$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/CCF7B8AA22B811ECAD21FB20C4F9AE02.roa File: CCF7B8AA22B811ECAD21FB20C4F9AE02.roa (raw, json) Hash identifier: jP9WQeUuHByQOgvhcc4yViwwc1IsiLi4j4kFeZuXSLA= Subject key identifier: C8:30:74:0E:25:04:61:81:71:BB:AB:72:F4:85:EA:6C:2F:3E:EF:3C Certificate issuer: /CN=A91E4D9B/serialNumber=CF89D6AB11E7D47AA17B4309C72A72B71CBA47AE Certificate serial: 07DD Authority key identifier: CF:89:D6:AB:11:E7:D4:7A:A1:7B:43:09:C7:2A:72:B7:1C:BA:47:AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4nWqxHn1Hqhe0MJxypytxy6R64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/CCF7B8AA22B811ECAD21FB20C4F9AE02.roa Signing time: Mon 26 Aug 2024 21:30:10 +0000 ROA not before: Mon 26 Aug 2024 21:30:10 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 140916 IP address blocks: 103.153.106.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.crl rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4nWqxHn1Hqhe0MJxypytxy6R64.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:37:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2013 (0x7dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D9B/serialNumber=CF89D6AB11E7D47AA17B4309C72A72B71CBA47AE Validity Not Before: Aug 26 21:30:10 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66ccf3e1-75c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e3:90:d7:37:2a:f9:78:83:f7:33:c5:08:d7: a5:5b:6d:f3:08:09:9d:d5:0e:3d:56:39:2d:94:45: 28:ae:ca:b8:42:8e:57:b2:c9:29:3c:a4:25:91:ff: b8:1b:93:44:40:15:c4:cc:34:df:f1:93:43:6b:38: 16:c9:6f:cf:ef:b9:50:7d:35:a5:6c:b6:ee:f7:b8: a1:e1:ca:dd:8a:0b:25:1b:0f:55:c1:7c:1b:f4:66: 6f:3c:e9:c5:d7:d3:12:9f:8b:df:1e:5f:c8:8a:14: a1:fe:35:c3:cd:f5:ab:ee:76:93:23:25:69:1a:2e: 03:b3:f8:d0:23:04:d6:f8:83:7a:ec:48:1c:45:01: 30:62:4e:99:d6:e6:03:f9:92:de:c6:cc:a9:3a:88: 5b:2c:17:b7:20:36:e8:b7:fd:0c:3f:bd:75:57:49: 57:39:79:10:a8:d0:e8:df:49:0f:f3:db:ad:3f:d9: e7:2c:70:70:a6:1b:68:73:62:3d:ec:f8:c3:39:99: d9:ca:8c:85:88:f4:d3:cf:c3:e7:0f:4f:b7:0e:e8: d8:31:23:3c:d0:06:7c:b0:39:9f:2a:68:da:46:92: d4:a4:9d:65:c9:d0:e8:00:39:19:88:64:4f:87:29: b3:8f:64:6b:d9:6d:d2:f3:5a:e2:37:32:1f:12:c0: 4d:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:30:74:0E:25:04:61:81:71:BB:AB:72:F4:85:EA:6C:2F:3E:EF:3C X509v3 Authority Key Identifier: keyid:CF:89:D6:AB:11:E7:D4:7A:A1:7B:43:09:C7:2A:72:B7:1C:BA:47:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/z4nWqxHn1Hqhe0MJxypytxy6R64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4nWqxHn1Hqhe0MJxypytxy6R64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D9B/F5BAA3D8C80011EA87D44A78C4F9AE02/CCF7B8AA22B811ECAD21FB20C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.106.0/23 Signature Algorithm: sha256WithRSAEncryption 70:22:78:a9:5b:19:7e:2f:46:3a:e5:0f:9a:4d:db:9d:3a:06: 8e:88:e9:ba:67:7d:87:45:16:f9:3e:7a:db:f4:62:f4:d0:c3: 51:ae:c7:78:5c:43:b1:1c:91:92:92:c1:0e:ff:4c:d3:62:7b: 82:01:e2:49:3c:69:5d:b3:a5:7f:55:56:48:dc:e5:8c:ab:ee: 23:32:a0:fd:d6:30:29:89:4b:be:8b:83:c6:41:e7:9c:a9:38: ab:dd:7d:02:e1:0c:2b:91:c7:7d:7b:5f:e1:b8:4b:25:76:d6: 59:08:2f:fd:30:01:45:58:6c:2e:75:c1:c1:25:ff:68:d9:4b: 8c:24:f8:a7:b4:c7:26:fd:ca:b0:53:d7:16:ca:12:32:21:54: 85:5b:55:a4:ac:8b:71:5f:4f:61:90:a4:1b:ae:a3:67:80:45: 9f:1f:44:f6:e9:07:27:66:6a:c2:df:2d:c0:a3:68:f6:9b:0f: 91:dd:2c:02:73:7a:03:e0:43:5f:9e:53:ce:9c:c0:92:51:6b: a7:2c:84:79:31:5e:5f:b5:e3:fd:b2:2e:a0:9a:7f:4e:3c:5e: 45:99:66:0f:03:4d:ea:1f:ca:90:77:a5:c4:a1:5f:ef:f0:65: d8:41:0a:c4:d9:19:3f:a3:9a:50:25:2a:2d:68:d4:a5:f5:ff: 31:4c:d7:96 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB90wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREOUIxMTAvBgNVBAUTKENGODlENkFCMTFFN0Q0N0FBMTdCNDMwOUM3MkE3MkI3 MUNCQTQ3QUUwHhcNMjQwODI2MjEzMDEwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmNjZjNlMS03NWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAweOQ1zcq+XiD9zPFCNelW23zCAmd1Q49VjktlEUorsq4Qo5XsskpPKQlkf+4 G5NEQBXEzDTf8ZNDazgWyW/P77lQfTWlbLbu97ih4crdigslGw9VwXwb9GZvPOnF 19MSn4vfHl/IihSh/jXDzfWr7naTIyVpGi4Ds/jQIwTW+IN67EgcRQEwYk6Z1uYD +ZLexsypOohbLBe3IDbot/0MP711V0lXOXkQqNDo30kP89utP9nnLHBwphtoc2I9 7PjDOZnZyoyFiPTTz8PnD0+3DujYMSM80AZ8sDmfKmjaRpLUpJ1lydDoADkZiGRP hymzj2Rr2W3S81riNzIfEsBN9QIDAQABo4IClTCCApEwHQYDVR0OBBYEFMgwdA4l BGGBcburcvSF6mwvPu88MB8GA1UdIwQYMBaAFM+J1qsR59R6oXtDCccqcrccukeu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQ5Qi9GNUJBQTNEOEM4 MDAxMUVBODdENDRBNzhDNEY5QUUwMi96NG5XcXhIbjFIcWhlME1KeHlweXR4eTZS NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3o0bldxeEhuMUhxaGUwTUp4eXB5dHh5NlI2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTREOUIvRjVCQUEzRDhDODAwMTFFQTg3RDQ0QTc4QzRGOUFFMDIvQ0NGN0I4QUEy MkI4MTFFQ0FEMjFGQjIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmWowDQYJKoZIhvcNAQELBQADggEBAHAieKlbGX4vRjrl D5pN2506Bo6I6bpnfYdFFvk+etv0YvTQw1Gux3hcQ7EckZKSwQ7/TNNie4IB4kk8 aV2zpX9VVkjc5Yyr7iMyoP3WMCmJS76Lg8ZB55ypOKvdfQLhDCuRx317X+G4SyV2 1lkIL/0wAUVYbC51wcEl/2jZS4wk+Ke0xyb9yrBT1xbKEjIhVIVbVaSsi3FfT2GQ pBuuo2eARZ8fRPbpBydmasLfLcCjaPabD5HdLAJzegPgQ1+eU86cwJJRa6cshHkx Xl+14/2yLqCaf048XkWZZg8DTeofypB3pcShX+/wZdhBCsTZGT+jmlAlKi1o1KX1 /zFM15Y= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:14 2024 by rpki-client on console-fra.rpki-client.org