$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/C2065F2CA5F311E8B54BF03DC4F9AE02.roa File: C2065F2CA5F311E8B54BF03DC4F9AE02.roa (raw, json) Hash identifier: 7dzMQW8xZe2lq7d8lclvmxKRE19SR0FNahUj7xIAu1o= Subject key identifier: 3F:7F:61:17:02:39:1D:8D:E3:D1:30:71:F0:E4:DC:9E:91:2F:4D:E7 Certificate issuer: /CN=A91AF406/serialNumber=BC710D05633C5E11B0744B71AEBB88AE2B2446E3 Certificate serial: 129A Authority key identifier: BC:71:0D:05:63:3C:5E:11:B0:74:4B:71:AE:BB:88:AE:2B:24:46:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHENBWM8XhGwdEtxrruIriskRuM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/C2065F2CA5F311E8B54BF03DC4F9AE02.roa Signing time: Sat 06 Jul 2024 17:44:41 +0000 ROA not before: Sat 06 Jul 2024 17:44:41 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 137925 IP address blocks: 103.117.80.0/24 maxlen: 24 2001:df5:a300::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.crl rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHENBWM8XhGwdEtxrruIriskRuM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4762 (0x129a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF406/serialNumber=BC710D05633C5E11B0744B71AEBB88AE2B2446E3 Validity Not Before: Jul 6 17:44:41 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66898289-3354 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:f5:de:22:44:b2:f7:7e:15:94:ef:bf:6f:60: 04:04:af:96:06:78:e0:f8:27:ec:f6:2a:58:33:79: 8a:ba:bc:b2:29:dd:23:09:a6:f0:50:27:8d:c4:b1: 65:b1:66:43:66:05:50:42:a5:c2:07:6b:a1:f0:3c: ba:45:4a:78:04:aa:ef:9b:dd:44:2e:ae:3e:7e:e3: e3:75:46:98:a3:62:a2:d3:fc:a0:ad:88:b6:eb:4b: 61:25:20:da:2e:85:f7:b7:57:44:01:b1:8e:cb:9d: a7:ce:dd:93:15:20:18:ce:4c:44:75:eb:e4:7a:11: 15:b4:da:ca:bd:cf:c7:54:13:ae:e8:16:64:ea:97: 5a:42:de:d9:af:fd:93:b8:6c:d9:a9:a0:a9:3e:68: 33:a3:dc:3d:6f:e3:9b:41:08:f4:c4:0d:4b:31:0f: 7b:03:5b:c1:06:58:ee:6e:1a:1a:82:35:86:81:70: cf:b9:c6:12:1e:e0:c1:54:b8:e1:d7:49:ca:26:35: a9:67:37:b6:fd:bf:f1:39:a8:51:e1:8a:06:b7:57: 7e:9b:6c:74:01:47:95:8b:c6:c3:fb:8c:18:06:ca: 99:04:0a:85:da:4d:6d:b5:3c:a9:ed:d0:29:f2:cc: 59:0a:f9:92:c6:9e:a2:61:0e:18:1c:05:80:83:cc: 64:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:7F:61:17:02:39:1D:8D:E3:D1:30:71:F0:E4:DC:9E:91:2F:4D:E7 X509v3 Authority Key Identifier: keyid:BC:71:0D:05:63:3C:5E:11:B0:74:4B:71:AE:BB:88:AE:2B:24:46:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHENBWM8XhGwdEtxrruIriskRuM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/C2065F2CA5F311E8B54BF03DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.117.80.0/24 IPv6: 2001:df5:a300::/48 Signature Algorithm: sha256WithRSAEncryption c0:70:1d:d7:f8:8a:d8:39:bc:59:5c:7e:cc:00:2c:10:37:8e: 8e:67:43:13:7a:db:f8:d5:65:43:13:8a:70:b7:8e:dc:88:f8: 17:91:e3:a9:2b:f2:68:b9:9a:e6:cd:8a:f3:09:9e:9a:d7:30: d5:97:d1:69:40:68:6e:cf:da:4a:1d:72:3e:28:6e:42:4f:bb: a1:51:dd:20:73:11:60:3a:5b:81:d4:77:d8:65:e6:ba:ea:45: 44:e5:3d:0e:e3:8c:c2:76:fb:bd:fd:51:c7:bf:31:85:9c:f1: 49:8e:6d:8f:e2:f0:ab:3d:29:8a:61:fd:40:5c:aa:a8:31:69: e8:06:ad:4a:ab:3e:67:d2:94:57:79:7a:81:35:76:e6:17:dc: a6:d5:4f:91:41:16:11:93:48:8d:35:c5:2e:b0:a2:c7:4b:10: b3:90:42:1b:75:a6:28:ef:67:73:18:82:27:a2:26:cf:3f:75: 11:b4:7d:6d:6b:a9:45:12:3f:08:8a:3c:63:dd:bb:f8:eb:5d: 72:4d:85:01:02:ea:e8:27:91:fd:34:1e:d3:16:95:c7:1e:c2: 18:04:b7:42:db:7f:34:14:9a:a1:be:ad:bf:eb:b1:64:2b:e3: 07:45:39:cc:ee:02:5a:cd:ef:d9:ba:77:1b:1a:1e:95:e5:92: 5c:64:53:6c -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICEpowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUY0MDYxMTAvBgNVBAUTKEJDNzEwRDA1NjMzQzVFMTFCMDc0NEI3MUFFQkI4OEFF MkIyNDQ2RTMwHhcNMjQwNzA2MTc0NDQxWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg5ODI4OS0zMzU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2PXeIkSy934VlO+/b2AEBK+WBnjg+Cfs9ipYM3mKuryyKd0jCabwUCeNxLFl sWZDZgVQQqXCB2uh8Dy6RUp4BKrvm91ELq4+fuPjdUaYo2Ki0/ygrYi260thJSDa LoX3t1dEAbGOy52nzt2TFSAYzkxEdevkehEVtNrKvc/HVBOu6BZk6pdaQt7Zr/2T uGzZqaCpPmgzo9w9b+ObQQj0xA1LMQ97A1vBBljubhoagjWGgXDPucYSHuDBVLjh 10nKJjWpZze2/b/xOahR4YoGt1d+m2x0AUeVi8bD+4wYBsqZBAqF2k1ttTyp7dAp 8sxZCvmSxp6iYQ4YHAWAg8xkyQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFD9/YRcC OR2N49EwcfDk3J6RL03nMB8GA1UdIwQYMBaAFLxxDQVjPF4RsHRLca67iK4rJEbj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjQwNi8zRjY3MEMwQ0E1 RjIxMUU4OTdBNzUwM0FDNEY5QUUwMi92SEVOQldNOFhoR3dkRXR4cnJ1SXJpc2tS dU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZIRU5CV004WGhHd2RFdHhycnVJcmlza1J1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUY0MDYvM0Y2NzBDMENBNUYyMTFFODk3QTc1MDNBQzRGOUFFMDIvQzIwNjVGMkNB NUYzMTFFOEI1NEJGMDNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABndVAwDwQCAAIwCQMHACABDfWjADANBgkqhkiG9w0BAQsF AAOCAQEAwHAd1/iK2Dm8WVx+zAAsEDeOjmdDE3rb+NVlQxOKcLeO3Ij4F5HjqSvy aLma5s2K8wmemtcw1ZfRaUBobs/aSh1yPihuQk+7oVHdIHMRYDpbgdR32GXmuupF ROU9DuOMwnb7vf1Rx78xhZzxSY5tj+Lwqz0pimH9QFyqqDFp6AatSqs+Z9KUV3l6 gTV25hfcptVPkUEWEZNIjTXFLrCix0sQs5BCG3WmKO9ncxiCJ6Imzz91EbR9bWup RRI/CIo8Y927+Otdck2FAQLq6CeR/TQe0xaVxx7CGAS3Qtt/NBSaob6tv+uxZCvj B0U5zO4CWs3v2bp3GxoeleWSXGRTbA== -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:19 2024 by rpki-client on console-fra.rpki-client.org