$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9509/274ED15E601A11EDB7416B6CC4F9AE02/F23AE0AE632D11ED8C102087C4F9AE02.roa File: F23AE0AE632D11ED8C102087C4F9AE02.roa (raw, json) Hash identifier: ALMLm78gllLBfFwEbfYMxy6G6W9jUB1EmmnPpTHelsE= Subject key identifier: 6E:CA:32:BB:E8:BF:8A:36:0A:7B:3B:41:B3:3F:BF:40:A0:11:A9:54 Certificate issuer: /CN=A91E9509/serialNumber=51BEA3609429D91B1C4E4022DA68BD643C33C3FB Certificate serial: 017C Authority key identifier: 51:BE:A3:60:94:29:D9:1B:1C:4E:40:22:DA:68:BD:64:3C:33:C3:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ub6jYJQp2RscTkAi2mi9ZDwzw_s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9509/274ED15E601A11EDB7416B6CC4F9AE02/F23AE0AE632D11ED8C102087C4F9AE02.roa Signing time: Tue 29 Oct 2024 02:58:23 +0000 ROA not before: Tue 29 Oct 2024 02:58:23 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 150302 IP address blocks: 103.217.98.0/24 maxlen: 24 103.217.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9509/274ED15E601A11EDB7416B6CC4F9AE02/Ub6jYJQp2RscTkAi2mi9ZDwzw_s.crl rsync://rpki.apnic.net/member_repository/A91E9509/274ED15E601A11EDB7416B6CC4F9AE02/Ub6jYJQp2RscTkAi2mi9ZDwzw_s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ub6jYJQp2RscTkAi2mi9ZDwzw_s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:02:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 380 (0x17c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9509/serialNumber=51BEA3609429D91B1C4E4022DA68BD643C33C3FB Validity Not Before: Oct 29 02:58:23 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67204f4e-f400 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:29:99:13:ef:0e:03:92:e0:a7:a3:d1:d9:43: 20:47:69:9d:bc:f3:e1:ae:1f:6b:b9:0e:d8:78:e3: 5e:64:ed:3f:82:0b:fd:aa:4b:3d:09:0f:79:4b:f3: a1:20:20:93:c0:8f:ae:f1:38:1d:94:cc:e0:5c:0a: 9b:db:cc:45:a5:0a:3b:b7:5a:63:ce:97:6e:93:cb: 6c:ee:25:c0:4c:35:e4:5f:d6:50:28:d3:32:32:4a: 52:63:b2:ab:05:64:e2:6a:d7:b6:ad:9c:b9:ba:05: e4:ec:25:18:1f:bc:b1:7d:bd:e6:b9:e0:59:09:0a: 0c:06:b9:b5:e1:e7:bd:34:55:07:aa:a1:9b:e2:8b: 64:08:04:88:ba:45:73:e5:d7:c0:65:10:a2:0d:05: e6:7f:51:54:95:ec:1f:77:cc:d7:41:35:17:78:fe: 46:98:b3:0b:54:a3:e7:bd:53:d2:87:5d:25:f9:8d: 74:db:b6:4d:ea:9d:6e:44:ad:f0:40:97:82:53:ef: e9:2b:b6:f5:6a:83:da:ca:19:29:cd:63:ef:3d:49: bd:58:c3:34:98:07:1c:e4:be:a7:d5:d3:f0:f7:11: 2b:8b:d0:d3:9b:ee:7b:21:a0:13:57:f6:6f:e3:59: 08:79:95:f9:55:1c:4f:0c:98:c7:42:01:11:46:a6: 08:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:CA:32:BB:E8:BF:8A:36:0A:7B:3B:41:B3:3F:BF:40:A0:11:A9:54 X509v3 Authority Key Identifier: keyid:51:BE:A3:60:94:29:D9:1B:1C:4E:40:22:DA:68:BD:64:3C:33:C3:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9509/274ED15E601A11EDB7416B6CC4F9AE02/Ub6jYJQp2RscTkAi2mi9ZDwzw_s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ub6jYJQp2RscTkAi2mi9ZDwzw_s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9509/274ED15E601A11EDB7416B6CC4F9AE02/F23AE0AE632D11ED8C102087C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.217.98.0/23 Signature Algorithm: sha256WithRSAEncryption 9f:b1:f6:a8:93:2c:2b:30:e9:70:50:c0:b2:61:29:3e:d8:72: ae:d9:d0:b3:54:62:ce:c2:16:63:a7:bc:7c:2a:36:e1:c3:80: cd:87:a1:7f:b6:4f:d0:46:ab:6a:76:14:27:86:fd:36:70:d4: c6:b8:2e:ff:43:5f:ef:07:37:5a:9e:ff:1e:b4:e7:41:6a:e8: 56:49:bc:4c:30:4a:4c:d0:9e:e6:a8:43:76:12:57:ed:db:db: 33:5d:ad:51:c2:0c:d9:0f:aa:ce:11:6c:5b:46:74:2a:e9:f7: 5b:63:0a:30:3d:20:52:f7:b6:bb:c8:bc:fc:d7:08:b4:64:f0: c3:ac:fe:23:3d:da:1d:26:36:a1:0a:f2:63:b5:67:74:1b:04: 94:60:40:48:4d:6b:26:99:ef:55:0c:05:e0:fc:a8:f3:2b:9d: 47:3d:83:3d:4b:1f:0f:52:c9:41:a1:60:30:d6:c0:dc:25:c1: 1f:d2:f3:d8:b7:6c:9d:7d:23:a3:77:52:74:b4:14:84:7d:94: 49:96:47:cf:f4:d1:63:d5:1d:04:d3:1a:91:94:74:00:7d:a1: 79:b3:d6:c8:19:9f:c6:2e:8b:63:dd:aa:55:7a:84:6f:b6:a4: ce:ce:a6:a6:df:90:41:4d:13:f5:85:2e:ed:0d:9a:9d:5e:77: 11:60:06:f0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk1MDkxMTAvBgNVBAUTKDUxQkVBMzYwOTQyOUQ5MUIxQzRFNDAyMkRBNjhCRDY0 M0MzM0MzRkIwHhcNMjQxMDI5MDI1ODIzWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzIwNGY0ZS1mNDAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyymZE+8OA5Lgp6PR2UMgR2mdvPPhrh9ruQ7YeONeZO0/ggv9qks9CQ95S/Oh ICCTwI+u8TgdlMzgXAqb28xFpQo7t1pjzpduk8ts7iXATDXkX9ZQKNMyMkpSY7Kr BWTiate2rZy5ugXk7CUYH7yxfb3mueBZCQoMBrm14ee9NFUHqqGb4otkCASIukVz 5dfAZRCiDQXmf1FUlewfd8zXQTUXeP5GmLMLVKPnvVPSh10l+Y1027ZN6p1uRK3w QJeCU+/pK7b1aoPayhkpzWPvPUm9WMM0mAcc5L6n1dPw9xEri9DTm+57IaATV/Zv 41kIeZX5VRxPDJjHQgERRqYIAwIDAQABo4IClTCCApEwHQYDVR0OBBYEFG7KMrvo v4o2Cns7QbM/v0CgEalUMB8GA1UdIwQYMBaAFFG+o2CUKdkbHE5AItpovWQ8M8P7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTUwOS8yNzRFRDE1RTYw MUExMUVEQjc0MTZCNkNDNEY5QUUwMi9VYjZqWUpRcDJSc2NUa0FpMm1pOVpEd3p3 X3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ViNmpZSlFwMlJzY1RrQWkybWk5WkR3endfcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTk1MDkvMjc0RUQxNUU2MDFBMTFFREI3NDE2QjZDQzRGOUFFMDIvRjIzQUUwQUU2 MzJEMTFFRDhDMTAyMDg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn2WIwDQYJKoZIhvcNAQELBQADggEBAJ+x9qiTLCsw6XBQ wLJhKT7Ycq7Z0LNUYs7CFmOnvHwqNuHDgM2HoX+2T9BGq2p2FCeG/TZw1Ma4Lv9D X+8HN1qe/x6050Fq6FZJvEwwSkzQnuaoQ3YSV+3b2zNdrVHCDNkPqs4RbFtGdCrp 91tjCjA9IFL3trvIvPzXCLRk8MOs/iM92h0mNqEK8mO1Z3QbBJRgQEhNayaZ71UM BeD8qPMrnUc9gz1LHw9SyUGhYDDWwNwlwR/S89i3bJ19I6N3UnS0FIR9lEmWR8/0 0WPVHQTTGpGUdAB9oXmz1sgZn8Yui2PdqlV6hG+2pM7OpqbfkEFNE/WFLu0Nmp1e dxFgBvA= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:59 2024 by rpki-client on console-fra.rpki-client.org