$ rpki-client -vvf rpki.apnic.net/member_repository/A91D18AC/D4BA3D9896CC11EF8EFCB849C4F9AE02/34BA37F6976E11EFAEB6A258C4F9AE02.roa File: 34BA37F6976E11EFAEB6A258C4F9AE02.roa (raw, json) Hash identifier: dMptlIu2hEGUJL7wHDTpb5B0NGrE6jX2dVguRw6q6C4= Subject key identifier: BA:71:C1:98:E9:20:E9:5D:41:48:8C:BC:66:BA:1D:31:08:74:DC:85 Certificate issuer: /CN=A91D18AC/serialNumber=1B07549B250CFC03DDAD7B54443DA838891811CA Certificate serial: 04 Authority key identifier: 1B:07:54:9B:25:0C:FC:03:DD:AD:7B:54:44:3D:A8:38:89:18:11:CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwdUmyUM_APdrXtURD2oOIkYEco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D18AC/D4BA3D9896CC11EF8EFCB849C4F9AE02/34BA37F6976E11EFAEB6A258C4F9AE02.roa Signing time: Thu 31 Oct 2024 09:55:06 +0000 ROA not before: Thu 31 Oct 2024 09:55:06 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 139265 IP address blocks: 103.140.150.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D18AC/D4BA3D9896CC11EF8EFCB849C4F9AE02/GwdUmyUM_APdrXtURD2oOIkYEco.crl rsync://rpki.apnic.net/member_repository/A91D18AC/D4BA3D9896CC11EF8EFCB849C4F9AE02/GwdUmyUM_APdrXtURD2oOIkYEco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwdUmyUM_APdrXtURD2oOIkYEco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D18AC/serialNumber=1B07549B250CFC03DDAD7B54443DA838891811CA Validity Not Before: Oct 31 09:55:06 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=672353fa-20ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:1f:64:84:a4:d6:75:a1:04:80:8a:17:e8:ab: 8e:1e:55:a6:93:d4:56:e1:cf:ad:85:c7:c2:72:2b: 78:c6:0b:52:f1:4f:57:a2:fb:64:84:bb:dc:23:9f: bb:6f:81:5c:7b:5e:85:1f:dd:0a:af:b0:fa:38:3b: 3e:56:f7:7a:35:f7:e0:3f:c5:3e:76:8b:3b:63:c9: c1:09:9f:77:31:72:64:a3:5a:9f:a0:4d:7c:9a:37: 79:34:be:9a:c2:e2:96:19:ae:49:ad:67:37:a0:3e: 4e:0e:4b:a3:d8:cf:69:3c:bd:c1:10:3d:5f:86:bd: 42:26:ec:e6:a7:b3:8f:29:40:6e:72:79:7f:9d:2f: 55:97:b5:a9:01:40:00:d0:f6:fc:a4:5b:82:79:c0: bc:e1:a9:74:47:6b:24:eb:85:ae:cf:37:d2:05:d5: 40:8f:42:8a:ee:da:43:bb:a5:ae:5e:bd:a7:8d:6a: 68:93:f6:11:8d:9d:1e:88:a8:53:e6:f7:f8:11:5c: 7b:05:9e:89:86:17:72:27:5a:ba:bb:78:ca:f5:cd: 3c:98:17:dd:df:de:12:ee:9a:bb:43:79:1e:09:fb: 1c:c1:6f:8e:e1:92:4d:6e:02:8c:34:1d:08:7b:9b: 92:2d:d2:03:d7:3d:c9:41:21:d0:b9:00:12:a2:b6: 8b:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:71:C1:98:E9:20:E9:5D:41:48:8C:BC:66:BA:1D:31:08:74:DC:85 X509v3 Authority Key Identifier: keyid:1B:07:54:9B:25:0C:FC:03:DD:AD:7B:54:44:3D:A8:38:89:18:11:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D18AC/D4BA3D9896CC11EF8EFCB849C4F9AE02/GwdUmyUM_APdrXtURD2oOIkYEco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwdUmyUM_APdrXtURD2oOIkYEco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D18AC/D4BA3D9896CC11EF8EFCB849C4F9AE02/34BA37F6976E11EFAEB6A258C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.150.0/23 Signature Algorithm: sha256WithRSAEncryption 71:d2:75:ee:a4:1f:dd:36:77:39:f6:b1:40:ce:5b:3c:0f:92: cc:93:aa:c2:06:91:c0:f9:1a:67:74:a2:67:af:c1:b6:95:3d: 92:57:e7:1c:c0:4b:66:90:60:ea:33:7c:c5:ef:7d:bf:e6:0e: 3e:d8:16:bc:e0:47:b8:44:24:b0:12:42:d4:fd:ac:f3:5f:70: 6d:47:aa:22:35:bb:df:85:58:87:cb:a7:4b:09:26:76:17:6c: c5:46:f4:0b:3b:49:fd:c8:dd:a1:fe:d3:88:28:82:41:01:de: 20:2d:cd:c8:86:a1:5e:bb:47:db:3b:e7:18:b8:49:34:ac:2e: df:ea:85:04:dd:e1:e3:e9:76:e3:ce:d6:5c:22:b1:f5:7d:75: 57:b1:4f:d8:27:31:46:33:3b:3f:62:2a:9e:d5:3c:6d:13:f8: 14:59:9f:28:df:54:82:31:0d:f8:de:27:76:b5:92:81:7e:e9: f1:0f:59:0a:21:35:ad:3a:cc:55:dc:40:67:a8:1f:ea:46:24: 9b:25:98:cb:56:3b:81:c3:3a:1b:8d:89:e4:fb:0b:84:82:3c: ed:93:76:b3:62:45:59:4e:df:ad:31:2e:a9:36:ef:c6:dc:58: d4:43:c1:d5:74:c9:40:56:f9:4e:ff:5b:33:88:da:a4:49:b1: c3:1a:a1:1f -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MThBQzExMC8GA1UEBRMoMUIwNzU0OUIyNTBDRkMwM0REQUQ3QjU0NDQzREE4Mzg4 OTE4MTFDQTAeFw0yNDEwMzEwOTU1MDZaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MjM1M2ZhLTIwZWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYH2SEpNZ1oQSAihfoq44eVaaT1Fbhz62Fx8JyK3jGC1LxT1ei+2SEu9wjn7tv gVx7XoUf3QqvsPo4Oz5W93o19+A/xT52iztjycEJn3cxcmSjWp+gTXyaN3k0vprC 4pYZrkmtZzegPk4OS6PYz2k8vcEQPV+GvUIm7Oans48pQG5yeX+dL1WXtakBQADQ 9vykW4J5wLzhqXRHayTrha7PN9IF1UCPQoru2kO7pa5evaeNamiT9hGNnR6IqFPm 9/gRXHsFnomGF3InWrq7eMr1zTyYF93f3hLumrtDeR4J+xzBb47hkk1uAow0HQh7 m5It0gPXPclBIdC5ABKitov/AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUunHBmOkg 6V1BSIy8ZrodMQh03IUwHwYDVR0jBBgwFoAUGwdUmyUM/APdrXtURD2oOIkYEcow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQxOEFDL0Q0QkEzRDk4OTZD QzExRUY4RUZDQjg0OUM0RjlBRTAyL0d3ZFVteVVNX0FQZHJYdFVSRDJvT0lrWUVj by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR3dkVW15VU1fQVBkclh0VVJEMm9PSWtZRWNvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MThBQy9ENEJBM0Q5ODk2Q0MxMUVGOEVGQ0I4NDlDNEY5QUUwMi8zNEJBMzdGNjk3 NkUxMUVGQUVCNkEyNThDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWeMljANBgkqhkiG9w0BAQsFAAOCAQEAcdJ17qQf3TZ3Ofax QM5bPA+SzJOqwgaRwPkaZ3SiZ6/BtpU9klfnHMBLZpBg6jN8xe99v+YOPtgWvOBH uEQksBJC1P2s819wbUeqIjW734VYh8unSwkmdhdsxUb0CztJ/cjdof7TiCiCQQHe IC3NyIahXrtH2zvnGLhJNKwu3+qFBN3h4+l2487WXCKx9X11V7FP2CcxRjM7P2Iq ntU8bRP4FFmfKN9UgjEN+N4ndrWSgX7p8Q9ZCiE1rTrMVdxAZ6gf6kYkmyWYy1Y7 gcM6G42J5PsLhII87ZN2s2JFWU7frTEuqTbvxtxY1EPB1XTJQFb5Tv9bM4japEmx wxqhHw== -----END CERTIFICATE-----Generated at Sat Nov 23 07:31:32 2024 by rpki-client on console-fra.rpki-client.org