$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/C54BA97E283311ECBE887F3BC4F9AE02.roa File: C54BA97E283311ECBE887F3BC4F9AE02.roa (raw, json) Hash identifier: XOTWPX30EoXJqKV6109bwG+UksO95BBHigXDmFEItd0= Subject key identifier: B5:CD:4E:CE:B5:71:EA:49:95:26:21:B2:D0:51:1F:04:3E:3F:2A:9C Certificate issuer: /CN=A91D0A62/serialNumber=4CDEC7D421F16E851672A81239DD18FC8C1E3956 Certificate serial: 044A Authority key identifier: 4C:DE:C7:D4:21:F1:6E:85:16:72:A8:12:39:DD:18:FC:8C:1E:39:56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/C54BA97E283311ECBE887F3BC4F9AE02.roa Signing time: Sun 29 Sep 2024 00:15:02 +0000 ROA not before: Sun 29 Sep 2024 00:15:02 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 139195 IP address blocks: 103.174.70.0/24 maxlen: 24 103.174.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.crl rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1098 (0x44a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0A62/serialNumber=4CDEC7D421F16E851672A81239DD18FC8C1E3956 Validity Not Before: Sep 29 00:15:02 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f89c05-b9c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:78:8b:cd:21:17:1f:8e:58:74:4f:55:11:37: 6c:94:bb:d8:8d:86:c3:cb:30:19:e0:7d:52:60:d6: a9:18:c0:3c:48:c9:f0:4b:9f:00:a3:5e:a5:72:51: 5d:e8:94:71:26:56:91:07:25:b3:f6:ba:b3:e1:c1: 68:2a:40:d7:20:13:56:42:58:f3:3a:03:9c:b4:6a: 6c:95:3d:f1:e6:38:e0:da:72:b0:17:0a:87:b9:01: 19:56:7c:79:ab:b2:3e:4f:9d:65:89:67:4e:03:61: 51:7f:ed:a9:52:1e:fb:c1:8d:dc:ca:af:73:5d:98: 4a:3d:26:96:80:ff:ef:41:53:68:59:88:bc:2a:8e: 81:c7:58:f7:10:af:8d:4c:c3:b6:e1:22:da:7d:20: f4:2f:6e:68:25:39:8a:03:04:85:4d:95:19:15:e0: 02:c9:1b:ba:18:d0:16:89:a6:03:b8:95:8b:6a:4c: 08:b9:48:c8:63:03:66:ee:15:02:33:8f:9d:fb:9a: 63:44:af:44:db:2c:cf:93:9e:2f:08:12:79:6a:ed: fe:dc:0a:cb:37:92:88:b8:da:05:67:3f:e4:93:9a: 40:34:ec:90:96:df:95:73:9b:b7:8b:b8:eb:73:4b: 17:6d:b8:92:d3:18:e0:9d:2f:46:92:c0:aa:c7:60: a3:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:CD:4E:CE:B5:71:EA:49:95:26:21:B2:D0:51:1F:04:3E:3F:2A:9C X509v3 Authority Key Identifier: keyid:4C:DE:C7:D4:21:F1:6E:85:16:72:A8:12:39:DD:18:FC:8C:1E:39:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/TN7H1CHxboUWcqgSOd0Y_IweOVY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TN7H1CHxboUWcqgSOd0Y_IweOVY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0A62/1FA96DA0283111EC97A01316C4F9AE02/C54BA97E283311ECBE887F3BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.174.70.0/23 Signature Algorithm: sha256WithRSAEncryption 6f:8a:a9:cb:bb:f2:fa:d5:95:e1:68:2e:5d:59:67:79:10:b9: 44:7e:36:d1:e0:28:6f:80:d2:9b:3a:64:41:26:84:cc:4a:43: ee:ac:ac:1d:0c:e2:23:1e:9d:c7:5b:37:08:69:58:bc:b1:c4: 24:6a:6c:af:d7:c2:13:2a:6c:ed:37:84:df:26:bb:fd:28:0a: 43:29:f4:50:a1:54:99:a2:08:f8:99:5e:4f:0e:b9:d5:9d:0b: 96:4d:94:a7:79:68:a2:63:3e:d5:de:73:0c:f1:1b:25:aa:a9: bd:fe:fd:39:22:48:e2:18:3b:6a:0b:6c:8c:c6:7a:38:16:35: 7c:ba:a4:86:4a:97:ce:19:9d:b6:81:c3:42:e8:e8:58:8a:4c: 02:92:25:f4:45:bd:d5:4f:8e:da:b4:f2:5f:c2:c2:8d:20:45: c9:2c:76:76:d0:1d:40:64:56:5e:13:9a:4f:f4:08:b8:72:d9: 4f:bf:ab:96:b3:7d:00:8e:1c:07:47:61:f3:8e:58:69:11:38: 80:82:4d:ab:63:2d:9c:86:20:db:8a:d2:0e:be:9c:6e:ae:a5: 77:35:1a:2d:af:78:d9:d8:d5:e4:e9:04:a9:5a:b5:29:c9:4e: 58:bd:f0:11:28:d5:85:c0:bc:a0:06:cf:c9:ce:62:33:22:64: 65:20:d1:07 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBEowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBBNjIxMTAvBgNVBAUTKDRDREVDN0Q0MjFGMTZFODUxNjcyQTgxMjM5REQxOEZD OEMxRTM5NTYwHhcNMjQwOTI5MDAxNTAyWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmY4OWMwNS1iOWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3XiLzSEXH45YdE9VETdslLvYjYbDyzAZ4H1SYNapGMA8SMnwS58Ao16lclFd 6JRxJlaRByWz9rqz4cFoKkDXIBNWQljzOgOctGpslT3x5jjg2nKwFwqHuQEZVnx5 q7I+T51liWdOA2FRf+2pUh77wY3cyq9zXZhKPSaWgP/vQVNoWYi8Ko6Bx1j3EK+N TMO24SLafSD0L25oJTmKAwSFTZUZFeACyRu6GNAWiaYDuJWLakwIuUjIYwNm7hUC M4+d+5pjRK9E2yzPk54vCBJ5au3+3ArLN5KIuNoFZz/kk5pANOyQlt+Vc5u3i7jr c0sXbbiS0xjgnS9GksCqx2Cj9wIDAQABo4IClTCCApEwHQYDVR0OBBYEFLXNTs61 cepJlSYhstBRHwQ+PyqcMB8GA1UdIwQYMBaAFEzex9Qh8W6FFnKoEjndGPyMHjlW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEE2Mi8xRkE5NkRBMDI4 MzExMUVDOTdBMDEzMTZDNEY5QUUwMi9UTjdIMUNIeGJvVVdjcWdTT2QwWV9Jd2VP VlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RON0gxQ0h4Ym9VV2NxZ1NPZDBZX0l3ZU9WWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDBBNjIvMUZBOTZEQTAyODMxMTFFQzk3QTAxMzE2QzRGOUFFMDIvQzU0QkE5N0Uy ODMzMTFFQ0JFODg3RjNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnrkYwDQYJKoZIhvcNAQELBQADggEBAG+Kqcu78vrVleFo Ll1ZZ3kQuUR+NtHgKG+A0ps6ZEEmhMxKQ+6srB0M4iMencdbNwhpWLyxxCRqbK/X whMqbO03hN8mu/0oCkMp9FChVJmiCPiZXk8OudWdC5ZNlKd5aKJjPtXecwzxGyWq qb3+/TkiSOIYO2oLbIzGejgWNXy6pIZKl84ZnbaBw0Lo6FiKTAKSJfRFvdVPjtq0 8l/Cwo0gRcksdnbQHUBkVl4Tmk/0CLhy2U+/q5azfQCOHAdHYfOOWGkROICCTatj LZyGINuK0g6+nG6upXc1Gi2veNnY1eTpBKlatSnJTli98BEo1YXAvKAGz8nOYjMi ZGUg0Qc= -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:38 2024 by rpki-client on console-fra.rpki-client.org