$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/CFF0FDEC025911EDA0A85765C4F9AE02.roa File: CFF0FDEC025911EDA0A85765C4F9AE02.roa (raw, json) Hash identifier: IIET7EYwWspwql9sc/JN8kiozR7Qi5MMWfPVZw350Q4= Subject key identifier: 3B:2D:3E:44:26:FB:BF:40:7A:0D:04:C8:39:33:58:53:33:B7:93:2D Certificate issuer: /CN=A91BEA2A/serialNumber=23559E9A7157E7AE7F604C428837292DE03309A0 Certificate serial: 0170 Authority key identifier: 23:55:9E:9A:71:57:E7:AE:7F:60:4C:42:88:37:29:2D:E0:33:09:A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I1WemnFX565_YExCiDcpLeAzCaA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/CFF0FDEC025911EDA0A85765C4F9AE02.roa Signing time: Wed 01 Nov 2023 04:35:24 +0000 ROA not before: Wed 01 Nov 2023 04:35:24 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 139200 IP address blocks: 103.123.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.crl rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I1WemnFX565_YExCiDcpLeAzCaA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 368 (0x170) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEA2A/serialNumber=23559E9A7157E7AE7F604C428837292DE03309A0 Validity Not Before: Nov 1 04:35:24 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6541d58c-154b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:7a:cb:f0:89:c4:98:47:fe:3a:b2:01:06:9b: 0d:3d:d8:f3:a4:b6:e7:b8:ae:b6:0b:ec:16:3b:58: f5:6f:c3:c2:26:64:2e:7c:59:c8:47:bd:fd:db:57: 9e:0a:9a:08:3a:89:ed:9d:a1:70:e5:4a:48:42:2c: be:5d:6a:07:e0:8c:50:6b:d8:61:28:df:09:03:ae: 16:9a:91:ea:71:af:f3:28:54:87:ad:f0:5d:06:36: 8f:54:1d:1b:39:0b:f4:5d:cd:eb:c6:c4:fc:21:db: 41:12:17:23:63:e1:a5:e5:94:ee:00:67:7d:98:fd: 31:93:cf:d6:90:cd:d0:e1:9a:04:fa:45:91:26:bc: 22:07:24:d1:76:56:58:a3:ad:38:da:90:29:2f:24: 81:87:0a:a1:f0:6f:ec:9c:54:c5:1b:62:91:45:7b: db:f9:97:f3:cb:f6:85:80:2c:94:08:f8:1e:93:ca: 88:73:e4:e1:2a:1d:f5:d8:5a:fa:73:ad:84:a0:2e: cd:7a:70:b0:a0:77:b6:38:63:69:96:42:9e:4c:47: 13:d3:58:75:50:04:5f:f9:e7:81:ea:64:a9:72:e9: 14:1e:cf:49:d5:73:f7:54:19:f8:94:da:b2:74:34: 11:9e:0e:7e:36:f3:cf:71:f0:af:4e:92:27:86:ea: fc:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:2D:3E:44:26:FB:BF:40:7A:0D:04:C8:39:33:58:53:33:B7:93:2D X509v3 Authority Key Identifier: keyid:23:55:9E:9A:71:57:E7:AE:7F:60:4C:42:88:37:29:2D:E0:33:09:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/I1WemnFX565_YExCiDcpLeAzCaA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I1WemnFX565_YExCiDcpLeAzCaA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEA2A/3D350FD2025611EDA1322D5DC4F9AE02/CFF0FDEC025911EDA0A85765C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.123.109.0/24 Signature Algorithm: sha256WithRSAEncryption 43:ec:7f:e3:74:36:6a:48:29:9a:09:8d:91:bf:6f:eb:81:ff: 83:eb:d3:49:92:f7:0c:38:b5:26:4b:b0:65:4c:a9:c2:5a:a4: 89:a9:90:55:d4:87:00:67:f7:78:d3:67:58:fd:ea:eb:f3:02: b9:d2:29:0a:6f:2f:e9:4d:4a:e9:e0:c6:99:4f:29:46:3d:4b: 9a:50:ee:df:c0:ef:c5:7e:b6:b1:b5:bf:38:ad:3c:fc:fb:b8: 7c:be:ae:45:2b:30:d7:cb:2a:be:9e:39:44:e6:6b:89:e3:7d: f4:82:3f:65:e0:c7:20:f5:d7:8c:48:ac:96:e3:86:55:4b:d5: c6:37:a5:df:45:08:69:2f:de:17:d5:56:6b:31:4d:87:ff:d5: 60:31:e7:d0:6a:4e:45:50:57:26:62:91:04:f2:3e:56:67:0b: 45:76:b8:77:2a:b0:66:2d:37:6e:49:f9:18:e4:12:bd:0e:bc: dd:51:22:9d:28:c6:61:a3:7c:2c:f9:0d:06:13:fa:23:97:ba: 1e:e3:05:4d:f6:1d:7f:4c:f3:a4:23:8f:40:30:4c:6b:54:b2: 99:1c:e9:51:3e:eb:a7:45:d0:78:41:4e:e0:77:98:73:6d:5c: b5:1a:61:38:1f:20:20:46:aa:e0:86:07:d9:37:bc:3d:3c:00: 2e:08:21:8a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAXAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkVBMkExMTAvBgNVBAUTKDIzNTU5RTlBNzE1N0U3QUU3RjYwNEM0Mjg4MzcyOTJE RTAzMzA5QTAwHhcNMjMxMTAxMDQzNTI0WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQxZDU4Yy0xNTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxHrL8InEmEf+OrIBBpsNPdjzpLbnuK62C+wWO1j1b8PCJmQufFnIR73921ee CpoIOontnaFw5UpIQiy+XWoH4IxQa9hhKN8JA64WmpHqca/zKFSHrfBdBjaPVB0b OQv0Xc3rxsT8IdtBEhcjY+Gl5ZTuAGd9mP0xk8/WkM3Q4ZoE+kWRJrwiByTRdlZY o6042pApLySBhwqh8G/snFTFG2KRRXvb+Zfzy/aFgCyUCPgek8qIc+ThKh312Fr6 c62EoC7NenCwoHe2OGNplkKeTEcT01h1UARf+eeB6mSpcukUHs9J1XP3VBn4lNqy dDQRng5+NvPPcfCvTpInhur8YQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDstPkQm +79Aeg0EyDkzWFMzt5MtMB8GA1UdIwQYMBaAFCNVnppxV+euf2BMQog3KS3gMwmg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUEyQS8zRDM1MEZEMjAy NTYxMUVEQTEzMjJENURDNEY5QUUwMi9JMVdlbW5GWDU2NV9ZRXhDaURjcExlQXpD YUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0kxV2VtbkZYNTY1X1lFeENpRGNwTGVBekNhQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkVBMkEvM0QzNTBGRDIwMjU2MTFFREExMzIyRDVEQzRGOUFFMDIvQ0ZGMEZERUMw MjU5MTFFREEwQTg1NzY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABne20wDQYJKoZIhvcNAQELBQADggEBAEPsf+N0NmpIKZoJ jZG/b+uB/4Pr00mS9ww4tSZLsGVMqcJapImpkFXUhwBn93jTZ1j96uvzArnSKQpv L+lNSungxplPKUY9S5pQ7t/A78V+trG1vzitPPz7uHy+rkUrMNfLKr6eOUTma4nj ffSCP2XgxyD114xIrJbjhlVL1cY3pd9FCGkv3hfVVmsxTYf/1WAx59BqTkVQVyZi kQTyPlZnC0V2uHcqsGYtN25J+RjkEr0OvN1RIp0oxmGjfCz5DQYT+iOXuh7jBU32 HX9M86Qjj0AwTGtUspkc6VE+66dF0HhBTuB3mHNtXLUaYTgfICBGquCGB9k3vD08 AC4IIYo= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:44 2024 by rpki-client on console-fra.rpki-client.org