$ rpki-client -vvf rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/1295B5943FA611EF94664041C4F9AE02.roa File: 1295B5943FA611EF94664041C4F9AE02.roa (raw, json) Hash identifier: 9y28Ro744mk64orsKu+XqRMBjQXuQzIproIHRZgXM3A= Subject key identifier: 18:B4:6F:EB:2E:71:FE:12:34:B8:2B:B4:CB:63:9E:0E:6D:1A:3E:C7 Certificate issuer: /CN=A911ACAC/serialNumber=91E679721ED1E0927EBB7E461C80580D2393592A Certificate serial: 040C Authority key identifier: 91:E6:79:72:1E:D1:E0:92:7E:BB:7E:46:1C:80:58:0D:23:93:59:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZ5ch7R4JJ-u35GHIBYDSOTWSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/1295B5943FA611EF94664041C4F9AE02.roa Signing time: Thu 11 Jul 2024 16:53:18 +0000 ROA not before: Thu 11 Jul 2024 16:53:18 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 141433 IP address blocks: 103.174.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.crl rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZ5ch7R4JJ-u35GHIBYDSOTWSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1036 (0x40c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ACAC/serialNumber=91E679721ED1E0927EBB7E461C80580D2393592A Validity Not Before: Jul 11 16:53:18 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=66900dfe-28f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:b1:71:1d:e4:6d:c5:62:e0:b9:18:f6:94:e1: 88:d8:ab:5f:27:c2:fc:b9:8f:b6:d2:a4:90:33:d6: ed:64:e7:04:90:14:01:87:2f:59:53:a9:00:69:75: 69:19:99:c9:81:e2:f3:3f:a0:aa:89:ca:22:67:38: 91:35:33:f3:58:ae:58:ad:28:7a:fb:f9:db:4f:c7: 60:a8:86:f6:08:7b:de:04:57:9a:a5:47:00:6c:8c: d8:fd:df:85:b6:8a:aa:38:fb:c4:0a:0f:38:97:8b: 57:f2:67:4b:5f:cf:e3:87:f8:15:5f:00:1c:9a:1c: 3a:42:fb:91:8b:ee:2f:9b:01:1a:22:fb:f6:db:1e: 7f:33:65:c7:78:ce:7d:e6:fc:1c:61:c2:9b:47:a2: f4:d0:a2:5f:64:c7:3a:45:ef:58:97:fb:a2:a6:c9: 31:1b:6b:65:3b:98:f5:4f:bc:bb:51:2e:3f:fc:69: d2:29:72:c0:52:27:f4:42:5a:5e:3e:bf:e7:0d:ab: fd:43:b8:05:03:85:8e:38:b4:47:c6:3e:a7:f1:71: f9:7b:ed:1d:ef:3e:15:f1:ef:23:7f:5d:32:9e:29: 40:f6:21:4c:91:81:3d:9b:73:6a:d5:53:27:12:0e: 2a:b8:d5:e8:82:79:71:d0:b4:41:82:e1:4f:57:14: 50:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:B4:6F:EB:2E:71:FE:12:34:B8:2B:B4:CB:63:9E:0E:6D:1A:3E:C7 X509v3 Authority Key Identifier: keyid:91:E6:79:72:1E:D1:E0:92:7E:BB:7E:46:1C:80:58:0D:23:93:59:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZ5ch7R4JJ-u35GHIBYDSOTWSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/1295B5943FA611EF94664041C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.174.189.0/24 Signature Algorithm: sha256WithRSAEncryption 89:ab:e5:65:0a:5d:d9:1b:53:d2:72:70:90:25:71:98:c6:42: 9f:44:72:02:b7:ea:f8:b5:ff:25:02:db:07:8c:9a:f1:bc:2f: 2d:ac:a0:6f:0e:c8:61:e4:bd:16:4b:42:54:c7:d9:72:95:eb: 9e:7c:27:18:46:4c:4d:47:27:cf:24:e5:bb:61:7b:3a:e9:3f: 61:c0:db:5b:86:48:db:e7:c0:b7:3c:0b:8c:45:b8:8a:51:da: 25:a1:b3:ec:ed:36:dd:d8:cd:f5:26:f9:52:57:bc:6b:61:14: e8:5e:94:94:79:d7:67:a0:ec:7f:6d:c1:3c:ea:74:5e:8c:5f: 4d:ac:fb:91:d1:4d:55:e7:e7:d0:3e:01:21:35:53:a2:23:50: 62:2a:eb:e5:08:90:f0:dd:69:f6:1e:ba:09:5e:15:ea:c1:85: 8d:6f:7b:4b:9c:6d:6a:88:5b:fc:71:b3:a3:2f:b4:24:c7:9d: ec:3b:92:28:60:63:78:b7:a2:c7:d2:c8:91:02:a8:2b:ab:fc: be:c9:fa:e0:e2:86:67:6e:b7:b5:de:6f:ff:6f:32:23:e7:d3: 21:ee:3b:6b:06:c5:4f:48:a1:b0:9c:d5:83:f1:27:7e:b6:84: 37:d5:42:87:a8:a5:2c:b8:88:15:7b:db:9d:da:bb:f9:42:4f: b3:8a:82:5d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBAwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFDQUMxMTAvBgNVBAUTKDkxRTY3OTcyMUVEMUUwOTI3RUJCN0U0NjFDODA1ODBE MjM5MzU5MkEwHhcNMjQwNzExMTY1MzE4WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjkwMGRmZS0yOGYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo7FxHeRtxWLguRj2lOGI2KtfJ8L8uY+20qSQM9btZOcEkBQBhy9ZU6kAaXVp GZnJgeLzP6CqicoiZziRNTPzWK5YrSh6+/nbT8dgqIb2CHveBFeapUcAbIzY/d+F toqqOPvECg84l4tX8mdLX8/jh/gVXwAcmhw6QvuRi+4vmwEaIvv22x5/M2XHeM59 5vwcYcKbR6L00KJfZMc6Re9Yl/uipskxG2tlO5j1T7y7US4//GnSKXLAUif0Qlpe Pr/nDav9Q7gFA4WOOLRHxj6n8XH5e+0d7z4V8e8jf10ynilA9iFMkYE9m3Nq1VMn Eg4quNXognlx0LRBguFPVxRQUwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBi0b+su cf4SNLgrtMtjng5tGj7HMB8GA1UdIwQYMBaAFJHmeXIe0eCSfrt+RhyAWA0jk1kq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUNBQy9CM0JEQTU2NDMx RDMxMUVDOEQzQkJGMzBDNEY5QUUwMi9rZVo1Y2g3UjRKSi11MzVHSElCWURTT1RX U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tlWjVjaDdSNEpKLXUzNUdISUJZRFNPVFdTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUFDQUMvQjNCREE1NjQzMUQzMTFFQzhEM0JCRjMwQzRGOUFFMDIvMTI5NUI1OTQz RkE2MTFFRjk0NjY0MDQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnrr0wDQYJKoZIhvcNAQELBQADggEBAImr5WUKXdkbU9Jy cJAlcZjGQp9EcgK36vi1/yUC2weMmvG8Ly2soG8OyGHkvRZLQlTH2XKV6558JxhG TE1HJ88k5bthezrpP2HA21uGSNvnwLc8C4xFuIpR2iWhs+ztNt3YzfUm+VJXvGth FOhelJR512eg7H9twTzqdF6MX02s+5HRTVXn59A+ASE1U6IjUGIq6+UIkPDdafYe ugleFerBhY1ve0ucbWqIW/xxs6MvtCTHnew7kihgY3i3osfSyJECqCur/L7J+uDi hmdut7Xeb/9vMiPn0yHuO2sGxU9IobCc1YPxJ362hDfVQoeopSy4iBV7253au/lC T7OKgl0= -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:32 2024 by rpki-client on console-fra.rpki-client.org