$ rpki-client -vvf rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/4B3C43EA6EF011EE84DC9B0EC4F9AE02.roa File: 4B3C43EA6EF011EE84DC9B0EC4F9AE02.roa (raw, json) Hash identifier: fKu+QnI9JJSs0/0qC7wtQtv1o9IdD9KvcLGhg+7rRMo= Subject key identifier: F8:4F:FB:7C:F7:8A:9E:AD:BD:6B:14:09:6A:DD:22:D2:3D:CF:1B:F3 Certificate issuer: /CN=A91248C9/serialNumber=90F680FCA7C930FD1FDC533675385AE90FB41672 Certificate serial: B0 Authority key identifier: 90:F6:80:FC:A7:C9:30:FD:1F:DC:53:36:75:38:5A:E9:0F:B4:16:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kPaA_KfJMP0f3FM2dTha6Q-0FnI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/4B3C43EA6EF011EE84DC9B0EC4F9AE02.roa Signing time: Mon 23 Sep 2024 04:19:00 +0000 ROA not before: Mon 23 Sep 2024 04:19:00 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 141167 IP address blocks: 103.255.0.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/kPaA_KfJMP0f3FM2dTha6Q-0FnI.crl rsync://rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/kPaA_KfJMP0f3FM2dTha6Q-0FnI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kPaA_KfJMP0f3FM2dTha6Q-0FnI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:52:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 176 (0xb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91248C9/serialNumber=90F680FCA7C930FD1FDC533675385AE90FB41672 Validity Not Before: Sep 23 04:19:00 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f0ec33-94ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:2d:61:cb:78:b1:f1:26:fc:3a:7f:7a:e1:32: 3f:2c:cd:01:a1:22:84:17:e3:05:54:a3:04:c8:ce: ef:3b:7b:c3:aa:f8:6e:c4:e9:0c:ad:40:84:0e:04: 43:a4:06:06:f8:84:3a:dc:89:f7:8d:32:4f:3b:f7: 6d:54:5d:dc:6c:7b:ba:49:6e:69:e3:62:38:09:92: 0f:14:6b:1d:be:3f:9f:76:23:1b:d5:fc:94:ed:e7: d4:ee:65:9c:0d:2e:87:a2:cd:39:a2:7f:75:ec:89: 8e:4a:de:83:7c:6c:38:bc:f9:66:b0:3f:e5:7d:85: 72:3b:e6:d2:d0:dd:a8:c3:a5:f8:fe:0f:23:85:b4: 03:92:3a:15:ce:10:b7:18:0c:b7:72:7b:9f:77:d8: 28:9a:d2:f0:0d:8d:41:ca:c5:a7:d2:5c:5f:38:f4: 87:7d:a2:a3:f7:87:a5:42:a8:8e:ef:a0:95:57:46: 46:96:49:02:30:c6:2b:d2:f5:3c:4e:73:45:81:ca: 30:ee:35:3b:14:43:72:91:fe:98:d3:ce:b4:34:d7: 7c:d0:67:c4:2a:2a:a9:ab:cc:62:e6:49:8a:6f:07: 80:13:b4:0e:af:fd:cb:05:ac:f7:d2:2d:08:2d:4e: ca:22:80:cf:82:24:51:c4:33:ef:a8:46:72:05:0f: 28:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:4F:FB:7C:F7:8A:9E:AD:BD:6B:14:09:6A:DD:22:D2:3D:CF:1B:F3 X509v3 Authority Key Identifier: keyid:90:F6:80:FC:A7:C9:30:FD:1F:DC:53:36:75:38:5A:E9:0F:B4:16:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/kPaA_KfJMP0f3FM2dTha6Q-0FnI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kPaA_KfJMP0f3FM2dTha6Q-0FnI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91248C9/A055B5B26EED11EEBC1AAB53C4F9AE02/4B3C43EA6EF011EE84DC9B0EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.255.0.0/23 Signature Algorithm: sha256WithRSAEncryption ac:ff:71:61:e2:c5:ee:e1:79:d2:7a:22:1b:21:b9:99:e8:4d: f6:1f:c7:8c:64:45:c5:da:d7:bf:c8:24:97:9d:7b:f2:19:dd: e0:a6:39:c9:0b:ca:42:b9:8c:08:7b:a0:82:f9:fe:20:1a:af: fa:c0:ff:ae:dc:c4:06:37:de:4d:d3:2e:c8:01:fb:73:a8:97: 16:9f:80:7a:6a:b0:c6:dc:c7:71:13:08:03:89:54:7c:70:a0: ca:0e:cd:55:86:0d:e9:92:60:3c:9c:8c:9f:fd:2c:e0:f7:47: 31:8e:f1:08:3c:fa:f5:78:3e:fc:1f:6c:3c:ca:d4:c9:e1:58: c2:46:8e:08:e8:08:2d:3a:5e:67:0a:b4:54:5f:68:00:43:d1: ac:71:4b:0e:8d:90:c4:0d:9e:a6:6a:c4:67:47:79:34:58:6c: 57:61:e7:98:92:55:4f:65:10:0c:af:1d:99:a0:35:b7:04:c6: f3:3c:ea:cd:16:42:9a:02:e3:a1:19:fd:16:3a:f7:a3:91:60: d6:9c:b2:96:cf:3b:82:e8:f7:a1:32:d9:6b:f5:6f:14:d5:d0: dd:1c:d7:9a:63:3d:bf:b3:81:20:92:06:d5:3f:27:e8:3f:5a: 7a:9c:0a:cc:42:e1:ec:ef:e5:e4:ad:b6:b1:36:56:a7:d3:41: d4:33:39:36 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQ4QzkxMTAvBgNVBAUTKDkwRjY4MEZDQTdDOTMwRkQxRkRDNTMzNjc1Mzg1QUU5 MEZCNDE2NzIwHhcNMjQwOTIzMDQxOTAwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmYwZWMzMy05NGJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6S1hy3ix8Sb8On964TI/LM0BoSKEF+MFVKMEyM7vO3vDqvhuxOkMrUCEDgRD pAYG+IQ63In3jTJPO/dtVF3cbHu6SW5p42I4CZIPFGsdvj+fdiMb1fyU7efU7mWc DS6Hos05on917ImOSt6DfGw4vPlmsD/lfYVyO+bS0N2ow6X4/g8jhbQDkjoVzhC3 GAy3cnufd9gomtLwDY1BysWn0lxfOPSHfaKj94elQqiO76CVV0ZGlkkCMMYr0vU8 TnNFgcow7jU7FENykf6Y0860NNd80GfEKiqpq8xi5kmKbweAE7QOr/3LBaz30i0I LU7KIoDPgiRRxDPvqEZyBQ8o5QIDAQABo4IClTCCApEwHQYDVR0OBBYEFPhP+3z3 ip6tvWsUCWrdItI9zxvzMB8GA1UdIwQYMBaAFJD2gPynyTD9H9xTNnU4WukPtBZy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDhDOS9BMDU1QjVCMjZF RUQxMUVFQkMxQUFCNTNDNEY5QUUwMi9rUGFBX0tmSk1QMGYzRk0yZFRoYTZRLTBG bkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tQYUFfS2ZKTVAwZjNGTTJkVGhhNlEtMEZuSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjQ4QzkvQTA1NUI1QjI2RUVEMTFFRUJDMUFBQjUzQzRGOUFFMDIvNEIzQzQzRUE2 RUYwMTFFRTg0REM5QjBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn/wAwDQYJKoZIhvcNAQELBQADggEBAKz/cWHixe7hedJ6 IhshuZnoTfYfx4xkRcXa17/IJJede/IZ3eCmOckLykK5jAh7oIL5/iAar/rA/67c xAY33k3TLsgB+3OolxafgHpqsMbcx3ETCAOJVHxwoMoOzVWGDemSYDycjJ/9LOD3 RzGO8Qg8+vV4PvwfbDzK1MnhWMJGjgjoCC06XmcKtFRfaABD0axxSw6NkMQNnqZq xGdHeTRYbFdh55iSVU9lEAyvHZmgNbcExvM86s0WQpoC46EZ/RY696ORYNacspbP O4Lo96Ey2Wv1bxTV0N0c15pjPb+zgSCSBtU/J+g/WnqcCsxC4ezv5eSttrE2VqfT QdQzOTY= -----END CERTIFICATE-----Generated at Thu Nov 21 05:05:54 2024 by rpki-client on console-fra.rpki-client.org