$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7E61/F594DC80407B11ECBF38B452C4F9AE02/073DC606407F11EC87F77579C4F9AE02.roa File: 073DC606407F11EC87F77579C4F9AE02.roa (raw, json) Hash identifier: UvINB57RMsd8vGsne4Sob4iLN+ncABMNhzmtPlY6+4Y= Subject key identifier: 1F:02:E6:7B:BA:29:89:87:17:E3:16:CD:17:99:DD:77:99:F1:25:50 Certificate issuer: /CN=A91D7E61/serialNumber=C64189F58CF72C1F73BEB2407A5227B6A2CE9661 Certificate serial: 0368 Authority key identifier: C6:41:89:F5:8C:F7:2C:1F:73:BE:B2:40:7A:52:27:B6:A2:CE:96:61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xkGJ9Yz3LB9zvrJAelIntqLOlmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D7E61/F594DC80407B11ECBF38B452C4F9AE02/073DC606407F11EC87F77579C4F9AE02.roa Signing time: Tue 21 Nov 2023 02:13:47 +0000 ROA not before: Tue 21 Nov 2023 02:13:47 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 149001 IP address blocks: 103.175.232.0/24 maxlen: 24 2001:df7:fe80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D7E61/F594DC80407B11ECBF38B452C4F9AE02/xkGJ9Yz3LB9zvrJAelIntqLOlmE.crl rsync://rpki.apnic.net/member_repository/A91D7E61/F594DC80407B11ECBF38B452C4F9AE02/xkGJ9Yz3LB9zvrJAelIntqLOlmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xkGJ9Yz3LB9zvrJAelIntqLOlmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 872 (0x368) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D7E61/serialNumber=C64189F58CF72C1F73BEB2407A5227B6A2CE9661 Validity Not Before: Nov 21 02:13:47 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=655c125b-5102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:c7:d7:4c:c0:86:20:1a:35:62:00:85:7c:68: 8b:95:35:54:2a:e6:0e:4b:55:0c:42:13:aa:6f:78: 3c:f0:4e:15:4a:b3:06:e5:c9:43:18:91:b4:3c:82: 47:29:09:e1:a9:93:e4:a7:35:37:dd:ab:27:e9:b7: 9c:20:e6:45:bf:53:6a:e2:8a:15:58:8d:d2:18:4b: 90:90:86:fb:54:9f:bf:00:57:9f:98:af:31:7d:e8: 5c:6c:cd:65:bf:cf:f7:0c:8e:76:fc:4e:1c:3b:fa: 26:3a:ab:3c:38:40:93:55:2f:5c:0c:32:04:22:03: 96:d6:79:22:69:21:51:ee:34:ee:70:e9:e2:46:47: 39:00:90:65:e9:fb:69:76:5f:65:38:38:6c:7b:5e: ea:22:33:51:d3:d1:04:3a:8f:e8:c0:32:b4:0a:55: 5b:66:cd:d3:52:bc:c2:a7:ff:fb:b3:51:55:b8:db: f7:f3:1c:44:26:25:47:e6:f4:6b:1c:76:a3:dc:33: 6d:a2:0a:ac:9a:e1:01:4a:f6:0b:b0:2e:f0:60:f6: 2a:75:26:fb:4c:fb:96:2b:85:c8:b0:0c:34:be:f0: 1b:32:f8:5d:f3:3e:57:64:9b:a9:5f:8e:83:67:08: 8c:8c:24:a3:60:4f:89:85:3b:d4:0d:c4:54:95:a1: 28:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:02:E6:7B:BA:29:89:87:17:E3:16:CD:17:99:DD:77:99:F1:25:50 X509v3 Authority Key Identifier: keyid:C6:41:89:F5:8C:F7:2C:1F:73:BE:B2:40:7A:52:27:B6:A2:CE:96:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D7E61/F594DC80407B11ECBF38B452C4F9AE02/xkGJ9Yz3LB9zvrJAelIntqLOlmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xkGJ9Yz3LB9zvrJAelIntqLOlmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7E61/F594DC80407B11ECBF38B452C4F9AE02/073DC606407F11EC87F77579C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.175.232.0/24 IPv6: 2001:df7:fe80::/48 Signature Algorithm: sha256WithRSAEncryption 3d:53:f5:19:9f:d9:b7:87:28:eb:3d:9d:98:3c:b7:12:fd:9a: 44:be:a8:2b:97:e0:d7:65:17:a9:e3:7b:c5:a3:47:36:b3:ce: 1d:8e:8c:53:fe:3f:70:92:13:47:de:6d:71:59:9c:6c:e8:d9: 83:35:ff:74:a8:72:14:1c:ff:72:db:50:8e:4a:3d:da:bf:3b: 03:cc:eb:66:63:6c:f0:b8:c9:9b:7f:fe:52:b9:8d:d0:2b:4b: 5b:3d:5d:8c:e2:7e:7b:fb:dc:79:83:23:73:fa:c8:b4:0a:08: 40:6a:80:2e:74:e4:2c:e8:c1:d3:e9:1b:91:af:fe:20:45:c7: 2f:e3:45:7b:b5:88:55:4c:05:b9:98:bc:fa:03:1f:d8:b1:9a: 6c:9f:37:eb:aa:3c:71:d0:2d:3d:f2:68:1b:dd:e0:c4:83:a0: f1:96:35:10:33:1e:d8:2d:9f:c3:92:47:af:a9:85:53:e1:1f: 8c:52:14:c6:28:70:e3:99:e9:c9:13:e4:90:0f:a0:ec:f6:68: 31:61:e0:02:f6:36:33:f2:f1:38:2d:ad:31:51:71:26:e7:8e: 21:6f:19:12:68:3b:de:da:9d:fa:3c:fb:f7:79:c2:40:d2:e4: a2:33:5c:86:a5:95:df:b9:95:0f:7c:cb:56:17:72:97:01:cc: aa:c2:c6:58 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICA2gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDdFNjExMTAvBgNVBAUTKEM2NDE4OUY1OENGNzJDMUY3M0JFQjI0MDdBNTIyN0I2 QTJDRTk2NjEwHhcNMjMxMTIxMDIxMzQ3WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTVjMTI1Yi01MTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6MfXTMCGIBo1YgCFfGiLlTVUKuYOS1UMQhOqb3g88E4VSrMG5clDGJG0PIJH KQnhqZPkpzU33asn6becIOZFv1Nq4ooVWI3SGEuQkIb7VJ+/AFefmK8xfehcbM1l v8/3DI52/E4cO/omOqs8OECTVS9cDDIEIgOW1nkiaSFR7jTucOniRkc5AJBl6ftp dl9lODhse17qIjNR09EEOo/owDK0ClVbZs3TUrzCp//7s1FVuNv38xxEJiVH5vRr HHaj3DNtogqsmuEBSvYLsC7wYPYqdSb7TPuWK4XIsAw0vvAbMvhd8z5XZJupX46D ZwiMjCSjYE+JhTvUDcRUlaEoXwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFB8C5nu6 KYmHF+MWzReZ3XeZ8SVQMB8GA1UdIwQYMBaAFMZBifWM9ywfc76yQHpSJ7aizpZh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEN0U2MS9GNTk0REM4MDQw N0IxMUVDQkYzOEI0NTJDNEY5QUUwMi94a0dKOVl6M0xCOXp2ckpBZWxJbnRxTE9s bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hrR0o5WXozTEI5enZySkFlbEludHFMT2xtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDdFNjEvRjU5NERDODA0MDdCMTFFQ0JGMzhCNDUyQzRGOUFFMDIvMDczREM2MDY0 MDdGMTFFQzg3Rjc3NTc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnr+gwDwQCAAIwCQMHACABDff+gDANBgkqhkiG9w0BAQsF AAOCAQEAPVP1GZ/Zt4co6z2dmDy3Ev2aRL6oK5fg12UXqeN7xaNHNrPOHY6MU/4/ cJITR95tcVmcbOjZgzX/dKhyFBz/cttQjko92r87A8zrZmNs8LjJm3/+UrmN0CtL Wz1djOJ+e/vceYMjc/rItAoIQGqALnTkLOjB0+kbka/+IEXHL+NFe7WIVUwFuZi8 +gMf2LGabJ8366o8cdAtPfJoG93gxIOg8ZY1EDMe2C2fw5JHr6mFU+EfjFIUxihw 45npyRPkkA+g7PZoMWHgAvY2M/LxOC2tMVFxJueOIW8ZEmg73tqd+jz793nCQNLk ojNchqWV37mVD3zLVhdylwHMqsLGWA== -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:38 2024 by rpki-client on console-fra.rpki-client.org