$ rpki-client -vvf rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/4BC6C1AE9CEF11EF82EF5C3FC4F9AE02.roa File: 4BC6C1AE9CEF11EF82EF5C3FC4F9AE02.roa (raw, json) Hash identifier: 27h6ZzeDkFY8ehjLlDJqUjMwdr7lTRfsKDsKGAQezRs= Subject key identifier: E7:4F:A3:0E:5A:97:75:97:BF:81:BD:57:F1:D4:97:F7:8C:2C:7C:01 Certificate issuer: /CN=A911309C/serialNumber=D333A7787A61FF86C745B474096AF69AE31ACFF1 Certificate serial: 0585 Authority key identifier: D3:33:A7:78:7A:61:FF:86:C7:45:B4:74:09:6A:F6:9A:E3:1A:CF:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0zOneHph_4bHRbR0CWr2muMaz_E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/4BC6C1AE9CEF11EF82EF5C3FC4F9AE02.roa Signing time: Thu 07 Nov 2024 10:01:45 +0000 ROA not before: Thu 07 Nov 2024 10:01:45 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 10122 IP address blocks: 103.166.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/0zOneHph_4bHRbR0CWr2muMaz_E.crl rsync://rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/0zOneHph_4bHRbR0CWr2muMaz_E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0zOneHph_4bHRbR0CWr2muMaz_E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1413 (0x585) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911309C/serialNumber=D333A7787A61FF86C745B474096AF69AE31ACFF1 Validity Not Before: Nov 7 10:01:45 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=672c9009-2f70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:31:90:13:c2:0c:18:f1:42:e9:13:33:97:78: cf:d0:ab:8c:38:c0:25:bd:df:e7:71:52:72:1b:31: 70:3e:ff:7b:8b:6e:4a:92:f9:86:2c:dd:ee:76:ef: fb:fe:e0:72:cc:8d:f4:36:39:8a:b8:3c:6b:4c:3f: 85:6c:61:01:25:e1:bb:c9:ed:ab:a4:d4:b9:61:48: be:7c:15:58:79:a0:06:db:b5:5b:c3:a5:c6:a8:2b: e2:99:d9:65:17:42:72:73:eb:36:b1:f5:5d:dd:1d: c4:1d:66:e8:1a:0e:a0:12:2b:e4:8c:50:0f:e2:54: f6:ca:9d:c0:67:e9:10:88:a7:84:bb:13:d1:80:da: e7:be:2c:bd:76:b4:74:55:d1:50:8b:63:89:2a:d3: fd:36:ad:dc:14:83:f1:44:fc:ba:a9:32:e1:1a:0e: ff:f3:17:d4:64:ef:9b:51:a3:fd:4c:ba:e4:c1:39: f6:c4:2d:f8:31:96:d0:2c:f3:c8:0a:e5:ce:2d:a4: fb:b9:b4:60:20:0b:24:ac:d1:de:f0:8b:ac:48:a0: 47:c3:0d:78:8e:09:69:9d:b9:f5:81:44:9c:16:1c: e4:c5:d5:4a:89:4f:f1:bb:71:e5:c3:af:fa:c2:c3: 4d:b9:83:cf:f7:f6:bd:95:78:a2:76:3b:d2:10:bf: ab:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:4F:A3:0E:5A:97:75:97:BF:81:BD:57:F1:D4:97:F7:8C:2C:7C:01 X509v3 Authority Key Identifier: keyid:D3:33:A7:78:7A:61:FF:86:C7:45:B4:74:09:6A:F6:9A:E3:1A:CF:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/0zOneHph_4bHRbR0CWr2muMaz_E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0zOneHph_4bHRbR0CWr2muMaz_E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/4BC6C1AE9CEF11EF82EF5C3FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.166.232.0/24 Signature Algorithm: sha256WithRSAEncryption 29:2f:e2:12:8b:de:1f:18:fb:70:ea:41:a7:6b:7a:7d:e9:7b: 60:8b:55:03:7c:18:af:d1:d4:23:f1:ec:19:e2:4f:d4:a7:74: 8e:54:87:2a:1c:46:fd:e1:6b:df:67:ca:2c:2a:1b:8c:60:c5: 14:d5:64:3a:24:e5:7b:56:5b:75:70:bb:cd:74:32:ae:71:0e: ba:80:7e:13:ed:c1:97:4a:66:b4:32:b1:9e:dd:10:b6:d1:e7: 20:6d:83:89:72:b0:e1:50:03:8c:dd:2d:4e:82:40:01:be:e5: aa:16:1e:73:84:32:36:1b:23:6c:2a:06:69:cb:36:57:c3:1a: 87:3c:77:16:1f:24:22:a7:5b:a3:85:a5:65:e2:85:e3:83:a9: 49:8e:53:b7:a3:45:03:fd:78:77:41:2d:ac:fb:ec:7b:0c:84: 73:46:7d:b6:65:3b:dc:34:3b:91:39:f5:50:ff:ba:0b:95:d0: 77:91:7f:38:3f:a4:80:fc:d5:fd:fa:3e:c9:f8:8e:1b:24:1d: c6:26:37:0f:3e:32:24:08:60:28:2d:e1:a1:60:7d:d6:d0:8a: 49:1c:99:1e:d5:e8:60:ba:bc:a4:04:59:cd:d2:42:97:4f:3a: 5d:17:4c:40:d6:c9:c5:d8:9f:21:98:84:68:6a:d4:7c:ef:3b: de:0d:7c:d8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTMwOUMxMTAvBgNVBAUTKEQzMzNBNzc4N0E2MUZGODZDNzQ1QjQ3NDA5NkFGNjlB RTMxQUNGRjEwHhcNMjQxMTA3MTAwMTQ1WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJjOTAwOS0yZjcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAszGQE8IMGPFC6RMzl3jP0KuMOMAlvd/ncVJyGzFwPv97i25KkvmGLN3udu/7 /uByzI30NjmKuDxrTD+FbGEBJeG7ye2rpNS5YUi+fBVYeaAG27Vbw6XGqCvimdll F0Jyc+s2sfVd3R3EHWboGg6gEivkjFAP4lT2yp3AZ+kQiKeEuxPRgNrnviy9drR0 VdFQi2OJKtP9Nq3cFIPxRPy6qTLhGg7/8xfUZO+bUaP9TLrkwTn2xC34MZbQLPPI CuXOLaT7ubRgIAskrNHe8IusSKBHww14jglpnbn1gUScFhzkxdVKiU/xu3Hlw6/6 wsNNuYPP9/a9lXiidjvSEL+rSwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOdPow5a l3WXv4G9V/HUl/eMLHwBMB8GA1UdIwQYMBaAFNMzp3h6Yf+Gx0W0dAlq9prjGs/x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMzA5Qy9COTJFMzU0MEIy RTkxMUVCQjREOUNDMzFDNEY5QUUwMi8wek9uZUhwaF80YkhSYlIwQ1dyMm11TWF6 X0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzB6T25lSHBoXzRiSFJiUjBDV3IybXVNYXpfRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTMwOUMvQjkyRTM1NDBCMkU5MTFFQkI0RDlDQzMxQzRGOUFFMDIvNEJDNkMxQUU5 Q0VGMTFFRjgyRUY1QzNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnpugwDQYJKoZIhvcNAQELBQADggEBACkv4hKL3h8Y+3Dq Qadren3pe2CLVQN8GK/R1CPx7BniT9SndI5UhyocRv3ha99nyiwqG4xgxRTVZDok 5XtWW3Vwu810Mq5xDrqAfhPtwZdKZrQysZ7dELbR5yBtg4lysOFQA4zdLU6CQAG+ 5aoWHnOEMjYbI2wqBmnLNlfDGoc8dxYfJCKnW6OFpWXiheODqUmOU7ejRQP9eHdB Laz77HsMhHNGfbZlO9w0O5E59VD/uguV0HeRfzg/pID81f36Psn4jhskHcYmNw8+ MiQIYCgt4aFgfdbQikkcmR7V6GC6vKQEWc3SQpdPOl0XTEDWycXYnyGYhGhq1Hzv O94NfNg= -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:22 2024 by rpki-client on console-fra.rpki-client.org