$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7691/82164D047D5911EDBEB55D0AC4F9AE02/33EC894A7D5E11EDA43E0186C4F9AE02.roa File: 33EC894A7D5E11EDA43E0186C4F9AE02.roa (raw, json) Hash identifier: Giytra5oYOQUic0QKJntra/mWB2HSJ1ws3wH71aT+/Y= Subject key identifier: 46:39:1E:B0:31:9A:2B:CD:06:E6:47:CE:90:83:47:F1:3D:71:C5:04 Certificate issuer: /CN=A91B7691/serialNumber=EC0C9A58CB0ACD4273B45E1B91813BFFFFD08140 Certificate serial: D1 Authority key identifier: EC:0C:9A:58:CB:0A:CD:42:73:B4:5E:1B:91:81:3B:FF:FF:D0:81:40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7AyaWMsKzUJztF4bkYE7___QgUA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7691/82164D047D5911EDBEB55D0AC4F9AE02/33EC894A7D5E11EDA43E0186C4F9AE02.roa Signing time: Sun 21 Jan 2024 04:55:53 +0000 ROA not before: Sun 21 Jan 2024 04:55:53 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 135772 IP address blocks: 103.54.230.0/23 maxlen: 24 2400:cc60::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7691/82164D047D5911EDBEB55D0AC4F9AE02/7AyaWMsKzUJztF4bkYE7___QgUA.crl rsync://rpki.apnic.net/member_repository/A91B7691/82164D047D5911EDBEB55D0AC4F9AE02/7AyaWMsKzUJztF4bkYE7___QgUA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7AyaWMsKzUJztF4bkYE7___QgUA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 209 (0xd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7691/serialNumber=EC0C9A58CB0ACD4273B45E1B91813BFFFFD08140 Validity Not Before: Jan 21 04:55:53 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65aca3d8-f6b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:e3:d2:b3:ad:90:ed:11:ce:01:f8:f4:12:f3: cf:75:43:4e:ec:e9:0f:ad:51:9c:d8:7a:c8:82:e3: f3:eb:61:4b:ea:89:e3:b5:b2:48:e1:b1:6c:f0:a1: 21:04:e2:f9:be:92:ab:e1:57:85:1b:87:5a:6e:02: 7d:e5:a9:a7:b9:e1:13:21:ab:62:6a:87:8f:77:60: e3:05:ed:6a:d9:30:97:01:10:03:1c:d5:d1:fb:dc: a4:3e:cb:38:24:6b:ca:1a:63:8a:11:d4:e8:2e:c4: 42:f0:4e:e3:b7:54:d1:67:36:45:78:47:60:75:9d: 86:f5:a7:42:2b:e9:f1:dc:9c:d9:7c:8a:e5:72:81: e1:ca:92:50:3a:a3:3f:d7:b2:bf:fe:a4:3b:e9:40: 73:c3:fc:5f:8b:34:f2:99:9d:b5:31:e8:3c:6f:f7: c5:b9:40:f5:e2:a3:5d:e9:ee:b8:c6:3b:46:11:4b: f8:10:5a:02:49:45:f3:44:43:15:f6:a4:04:57:12: 06:cb:07:ed:7e:6a:0b:ab:fd:9b:10:5d:1d:43:a6: e8:13:60:fe:cb:a3:46:59:41:14:53:d2:c6:a0:86: 56:c1:07:a0:3f:d6:18:8f:a1:64:d0:c3:60:9d:17: 34:ec:6c:0e:27:1d:e6:e3:59:3e:a4:a3:5c:db:4e: 1d:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:39:1E:B0:31:9A:2B:CD:06:E6:47:CE:90:83:47:F1:3D:71:C5:04 X509v3 Authority Key Identifier: keyid:EC:0C:9A:58:CB:0A:CD:42:73:B4:5E:1B:91:81:3B:FF:FF:D0:81:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7691/82164D047D5911EDBEB55D0AC4F9AE02/7AyaWMsKzUJztF4bkYE7___QgUA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7AyaWMsKzUJztF4bkYE7___QgUA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7691/82164D047D5911EDBEB55D0AC4F9AE02/33EC894A7D5E11EDA43E0186C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.54.230.0/23 IPv6: 2400:cc60::/32 Signature Algorithm: sha256WithRSAEncryption 17:ae:e0:2c:e3:67:6e:6d:bc:38:d2:5f:7a:37:79:e7:0a:8d: b7:c6:40:25:30:45:12:42:b3:2a:40:f4:da:12:48:d9:de:6f: 3d:99:87:7b:ed:3c:e8:2c:e6:e8:41:0a:f9:b2:d7:30:f3:12: eb:33:9e:d7:5e:6e:34:2d:56:33:45:01:a1:07:6d:0e:3f:88: dc:08:1e:ce:27:2f:d9:43:ea:89:ea:7d:ab:c1:c5:b2:77:aa: a0:83:c9:dc:14:a6:5c:90:58:a8:1f:4e:b9:5c:c8:56:4e:6e: 14:c3:74:25:6e:f2:09:59:a5:b4:64:f7:33:ae:6d:d9:c8:13: 1b:04:2b:76:f0:f6:33:ce:e3:95:d1:38:7f:f8:7c:7e:cb:eb: 1a:21:58:49:86:05:42:34:9f:81:bf:00:33:ea:a0:fa:3c:7f: 39:e6:64:81:ae:18:84:4b:f9:34:2a:16:0e:6d:1c:98:ea:4e: 9f:22:d8:f4:c1:ee:2c:a9:44:88:17:dd:1a:cd:49:33:2c:25: 2f:3c:11:7e:c4:98:cd:09:ab:68:dd:53:fe:cf:1a:aa:47:b5: 33:24:06:7a:d1:77:6f:2f:f8:81:0d:f1:d7:46:80:59:ed:93: e5:e3:ca:47:3e:16:ab:ff:db:65:77:eb:c9:36:bb:b7:51:ed: 2b:28:60:fe -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICANEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc2OTExMTAvBgNVBAUTKEVDMEM5QTU4Q0IwQUNENDI3M0I0NUUxQjkxODEzQkZG RkZEMDgxNDAwHhcNMjQwMTIxMDQ1NTUzWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWFjYTNkOC1mNmI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnePSs62Q7RHOAfj0EvPPdUNO7OkPrVGc2HrIguPz62FL6onjtbJI4bFs8KEh BOL5vpKr4VeFG4dabgJ95amnueETIatiaoePd2DjBe1q2TCXARADHNXR+9ykPss4 JGvKGmOKEdToLsRC8E7jt1TRZzZFeEdgdZ2G9adCK+nx3JzZfIrlcoHhypJQOqM/ 17K//qQ76UBzw/xfizTymZ21Meg8b/fFuUD14qNd6e64xjtGEUv4EFoCSUXzREMV 9qQEVxIGywftfmoLq/2bEF0dQ6boE2D+y6NGWUEUU9LGoIZWwQegP9YYj6Fk0MNg nRc07GwOJx3m41k+pKNc204dNwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFEY5HrAx mivNBuZHzpCDR/E9ccUEMB8GA1UdIwQYMBaAFOwMmljLCs1Cc7ReG5GBO///0IFA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzY5MS84MjE2NEQwNDdE NTkxMUVEQkVCNTVEMEFDNEY5QUUwMi83QXlhV01zS3pVSnp0RjRia1lFN19fX1Fn VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdBeWFXTXNLelVKenRGNGJrWUU3X19fUWdVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qjc2OTEvODIxNjREMDQ3RDU5MTFFREJFQjU1RDBBQzRGOUFFMDIvMzNFQzg5NEE3 RDVFMTFFREE0M0UwMTg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnNuYwDQQCAAIwBwMFACQAzGAwDQYJKoZIhvcNAQELBQAD ggEBABeu4CzjZ25tvDjSX3o3eecKjbfGQCUwRRJCsypA9NoSSNnebz2Zh3vtPOgs 5uhBCvmy1zDzEuszntdebjQtVjNFAaEHbQ4/iNwIHs4nL9lD6onqfavBxbJ3qqCD ydwUplyQWKgfTrlcyFZObhTDdCVu8glZpbRk9zOubdnIExsEK3bw9jPO45XROH/4 fH7L6xohWEmGBUI0n4G/ADPqoPo8fznmZIGuGIRL+TQqFg5tHJjqTp8i2PTB7iyp RIgX3RrNSTMsJS88EX7EmM0Jq2jdU/7PGqpHtTMkBnrRd28v+IEN8ddGgFntk+Xj ykc+Fqv/22V368k2u7dR7SsoYP4= -----END CERTIFICATE-----Generated at Thu Nov 21 03:12:03 2024 by rpki-client on console-fra.rpki-client.org