$ rpki-client -vvf rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/C52B4E0A3FE011EF88794913C4F9AE02.roa File: C52B4E0A3FE011EF88794913C4F9AE02.roa (raw, json) Hash identifier: q1neCCft+Zr05hq6G1aFek9AaQMcQFbFqs59rfeUCOs= Subject key identifier: 53:EB:38:6F:43:26:60:12:1B:BB:D0:B4:3C:B2:81:57:01:42:8C:82 Certificate issuer: /CN=A911ACAC/serialNumber=91E679721ED1E0927EBB7E461C80580D2393592A Certificate serial: 0413 Authority key identifier: 91:E6:79:72:1E:D1:E0:92:7E:BB:7E:46:1C:80:58:0D:23:93:59:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZ5ch7R4JJ-u35GHIBYDSOTWSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/C52B4E0A3FE011EF88794913C4F9AE02.roa Signing time: Thu 11 Jul 2024 23:53:49 +0000 ROA not before: Thu 11 Jul 2024 23:53:49 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 147307 IP address blocks: 103.174.188.0/24 maxlen: 24 2001:df7:d180::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.crl rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZ5ch7R4JJ-u35GHIBYDSOTWSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1043 (0x413) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ACAC/serialNumber=91E679721ED1E0927EBB7E461C80580D2393592A Validity Not Before: Jul 11 23:53:49 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6690708c-543f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:5e:67:44:4f:44:74:d4:f4:4a:e0:00:1e:d4: 0b:25:19:c0:b3:7e:ca:d7:ce:ab:6d:a7:7d:9b:f5: e8:5e:62:d9:94:94:86:d0:5b:b4:17:05:25:d5:5b: 6a:c9:b1:4e:db:8b:61:c2:a9:0b:1b:cd:db:f0:ea: a2:46:a9:75:d3:56:34:df:72:b5:6b:8e:56:00:a7: 06:3f:aa:5a:31:a8:e1:db:0d:c9:8c:80:39:10:2c: b7:07:64:e3:40:77:04:2d:92:40:44:c8:4a:49:c8: e6:b5:92:ff:b9:f1:cc:26:a4:2d:a3:c3:93:24:bd: 8f:1a:05:c2:2b:2a:b3:2b:c5:45:75:8e:e6:b4:b6: 05:ae:97:33:09:cf:b3:9a:97:e5:d6:b8:ba:df:c8: 89:b5:4d:3c:f8:96:7b:b6:20:71:0c:09:5f:0e:0a: 0e:72:28:71:59:8c:8e:98:99:d8:87:3c:3b:d1:17: 46:4f:73:3a:ca:3f:4a:af:76:d5:8d:0e:13:a9:9b: d2:47:2f:1e:2d:0e:04:9e:c0:be:2c:55:b9:6b:55: 45:fe:7d:d1:6f:fd:96:5c:de:4f:62:38:94:96:99: d6:48:a1:bd:29:87:62:0b:be:11:b8:ac:4d:83:59: d4:58:37:72:3f:e3:6d:8b:1a:2d:97:40:ec:66:fe: dc:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:EB:38:6F:43:26:60:12:1B:BB:D0:B4:3C:B2:81:57:01:42:8C:82 X509v3 Authority Key Identifier: keyid:91:E6:79:72:1E:D1:E0:92:7E:BB:7E:46:1C:80:58:0D:23:93:59:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/keZ5ch7R4JJ-u35GHIBYDSOTWSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZ5ch7R4JJ-u35GHIBYDSOTWSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ACAC/B3BDA56431D311EC8D3BBF30C4F9AE02/C52B4E0A3FE011EF88794913C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.174.188.0/24 IPv6: 2001:df7:d180::/48 Signature Algorithm: sha256WithRSAEncryption 1a:57:79:b1:a3:cb:45:56:e4:86:80:99:ef:48:10:94:72:49: 5e:8d:71:e0:07:4b:1a:7b:58:b6:27:d5:d4:ed:2d:e1:e3:5f: 60:6a:91:a8:69:0d:0c:a0:9a:fd:cf:7f:f4:29:e4:57:2a:9f: 62:cc:fc:3d:33:b4:cd:c4:2d:c8:d1:42:24:ff:18:e5:93:8a: ad:e8:83:7e:38:95:19:a9:bf:8e:1c:4e:99:2c:d6:71:2c:bc: 6d:91:89:07:89:ec:20:9f:8f:55:38:4e:4e:73:b6:e6:e6:90: 10:a9:06:11:72:7c:17:25:60:2e:e0:44:8d:fe:8e:d9:92:d0: b0:a0:30:63:d5:5e:e6:5a:3f:96:17:d5:16:2b:1c:61:17:be: 1c:1e:77:d3:a0:cd:d1:06:37:33:9a:e7:09:1e:64:a8:a6:83: aa:71:e3:e7:ad:6d:73:7d:b3:8a:96:3c:79:9e:69:02:ae:d8: 76:7f:d2:f3:54:73:71:b5:28:b0:10:89:22:1f:b5:1b:3e:c0: 1b:3b:96:48:c9:3a:4e:ad:f8:70:ea:3f:1b:e9:9f:dd:79:46: 2e:2b:da:40:d1:c9:fd:3d:3e:a8:81:84:91:e1:4a:aa:29:ab: f0:6e:01:9b:a8:1b:55:ac:31:8d:9a:50:3a:9a:5b:04:fd:48: 95:74:e8:71 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBBMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFDQUMxMTAvBgNVBAUTKDkxRTY3OTcyMUVEMUUwOTI3RUJCN0U0NjFDODA1ODBE MjM5MzU5MkEwHhcNMjQwNzExMjM1MzQ5WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjkwNzA4Yy01NDNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwl5nRE9EdNT0SuAAHtQLJRnAs37K186rbad9m/XoXmLZlJSG0Fu0FwUl1Vtq ybFO24thwqkLG83b8OqiRql101Y033K1a45WAKcGP6paMajh2w3JjIA5ECy3B2Tj QHcELZJARMhKScjmtZL/ufHMJqQto8OTJL2PGgXCKyqzK8VFdY7mtLYFrpczCc+z mpfl1ri638iJtU08+JZ7tiBxDAlfDgoOcihxWYyOmJnYhzw70RdGT3M6yj9Kr3bV jQ4TqZvSRy8eLQ4EnsC+LFW5a1VF/n3Rb/2WXN5PYjiUlpnWSKG9KYdiC74RuKxN g1nUWDdyP+Ntixotl0DsZv7cKQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFFPrOG9D JmASG7vQtDyygVcBQoyCMB8GA1UdIwQYMBaAFJHmeXIe0eCSfrt+RhyAWA0jk1kq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUNBQy9CM0JEQTU2NDMx RDMxMUVDOEQzQkJGMzBDNEY5QUUwMi9rZVo1Y2g3UjRKSi11MzVHSElCWURTT1RX U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tlWjVjaDdSNEpKLXUzNUdISUJZRFNPVFdTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUFDQUMvQjNCREE1NjQzMUQzMTFFQzhEM0JCRjMwQzRGOUFFMDIvQzUyQjRFMEEz RkUwMTFFRjg4Nzk0OTEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnrrwwDwQCAAIwCQMHACABDffRgDANBgkqhkiG9w0BAQsF AAOCAQEAGld5saPLRVbkhoCZ70gQlHJJXo1x4AdLGntYtifV1O0t4eNfYGqRqGkN DKCa/c9/9CnkVyqfYsz8PTO0zcQtyNFCJP8Y5ZOKreiDfjiVGam/jhxOmSzWcSy8 bZGJB4nsIJ+PVThOTnO25uaQEKkGEXJ8FyVgLuBEjf6O2ZLQsKAwY9Ve5lo/lhfV FiscYRe+HB5306DN0QY3M5rnCR5kqKaDqnHj561tc32zipY8eZ5pAq7Ydn/S81Rz cbUosBCJIh+1Gz7AGzuWSMk6Tq34cOo/G+mf3XlGLivaQNHJ/T0+qIGEkeFKqimr 8G4Bm6gbVawxjZpQOppbBP1IlXTocQ== -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:32 2024 by rpki-client on console-fra.rpki-client.org