$ rpki-client -vvf rpki.apnic.net/member_repository/A91F473F/1D17EDB42B9011EE8B5DE470C4F9AE02/C416FBB02D6F11EEAC755B42C4F9AE02.roa File: C416FBB02D6F11EEAC755B42C4F9AE02.roa (raw, json) Hash identifier: ABFFM1PxoSUJD+uYz/pY10lv6OnyO7PHPufaHPjtOBE= Subject key identifier: 4C:A2:D8:0B:5D:31:08:AB:3D:3C:1E:D9:AE:08:53:B2:3D:84:EA:C9 Certificate issuer: /CN=A91F473F/serialNumber=35C6D848316C21D993CF6E4C06D601DC05EFC4E1 Certificate serial: D2 Authority key identifier: 35:C6:D8:48:31:6C:21:D9:93:CF:6E:4C:06:D6:01:DC:05:EF:C4:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NcbYSDFsIdmTz25MBtYB3AXvxOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F473F/1D17EDB42B9011EE8B5DE470C4F9AE02/C416FBB02D6F11EEAC755B42C4F9AE02.roa Signing time: Thu 29 Aug 2024 05:17:51 +0000 ROA not before: Thu 29 Aug 2024 05:17:51 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 151632 IP address blocks: 103.243.234.0/24 maxlen: 24 103.243.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F473F/1D17EDB42B9011EE8B5DE470C4F9AE02/NcbYSDFsIdmTz25MBtYB3AXvxOE.crl rsync://rpki.apnic.net/member_repository/A91F473F/1D17EDB42B9011EE8B5DE470C4F9AE02/NcbYSDFsIdmTz25MBtYB3AXvxOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NcbYSDFsIdmTz25MBtYB3AXvxOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F473F/serialNumber=35C6D848316C21D993CF6E4C06D601DC05EFC4E1 Validity Not Before: Aug 29 05:17:51 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d0047f-1f40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d9:92:f3:f8:9e:bc:e0:7c:bc:0e:96:44:f4: d9:20:34:ab:2d:36:82:bc:60:69:c3:9a:f7:7c:28: 71:2c:bd:12:21:86:11:2a:de:bd:da:00:eb:1c:3b: 4d:67:e6:28:c9:b2:b7:2b:17:68:b3:00:8b:a8:3c: 1c:1a:d0:86:03:ed:bb:bd:fc:5b:27:62:b5:56:71: 49:48:b2:e0:63:2c:be:cb:76:64:f0:46:87:db:04: 53:b9:3c:09:74:59:91:31:f5:d7:bb:1b:b7:d7:c4: 3c:ba:3f:2f:08:4e:4d:21:92:89:16:15:97:c8:4b: 37:b2:00:ef:76:84:68:3d:8a:a9:2c:0c:c1:36:ba: e7:e4:47:87:ef:d2:14:7a:fa:0a:d4:dd:90:76:79: 27:d3:27:19:57:ac:56:93:54:0e:15:f6:78:3c:a6: ba:cf:37:e7:a9:97:28:0d:b0:29:30:4c:fa:bd:79: ab:e9:51:b1:f7:ba:b6:43:07:63:28:36:9b:73:a0: 1e:6a:c5:ac:4f:52:e6:24:be:e7:03:0a:5a:38:58: 0c:ca:ed:c5:44:bb:a3:20:17:87:96:ca:c3:09:41: d1:f0:da:0e:19:f8:8f:69:f5:a2:fa:0f:16:72:63: 02:0b:28:61:1d:25:a6:46:21:bb:b8:f5:7d:c2:67: 6b:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:A2:D8:0B:5D:31:08:AB:3D:3C:1E:D9:AE:08:53:B2:3D:84:EA:C9 X509v3 Authority Key Identifier: keyid:35:C6:D8:48:31:6C:21:D9:93:CF:6E:4C:06:D6:01:DC:05:EF:C4:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F473F/1D17EDB42B9011EE8B5DE470C4F9AE02/NcbYSDFsIdmTz25MBtYB3AXvxOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NcbYSDFsIdmTz25MBtYB3AXvxOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F473F/1D17EDB42B9011EE8B5DE470C4F9AE02/C416FBB02D6F11EEAC755B42C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.243.234.0/23 Signature Algorithm: sha256WithRSAEncryption 96:67:ad:91:5f:9a:84:ec:f0:55:94:a5:72:84:04:b6:09:46: 6c:6b:b5:5b:66:a3:0e:82:b7:97:ab:21:50:86:ec:a7:fc:32: 7b:ab:39:f6:1d:5f:3a:54:0f:bb:ba:b1:81:b0:dc:d9:4e:b4: 8a:0c:74:b5:e3:1e:d8:56:80:bc:91:99:ab:b9:47:23:01:5c: 5f:0b:4d:47:1c:5b:24:38:b7:8e:a4:05:dc:0b:20:dc:c2:f9: 89:a3:95:68:b9:a8:ca:31:39:75:a9:13:77:cc:64:ec:b6:4f: 72:83:89:c8:bd:d6:88:31:6c:a7:82:83:63:1e:2f:3d:7e:5e: 37:40:78:f3:9f:d6:21:5b:82:e7:68:56:49:76:92:7a:db:dd: cb:59:9e:bd:a2:e4:68:48:bd:bf:2d:0e:e1:77:94:6e:36:9e: c0:d1:03:10:84:34:38:3e:d8:61:8e:a4:54:12:da:89:96:5c: d5:76:2c:08:1a:05:bb:bf:3a:8a:62:19:29:f9:bc:bd:63:bb: d0:25:e0:af:2c:7d:a4:be:0c:a7:30:6c:f0:1e:be:ab:1e:66: d1:ff:18:87:8c:26:56:27:a3:84:0f:df:00:35:86:9f:70:a9: bb:b9:2b:75:b7:f2:7b:20:0d:8a:b8:bb:c8:a4:d7:ea:94:f9: e5:1e:a2:6b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQ3M0YxMTAvBgNVBAUTKDM1QzZEODQ4MzE2QzIxRDk5M0NGNkU0QzA2RDYwMURD MDVFRkM0RTEwHhcNMjQwODI5MDUxNzUxWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQwMDQ3Zi0xZjQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzNmS8/ievOB8vA6WRPTZIDSrLTaCvGBpw5r3fChxLL0SIYYRKt692gDrHDtN Z+YoybK3KxdoswCLqDwcGtCGA+27vfxbJ2K1VnFJSLLgYyy+y3Zk8EaH2wRTuTwJ dFmRMfXXuxu318Q8uj8vCE5NIZKJFhWXyEs3sgDvdoRoPYqpLAzBNrrn5EeH79IU evoK1N2Qdnkn0ycZV6xWk1QOFfZ4PKa6zzfnqZcoDbApMEz6vXmr6VGx97q2Qwdj KDabc6AeasWsT1LmJL7nAwpaOFgMyu3FRLujIBeHlsrDCUHR8NoOGfiPafWi+g8W cmMCCyhhHSWmRiG7uPV9wmdrzQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEyi2Atd MQirPTwe2a4IU7I9hOrJMB8GA1UdIwQYMBaAFDXG2EgxbCHZk89uTAbWAdwF78Th MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDczRi8xRDE3RURCNDJC OTAxMUVFOEI1REU0NzBDNEY5QUUwMi9OY2JZU0RGc0lkbVR6MjVNQnRZQjNBWHZ4 T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05jYllTREZzSWRtVHoyNU1CdFlCM0FYdnhPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjQ3M0YvMUQxN0VEQjQyQjkwMTFFRThCNURFNDcwQzRGOUFFMDIvQzQxNkZCQjAy RDZGMTFFRUFDNzU1QjQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn8+owDQYJKoZIhvcNAQELBQADggEBAJZnrZFfmoTs8FWU pXKEBLYJRmxrtVtmow6Ct5erIVCG7Kf8MnurOfYdXzpUD7u6sYGw3NlOtIoMdLXj HthWgLyRmau5RyMBXF8LTUccWyQ4t46kBdwLINzC+YmjlWi5qMoxOXWpE3fMZOy2 T3KDici91ogxbKeCg2MeLz1+XjdAePOf1iFbgudoVkl2knrb3ctZnr2i5GhIvb8t DuF3lG42nsDRAxCENDg+2GGOpFQS2omWXNV2LAgaBbu/OopiGSn5vL1ju9Al4K8s faS+DKcwbPAevqseZtH/GIeMJlYno4QP3wA1hp9wqbu5K3W38nsgDYq4u8ik1+qU +eUeoms= -----END CERTIFICATE-----Generated at Sat Nov 23 05:03:00 2024 by rpki-client on console-fra.rpki-client.org