$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDD99/05729B4C19B911EF8E0DFE3EC4F9AE02/F394D822271911EF86EB1C09C4F9AE02.roa File: F394D822271911EF86EB1C09C4F9AE02.roa (raw, json) Hash identifier: mt85vO9S1+M069/Vqga0C4rzQVNchf8ezTWc8qB7iUM= Subject key identifier: 9D:3B:67:7A:ED:2F:11:21:95:08:BA:FF:72:21:83:B9:4F:AC:93:4F Certificate issuer: /CN=A91EDD99/serialNumber=4FC460F09F90AA86CAF467C285AD78F4312720B0 Certificate serial: 15 Authority key identifier: 4F:C4:60:F0:9F:90:AA:86:CA:F4:67:C2:85:AD:78:F4:31:27:20:B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T8Rg8J-QqobK9GfCha149DEnILA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDD99/05729B4C19B911EF8E0DFE3EC4F9AE02/F394D822271911EF86EB1C09C4F9AE02.roa Signing time: Mon 17 Jun 2024 09:21:13 +0000 ROA not before: Mon 17 Jun 2024 09:21:13 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 45119 IP address blocks: 103.76.48.0/24 maxlen: 24 103.76.49.0/24 maxlen: 24 202.174.122.0/24 maxlen: 24 202.174.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDD99/05729B4C19B911EF8E0DFE3EC4F9AE02/T8Rg8J-QqobK9GfCha149DEnILA.crl rsync://rpki.apnic.net/member_repository/A91EDD99/05729B4C19B911EF8E0DFE3EC4F9AE02/T8Rg8J-QqobK9GfCha149DEnILA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T8Rg8J-QqobK9GfCha149DEnILA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21 (0x15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDD99/serialNumber=4FC460F09F90AA86CAF467C285AD78F4312720B0 Validity Not Before: Jun 17 09:21:13 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=66700008-7a3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:80:11:c7:20:ae:33:ff:9f:d2:20:fe:6a:f4: b5:92:90:10:1c:d0:56:f0:e3:86:39:ef:14:be:ee: e3:11:df:e6:cc:2e:83:e4:1d:dc:df:8b:92:04:a2: 4c:38:c8:34:74:09:79:cc:a7:1b:41:f3:10:dc:9c: 5b:64:67:37:dd:ec:cb:b9:f3:f9:7a:39:06:b0:a7: 51:4d:37:90:4d:7f:b0:9a:a9:bd:27:e6:20:66:8f: 44:b7:a6:52:a2:03:36:7a:b7:8a:52:50:d1:1b:32: 99:4b:e8:79:f8:c8:58:ac:f0:a0:84:20:fc:a9:48: de:48:ac:4d:a9:61:e5:df:ea:ea:59:72:50:f7:af: 22:e3:29:8d:43:e2:91:04:28:a7:e1:f6:7f:0f:18: e1:6d:85:c7:83:d4:ae:28:0f:fa:d2:c4:b3:21:03: 57:b0:c0:af:f3:0b:8f:23:59:01:15:39:ea:f3:af: 53:96:37:57:04:9e:07:0e:ce:6a:ff:0f:ee:cd:0b: 48:c8:b3:70:56:8a:40:8c:5c:20:95:cc:6b:1c:b5: 44:7b:3c:b3:39:60:0f:bc:98:65:05:0f:f0:bb:08: 05:17:00:a7:1b:3b:9a:be:23:b1:39:85:5c:5f:67: fa:07:e7:53:ef:e0:a3:d5:71:55:3b:a4:0a:ec:6b: 74:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:3B:67:7A:ED:2F:11:21:95:08:BA:FF:72:21:83:B9:4F:AC:93:4F X509v3 Authority Key Identifier: keyid:4F:C4:60:F0:9F:90:AA:86:CA:F4:67:C2:85:AD:78:F4:31:27:20:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDD99/05729B4C19B911EF8E0DFE3EC4F9AE02/T8Rg8J-QqobK9GfCha149DEnILA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T8Rg8J-QqobK9GfCha149DEnILA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDD99/05729B4C19B911EF8E0DFE3EC4F9AE02/F394D822271911EF86EB1C09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.76.48.0/23 202.174.122.0/23 Signature Algorithm: sha256WithRSAEncryption 5a:af:e5:71:ef:90:6b:6a:5c:37:8f:56:03:0d:7e:43:04:5e: 94:6c:b6:1a:55:b6:b5:bf:a6:cc:3f:82:1a:26:95:7f:a0:fc: 9f:0f:94:69:ba:26:05:81:c7:0e:05:a8:ba:b0:a3:a4:29:3e: 0d:a4:de:33:27:ba:e3:44:63:8b:73:17:98:2e:44:32:17:de: 72:c0:01:cb:eb:a1:94:56:0b:7e:c6:12:9c:cb:2e:fe:7f:ec: f5:79:4a:97:94:bf:99:a1:05:10:dc:d8:11:aa:1f:a4:b8:83: 6f:56:f7:52:15:f8:34:a5:eb:a0:e5:5f:be:e5:54:eb:ce:b3: b6:c6:54:5b:6e:a2:50:a8:6c:69:da:d3:3d:86:bd:2d:9f:6a: b6:c0:67:39:8a:8a:de:3f:b8:26:7e:14:0b:2c:1c:04:c2:e8: 80:cf:57:15:06:fe:fb:48:20:f4:a8:70:29:a4:4d:c4:c6:62: 20:88:b8:49:b1:47:43:d8:bb:87:18:41:cd:e5:ae:8c:d8:91: 82:d8:e6:ed:f1:d6:a0:bf:7e:98:c2:b0:67:c0:19:dd:6c:e7: 62:c2:b9:a4:cd:13:2d:b9:2e:3c:3a:0b:58:83:9e:44:2b:7e: 77:ed:40:b4:9f:a4:9f:fc:c0:49:6b:9f:cc:2d:9a:7e:2f:3c: 08:f3:27:1d -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBFTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF REQ5OTExMC8GA1UEBRMoNEZDNDYwRjA5RjkwQUE4NkNBRjQ2N0MyODVBRDc4RjQz MTI3MjBCMDAeFw0yNDA2MTcwOTIxMTNaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NzAwMDA4LTdhM2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCkgBHHIK4z/5/SIP5q9LWSkBAc0Fbw44Y57xS+7uMR3+bMLoPkHdzfi5IEokw4 yDR0CXnMpxtB8xDcnFtkZzfd7Mu58/l6OQawp1FNN5BNf7Caqb0n5iBmj0S3plKi AzZ6t4pSUNEbMplL6Hn4yFis8KCEIPypSN5IrE2pYeXf6upZclD3ryLjKY1D4pEE KKfh9n8PGOFthceD1K4oD/rSxLMhA1ewwK/zC48jWQEVOerzr1OWN1cEngcOzmr/ D+7NC0jIs3BWikCMXCCVzGsctUR7PLM5YA+8mGUFD/C7CAUXAKcbO5q+I7E5hVxf Z/oH51Pv4KPVcVU7pArsa3RjAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUnTtneu0v ESGVCLr/ciGDuU+sk08wHwYDVR0jBBgwFoAUT8Rg8J+QqobK9GfCha149DEnILAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVERDk5LzA1NzI5QjRDMTlC OTExRUY4RTBERkUzRUM0RjlBRTAyL1Q4Umc4Si1RcW9iSzlHZkNoYTE0OURFbklM QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVDhSZzhKLVFxb2JLOUdmQ2hhMTQ5REVuSUxBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF REQ5OS8wNTcyOUI0QzE5QjkxMUVGOEUwREZFM0VDNEY5QUUwMi9GMzk0RDgyMjI3 MTkxMUVGODZFQjFDMDlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAWdMMAMEAcquejANBgkqhkiG9w0BAQsFAAOCAQEAWq/lce+Q a2pcN49WAw1+QwRelGy2GlW2tb+mzD+CGiaVf6D8nw+UabomBYHHDgWourCjpCk+ DaTeMye640Rji3MXmC5EMhfecsABy+uhlFYLfsYSnMsu/n/s9XlKl5S/maEFENzY EaofpLiDb1b3UhX4NKXroOVfvuVU686ztsZUW26iUKhsadrTPYa9LZ9qtsBnOYqK 3j+4Jn4UCywcBMLogM9XFQb++0gg9KhwKaRNxMZiIIi4SbFHQ9i7hxhBzeWujNiR gtjm7fHWoL9+mMKwZ8AZ3WznYsK5pM0TLbkuPDoLWIOeRCt+d+1AtJ+kn/zASWuf zC2afi88CPMnHQ== -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:31 2024 by rpki-client on console-fra.rpki-client.org