$ rpki-client -vvf rpki.apnic.net/member_repository/A91278D5/6013216056C811EAB6657A40C4F9AE02/19D0C9444D6A11EFB5578F3AC4F9AE02.roa File: 19D0C9444D6A11EFB5578F3AC4F9AE02.roa (raw, json) Hash identifier: 3+4YIvZgcCdVrPM39eq8U0b37BVdz2kxEm0TdnodkbE= Subject key identifier: AC:B8:AF:D0:96:E4:69:82:61:2C:52:29:3D:C2:8B:EC:7D:00:C6:4E Certificate issuer: /CN=A91278D5/serialNumber=E010AF2E114A4A9FD5085BE44660521390FB1331 Certificate serial: 0A40 Authority key identifier: E0:10:AF:2E:11:4A:4A:9F:D5:08:5B:E4:46:60:52:13:90:FB:13:31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4BCvLhFKSp_VCFvkRmBSE5D7EzE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91278D5/6013216056C811EAB6657A40C4F9AE02/19D0C9444D6A11EFB5578F3AC4F9AE02.roa Signing time: Sat 24 Aug 2024 20:08:55 +0000 ROA not before: Sat 24 Aug 2024 20:08:55 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 64037 IP address blocks: 103.120.46.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91278D5/6013216056C811EAB6657A40C4F9AE02/4BCvLhFKSp_VCFvkRmBSE5D7EzE.crl rsync://rpki.apnic.net/member_repository/A91278D5/6013216056C811EAB6657A40C4F9AE02/4BCvLhFKSp_VCFvkRmBSE5D7EzE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4BCvLhFKSp_VCFvkRmBSE5D7EzE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:30:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2624 (0xa40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91278D5/serialNumber=E010AF2E114A4A9FD5085BE44660521390FB1331 Validity Not Before: Aug 24 20:08:55 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66ca3dd7-4c8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:7e:be:bd:7f:1e:9f:4b:99:6f:34:8a:31:73: a9:07:a0:b7:9a:2f:b1:de:53:40:29:6e:a8:40:93: f5:d0:14:c2:74:89:8e:bc:45:45:f9:38:08:55:ce: ff:2a:b6:75:5f:da:56:44:79:bf:0a:59:fd:9a:6f: c4:ab:1f:d9:fe:cd:63:9b:db:9b:74:c1:20:8b:75: 31:a0:7c:5a:e3:6e:96:00:36:17:a0:8d:2e:ae:cd: d9:ff:58:6e:bc:e6:8d:66:ad:52:5b:21:42:99:49: 3f:e7:ef:ac:5b:08:d5:7d:2d:8e:c2:6b:21:c4:da: 35:a8:81:eb:c2:65:8d:10:26:cb:fe:34:8d:82:6b: ca:25:b8:ad:c2:1d:a6:45:08:6a:5a:df:f6:4b:52: c9:67:6e:5c:2b:76:f0:69:88:5e:9f:68:c7:9c:3b: bd:b3:75:df:35:60:e7:be:7a:91:1e:81:74:50:f2: fc:e8:cb:0e:ef:ff:74:4a:bb:ae:32:7b:25:76:e8: 30:41:cf:cd:a6:a7:ac:fe:a2:93:ab:11:39:40:b8: e0:c6:98:79:7a:72:05:5d:39:e4:74:b9:cf:d9:80: 68:4e:8c:84:3d:8b:f0:77:9b:7a:77:de:5d:50:ab: 5a:7c:f5:0b:52:db:3e:67:f8:db:06:2e:21:36:a3: 5c:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:B8:AF:D0:96:E4:69:82:61:2C:52:29:3D:C2:8B:EC:7D:00:C6:4E X509v3 Authority Key Identifier: keyid:E0:10:AF:2E:11:4A:4A:9F:D5:08:5B:E4:46:60:52:13:90:FB:13:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91278D5/6013216056C811EAB6657A40C4F9AE02/4BCvLhFKSp_VCFvkRmBSE5D7EzE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4BCvLhFKSp_VCFvkRmBSE5D7EzE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91278D5/6013216056C811EAB6657A40C4F9AE02/19D0C9444D6A11EFB5578F3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.46.0/24 Signature Algorithm: sha256WithRSAEncryption 78:e5:71:49:32:21:1e:1b:4d:7d:7b:7d:2a:cf:0b:50:55:ff: b5:b5:a8:a4:83:5e:40:57:bd:c4:4c:f7:f1:3c:36:e3:ba:ba: 82:1d:18:45:0c:fa:3e:83:80:a9:2b:eb:79:34:e9:a3:71:52: 66:06:8d:31:1f:9d:20:bd:8b:44:15:4d:df:d6:b1:b1:d3:a0: 79:b8:8c:1f:fb:6c:db:0d:a9:e9:9f:26:30:14:db:3b:c2:71: e2:e2:ec:e4:d6:fb:bd:2b:5d:46:03:77:94:cc:88:2c:08:3b: 15:79:1f:b5:5d:32:03:5d:31:df:13:ce:c2:25:95:b6:af:b9: e7:07:68:2d:2d:74:76:1f:d0:8f:8f:05:2a:e3:42:41:29:9d: 44:ef:8c:d4:74:a7:e0:3a:bc:1a:ce:f8:4c:7d:90:da:38:10: 2d:6f:1f:87:bd:e6:3c:56:0f:96:8a:7d:8f:7a:87:79:63:e3: 28:32:6c:6c:2b:cd:a8:41:e8:92:b7:84:33:12:bc:bb:fe:75: 16:05:0b:e3:0f:fa:1b:4c:14:8e:a9:71:92:64:4a:b0:0e:f4: 34:21:99:61:34:28:52:34:39:c9:52:83:da:eb:ec:f3:6c:4e: ae:90:ca:b3:cd:08:78:8f:67:cf:93:2f:65:02:f8:c1:d8:ed: 23:61:ef:07 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCkAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc4RDUxMTAvBgNVBAUTKEUwMTBBRjJFMTE0QTRBOUZENTA4NUJFNDQ2NjA1MjEz OTBGQjEzMzEwHhcNMjQwODI0MjAwODU1WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmNhM2RkNy00YzhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr36+vX8en0uZbzSKMXOpB6C3mi+x3lNAKW6oQJP10BTCdImOvEVF+TgIVc7/ KrZ1X9pWRHm/Cln9mm/Eqx/Z/s1jm9ubdMEgi3UxoHxa426WADYXoI0urs3Z/1hu vOaNZq1SWyFCmUk/5++sWwjVfS2OwmshxNo1qIHrwmWNECbL/jSNgmvKJbitwh2m RQhqWt/2S1LJZ25cK3bwaYhen2jHnDu9s3XfNWDnvnqRHoF0UPL86MsO7/90Sruu MnsldugwQc/Npqes/qKTqxE5QLjgxph5enIFXTnkdLnP2YBoToyEPYvwd5t6d95d UKtafPULUts+Z/jbBi4hNqNczQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKy4r9CW 5GmCYSxSKT3Ci+x9AMZOMB8GA1UdIwQYMBaAFOAQry4RSkqf1Qhb5EZgUhOQ+xMx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzhENS82MDEzMjE2MDU2 QzgxMUVBQjY2NTdBNDBDNEY5QUUwMi80QkN2TGhGS1NwX1ZDRnZrUm1CU0U1RDdF ekUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRCQ3ZMaEZLU3BfVkNGdmtSbUJTRTVEN0V6RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjc4RDUvNjAxMzIxNjA1NkM4MTFFQUI2NjU3QTQwQzRGOUFFMDIvMTlEMEM5NDQ0 RDZBMTFFRkI1NTc4RjNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABneC4wDQYJKoZIhvcNAQELBQADggEBAHjlcUkyIR4bTX17 fSrPC1BV/7W1qKSDXkBXvcRM9/E8NuO6uoIdGEUM+j6DgKkr63k06aNxUmYGjTEf nSC9i0QVTd/WsbHToHm4jB/7bNsNqemfJjAU2zvCceLi7OTW+70rXUYDd5TMiCwI OxV5H7VdMgNdMd8TzsIllbavuecHaC0tdHYf0I+PBSrjQkEpnUTvjNR0p+A6vBrO +Ex9kNo4EC1vH4e95jxWD5aKfY96h3lj4ygybGwrzahB6JK3hDMSvLv+dRYFC+MP +htMFI6pcZJkSrAO9DQhmWE0KFI0OclSg9rr7PNsTq6QyrPNCHiPZ8+TL2UC+MHY 7SNh7wc= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:26 2024 by rpki-client on console-fra.rpki-client.org