$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2412/B676EBE028C711EC86107A0AC4F9AE02/C5713632828611EC83D75A3DC4F9AE02.roa File: C5713632828611EC83D75A3DC4F9AE02.roa (raw, json) Hash identifier: l5THryZWDs9PaYkc4EAibFlrwJ85CdhXihjnSzgLwkU= Subject key identifier: C0:1E:BA:5D:7B:49:CB:8A:83:7E:BE:A8:EA:17:4D:43:53:D3:47:31 Certificate issuer: /CN=A91E2412/serialNumber=26C87D1966E2F835F7CC8E961D02FF309CE7BD20 Certificate serial: 0463 Authority key identifier: 26:C8:7D:19:66:E2:F8:35:F7:CC:8E:96:1D:02:FF:30:9C:E7:BD:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jsh9GWbi-DX3zI6WHQL_MJznvSA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2412/B676EBE028C711EC86107A0AC4F9AE02/C5713632828611EC83D75A3DC4F9AE02.roa Signing time: Tue 12 Nov 2024 23:32:55 +0000 ROA not before: Tue 12 Nov 2024 23:32:55 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 147189 IP address blocks: 103.174.82.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2412/B676EBE028C711EC86107A0AC4F9AE02/Jsh9GWbi-DX3zI6WHQL_MJznvSA.crl rsync://rpki.apnic.net/member_repository/A91E2412/B676EBE028C711EC86107A0AC4F9AE02/Jsh9GWbi-DX3zI6WHQL_MJznvSA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jsh9GWbi-DX3zI6WHQL_MJznvSA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1123 (0x463) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2412/serialNumber=26C87D1966E2F835F7CC8E961D02FF309CE7BD20 Validity Not Before: Nov 12 23:32:55 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6733e5a7-e13f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:69:fa:96:7b:38:8e:2b:a4:87:51:ff:cb:0f: 5b:44:5b:3c:79:2b:ce:a7:7f:4f:cf:7e:01:84:8c: eb:38:3d:49:f3:3a:5d:4a:37:d9:86:f7:83:be:23: 1e:3b:bb:46:26:7e:5e:35:30:75:8d:e2:68:8c:0e: c9:bd:b1:69:7a:5c:a4:31:c3:7f:c2:ab:c4:1b:a0: 11:f5:20:a3:d2:69:66:63:12:9b:17:35:0f:3a:35: c9:e8:16:5d:b6:6f:f7:48:71:e1:cf:8a:52:d9:51: be:b4:cd:ca:d4:a6:ca:79:2e:a4:29:3e:5c:11:13: 8d:f8:51:a2:73:e3:33:c4:9d:7d:6b:fd:4f:c9:ff: 35:ca:4e:5a:7d:10:03:da:8d:c0:80:b5:61:2f:1d: 42:be:40:9f:e9:ac:04:a0:2f:b6:18:a8:69:70:31: 30:3e:c2:88:3b:cc:20:a2:f8:bf:d0:c9:29:48:16: 1d:45:75:11:73:6b:45:dc:c3:18:07:f2:15:46:61: c4:7d:fc:c3:8d:b7:fb:22:49:d7:e8:67:56:68:e8: 79:2f:63:50:8f:9c:64:0d:bd:7c:81:d0:71:62:f4: cf:56:52:7a:28:c4:7b:65:52:d2:7d:6d:d9:1d:81: be:0e:76:17:d3:de:c8:b4:fb:4a:ec:08:55:b7:98: d3:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:1E:BA:5D:7B:49:CB:8A:83:7E:BE:A8:EA:17:4D:43:53:D3:47:31 X509v3 Authority Key Identifier: keyid:26:C8:7D:19:66:E2:F8:35:F7:CC:8E:96:1D:02:FF:30:9C:E7:BD:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2412/B676EBE028C711EC86107A0AC4F9AE02/Jsh9GWbi-DX3zI6WHQL_MJznvSA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jsh9GWbi-DX3zI6WHQL_MJznvSA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2412/B676EBE028C711EC86107A0AC4F9AE02/C5713632828611EC83D75A3DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.174.82.0/24 Signature Algorithm: sha256WithRSAEncryption 42:09:ee:db:eb:69:10:a2:98:1f:0e:48:02:b8:40:22:32:11: 49:d7:a4:ef:28:bd:03:28:41:92:e7:d4:dd:9f:11:d9:fb:6e: a0:29:73:62:a4:92:46:53:9b:66:67:ed:a2:5c:65:ef:2b:11: 6f:16:ab:4e:cd:1a:5c:ed:b2:4f:95:34:08:60:6d:f3:38:5a: 52:24:29:e9:f9:d0:1a:2d:cd:bf:b7:45:14:f0:fe:e5:57:e8: 64:7a:8b:44:c7:1b:fe:5c:24:88:cc:79:b0:d2:44:15:97:2d: 1b:5b:a2:3c:04:08:61:3c:f3:1f:37:9f:49:b1:06:bd:6c:58: 1f:4e:79:de:ac:ea:31:7a:6b:0c:48:f6:9a:fb:ff:44:f9:cb: b6:35:5e:d6:ec:51:d5:a2:53:25:7b:7e:bc:75:87:ff:24:74: 6a:de:3c:da:e7:b1:60:dc:15:15:39:68:a9:24:bf:2e:2c:52: d0:f9:e6:b4:c4:ec:06:07:38:a7:2e:fc:73:c0:2d:c8:49:65: a8:df:65:c4:c9:8e:82:61:c6:52:2f:6c:11:09:64:53:f7:05: 77:6b:b3:05:5f:2c:77:eb:40:9e:f1:07:0a:6b:ab:26:2f:bf: a3:1c:81:d3:5e:f1:03:2a:30:a1:c1:04:b1:a9:d5:99:68:67: f4:c8:13:f9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBGMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI0MTIxMTAvBgNVBAUTKDI2Qzg3RDE5NjZFMkY4MzVGN0NDOEU5NjFEMDJGRjMw OUNFN0JEMjAwHhcNMjQxMTEyMjMzMjU1WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzMzZTVhNy1lMTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAymn6lns4jiukh1H/yw9bRFs8eSvOp39Pz34BhIzrOD1J8zpdSjfZhveDviMe O7tGJn5eNTB1jeJojA7JvbFpelykMcN/wqvEG6AR9SCj0mlmYxKbFzUPOjXJ6BZd tm/3SHHhz4pS2VG+tM3K1KbKeS6kKT5cERON+FGic+MzxJ19a/1Pyf81yk5afRAD 2o3AgLVhLx1CvkCf6awEoC+2GKhpcDEwPsKIO8wgovi/0MkpSBYdRXURc2tF3MMY B/IVRmHEffzDjbf7IknX6GdWaOh5L2NQj5xkDb18gdBxYvTPVlJ6KMR7ZVLSfW3Z HYG+DnYX097ItPtK7AhVt5jTxQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMAeul17 ScuKg36+qOoXTUNT00cxMB8GA1UdIwQYMBaAFCbIfRlm4vg198yOlh0C/zCc570g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjQxMi9CNjc2RUJFMDI4 QzcxMUVDODYxMDdBMEFDNEY5QUUwMi9Kc2g5R1diaS1EWDN6STZXSFFMX01Kem52 U0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pzaDlHV2JpLURYM3pJNldIUUxfTUp6bnZTQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTI0MTIvQjY3NkVCRTAyOEM3MTFFQzg2MTA3QTBBQzRGOUFFMDIvQzU3MTM2MzI4 Mjg2MTFFQzgzRDc1QTNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnrlIwDQYJKoZIhvcNAQELBQADggEBAEIJ7tvraRCimB8O SAK4QCIyEUnXpO8ovQMoQZLn1N2fEdn7bqApc2KkkkZTm2Zn7aJcZe8rEW8Wq07N Glztsk+VNAhgbfM4WlIkKen50Botzb+3RRTw/uVX6GR6i0THG/5cJIjMebDSRBWX LRtbojwECGE88x83n0mxBr1sWB9Oed6s6jF6awxI9pr7/0T5y7Y1XtbsUdWiUyV7 frx1h/8kdGrePNrnsWDcFRU5aKkkvy4sUtD55rTE7AYHOKcu/HPALchJZajfZcTJ joJhxlIvbBEJZFP3BXdrswVfLHfrQJ7xBwprqyYvv6McgdNe8QMqMKHBBLGp1Zlo Z/TIE/k= -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:29 2024 by rpki-client on console-ams.rpki-client.org