$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB6F8/562C3CB4724E11ED8E20673EC4F9AE02/760450924CBA11EF9DC35534C4F9AE02.roa File: 760450924CBA11EF9DC35534C4F9AE02.roa (raw, json) Hash identifier: jmw5dKFUaiAbIZgLLTx+VAruTc6Z7DdocV0SfQXr9PY= Subject key identifier: C8:03:15:4F:66:03:11:3A:9F:65:B4:1F:9C:C7:6B:16:4F:B2:80:92 Certificate issuer: /CN=A91DB6F8/serialNumber=237B7D4CA84A26D5FC4958D48191F36A14BC7A2F Certificate serial: 0145 Authority key identifier: 23:7B:7D:4C:A8:4A:26:D5:FC:49:58:D4:81:91:F3:6A:14:BC:7A:2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3t9TKhKJtX8SVjUgZHzahS8ei8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB6F8/562C3CB4724E11ED8E20673EC4F9AE02/760450924CBA11EF9DC35534C4F9AE02.roa Signing time: Sun 28 Jul 2024 08:23:49 +0000 ROA not before: Sun 28 Jul 2024 08:23:49 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 140690 IP address blocks: 103.48.20.0/23 maxlen: 24 2001:df1:a0c0::/48 maxlen: 48 2001:df1:a0c1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB6F8/562C3CB4724E11ED8E20673EC4F9AE02/I3t9TKhKJtX8SVjUgZHzahS8ei8.crl rsync://rpki.apnic.net/member_repository/A91DB6F8/562C3CB4724E11ED8E20673EC4F9AE02/I3t9TKhKJtX8SVjUgZHzahS8ei8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3t9TKhKJtX8SVjUgZHzahS8ei8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:11:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 325 (0x145) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB6F8/serialNumber=237B7D4CA84A26D5FC4958D48191F36A14BC7A2F Validity Not Before: Jul 28 08:23:49 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66a60014-b6b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:25:8d:23:68:4b:6f:2c:3f:ad:a2:6b:67:b3: b6:2e:3b:f2:3f:86:1d:3e:74:93:48:66:15:8c:9a: 16:11:ed:9f:ac:13:eb:fc:8b:fc:90:33:7e:f5:f4: b1:47:06:ed:cb:31:f4:5e:b2:1b:6a:8c:f2:92:22: 16:9b:c6:b5:5a:67:cb:40:c3:8d:e4:e4:1d:7b:05: 56:46:e4:cb:12:93:8c:64:fb:0d:2d:c3:ec:62:82: de:41:d0:e0:4e:9e:55:75:07:dd:35:be:8b:68:58: d8:57:84:c6:12:fd:e1:fa:bf:68:32:4e:ec:6b:b7: 93:64:42:51:d0:54:1e:53:dd:d6:4a:ef:81:ca:98: 34:df:ee:df:81:e1:e0:9c:79:ba:f8:3d:c4:33:e9: 74:e8:73:c6:f1:0c:c7:cb:14:03:f6:fc:b1:84:e8: a0:b8:a3:0a:bd:47:ea:b5:42:8b:94:00:f5:a1:43: 87:46:79:b2:63:9d:eb:9d:4e:33:55:ab:82:0b:c2: 4d:7c:ee:7f:34:ba:1b:51:65:57:a8:cb:67:db:df: 2a:79:e8:db:f8:2a:91:ef:d8:56:b8:44:07:ac:d5: 6b:dc:59:54:c4:2a:02:47:ec:16:3a:05:f7:c8:7b: d4:73:36:ad:45:ba:d0:bc:14:64:27:12:96:df:e2: df:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:03:15:4F:66:03:11:3A:9F:65:B4:1F:9C:C7:6B:16:4F:B2:80:92 X509v3 Authority Key Identifier: keyid:23:7B:7D:4C:A8:4A:26:D5:FC:49:58:D4:81:91:F3:6A:14:BC:7A:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB6F8/562C3CB4724E11ED8E20673EC4F9AE02/I3t9TKhKJtX8SVjUgZHzahS8ei8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3t9TKhKJtX8SVjUgZHzahS8ei8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB6F8/562C3CB4724E11ED8E20673EC4F9AE02/760450924CBA11EF9DC35534C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.48.20.0/23 IPv6: 2001:df1:a0c0::/47 Signature Algorithm: sha256WithRSAEncryption a0:1e:80:81:38:33:79:de:b4:e5:18:55:91:84:4a:42:a5:7f: 94:e1:5b:da:eb:06:7e:59:7f:0d:22:fc:6e:e7:6e:a0:65:cd: 0c:42:d8:78:b4:f8:b7:44:bf:8e:49:85:79:d9:0b:72:18:a0: 40:bf:d7:2f:d6:8a:c8:bb:d1:b8:f2:49:eb:eb:c8:a4:ca:0b: d1:5d:c3:c1:ee:0f:16:d5:49:3e:ba:43:4e:fa:b7:f2:79:29: 7f:8b:7d:1a:ab:63:d7:a5:17:52:da:48:07:86:09:d6:e7:3e: c1:0e:7f:55:f9:8c:75:3e:16:fe:6d:19:f0:f5:87:fc:73:f9: 54:15:bf:e8:6b:11:7c:f7:ea:05:7b:25:4e:13:f2:99:f4:c4: 95:dd:26:fc:e9:57:68:d9:66:b5:7b:7b:e1:aa:16:de:c4:fd: d2:e6:dd:89:1c:31:4f:7e:bf:50:1d:1f:9f:6c:90:22:a7:a1: 9d:cf:e2:7a:8f:ce:96:a8:9e:e0:33:0a:97:38:07:5a:02:2e: fe:14:55:db:e7:c1:d3:72:da:b6:bf:d8:db:cd:5f:a4:84:9a: 2a:07:2a:48:37:2c:83:ce:36:58:4a:db:53:6d:a7:10:96:eb: 50:a1:a3:13:fb:96:f2:6d:b7:68:d3:76:82:78:b5:82:c6:bb: 3a:20:9b:08 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAUUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI2RjgxMTAvBgNVBAUTKDIzN0I3RDRDQTg0QTI2RDVGQzQ5NThENDgxOTFGMzZB MTRCQzdBMkYwHhcNMjQwNzI4MDgyMzQ5WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE2MDAxNC1iNmIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAviWNI2hLbyw/raJrZ7O2LjvyP4YdPnSTSGYVjJoWEe2frBPr/Iv8kDN+9fSx RwbtyzH0XrIbaozykiIWm8a1WmfLQMON5OQdewVWRuTLEpOMZPsNLcPsYoLeQdDg Tp5VdQfdNb6LaFjYV4TGEv3h+r9oMk7sa7eTZEJR0FQeU93WSu+Bypg03+7fgeHg nHm6+D3EM+l06HPG8QzHyxQD9vyxhOiguKMKvUfqtUKLlAD1oUOHRnmyY53rnU4z VauCC8JNfO5/NLobUWVXqMtn298qeejb+CqR79hWuEQHrNVr3FlUxCoCR+wWOgX3 yHvUczatRbrQvBRkJxKW3+LfowIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFMgDFU9m AxE6n2W0H5zHaxZPsoCSMB8GA1UdIwQYMBaAFCN7fUyoSibV/ElY1IGR82oUvHov MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjZGOC81NjJDM0NCNDcy NEUxMUVEOEUyMDY3M0VDNEY5QUUwMi9JM3Q5VEtoS0p0WDhTVmpVZ1pIemFoUzhl aTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0kzdDlUS2hLSnRYOFNWalVnWkh6YWhTOGVpOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REI2RjgvNTYyQzNDQjQ3MjRFMTFFRDhFMjA2NzNFQzRGOUFFMDIvNzYwNDUwOTI0 Q0JBMTFFRjlEQzM1NTM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnMBQwDwQCAAIwCQMHASABDfGgwDANBgkqhkiG9w0BAQsF AAOCAQEAoB6AgTgzed605RhVkYRKQqV/lOFb2usGfll/DSL8buduoGXNDELYeLT4 t0S/jkmFedkLchigQL/XL9aKyLvRuPJJ6+vIpMoL0V3Dwe4PFtVJPrpDTvq38nkp f4t9Gqtj16UXUtpIB4YJ1uc+wQ5/VfmMdT4W/m0Z8PWH/HP5VBW/6GsRfPfqBXsl ThPymfTEld0m/OlXaNlmtXt74aoW3sT90ubdiRwxT36/UB0fn2yQIqehnc/ieo/O lqie4DMKlzgHWgIu/hRV2+fB03Latr/Y281fpISaKgcqSDcsg842WErbU22nEJbr UKGjE/uW8m23aNN2gni1gsa7OiCbCA== -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:58 2024 by rpki-client on console-fra.rpki-client.org