$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/A38F041873C011EEB1A68245C4F9AE02.roa File: A38F041873C011EEB1A68245C4F9AE02.roa (raw, json) Hash identifier: 1J6SBhKfyTeug2CS1rB/AAJ6IDeL/Dzh4xQR/iFRSiE= Subject key identifier: D8:F5:76:A3:A1:AB:39:FC:60:A8:31:73:33:A8:50:4B:1F:14:37:72 Certificate issuer: /CN=A91FD2E3/serialNumber=481720A2C8EE6CEC9247776193299C10FEB7CA44 Certificate serial: B2 Authority key identifier: 48:17:20:A2:C8:EE:6C:EC:92:47:77:61:93:29:9C:10:FE:B7:CA:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SBcgosjubOySR3dhkymcEP63ykQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/A38F041873C011EEB1A68245C4F9AE02.roa Signing time: Fri 27 Sep 2024 04:58:20 +0000 ROA not before: Fri 27 Sep 2024 04:58:20 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 151652 IP address blocks: 103.249.203.0/24 maxlen: 24 2001:df2:ca40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/SBcgosjubOySR3dhkymcEP63ykQ.crl rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/SBcgosjubOySR3dhkymcEP63ykQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SBcgosjubOySR3dhkymcEP63ykQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 178 (0xb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD2E3/serialNumber=481720A2C8EE6CEC9247776193299C10FEB7CA44 Validity Not Before: Sep 27 04:58:20 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f63b6b-61e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:d7:3a:23:65:14:c9:b7:aa:b4:d4:4a:d5:06: 07:23:51:28:a7:62:b0:39:93:33:8f:0a:5c:c2:f0: b9:83:1a:27:91:91:7e:2c:12:f3:7c:0f:58:1e:57: 94:10:fe:a3:af:d1:90:d8:7b:00:2b:5f:ba:20:89: d9:2a:30:39:3c:1c:47:5c:e2:07:2d:3c:a1:e5:66: 21:61:26:6a:45:71:96:bc:32:25:a8:5d:04:c0:fb: cd:b5:4f:9a:24:04:bc:c2:3a:5b:3c:8f:6d:e8:87: bb:92:a9:29:9a:fd:3a:3e:32:0f:d1:b8:6f:49:14: 1e:d9:5b:b7:20:d1:34:a5:76:af:7a:aa:77:1b:5e: 90:28:33:2b:21:c1:8d:8e:2e:10:85:55:c5:e0:56: b2:62:08:9d:ee:00:f6:9a:bc:ff:bf:99:fd:db:0e: ce:77:2f:61:e6:5e:68:5e:4a:a7:e2:2c:18:3c:7a: 56:d3:0b:c8:4b:2f:54:51:ea:86:8e:79:55:af:6a: 00:ce:5c:53:fc:b5:ed:81:31:21:e1:0b:2e:1b:e2: 8e:e8:ba:81:a3:46:5b:28:5b:39:6a:3d:16:31:93: a1:5d:44:8b:8e:24:63:4b:f8:81:6b:1d:dd:48:d6: 0e:31:8e:b7:36:47:40:f2:4b:f9:5c:b7:33:fe:39: d6:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:F5:76:A3:A1:AB:39:FC:60:A8:31:73:33:A8:50:4B:1F:14:37:72 X509v3 Authority Key Identifier: keyid:48:17:20:A2:C8:EE:6C:EC:92:47:77:61:93:29:9C:10:FE:B7:CA:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/SBcgosjubOySR3dhkymcEP63ykQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SBcgosjubOySR3dhkymcEP63ykQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/A38F041873C011EEB1A68245C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.249.203.0/24 IPv6: 2001:df2:ca40::/48 Signature Algorithm: sha256WithRSAEncryption 0f:57:98:0b:1a:d3:b6:63:40:7b:73:79:17:5b:4a:8e:d2:35: fb:7e:f7:bf:59:06:a8:ab:cd:e1:07:bf:1d:52:62:cb:ee:be: 72:2c:37:34:68:c7:9a:66:ed:8d:e4:20:29:ef:fa:97:d7:65: cb:7d:a2:3f:96:ba:bf:ea:c2:fc:65:f2:f6:3d:19:ca:80:9a: 24:fe:c0:9a:e8:16:8a:e6:02:9a:9a:5d:e2:74:9a:6b:71:58: 1a:8b:48:cd:b1:3d:b5:b5:bd:21:74:43:e7:ff:30:a3:99:f6: 47:9b:ad:28:80:d6:ba:62:62:0e:77:06:e8:69:39:90:ad:a6: fb:91:1d:03:40:0f:56:45:b2:34:02:1c:a3:17:0d:65:f2:5e: 2c:9b:82:6e:f6:61:98:47:77:5a:f1:41:e8:0c:f6:3c:e7:b7: f5:dd:54:d1:c5:29:6e:0e:25:05:ad:43:bf:99:a9:cf:e4:59: 18:c1:a4:9e:65:74:55:a1:42:0a:cd:ed:80:bf:3d:3b:72:bb: 06:8b:d6:1a:74:e3:66:70:80:75:b3:9d:5c:69:a8:f3:02:60: dd:20:6f:79:0a:91:b9:31:10:12:d9:8c:1e:24:42:4f:a8:dc: 47:0d:e6:dd:83:f5:cb:e2:bf:bf:a3:bd:57:4e:0b:b5:aa:67: e8:86:ca:70 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICALIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQyRTMxMTAvBgNVBAUTKDQ4MTcyMEEyQzhFRTZDRUM5MjQ3Nzc2MTkzMjk5QzEw RkVCN0NBNDQwHhcNMjQwOTI3MDQ1ODIwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmY2M2I2Yi02MWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAntc6I2UUybeqtNRK1QYHI1Eop2KwOZMzjwpcwvC5gxonkZF+LBLzfA9YHleU EP6jr9GQ2HsAK1+6IInZKjA5PBxHXOIHLTyh5WYhYSZqRXGWvDIlqF0EwPvNtU+a JAS8wjpbPI9t6Ie7kqkpmv06PjIP0bhvSRQe2Vu3INE0pXaveqp3G16QKDMrIcGN ji4QhVXF4FayYgid7gD2mrz/v5n92w7Ody9h5l5oXkqn4iwYPHpW0wvISy9UUeqG jnlVr2oAzlxT/LXtgTEh4QsuG+KO6LqBo0ZbKFs5aj0WMZOhXUSLjiRjS/iBax3d SNYOMY63NkdA8kv5XLcz/jnWeQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFNj1dqOh qzn8YKgxczOoUEsfFDdyMB8GA1UdIwQYMBaAFEgXIKLI7mzskkd3YZMpnBD+t8pE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDJFMy80RjQxNzlBNDcz QzAxMUVFQjgyN0Y0NDRDNEY5QUUwMi9TQmNnb3NqdWJPeVNSM2Roa3ltY0VQNjN5 a1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NCY2dvc2p1Yk95U1IzZGhreW1jRVA2M3lrUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkQyRTMvNEY0MTc5QTQ3M0MwMTFFRUI4MjdGNDQ0QzRGOUFFMDIvQTM4RjA0MTg3 M0MwMTFFRUIxQTY4MjQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABn+cswDwQCAAIwCQMHACABDfLKQDANBgkqhkiG9w0BAQsF AAOCAQEAD1eYCxrTtmNAe3N5F1tKjtI1+373v1kGqKvN4Qe/HVJiy+6+ciw3NGjH mmbtjeQgKe/6l9dly32iP5a6v+rC/GXy9j0ZyoCaJP7AmugWiuYCmppd4nSaa3FY GotIzbE9tbW9IXRD5/8wo5n2R5utKIDWumJiDncG6Gk5kK2m+5EdA0APVkWyNAIc oxcNZfJeLJuCbvZhmEd3WvFB6Az2POe39d1U0cUpbg4lBa1Dv5mpz+RZGMGknmV0 VaFCCs3tgL89O3K7BovWGnTjZnCAdbOdXGmo8wJg3SBveQqRuTEQEtmMHiRCT6jc Rw3m3YP1y+K/v6O9V04Ltapn6IbKcA== -----END CERTIFICATE-----Generated at Sat Nov 23 05:03:01 2024 by rpki-client on console-fra.rpki-client.org