$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/8C76CF46218411EAA6A8DB38C4F9AE02.roa File: 8C76CF46218411EAA6A8DB38C4F9AE02.roa (raw, json) Hash identifier: HXsMAwlgB+stY5+xQ42R6DsukdPkIbskDCow1gArnpA= Subject key identifier: 25:58:B4:71:70:68:41:65:BD:64:80:99:8C:23:E7:64:FE:C0:84:5B Certificate issuer: /CN=A91EC3CA/serialNumber=EC82B19F907986DEB3BB802D2273D034D1414B2D Certificate serial: 0AA7 Authority key identifier: EC:82:B1:9F:90:79:86:DE:B3:BB:80:2D:22:73:D0:34:D1:41:4B:2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7IKxn5B5ht6zu4AtInPQNNFBSy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/8C76CF46218411EAA6A8DB38C4F9AE02.roa Signing time: Tue 26 Dec 2023 20:07:42 +0000 ROA not before: Tue 26 Dec 2023 20:07:42 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 139865 IP address blocks: 103.146.94.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.crl rsync://rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7IKxn5B5ht6zu4AtInPQNNFBSy0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2727 (0xaa7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC3CA/serialNumber=EC82B19F907986DEB3BB802D2273D034D1414B2D Validity Not Before: Dec 26 20:07:42 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=658b328e-4db8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:1d:9d:60:a3:d8:e1:10:b6:4a:1e:c9:7a:94: 1a:3c:c2:cd:ec:e1:8a:2a:d4:dd:4f:a1:46:42:de: d4:f1:99:1d:07:0d:0a:7d:02:27:47:2e:f8:64:31: 8b:d1:56:60:d0:15:bc:c6:ba:b9:b2:ac:81:70:f7: a5:cb:3f:8c:f6:b6:bf:c8:85:4b:3c:2c:23:21:cd: 31:3d:de:b0:6a:ea:80:ab:82:66:20:8b:8b:90:3f: 53:5b:f6:fd:1e:c7:26:eb:34:78:32:e4:62:5d:6a: 70:87:6a:77:f6:5c:90:54:9e:78:90:c7:6e:ce:6f: ff:0e:52:9b:19:5c:6e:d1:9d:0b:47:cf:95:87:8d: 9d:3e:1e:e3:4d:f0:48:af:5b:84:99:91:39:52:9a: d0:79:95:a3:65:f5:ac:8a:a7:25:20:b6:66:f5:54: 9c:69:b0:b0:99:b5:9f:2c:d1:fb:25:bd:a2:32:e2: 94:0c:da:6a:96:94:f7:c8:58:ba:8b:28:b0:8d:fe: b7:a2:dc:87:2f:fb:e1:c0:3b:35:c6:5f:3c:47:e8: 4b:13:37:93:b9:a4:27:e2:7c:44:80:7e:b7:c2:55: ec:e4:ff:ea:b9:f8:26:4a:37:f3:a0:a2:a9:bc:c3: ec:68:e5:1a:62:76:57:46:5d:8d:d2:fb:2c:11:af: e8:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:58:B4:71:70:68:41:65:BD:64:80:99:8C:23:E7:64:FE:C0:84:5B X509v3 Authority Key Identifier: keyid:EC:82:B1:9F:90:79:86:DE:B3:BB:80:2D:22:73:D0:34:D1:41:4B:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/7IKxn5B5ht6zu4AtInPQNNFBSy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7IKxn5B5ht6zu4AtInPQNNFBSy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC3CA/81386046218311EA8CB84737C4F9AE02/8C76CF46218411EAA6A8DB38C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.146.94.0/23 Signature Algorithm: sha256WithRSAEncryption 4a:68:5c:62:4e:33:d3:51:54:89:17:ab:d6:30:5e:91:35:b7: d7:3e:ad:35:ed:e5:10:12:ea:72:e1:eb:24:8c:87:c5:aa:19: aa:34:89:da:83:0c:3f:54:61:2c:89:d3:ff:09:b0:c7:cb:0f: 60:73:7e:6e:5c:ef:4a:e8:62:d4:ff:f9:c2:b3:15:9b:be:84: 7f:d3:3c:05:f5:39:85:40:d7:c0:27:65:24:55:1c:ce:ad:53: 89:3e:d4:58:ad:20:07:2c:e6:35:c4:38:21:f8:40:b6:1d:a8: 9a:e7:7c:59:af:c8:cc:3a:e3:91:cd:ba:7e:e9:20:69:13:9f: d6:d7:32:b3:e0:30:30:cc:47:f6:08:91:aa:36:c3:ce:d4:6d: ca:24:c3:76:2c:04:81:6d:a7:0b:ee:d7:cc:80:bf:99:d0:71: 93:16:09:2d:be:f1:d1:25:13:79:f0:c1:33:b2:19:e8:ef:77: 08:b0:e5:c6:88:0a:e2:2a:6b:99:f6:b3:43:be:42:c7:33:1b: 6d:45:03:4e:4a:ae:25:f3:66:ba:6c:2e:5f:2b:52:fa:d3:8a: b1:ad:f3:15:0a:95:6f:0b:ce:77:cc:a6:de:4b:56:b8:6c:97: ca:91:4f:0d:57:55:72:89:a1:53:bd:01:fb:ee:6b:7e:b5:06: 46:04:c0:40 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCqcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUMzQ0ExMTAvBgNVBAUTKEVDODJCMTlGOTA3OTg2REVCM0JCODAyRDIyNzNEMDM0 RDE0MTRCMkQwHhcNMjMxMjI2MjAwNzQyWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NThiMzI4ZS00ZGI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7h2dYKPY4RC2Sh7JepQaPMLN7OGKKtTdT6FGQt7U8ZkdBw0KfQInRy74ZDGL 0VZg0BW8xrq5sqyBcPelyz+M9ra/yIVLPCwjIc0xPd6wauqAq4JmIIuLkD9TW/b9 Hscm6zR4MuRiXWpwh2p39lyQVJ54kMduzm//DlKbGVxu0Z0LR8+Vh42dPh7jTfBI r1uEmZE5UprQeZWjZfWsiqclILZm9VScabCwmbWfLNH7Jb2iMuKUDNpqlpT3yFi6 iyiwjf63otyHL/vhwDs1xl88R+hLEzeTuaQn4nxEgH63wlXs5P/qufgmSjfzoKKp vMPsaOUaYnZXRl2N0vssEa/oDwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCVYtHFw aEFlvWSAmYwj52T+wIRbMB8GA1UdIwQYMBaAFOyCsZ+QeYbes7uALSJz0DTRQUst MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzNDQS84MTM4NjA0NjIx ODMxMUVBOENCODQ3MzdDNEY5QUUwMi83SUt4bjVCNWh0Nnp1NEF0SW5QUU5ORkJT eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdJS3huNUI1aHQ2enU0QXRJblBRTk5GQlN5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUMzQ0EvODEzODYwNDYyMTgzMTFFQThDQjg0NzM3QzRGOUFFMDIvOEM3NkNGNDYy MTg0MTFFQUE2QThEQjM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnkl4wDQYJKoZIhvcNAQELBQADggEBAEpoXGJOM9NRVIkX q9YwXpE1t9c+rTXt5RAS6nLh6ySMh8WqGao0idqDDD9UYSyJ0/8JsMfLD2Bzfm5c 70roYtT/+cKzFZu+hH/TPAX1OYVA18AnZSRVHM6tU4k+1FitIAcs5jXEOCH4QLYd qJrnfFmvyMw645HNun7pIGkTn9bXMrPgMDDMR/YIkao2w87Ubcokw3YsBIFtpwvu 18yAv5nQcZMWCS2+8dElE3nwwTOyGejvdwiw5caICuIqa5n2s0O+QsczG21FA05K riXzZrpsLl8rUvrTirGt8xUKlW8LznfMpt5LVrhsl8qRTw1XVXKJoVO9Afvua361 BkYEwEA= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:04 2024 by rpki-client on console-fra.rpki-client.org