$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC726/9C4F530A38AF11EB8913DE41C4F9AE02/A8D1E0DE688811ECBE2C4F49C4F9AE02.roa File: A8D1E0DE688811ECBE2C4F49C4F9AE02.roa (raw, json) Hash identifier: yEgtHIplNDYjelE1WyOlFulPx/PW9bbFJzJFsdaTL4c= Subject key identifier: 27:02:71:C1:4E:07:62:06:BB:0B:E2:2B:1B:F0:DD:25:E6:07:75:48 Certificate issuer: /CN=A91AC726/serialNumber=4D847523E5BDD9E3B8969828A04BFEDA2B0C031B Certificate serial: 0643 Authority key identifier: 4D:84:75:23:E5:BD:D9:E3:B8:96:98:28:A0:4B:FE:DA:2B:0C:03:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TYR1I-W92eO4lpgooEv-2isMAxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC726/9C4F530A38AF11EB8913DE41C4F9AE02/A8D1E0DE688811ECBE2C4F49C4F9AE02.roa Signing time: Thu 22 Feb 2024 23:31:58 +0000 ROA not before: Thu 22 Feb 2024 23:31:58 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 9498 IP address blocks: 103.159.192.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC726/9C4F530A38AF11EB8913DE41C4F9AE02/TYR1I-W92eO4lpgooEv-2isMAxs.crl rsync://rpki.apnic.net/member_repository/A91AC726/9C4F530A38AF11EB8913DE41C4F9AE02/TYR1I-W92eO4lpgooEv-2isMAxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TYR1I-W92eO4lpgooEv-2isMAxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1603 (0x643) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC726/serialNumber=4D847523E5BDD9E3B8969828A04BFEDA2B0C031B Validity Not Before: Feb 22 23:31:58 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65d7d96e-620b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:41:19:31:48:4b:3b:f8:92:35:ad:cc:11:c4: b4:1c:4e:e5:2d:f1:5f:3f:97:e2:5c:f1:f6:9c:5c: 87:25:f8:16:a9:f2:e8:8e:79:0d:c5:c3:d4:6e:77: db:2f:e5:a3:ab:29:fd:e4:a0:6e:d7:6b:65:6b:c8: 02:f0:77:66:f2:c9:60:bc:81:21:dc:22:ab:fa:8d: bd:4f:27:71:34:57:df:33:e9:45:0a:79:14:f3:58: 77:f4:8e:49:d0:4a:de:22:95:22:4b:34:1b:19:ca: f0:1d:f0:0b:c1:f7:b9:ef:37:df:64:54:a7:5b:a0: a0:db:d0:96:a6:5b:51:5d:86:4e:64:c2:6f:fd:d4: 27:f0:d2:e0:9b:9c:2a:b6:9e:32:34:9f:78:48:9b: 6c:31:df:7c:ec:b5:fe:e8:28:86:86:db:15:01:04: f2:f0:30:c6:84:88:da:e6:d5:89:13:db:40:e1:a0: f7:4d:88:19:93:1c:65:43:96:07:93:86:8d:c5:e5: 2d:f1:8d:98:2d:48:d7:39:e3:f1:d1:a1:dd:70:68: f2:35:9b:30:21:5f:8f:be:93:ee:b4:a1:1a:c6:a0: 60:b7:33:af:07:32:67:d9:f9:68:6b:07:e6:a7:78: 6d:fc:08:45:d0:cf:2a:80:6d:86:b6:f5:39:8a:b9: cf:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:02:71:C1:4E:07:62:06:BB:0B:E2:2B:1B:F0:DD:25:E6:07:75:48 X509v3 Authority Key Identifier: keyid:4D:84:75:23:E5:BD:D9:E3:B8:96:98:28:A0:4B:FE:DA:2B:0C:03:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC726/9C4F530A38AF11EB8913DE41C4F9AE02/TYR1I-W92eO4lpgooEv-2isMAxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TYR1I-W92eO4lpgooEv-2isMAxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC726/9C4F530A38AF11EB8913DE41C4F9AE02/A8D1E0DE688811ECBE2C4F49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.192.0/23 Signature Algorithm: sha256WithRSAEncryption 1f:5c:cf:21:b7:19:94:33:c2:e1:06:c3:e8:2d:78:3c:52:a0: 1e:19:f5:d4:c8:98:0b:78:15:1b:af:b0:0c:c1:ab:81:00:da: 97:6a:8c:97:69:75:ae:95:04:12:42:53:3a:57:2e:a9:c0:44: 22:69:20:43:94:ab:24:68:88:ae:e3:c1:95:fa:d7:5d:18:5d: e1:68:bd:8a:40:e7:94:fd:39:7d:82:cc:31:c3:d3:1b:f6:51: 55:e3:8c:39:16:ed:95:22:d7:67:ba:b9:99:39:e6:35:82:a4: 4e:2f:2a:61:a1:97:8f:6c:f4:4f:05:7f:ae:95:e3:97:02:00: 46:fb:c5:d3:b9:11:1a:08:93:dd:d5:77:e4:62:c5:17:a6:d6: c7:8b:1d:f0:bb:28:39:ce:42:8f:26:7a:51:bf:57:06:39:12: c0:a0:9d:f0:6b:d4:9f:17:e2:fd:49:95:23:4f:40:c9:68:16: 6e:28:9f:3f:29:98:d6:1f:7e:90:47:88:ce:30:a2:7c:19:4a: db:5c:2d:2c:05:9f:cf:27:b9:e5:c4:82:cd:2a:0d:49:3d:70: d3:ce:c0:d3:27:d9:58:5e:68:3c:27:71:0c:7d:29:85:46:21: da:74:5c:fe:28:c8:0b:e2:2b:7d:73:4e:96:d9:cc:0c:74:59: fa:f6:69:ee -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBkMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUM3MjYxMTAvBgNVBAUTKDREODQ3NTIzRTVCREQ5RTNCODk2OTgyOEEwNEJGRURB MkIwQzAzMUIwHhcNMjQwMjIyMjMzMTU4WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWQ3ZDk2ZS02MjBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuUEZMUhLO/iSNa3MEcS0HE7lLfFfP5fiXPH2nFyHJfgWqfLojnkNxcPUbnfb L+Wjqyn95KBu12tla8gC8Hdm8slgvIEh3CKr+o29TydxNFffM+lFCnkU81h39I5J 0EreIpUiSzQbGcrwHfALwfe57zffZFSnW6Cg29CWpltRXYZOZMJv/dQn8NLgm5wq tp4yNJ94SJtsMd987LX+6CiGhtsVAQTy8DDGhIja5tWJE9tA4aD3TYgZkxxlQ5YH k4aNxeUt8Y2YLUjXOePx0aHdcGjyNZswIV+PvpPutKEaxqBgtzOvBzJn2floawfm p3ht/AhF0M8qgG2GtvU5irnPNQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCcCccFO B2IGuwviKxvw3SXmB3VIMB8GA1UdIwQYMBaAFE2EdSPlvdnjuJaYKKBL/torDAMb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQzcyNi85QzRGNTMwQTM4 QUYxMUVCODkxM0RFNDFDNEY5QUUwMi9UWVIxSS1XOTJlTzRscGdvb0V2LTJpc01B eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RZUjFJLVc5MmVPNGxwZ29vRXYtMmlzTUF4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUM3MjYvOUM0RjUzMEEzOEFGMTFFQjg5MTNERTQxQzRGOUFFMDIvQThEMUUwREU2 ODg4MTFFQ0JFMkM0RjQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnn8AwDQYJKoZIhvcNAQELBQADggEBAB9czyG3GZQzwuEG w+gteDxSoB4Z9dTImAt4FRuvsAzBq4EA2pdqjJdpda6VBBJCUzpXLqnARCJpIEOU qyRoiK7jwZX6110YXeFovYpA55T9OX2CzDHD0xv2UVXjjDkW7ZUi12e6uZk55jWC pE4vKmGhl49s9E8Ff66V45cCAEb7xdO5ERoIk93Vd+RixRem1seLHfC7KDnOQo8m elG/VwY5EsCgnfBr1J8X4v1JlSNPQMloFm4onz8pmNYffpBHiM4wonwZSttcLSwF n88nueXEgs0qDUk9cNPOwNMn2VheaDwncQx9KYVGIdp0XP4oyAviK31zTpbZzAx0 Wfr2ae4= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:11 2024 by rpki-client on console-fra.rpki-client.org