$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEBAA/2CFD3712CCD011ED98252E75C4F9AE02/471D214809DD11EFAF5F611EC4F9AE02.roa File: 471D214809DD11EFAF5F611EC4F9AE02.roa (raw, json) Hash identifier: NuXlYp6HBu4b8bcXEpIyB4yko9brj7g5R8b/IXH6ZJQ= Subject key identifier: 28:D9:CC:99:06:A1:93:1C:BF:AE:E5:6A:2B:28:45:44:06:B1:2B:F8 Certificate issuer: /CN=A91CEBAA/serialNumber=32618618244C8D6B4BA60A2FED9723B998D9A170 Certificate serial: 0127 Authority key identifier: 32:61:86:18:24:4C:8D:6B:4B:A6:0A:2F:ED:97:23:B9:98:D9:A1:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MmGGGCRMjWtLpgov7ZcjuZjZoXA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEBAA/2CFD3712CCD011ED98252E75C4F9AE02/471D214809DD11EFAF5F611EC4F9AE02.roa Signing time: Tue 13 Aug 2024 19:58:27 +0000 ROA not before: Tue 13 Aug 2024 19:58:27 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 138368 IP address blocks: 103.189.232.0/24 maxlen: 24 103.189.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEBAA/2CFD3712CCD011ED98252E75C4F9AE02/MmGGGCRMjWtLpgov7ZcjuZjZoXA.crl rsync://rpki.apnic.net/member_repository/A91CEBAA/2CFD3712CCD011ED98252E75C4F9AE02/MmGGGCRMjWtLpgov7ZcjuZjZoXA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MmGGGCRMjWtLpgov7ZcjuZjZoXA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:44:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 295 (0x127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEBAA/serialNumber=32618618244C8D6B4BA60A2FED9723B998D9A170 Validity Not Before: Aug 13 19:58:27 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66bbbae3-66a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:16:66:b4:d5:7c:a5:9f:bf:e4:29:4a:bf:c3: 57:7d:bd:8f:81:01:85:0d:aa:6d:86:7f:57:6f:79: 46:38:94:3c:ea:6c:cc:4d:d2:ba:1d:ef:fd:a3:b6: 7a:3e:ae:6c:a6:83:b6:a2:65:d6:cd:8e:f7:15:3f: af:d0:3c:06:21:3a:8a:de:90:74:31:1e:b9:4d:1b: b7:73:85:ca:91:40:7c:64:00:9f:f1:d5:84:6c:d4: 48:a0:27:41:51:ae:3b:b6:ff:3f:7e:0f:19:7d:5c: a2:82:a5:b1:10:84:1d:8a:e7:fc:fe:44:81:60:d1: 9e:8b:d4:2a:d6:a5:64:40:df:f4:cc:60:32:19:17: 8d:ad:3f:5a:24:78:ff:8a:f0:1f:fe:e3:b6:9b:24: c0:77:c3:6f:0a:e5:e8:d2:58:93:02:ef:46:8f:1b: 7f:6d:fe:33:5d:6c:b6:3f:21:f4:7c:33:44:cb:90: 8d:8c:87:f3:72:c6:64:ce:d6:b1:d6:67:9e:11:69: f7:ce:48:f7:e2:89:e7:3f:e8:83:14:fa:2a:e0:60: 60:9a:7d:cc:07:91:ac:1d:a2:ef:5e:fe:b8:7d:cc: ec:c1:10:2e:f6:f7:30:1c:89:a7:ff:db:89:9f:00: 64:be:e0:8e:c4:7b:2d:7b:7b:cb:ca:dd:6a:ed:19: d8:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:D9:CC:99:06:A1:93:1C:BF:AE:E5:6A:2B:28:45:44:06:B1:2B:F8 X509v3 Authority Key Identifier: keyid:32:61:86:18:24:4C:8D:6B:4B:A6:0A:2F:ED:97:23:B9:98:D9:A1:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEBAA/2CFD3712CCD011ED98252E75C4F9AE02/MmGGGCRMjWtLpgov7ZcjuZjZoXA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MmGGGCRMjWtLpgov7ZcjuZjZoXA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEBAA/2CFD3712CCD011ED98252E75C4F9AE02/471D214809DD11EFAF5F611EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.189.232.0/23 Signature Algorithm: sha256WithRSAEncryption 86:cd:19:8d:5e:60:13:85:e7:55:cb:b5:4b:b8:da:6e:63:c2: 6c:e3:fd:a4:bd:f7:c8:38:65:a1:c2:b6:15:99:06:80:24:51: 69:81:59:f0:f9:6a:ba:5b:62:69:3f:35:48:61:f4:78:3c:2d: 8d:b9:97:c3:1b:35:ca:74:06:85:83:48:60:7a:27:4d:76:b4: da:d8:d7:f3:6f:55:b9:8e:14:97:c9:d9:10:69:fe:40:8d:50: 51:49:97:37:bd:32:b3:4d:02:37:2d:0c:9c:42:48:5f:25:c3: 4e:c4:5e:b9:5c:94:8f:98:cf:dd:d2:d6:64:f4:f1:69:3d:b3: b7:0e:4b:2a:e4:fb:34:5a:00:9d:b5:f9:5f:a3:e1:6d:52:44: ce:5a:74:ba:f2:f8:12:aa:9b:92:d5:b7:c0:bd:24:7f:ad:60: 4c:9d:79:bf:92:bd:49:eb:5a:c2:66:3f:25:b4:b4:3d:0f:80: 08:ea:bb:8f:f2:93:e4:83:c2:96:99:46:d5:32:6a:d0:62:b3: d0:25:49:5e:c3:19:6c:c6:d9:4b:72:a5:38:ed:95:bb:b1:64: a8:88:1a:8e:1f:6e:41:38:42:b2:28:e9:0f:32:5f:31:e7:f4: 7b:bb:1d:f7:f2:12:65:d2:4d:22:a3:0e:64:2f:07:ca:1c:0e: 52:7b:96:5b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VCQUExMTAvBgNVBAUTKDMyNjE4NjE4MjQ0QzhENkI0QkE2MEEyRkVEOTcyM0I5 OThEOUExNzAwHhcNMjQwODEzMTk1ODI3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJiYmFlMy02NmE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwxZmtNV8pZ+/5ClKv8NXfb2PgQGFDapthn9Xb3lGOJQ86mzMTdK6He/9o7Z6 Pq5spoO2omXWzY73FT+v0DwGITqK3pB0MR65TRu3c4XKkUB8ZACf8dWEbNRIoCdB Ua47tv8/fg8ZfVyigqWxEIQdiuf8/kSBYNGei9Qq1qVkQN/0zGAyGReNrT9aJHj/ ivAf/uO2myTAd8NvCuXo0liTAu9Gjxt/bf4zXWy2PyH0fDNEy5CNjIfzcsZkztax 1meeEWn3zkj34onnP+iDFPoq4GBgmn3MB5GsHaLvXv64fczswRAu9vcwHImn/9uJ nwBkvuCOxHste3vLyt1q7RnYQQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCjZzJkG oZMcv67laisoRUQGsSv4MB8GA1UdIwQYMBaAFDJhhhgkTI1rS6YKL+2XI7mY2aFw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUJBQS8yQ0ZEMzcxMkND RDAxMUVEOTgyNTJFNzVDNEY5QUUwMi9NbUdHR0NSTWpXdExwZ292N1pjanVaalpv WEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01tR0dHQ1JNald0THBnb3Y3WmNqdVpqWm9YQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0VCQUEvMkNGRDM3MTJDQ0QwMTFFRDk4MjUyRTc1QzRGOUFFMDIvNDcxRDIxNDgw OUREMTFFRkFGNUY2MTFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnvegwDQYJKoZIhvcNAQELBQADggEBAIbNGY1eYBOF51XL tUu42m5jwmzj/aS998g4ZaHCthWZBoAkUWmBWfD5arpbYmk/NUhh9Hg8LY25l8Mb Ncp0BoWDSGB6J012tNrY1/NvVbmOFJfJ2RBp/kCNUFFJlze9MrNNAjctDJxCSF8l w07EXrlclI+Yz93S1mT08Wk9s7cOSyrk+zRaAJ21+V+j4W1SRM5adLry+BKqm5LV t8C9JH+tYEydeb+SvUnrWsJmPyW0tD0PgAjqu4/yk+SDwpaZRtUyatBis9AlSV7D GWzG2UtypTjtlbuxZKiIGo4fbkE4QrIo6Q8yXzHn9Hu7HffyEmXSTSKjDmQvB8oc DlJ7lls= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:57 2024 by rpki-client on console-fra.rpki-client.org