$ rpki-client -vvf rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/96C26F3EB7AD11ECA2E94A7EC4F9AE02.roa File: 96C26F3EB7AD11ECA2E94A7EC4F9AE02.roa (raw, json) Hash identifier: bwcKq1c0r2cXBrd25MLQlHFjWgMS2hGGf/FnvA7qj34= Subject key identifier: 84:26:58:D5:AD:B6:76:31:19:9B:AC:5C:DF:13:59:FF:CB:9B:12:57 Certificate issuer: /CN=A911F55D/serialNumber=1A23986843565DFFC800F80FF296BAB1AD3714EC Certificate serial: 02DA Authority key identifier: 1A:23:98:68:43:56:5D:FF:C8:00:F8:0F:F2:96:BA:B1:AD:37:14:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GiOYaENWXf_IAPgP8pa6sa03FOw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/96C26F3EB7AD11ECA2E94A7EC4F9AE02.roa Signing time: Wed 25 Sep 2024 01:44:51 +0000 ROA not before: Wed 25 Sep 2024 01:44:51 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 14618 IP address blocks: 103.195.60.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/GiOYaENWXf_IAPgP8pa6sa03FOw.crl rsync://rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/GiOYaENWXf_IAPgP8pa6sa03FOw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GiOYaENWXf_IAPgP8pa6sa03FOw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 730 (0x2da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F55D/serialNumber=1A23986843565DFFC800F80FF296BAB1AD3714EC Validity Not Before: Sep 25 01:44:51 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f36b13-9c75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:d6:1d:ba:20:e6:24:17:8f:f2:66:95:7d:90: b5:fb:57:b1:90:3c:12:a2:d4:f7:ee:f3:89:49:f6: c0:8f:f9:60:eb:24:0e:99:ad:18:8a:bf:06:7c:d2: b2:cc:a5:b7:40:8f:94:77:7a:8f:e6:69:9b:a5:90: 37:ac:2f:20:21:6e:ac:b7:fe:84:ca:22:7d:16:58: e0:7e:09:08:d4:8b:0e:88:34:0e:53:cf:32:e3:f1: eb:ee:c6:cc:87:68:b9:0f:9c:db:f9:79:54:c5:5c: 56:09:79:da:a9:45:06:2c:24:5b:de:50:07:d2:82: 64:bf:1e:4e:83:13:84:7a:ee:05:64:61:ec:63:e0: 9a:39:ef:8c:52:79:b2:da:fe:9e:a9:a6:d3:69:e5: 28:5d:5e:b0:51:31:85:2f:13:d2:13:db:1e:55:4d: bb:31:b6:21:81:87:be:25:0b:26:5f:20:f6:3e:1c: 7b:ab:db:41:99:5b:bc:f3:bd:7c:ea:60:c5:5f:79: af:a5:6f:8a:87:a9:48:04:2e:0e:81:0a:a0:82:88: 08:6f:be:fc:10:c9:04:44:17:4f:44:8a:c7:d4:3e: b2:af:55:76:21:2f:e4:d7:08:bb:b4:ae:b4:5c:95: 83:6e:34:70:f5:4a:81:a2:a4:9d:8f:5b:af:3e:ee: 90:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:26:58:D5:AD:B6:76:31:19:9B:AC:5C:DF:13:59:FF:CB:9B:12:57 X509v3 Authority Key Identifier: keyid:1A:23:98:68:43:56:5D:FF:C8:00:F8:0F:F2:96:BA:B1:AD:37:14:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/GiOYaENWXf_IAPgP8pa6sa03FOw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GiOYaENWXf_IAPgP8pa6sa03FOw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/96C26F3EB7AD11ECA2E94A7EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.195.60.0/22 Signature Algorithm: sha256WithRSAEncryption 51:78:33:db:ab:ab:3a:26:d2:e4:35:e9:04:32:ae:49:8b:04: 6f:b9:e3:63:fe:c1:6c:a7:dc:65:a6:60:c9:79:0c:f7:76:a8: e4:92:4d:ee:ca:ef:12:e9:9d:f2:5e:27:ea:68:5e:46:d0:5b: 40:55:12:06:ba:28:6e:1a:17:7d:9d:e7:59:01:cb:d9:ca:ed: a3:a0:87:d2:91:c2:65:61:37:a9:75:50:d8:a4:73:f7:f7:6f: 11:de:87:a7:4d:6d:0e:b8:3d:eb:29:14:28:01:f9:26:90:2c: c2:25:e0:67:c8:65:b7:35:b3:92:df:34:d7:74:e0:54:c3:8a: 6b:e7:53:ab:02:73:60:81:b6:84:fd:e1:68:25:fe:82:6e:f3: e5:24:73:e5:8a:b6:01:16:49:2c:15:68:b2:4f:5f:40:56:df: 27:f0:b8:50:0a:e3:25:16:68:43:aa:8e:3c:bb:37:a3:bb:c4: 31:60:2d:3d:1e:b8:70:43:eb:be:bd:d5:d4:a1:33:5b:73:b2: 3e:69:20:41:f6:f1:a6:7a:d3:20:89:c4:41:4b:16:8b:99:75: c2:d4:c8:21:48:ff:c5:b3:8a:a0:fa:c3:2c:c2:09:a1:c9:15: fb:6f:90:ab:71:36:ff:2b:a9:80:fc:58:31:5b:67:c6:cb:c0: 83:4c:9b:dd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAtowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY1NUQxMTAvBgNVBAUTKDFBMjM5ODY4NDM1NjVERkZDODAwRjgwRkYyOTZCQUIx QUQzNzE0RUMwHhcNMjQwOTI1MDE0NDUxWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmYzNmIxMy05Yzc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6tYduiDmJBeP8maVfZC1+1exkDwSotT37vOJSfbAj/lg6yQOma0Yir8GfNKy zKW3QI+Ud3qP5mmbpZA3rC8gIW6st/6EyiJ9FljgfgkI1IsOiDQOU88y4/Hr7sbM h2i5D5zb+XlUxVxWCXnaqUUGLCRb3lAH0oJkvx5OgxOEeu4FZGHsY+CaOe+MUnmy 2v6eqabTaeUoXV6wUTGFLxPSE9seVU27MbYhgYe+JQsmXyD2Phx7q9tBmVu88718 6mDFX3mvpW+Kh6lIBC4OgQqggogIb778EMkERBdPRIrH1D6yr1V2IS/k1wi7tK60 XJWDbjRw9UqBoqSdj1uvPu6QKQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIQmWNWt tnYxGZusXN8TWf/LmxJXMB8GA1UdIwQYMBaAFBojmGhDVl3/yAD4D/KWurGtNxTs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjU1RC80MEU0M0I4MEI3 QUIxMUVDOUU1NTMxN0RDNEY5QUUwMi9HaU9ZYUVOV1hmX0lBUGdQOHBhNnNhMDNG T3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dpT1lhRU5XWGZfSUFQZ1A4cGE2c2EwM0ZPdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUY1NUQvNDBFNDNCODBCN0FCMTFFQzlFNTUzMTdEQzRGOUFFMDIvOTZDMjZGM0VC N0FEMTFFQ0EyRTk0QTdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnwzwwDQYJKoZIhvcNAQELBQADggEBAFF4M9urqzom0uQ1 6QQyrkmLBG+542P+wWyn3GWmYMl5DPd2qOSSTe7K7xLpnfJeJ+poXkbQW0BVEga6 KG4aF32d51kBy9nK7aOgh9KRwmVhN6l1UNikc/f3bxHeh6dNbQ64PespFCgB+SaQ LMIl4GfIZbc1s5LfNNd04FTDimvnU6sCc2CBtoT94Wgl/oJu8+Ukc+WKtgEWSSwV aLJPX0BW3yfwuFAK4yUWaEOqjjy7N6O7xDFgLT0euHBD67691dShM1tzsj5pIEH2 8aZ60yCJxEFLFouZdcLUyCFI/8WziqD6wyzCCaHJFftvkKtxNv8rqYD8WDFbZ8bL wINMm90= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:31 2024 by rpki-client on console-fra.rpki-client.org