$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/9406C1209FDB11EDB88C5662C4F9AE02.roa File: 9406C1209FDB11EDB88C5662C4F9AE02.roa (raw, json) Hash identifier: YZEuoke/CkJiGAVUdW9nROMmjBJVKYrECNHv0AzIy0U= Subject key identifier: D1:6B:24:07:52:3D:D7:19:2C:95:C9:3E:FC:B8:A1:50:7D:A7:4A:EA Certificate issuer: /CN=A91E7E45/serialNumber=C4829B6C07FD804DF0925CFFC161C6702807A026 Certificate serial: 0908 Authority key identifier: C4:82:9B:6C:07:FD:80:4D:F0:92:5C:FF:C1:61:C6:70:28:07:A0:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/9406C1209FDB11EDB88C5662C4F9AE02.roa Signing time: Wed 28 Feb 2024 21:29:43 +0000 ROA not before: Wed 28 Feb 2024 21:29:43 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 6939 IP address blocks: 103.207.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.crl rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2312 (0x908) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7E45/serialNumber=C4829B6C07FD804DF0925CFFC161C6702807A026 Validity Not Before: Feb 28 21:29:43 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65dfa5c7-f491 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:cc:3d:1a:3e:15:23:98:69:8d:ce:72:d3:28: 34:69:6d:ca:27:cc:53:e1:6f:cf:a3:4f:d5:5a:db: d4:89:9b:67:31:c4:0c:69:63:0a:55:ae:0f:ac:74: 2d:39:6b:2e:b2:49:c1:3c:3b:e4:ae:80:d9:9e:b1: f5:a5:7a:59:26:81:e9:97:65:32:22:6a:bf:a4:e3: 58:14:dc:35:3b:fc:99:96:ed:83:34:ae:3e:ca:d2: 3f:90:0e:a9:73:c4:98:61:a2:f0:30:f8:d6:a1:c2: 68:10:ad:2f:4f:eb:98:13:af:a6:e1:7b:de:be:b9: 1f:1a:01:4c:da:da:a5:8e:d8:71:63:57:df:7e:21: e4:f8:61:13:48:73:27:c9:79:e3:47:48:17:d8:f8: 77:5e:0b:45:7a:d6:da:75:3a:56:0c:41:72:f7:f1: bf:e8:30:f2:73:fb:08:9a:df:3e:25:e4:21:66:29: 5b:2c:b8:f4:6f:78:01:b0:6c:8c:49:95:00:0b:59: 20:44:69:06:a3:4a:50:f2:7c:bd:46:e2:57:6b:01: 42:a8:57:32:a9:81:aa:d2:7c:33:99:48:af:dd:32: 2e:a0:9a:78:1e:4f:93:97:6a:74:8d:52:fc:eb:b3: 3a:f6:0d:9e:59:f1:e3:e6:51:48:f6:66:13:5d:85: 79:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:6B:24:07:52:3D:D7:19:2C:95:C9:3E:FC:B8:A1:50:7D:A7:4A:EA X509v3 Authority Key Identifier: keyid:C4:82:9B:6C:07:FD:80:4D:F0:92:5C:FF:C1:61:C6:70:28:07:A0:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/9406C1209FDB11EDB88C5662C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.207.71.0/24 Signature Algorithm: sha256WithRSAEncryption 07:a5:4f:2c:e2:4a:64:ed:81:09:66:3f:cf:a9:08:b2:90:01: db:da:c0:85:2c:45:fe:0d:45:a5:7e:74:0b:95:e5:b7:87:08: b7:9c:66:6e:3c:16:55:a2:7a:e4:96:d2:11:a4:76:7f:6c:1d: 7a:4c:f6:b5:50:36:35:6c:8c:1a:ef:d8:3b:d7:bb:60:e1:09: 22:67:33:b1:66:1a:7c:7e:1b:4a:dd:b9:37:9b:5e:fd:df:64: ce:14:b0:b7:8d:57:34:62:28:dc:2b:fc:00:7b:a4:0c:e2:f2: 4d:55:39:3e:bc:c7:de:2e:87:bb:c0:4f:72:a6:80:ec:57:37: 19:97:ae:97:da:0b:6a:cc:db:15:3d:8f:6a:8f:db:08:2c:56: 90:18:c5:2e:d6:26:35:8b:52:13:8e:a7:0a:6e:58:47:78:a0: 41:62:41:f5:63:a7:75:04:5d:68:8d:9c:f6:14:84:ec:9b:f1: 63:b1:83:66:e3:52:47:75:ba:de:51:ff:44:f1:1b:19:c5:12: 14:ef:e1:86:7e:ee:d2:b8:c3:a2:62:1a:8b:c8:09:b8:5f:f8: 9a:33:7a:20:42:7f:31:2e:ed:2e:e0:be:36:3b:0a:86:d7:ee: bb:c4:10:62:c9:6e:ef:33:37:5f:80:70:b7:5e:a7:3c:69:77: 97:bb:28:a4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdFNDUxMTAvBgNVBAUTKEM0ODI5QjZDMDdGRDgwNERGMDkyNUNGRkMxNjFDNjcw MjgwN0EwMjYwHhcNMjQwMjI4MjEyOTQzWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWRmYTVjNy1mNDkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl8w9Gj4VI5hpjc5y0yg0aW3KJ8xT4W/Po0/VWtvUiZtnMcQMaWMKVa4PrHQt OWsusknBPDvkroDZnrH1pXpZJoHpl2UyImq/pONYFNw1O/yZlu2DNK4+ytI/kA6p c8SYYaLwMPjWocJoEK0vT+uYE6+m4XvevrkfGgFM2tqljthxY1fffiHk+GETSHMn yXnjR0gX2Ph3XgtFetbadTpWDEFy9/G/6DDyc/sImt8+JeQhZilbLLj0b3gBsGyM SZUAC1kgRGkGo0pQ8ny9RuJXawFCqFcyqYGq0nwzmUiv3TIuoJp4Hk+Tl2p0jVL8 67M69g2eWfHj5lFI9mYTXYV5NwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNFrJAdS PdcZLJXJPvy4oVB9p0rqMB8GA1UdIwQYMBaAFMSCm2wH/YBN8JJc/8FhxnAoB6Am MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0U0NS8wNkM4NTYzQzgz RDkxMUVBQTMxMjRGNUNDNEY5QUUwMi94SUtiYkFmOWdFM3drbHpfd1dIR2NDZ0hv Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hJS2JiQWY5Z0Uzd2tsel93V0hHY0NnSG9DWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTdFNDUvMDZDODU2M0M4M0Q5MTFFQUEzMTI0RjVDQzRGOUFFMDIvOTQwNkMxMjA5 RkRCMTFFREI4OEM1NjYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnz0cwDQYJKoZIhvcNAQELBQADggEBAAelTyziSmTtgQlm P8+pCLKQAdvawIUsRf4NRaV+dAuV5beHCLecZm48FlWieuSW0hGkdn9sHXpM9rVQ NjVsjBrv2DvXu2DhCSJnM7FmGnx+G0rduTebXv3fZM4UsLeNVzRiKNwr/AB7pAzi 8k1VOT68x94uh7vAT3KmgOxXNxmXrpfaC2rM2xU9j2qP2wgsVpAYxS7WJjWLUhOO pwpuWEd4oEFiQfVjp3UEXWiNnPYUhOyb8WOxg2bjUkd1ut5R/0TxGxnFEhTv4YZ+ 7tK4w6JiGovICbhf+JozeiBCfzEu7S7gvjY7CobX7rvEEGLJbu8zN1+AcLdepzxp d5e7KKQ= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:34 2024 by rpki-client on console-fra.rpki-client.org