$ rpki-client -vvf rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/1ECA8050696211EC8A05D115C4F9AE02.roa File: 1ECA8050696211EC8A05D115C4F9AE02.roa (raw, json) Hash identifier: A/i3WXy+MWFkmRs1QDFmCVsqZk3LZ8jSL/UIRxKrPIo= Subject key identifier: 4A:9E:23:F9:B9:11:5A:32:D1:EC:C1:1C:96:44:21:E6:C5:C8:95:C7 Certificate issuer: /CN=A91A45E0/serialNumber=6B0CB59503DA895FF94269D7A9BC20261704DCE9 Certificate serial: 0AF0 Authority key identifier: 6B:0C:B5:95:03:DA:89:5F:F9:42:69:D7:A9:BC:20:26:17:04:DC:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/awy1lQPaiV_5QmnXqbwgJhcE3Ok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/1ECA8050696211EC8A05D115C4F9AE02.roa Signing time: Mon 16 Oct 2023 19:27:48 +0000 ROA not before: Mon 16 Oct 2023 19:27:48 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 59239 IP address blocks: 103.100.234.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.crl rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/awy1lQPaiV_5QmnXqbwgJhcE3Ok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Oct 2024 18:51:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2800 (0xaf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A45E0/serialNumber=6B0CB59503DA895FF94269D7A9BC20261704DCE9 Validity Not Before: Oct 16 19:27:48 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=652d8eb4-bbe2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:8e:e6:f6:54:ea:12:8c:01:02:58:57:d5:78: 24:b6:be:aa:2b:ab:01:1f:f1:34:ee:78:cc:bd:6f: e7:14:21:fc:34:1c:de:cf:1e:07:a6:f4:d8:64:8e: 57:37:26:39:e6:5e:c5:3a:be:7e:52:27:79:93:55: d5:5f:7a:2b:1d:1e:d9:b4:d1:d6:be:7c:a3:ad:8d: 8f:10:ee:fd:1a:1d:7e:b6:88:61:cd:40:22:e3:73: c5:3f:eb:c8:7b:6c:de:56:36:60:da:9f:95:1a:6b: 3b:db:ca:e6:b7:18:30:46:07:18:d6:c8:2e:f1:b0: 7c:d2:a4:e2:7c:bd:55:fe:06:58:9c:05:09:fe:4c: 07:bc:76:c0:73:92:52:65:06:dd:67:9c:1e:06:d8: 5a:6a:7b:f1:c2:a9:4b:41:8c:8f:d6:df:45:e4:a0: 8a:6e:bb:a3:4d:d9:e1:32:ce:54:f2:bb:e4:61:09: 5e:07:e9:5b:55:fb:3d:62:90:f7:ba:8c:90:5e:d5: 29:53:cd:99:89:57:0b:68:7b:2e:44:c4:65:3f:22: 53:62:85:5f:60:73:5c:d2:ab:30:36:25:8a:ba:c8: 67:57:14:5b:4a:fc:ce:5d:cc:11:8e:e2:ad:dd:47: b4:1a:09:01:8f:a0:78:95:e3:b9:60:d0:a6:e4:34: 1c:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:9E:23:F9:B9:11:5A:32:D1:EC:C1:1C:96:44:21:E6:C5:C8:95:C7 X509v3 Authority Key Identifier: keyid:6B:0C:B5:95:03:DA:89:5F:F9:42:69:D7:A9:BC:20:26:17:04:DC:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/awy1lQPaiV_5QmnXqbwgJhcE3Ok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/awy1lQPaiV_5QmnXqbwgJhcE3Ok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A45E0/23BF2F26113E11EA88E87876C4F9AE02/1ECA8050696211EC8A05D115C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.100.234.0/24 Signature Algorithm: sha256WithRSAEncryption ca:85:2c:74:3f:39:1e:fa:54:8c:c4:59:e4:d0:85:15:d7:d0: 83:2d:28:a2:de:de:2c:89:0b:1c:e9:88:28:77:a7:c1:13:ff: 9b:95:16:32:98:d5:a4:11:f1:a7:28:33:66:d0:b2:57:fa:c4: f4:8d:c5:83:6f:fb:72:dd:5e:86:6f:93:cf:7d:02:d1:d9:a3: d1:41:96:c5:31:3e:2f:54:97:43:b2:09:b9:e7:c7:e1:9e:63: fe:79:e0:e8:c7:ce:b4:30:99:d1:b2:e6:58:96:a5:3a:b6:02: 00:1f:ce:2f:1d:75:ca:46:d2:4b:60:9a:3a:08:41:58:00:1b: 63:d6:2c:42:75:1d:91:fa:75:8f:ab:0a:f8:82:f6:d9:2f:b4: f2:6e:aa:d4:b5:df:1c:9a:6a:9f:79:2c:ab:a0:bc:ab:31:7f: 66:bd:61:50:99:70:d4:09:18:56:4d:6d:f0:5f:d5:00:e6:ee: f9:30:76:43:00:18:bb:81:5e:be:23:b7:e6:c4:c5:e0:54:08: a1:72:93:6f:da:e1:c1:16:39:e9:d6:c8:2a:92:88:04:61:73: ce:88:6c:ec:6e:1b:8a:ba:e9:ba:b2:75:b5:ca:a3:3d:24:c6: 9c:1c:ab:86:c1:d3:80:64:7f:ad:2d:80:86:07:79:37:0f:74: 82:06:93:1e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCvAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ1RTAxMTAvBgNVBAUTKDZCMENCNTk1MDNEQTg5NUZGOTQyNjlEN0E5QkMyMDI2 MTcwNERDRTkwHhcNMjMxMDE2MTkyNzQ4WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTJkOGViNC1iYmUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA147m9lTqEowBAlhX1Xgktr6qK6sBH/E07njMvW/nFCH8NBzezx4HpvTYZI5X NyY55l7FOr5+Uid5k1XVX3orHR7ZtNHWvnyjrY2PEO79Gh1+tohhzUAi43PFP+vI e2zeVjZg2p+VGms728rmtxgwRgcY1sgu8bB80qTifL1V/gZYnAUJ/kwHvHbAc5JS ZQbdZ5weBthaanvxwqlLQYyP1t9F5KCKbrujTdnhMs5U8rvkYQleB+lbVfs9YpD3 uoyQXtUpU82ZiVcLaHsuRMRlPyJTYoVfYHNc0qswNiWKushnVxRbSvzOXcwRjuKt 3Ue0GgkBj6B4leO5YNCm5DQcSwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEqeI/m5 EVoy0ezBHJZEIebFyJXHMB8GA1UdIwQYMBaAFGsMtZUD2olf+UJp16m8ICYXBNzp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDVFMC8yM0JGMkYyNjEx M0UxMUVBODhFODc4NzZDNEY5QUUwMi9hd3kxbFFQYWlWXzVRbW5YcWJ3Z0poY0Uz T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2F3eTFsUVBhaVZfNVFtblhxYndnSmhjRTNPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ1RTAvMjNCRjJGMjYxMTNFMTFFQTg4RTg3ODc2QzRGOUFFMDIvMUVDQTgwNTA2 OTYyMTFFQzhBMDVEMTE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnZOowDQYJKoZIhvcNAQELBQADggEBAMqFLHQ/OR76VIzE WeTQhRXX0IMtKKLe3iyJCxzpiCh3p8ET/5uVFjKY1aQR8acoM2bQslf6xPSNxYNv +3LdXoZvk899AtHZo9FBlsUxPi9Ul0OyCbnnx+GeY/554OjHzrQwmdGy5liWpTq2 AgAfzi8ddcpG0ktgmjoIQVgAG2PWLEJ1HZH6dY+rCviC9tkvtPJuqtS13xyaap95 LKugvKsxf2a9YVCZcNQJGFZNbfBf1QDm7vkwdkMAGLuBXr4jt+bExeBUCKFyk2/a 4cEWOenWyCqSiARhc86IbOxuG4q66bqydbXKoz0kxpwcq4bB04Bkf60tgIYHeTcP dIIGkx4= -----END CERTIFICATE-----Generated at Thu Sep 26 20:21:55 2024 by rpki-client on console-fra.rpki-client.org