:D1:AE:44:C9:FF:C4:53:40:44:25:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91735C9/EA96E6D435C911EA8E5A2F16C4F9AE02/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91735C9/EA96E6D435C911EA8E5A2F16C4F9AE02/32DDB7DA368B11EA9713E971C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.197.196.0/22 IPv6: 2404:1780::/32 Signature Algorithm: sha256WithRSAEncryption 39:bf:99:3f:30:c3:fc:df:08:0f:4e:01:32:d3:d4:64:6a:f9: 07:67:38:b2:98:83:73:86:7c:1b:fd:c9:30:a2:5e:19:ba:7c: e4:9a:2d:42:c1:f2:cc:bc:0d:55:7d:cb:00:a4:e8:36:36:2a: 3e:a2:4d:ab:67:d9:f1:66:c1:03:72:93:e9:2e:60:ac:b2:ae: 5d:52:0a:e9:f7:0e:66:8f:97:d2:c5:ee:37:c5:d6:5e:49:0b: f9:4e:9d:b3:22:ef:06:36:a9:5a:21:e7:0a:85:29:70:48:60: ce:f4:ef:e1:3a:08:a9:7d:48:07:cd:68:02:13:87:06:a2:3a: 98:ea:fc:77:3e:e4:a5:04:35:68:1f:c0:73:20:3d:c7:9d:e5: 82:ef:30:f3:59:bd:e6:f0:c8:02:a3:da:17:c1:8b:f6:2f:15: 5e:ff:0f:b2:09:8f:85:6f:fa:1d:d2:14:2b:0e:c3:d7:dc:5c: 83:9a:a6:9d:7f:fd:b5:e5:b9:2d:18:9f:db:fb:6a:89:af:21: 47:48:df:a9:bb:0a:e7:97:cc:1c:a8:41:54:34:91:7f:b0:bc: 61:b1:07:53:0a:aa:fe:9d:5c:52:97:f0:ab:fd:a7:5a:f0:7d: 4e:1c:ee:b8:cb:1c:39:41:e7:8a:05:46:80:ad:36:c9:a9:51: 0a:12:89:9a -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCuQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM1QzkxMTAvBgNVBAUTKDAwNjMyM0E4REQwMURFQTk1QkQxQUU0NEM5RkZDNDUz NDA0NDI1Q0IwHhcNMjQxMDI4MTk0OTM0WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFmZWFjZS03NDQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6cot83CwCdVQDYhZUEajW5IcKAeQ6VVr/P7IS+u4QbM5cU+XyH4FT2NcivEg 8eJI6Wsx6xTQbAivzWIk+BXpRX1wb0Fhkd2I49Xk7Zwu90r5eWVEmfhRvRxVx2v2 HhWeJiP+NLHGL/AoA67ValLBDamW+ZaoceK0i/aeAgW9fYcApKEH3v+BjDFEkjYD pQdbSqZvdGxeXVtcR5aJr+jGtu6wcjKN/OLVaiPDE+/JFaVoXENpDCMcCAxxTpKT SB2nZYVPeARo0l2uOopjdZjOXvao7NoVQL9oVeKRtjSCGRj4pkGW6LkiVgpxWGNY p2iJnsPSRBgwyLfc7mM1GU3cOQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFP43R5eq FKyZjRGprMUdrOHRmQUaMB8GA1UdIwQYMBaAFABjI6jdAd6pW9GuRMn/xFNARCXL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzVDOS9FQTk2RTZENDM1 QzkxMUVBOEU1QTJGMTZDNEY5QUUwMi9BR01qcU4wQjNxbGIwYTVFeWZfRVUwQkVK Y3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FHTWpxTjBCM3FsYjBhNUV5Zl9FVTBCRUpjcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzM1QzkvRUE5NkU2RDQzNUM5MTFFQThFNUEyRjE2QzRGOUFFMDIvMzJEREI3REEz NjhCMTFFQTk3MTNFOTcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnxcQwDQQCAAIwBwMFACQEF4AwDQYJKoZIhvcNAQELBQAD ggEBADm/mT8ww/zfCA9OATLT1GRq+QdnOLKYg3OGfBv9yTCiXhm6fOSaLULB8sy8 DVV9ywCk6DY2Kj6iTatn2fFmwQNyk+kuYKyyrl1SCun3DmaPl9LF7jfF1l5JC/lO nbMi7wY2qVoh5wqFKXBIYM707+E6CKl9SAfNaAIThwaiOpjq/Hc+5KUENWgfwHMg Pced5YLvMPNZvebwyAKj2hfBi/YvFV7/D7IJj4Vv+h3SFCsOw9fcXIOapp1//bXl uS0Yn9v7aomvIUdI36m7CueXzByoQVQ0kX+wvGGxB1MKqv6dXFKX8Kv9p1rwfU4c 7rjLHDlB54oFRoCtNsmpUQoSiZo= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:29 2024 by rpki-client on console-fra.rpki-client.org