$ rpki-client -vvf rpki.apnic.net/member_repository/A9189EA6/CD93F36C0E7A11EB91D84B3FC4F9AE02/E4C5DB840E7C11EB8625AE5AC4F9AE02.roa File: E4C5DB840E7C11EB8625AE5AC4F9AE02.roa (raw, json) Hash identifier: 0a3iDH5bkO5J9nl1C2L0muZWxN/ekxHt+EqAXGCfnCM= Subject key identifier: D4:77:33:13:94:19:A2:64:81:C7:71:8F:6C:EF:27:91:92:B6:F4:5A Certificate issuer: /CN=A9189EA6/serialNumber=68F3CEB305C7BFF7DEFAA68C07EB41C0B8E3716C Certificate serial: 06FC Authority key identifier: 68:F3:CE:B3:05:C7:BF:F7:DE:FA:A6:8C:07:EB:41:C0:B8:E3:71:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aPPOswXHv_fe-qaMB-tBwLjjcWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189EA6/CD93F36C0E7A11EB91D84B3FC4F9AE02/E4C5DB840E7C11EB8625AE5AC4F9AE02.roa Signing time: Tue 20 Aug 2024 22:11:14 +0000 ROA not before: Tue 20 Aug 2024 22:11:14 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 131312 IP address blocks: 103.69.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189EA6/CD93F36C0E7A11EB91D84B3FC4F9AE02/aPPOswXHv_fe-qaMB-tBwLjjcWw.crl rsync://rpki.apnic.net/member_repository/A9189EA6/CD93F36C0E7A11EB91D84B3FC4F9AE02/aPPOswXHv_fe-qaMB-tBwLjjcWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aPPOswXHv_fe-qaMB-tBwLjjcWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1788 (0x6fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189EA6/serialNumber=68F3CEB305C7BFF7DEFAA68C07EB41C0B8E3716C Validity Not Before: Aug 20 22:11:14 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66c51482-4b08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ca:00:a3:14:65:a8:ce:20:66:10:93:11:50: a9:d7:db:0a:c2:b2:d2:f7:c8:ae:d0:e9:e1:d6:a1: f1:74:cd:8b:18:fc:9d:13:97:b5:b5:c3:ae:70:2b: 58:fb:78:93:61:c7:b3:2c:25:ab:8e:99:b9:e0:45: c8:d9:77:40:55:f3:43:2e:db:88:8b:dd:67:de:e6: 19:60:46:a1:29:d5:ba:39:d3:bb:fe:b6:e9:93:0f: 11:64:b1:2f:07:1c:a2:e9:47:62:9b:37:41:f1:5c: 2a:b9:6f:1b:97:f7:ab:81:6e:e5:15:7a:fe:48:06: 68:08:a8:d0:db:02:f5:8d:cf:fb:f8:11:20:26:c1: 8c:c3:7d:30:46:4c:c7:06:34:81:57:2a:b3:2f:c4: 94:e4:b9:fb:05:47:7f:6b:99:32:1a:0c:37:5c:d4: 11:f1:ed:03:93:87:f5:b4:39:27:91:e8:00:34:e1: 8e:52:e2:73:97:e6:06:37:6e:e9:0a:00:21:41:56: ef:7f:c1:ca:f0:8d:8b:ed:ab:21:c9:ee:4c:9a:d4: b0:58:58:22:1c:9e:f4:46:f2:cf:b8:a8:67:ce:e7: 88:f1:6d:c3:84:5d:e6:59:68:17:d6:95:ec:87:28: c4:91:c3:dd:05:b7:00:17:e7:70:36:46:63:5a:c2: bb:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:77:33:13:94:19:A2:64:81:C7:71:8F:6C:EF:27:91:92:B6:F4:5A X509v3 Authority Key Identifier: keyid:68:F3:CE:B3:05:C7:BF:F7:DE:FA:A6:8C:07:EB:41:C0:B8:E3:71:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189EA6/CD93F36C0E7A11EB91D84B3FC4F9AE02/aPPOswXHv_fe-qaMB-tBwLjjcWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aPPOswXHv_fe-qaMB-tBwLjjcWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189EA6/CD93F36C0E7A11EB91D84B3FC4F9AE02/E4C5DB840E7C11EB8625AE5AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.69.31.0/24 Signature Algorithm: sha256WithRSAEncryption 27:2a:d0:22:2c:0f:8c:e1:7d:69:49:7d:3b:54:1b:43:9a:23: 90:dd:7b:50:30:d2:b3:c9:da:49:63:29:f3:38:2b:d1:6a:4b: 2f:ec:03:93:8d:6e:55:ac:51:69:ab:bb:80:3e:66:8f:cc:a0: a1:86:d9:47:0d:91:d1:51:1e:fc:8f:8d:e2:ac:4e:a2:fe:73: 6e:9a:1a:8b:ff:cf:c8:43:2b:90:58:a1:56:68:96:09:d4:39: f9:ed:de:ee:d1:7d:c1:c4:af:41:f7:13:de:bb:0a:3f:40:45: 1b:95:66:06:aa:75:e0:91:7c:46:5e:54:70:e1:f5:57:9e:06: 51:24:81:0a:ca:73:1a:89:73:15:d9:a7:23:7f:c6:a4:8c:89: 2e:09:a9:82:7b:79:4c:15:56:37:77:08:7d:b0:10:c7:c6:63: 42:82:fa:d0:24:be:58:e3:70:c5:b0:c6:1a:a2:6f:b7:a2:f1: bb:38:d3:fa:94:49:78:0a:14:35:f4:eb:fe:0e:c7:d9:f3:ba: 73:25:f9:ed:58:95:b3:98:6d:c0:88:b2:d0:4e:aa:d0:63:d6: 7d:27:c4:ca:40:ee:d7:b1:96:cd:de:70:f2:1a:4c:52:e6:67: 3d:70:d3:81:32:fd:df:83:0f:a9:a4:a5:4e:2b:35:48:63:00: 90:f0:3f:08 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBvwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODlFQTYxMTAvBgNVBAUTKDY4RjNDRUIzMDVDN0JGRjdERUZBQTY4QzA3RUI0MUMw QjhFMzcxNkMwHhcNMjQwODIwMjIxMTE0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM1MTQ4Mi00YjA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu8oAoxRlqM4gZhCTEVCp19sKwrLS98iu0Onh1qHxdM2LGPydE5e1tcOucCtY +3iTYcezLCWrjpm54EXI2XdAVfNDLtuIi91n3uYZYEahKdW6OdO7/rbpkw8RZLEv Bxyi6UdimzdB8VwquW8bl/ergW7lFXr+SAZoCKjQ2wL1jc/7+BEgJsGMw30wRkzH BjSBVyqzL8SU5Ln7BUd/a5kyGgw3XNQR8e0Dk4f1tDknkegANOGOUuJzl+YGN27p CgAhQVbvf8HK8I2L7ashye5MmtSwWFgiHJ70RvLPuKhnzueI8W3DhF3mWWgX1pXs hyjEkcPdBbcAF+dwNkZjWsK73QIDAQABo4IClTCCApEwHQYDVR0OBBYEFNR3MxOU GaJkgcdxj2zvJ5GStvRaMB8GA1UdIwQYMBaAFGjzzrMFx7/33vqmjAfrQcC443Fs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OUVBNi9DRDkzRjM2QzBF N0ExMUVCOTFEODRCM0ZDNEY5QUUwMi9hUFBPc3dYSHZfZmUtcWFNQi10QndMampj V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FQUE9zd1hIdl9mZS1xYU1CLXRCd0xqamNXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODlFQTYvQ0Q5M0YzNkMwRTdBMTFFQjkxRDg0QjNGQzRGOUFFMDIvRTRDNURCODQw RTdDMTFFQjg2MjVBRTVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnRR8wDQYJKoZIhvcNAQELBQADggEBACcq0CIsD4zhfWlJ fTtUG0OaI5Dde1Aw0rPJ2kljKfM4K9FqSy/sA5ONblWsUWmru4A+Zo/MoKGG2UcN kdFRHvyPjeKsTqL+c26aGov/z8hDK5BYoVZolgnUOfnt3u7RfcHEr0H3E967Cj9A RRuVZgaqdeCRfEZeVHDh9VeeBlEkgQrKcxqJcxXZpyN/xqSMiS4JqYJ7eUwVVjd3 CH2wEMfGY0KC+tAkvljjcMWwxhqib7ei8bs40/qUSXgKFDX06/4Ox9nzunMl+e1Y lbOYbcCIstBOqtBj1n0nxMpA7texls3ecPIaTFLmZz1w04Ey/d+DD6mkpU4rNUhj AJDwPwg= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:10 2024 by rpki-client on console-fra.rpki-client.org