$ rpki-client -vvf rpki.apnic.net/member_repository/A91F30AE/E7FC0D14378E11EC843CD245C4F9AE02/84CEFB0E379111EC92DB9A48C4F9AE02.roa File: 84CEFB0E379111EC92DB9A48C4F9AE02.roa (raw, json) Hash identifier: 1ALWg1Qlo5IyGVR2E3WZposvdzb9mETdXX2ZGs91bhg= Subject key identifier: C2:2C:3C:91:0C:B6:AD:90:58:54:DE:D2:7B:D4:FA:3C:4E:F8:42:99 Certificate issuer: /CN=A91F30AE/serialNumber=EEA33E86E281AD13DC629F32D8D53760AE1D0047 Certificate serial: 0431 Authority key identifier: EE:A3:3E:86:E2:81:AD:13:DC:62:9F:32:D8:D5:37:60:AE:1D:00:47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7qM-huKBrRPcYp8y2NU3YK4dAEc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F30AE/E7FC0D14378E11EC843CD245C4F9AE02/84CEFB0E379111EC92DB9A48C4F9AE02.roa Signing time: Tue 29 Oct 2024 00:26:10 +0000 ROA not before: Tue 29 Oct 2024 00:26:10 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 147178 IP address blocks: 103.174.12.0/24 maxlen: 24 2001:df7:b280::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F30AE/E7FC0D14378E11EC843CD245C4F9AE02/7qM-huKBrRPcYp8y2NU3YK4dAEc.crl rsync://rpki.apnic.net/member_repository/A91F30AE/E7FC0D14378E11EC843CD245C4F9AE02/7qM-huKBrRPcYp8y2NU3YK4dAEc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7qM-huKBrRPcYp8y2NU3YK4dAEc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1073 (0x431) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F30AE/serialNumber=EEA33E86E281AD13DC629F32D8D53760AE1D0047 Validity Not Before: Oct 29 00:26:10 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67202ba2-9405 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:f7:d2:1b:8c:d7:36:7c:82:eb:20:c3:e4:c4: 74:c7:68:ed:cb:bc:e4:bc:31:58:f7:58:a5:5c:b6: 33:df:b3:33:02:a0:63:9c:8c:15:f9:6b:00:8c:d7: 98:50:89:0c:c2:5d:e1:03:52:ca:4f:b8:b9:1a:46: 19:9a:6f:2f:14:10:1b:e0:0a:a9:9a:88:bf:ba:3c: cd:11:15:3d:6f:b4:17:1a:d8:5d:f0:1a:3c:af:48: f3:c3:dd:f2:79:f6:32:17:13:7d:5d:9e:3e:2e:ad: 1e:2c:67:1c:b8:42:46:19:05:f4:53:3a:22:1f:a0: bf:83:38:09:cb:4e:e4:01:31:0a:55:ff:af:75:48: 92:e0:cb:65:72:7b:35:2f:c0:77:88:ef:fc:40:75: 16:95:a9:b0:03:ae:15:43:ce:c4:2b:ab:c5:a3:90: 58:bb:c8:23:ee:e7:cc:f6:54:f6:20:54:88:71:94: a8:ab:a8:18:b9:c8:00:2b:fd:44:66:ec:c5:32:df: ad:2b:95:a5:6c:a3:e3:07:91:c9:c0:27:57:a4:97: 24:32:23:71:9b:f6:4c:79:8d:39:8a:3d:22:2e:bd: 9a:63:a4:59:d9:43:da:a5:15:ba:df:bc:87:d9:4f: dd:6c:61:d3:6e:da:2f:53:f1:ea:39:53:96:1c:0d: bb:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:2C:3C:91:0C:B6:AD:90:58:54:DE:D2:7B:D4:FA:3C:4E:F8:42:99 X509v3 Authority Key Identifier: keyid:EE:A3:3E:86:E2:81:AD:13:DC:62:9F:32:D8:D5:37:60:AE:1D:00:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F30AE/E7FC0D14378E11EC843CD245C4F9AE02/7qM-huKBrRPcYp8y2NU3YK4dAEc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7qM-huKBrRPcYp8y2NU3YK4dAEc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F30AE/E7FC0D14378E11EC843CD245C4F9AE02/84CEFB0E379111EC92DB9A48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.174.12.0/24 IPv6: 2001:df7:b280::/48 Signature Algorithm: sha256WithRSAEncryption 90:b6:c9:ca:84:7b:e1:8f:12:90:14:39:18:47:4b:fe:b8:7a: a6:94:3c:ed:17:59:93:e9:7c:af:d2:bc:eb:02:6c:85:9d:ee: 86:b2:72:e0:41:00:5f:9a:4b:3e:4a:87:18:5c:e8:6d:9c:06: a5:3f:9f:7c:c2:f7:e2:99:db:cd:14:16:36:64:0f:47:e4:07: f2:b1:7c:0c:67:e5:35:71:88:3c:63:d0:1f:23:d2:15:13:6f: a9:17:c1:e8:fe:eb:b8:89:5a:00:cc:f2:c3:55:b1:c7:e3:9d: 1a:f4:0a:c9:cf:f4:37:f4:1e:91:98:76:2e:27:c9:b2:38:fb: c9:e8:9b:2d:a6:5d:96:7c:00:36:fd:a3:da:7b:4d:f8:9f:52: 91:47:78:d4:42:7a:41:c3:07:41:46:6e:bb:70:a7:a6:05:2b: e9:78:d7:d3:04:02:06:c6:12:db:8d:a5:88:ac:a4:28:66:5f: 74:5e:8e:d9:e0:fc:8b:3e:a9:54:cf:84:aa:db:f8:f1:f0:59: 9c:fc:1b:30:0e:58:d2:9b:16:e9:d5:73:d8:b0:c7:63:95:de: fb:d7:f2:ba:92:b4:35:c4:fd:60:34:82:5f:2c:09:29:d9:8c: ce:7f:08:4e:a9:23:da:10:f1:58:46:64:94:0d:f1:fa:60:c8: 67:16:d7:f2 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBDEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjMwQUUxMTAvBgNVBAUTKEVFQTMzRTg2RTI4MUFEMTNEQzYyOUYzMkQ4RDUzNzYw QUUxRDAwNDcwHhcNMjQxMDI5MDAyNjEwWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzIwMmJhMi05NDA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ffSG4zXNnyC6yDD5MR0x2jty7zkvDFY91ilXLYz37MzAqBjnIwV+WsAjNeY UIkMwl3hA1LKT7i5GkYZmm8vFBAb4Aqpmoi/ujzNERU9b7QXGthd8Bo8r0jzw93y efYyFxN9XZ4+Lq0eLGccuEJGGQX0UzoiH6C/gzgJy07kATEKVf+vdUiS4Mtlcns1 L8B3iO/8QHUWlamwA64VQ87EK6vFo5BYu8gj7ufM9lT2IFSIcZSoq6gYucgAK/1E ZuzFMt+tK5WlbKPjB5HJwCdXpJckMiNxm/ZMeY05ij0iLr2aY6RZ2UPapRW637yH 2U/dbGHTbtovU/HqOVOWHA27oQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFMIsPJEM tq2QWFTe0nvU+jxO+EKZMB8GA1UdIwQYMBaAFO6jPobiga0T3GKfMtjVN2CuHQBH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzBBRS9FN0ZDMEQxNDM3 OEUxMUVDODQzQ0QyNDVDNEY5QUUwMi83cU0taHVLQnJSUGNZcDh5Mk5VM1lLNGRB RWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdxTS1odUtCclJQY1lwOHkyTlUzWUs0ZEFFYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjMwQUUvRTdGQzBEMTQzNzhFMTFFQzg0M0NEMjQ1QzRGOUFFMDIvODRDRUZCMEUz NzkxMTFFQzkyREI5QTQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnrgwwDwQCAAIwCQMHACABDfeygDANBgkqhkiG9w0BAQsF AAOCAQEAkLbJyoR74Y8SkBQ5GEdL/rh6ppQ87RdZk+l8r9K86wJshZ3uhrJy4EEA X5pLPkqHGFzobZwGpT+ffML34pnbzRQWNmQPR+QH8rF8DGflNXGIPGPQHyPSFRNv qRfB6P7ruIlaAMzyw1Wxx+OdGvQKyc/0N/QekZh2LifJsjj7yeibLaZdlnwANv2j 2ntN+J9SkUd41EJ6QcMHQUZuu3CnpgUr6XjX0wQCBsYS242liKykKGZfdF6O2eD8 iz6pVM+Eqtv48fBZnPwbMA5Y0psW6dVz2LDHY5Xe+9fyupK0NcT9YDSCXywJKdmM zn8ITqkj2hDxWEZklA3x+mDIZxbX8g== -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:39 2024 by rpki-client on console-fra.rpki-client.org