$ rpki-client -vvf rpki.apnic.net/member_repository/A912AD2E/078C62AAC53311E7A11DBB4AC4F9AE02/E3D5A6F4422411E8804DBC3AC4F9AE02.roa File: E3D5A6F4422411E8804DBC3AC4F9AE02.roa (raw, json) Hash identifier: MtUOG8te7vvd8OgcyO+YgqB1a0uCeqPJKDSTrguzMzA= Subject key identifier: 1F:FE:9E:7A:74:E6:D7:E0:99:97:18:32:C4:4F:5B:A8:3E:6B:00:92 Certificate issuer: /CN=A912AD2E/serialNumber=BBB840B053934D5E1FEDD40DD023EF7AF428BAE0 Certificate serial: 1724 Authority key identifier: BB:B8:40:B0:53:93:4D:5E:1F:ED:D4:0D:D0:23:EF:7A:F4:28:BA:E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u7hAsFOTTV4f7dQN0CPvevQouuA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912AD2E/078C62AAC53311E7A11DBB4AC4F9AE02/E3D5A6F4422411E8804DBC3AC4F9AE02.roa Signing time: Sat 20 Jul 2024 17:04:32 +0000 ROA not before: Sat 20 Jul 2024 17:04:32 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 135425 IP address blocks: 103.96.28.0/23 maxlen: 24 2001:df1:cd00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912AD2E/078C62AAC53311E7A11DBB4AC4F9AE02/u7hAsFOTTV4f7dQN0CPvevQouuA.crl rsync://rpki.apnic.net/member_repository/A912AD2E/078C62AAC53311E7A11DBB4AC4F9AE02/u7hAsFOTTV4f7dQN0CPvevQouuA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u7hAsFOTTV4f7dQN0CPvevQouuA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5924 (0x1724) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912AD2E/serialNumber=BBB840B053934D5E1FEDD40DD023EF7AF428BAE0 Validity Not Before: Jul 20 17:04:32 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=669bee20-c211 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:6f:a4:cc:24:96:f5:ac:8c:4e:f5:0d:0e:e7: 21:b0:7b:dc:82:03:f9:4e:3d:f9:2d:49:66:0e:e7: b1:e4:bc:f6:24:7b:99:81:84:bf:8b:6e:86:94:14: b0:0c:5d:2f:83:45:bc:fd:e7:35:8c:4e:89:4d:25: de:63:2a:91:62:6e:16:12:6c:c5:bd:38:31:e9:60: d2:bc:65:ce:4b:08:ba:0e:77:dc:6d:e6:44:b2:fc: c6:57:8d:6c:70:12:64:ff:9f:e2:0a:d7:f5:92:e2: 14:0e:25:eb:b3:ef:c4:31:07:27:c2:29:0b:69:84: a7:75:f7:1e:e2:05:a9:53:12:7c:98:2d:a0:06:9f: 11:5f:75:da:b4:fc:7e:dc:a8:6e:1d:14:e7:66:9a: 00:1f:a2:93:3b:5f:66:dc:84:57:be:d0:ff:44:60: fa:ae:11:b1:0d:a2:10:12:2b:99:04:33:36:d1:e5: 25:98:f6:2b:ec:01:db:a4:5b:50:51:6a:24:65:b7: 63:f1:ee:c2:45:71:69:14:19:a8:b2:94:57:4f:6d: 28:2d:03:a0:09:3e:ab:9f:57:ce:fe:29:1d:9d:ad: f7:6f:0a:3a:39:1c:34:50:10:b3:1d:93:01:29:74: dd:28:cd:d9:77:9b:ec:63:60:f6:d0:4a:26:e7:c1: 46:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:FE:9E:7A:74:E6:D7:E0:99:97:18:32:C4:4F:5B:A8:3E:6B:00:92 X509v3 Authority Key Identifier: keyid:BB:B8:40:B0:53:93:4D:5E:1F:ED:D4:0D:D0:23:EF:7A:F4:28:BA:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912AD2E/078C62AAC53311E7A11DBB4AC4F9AE02/u7hAsFOTTV4f7dQN0CPvevQouuA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u7hAsFOTTV4f7dQN0CPvevQouuA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AD2E/078C62AAC53311E7A11DBB4AC4F9AE02/E3D5A6F4422411E8804DBC3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.96.28.0/23 IPv6: 2001:df1:cd00::/48 Signature Algorithm: sha256WithRSAEncryption 7f:c4:d9:1f:a5:0b:7d:88:62:23:cd:e9:f8:cc:be:f3:c1:79: 0a:0e:9f:8b:ec:5c:fd:9b:df:c9:a4:b7:f0:ec:3f:f8:31:a8: d9:36:8b:f9:44:1d:da:29:6d:e3:1b:4b:b3:88:c9:37:1a:a4: 51:e2:d4:59:f0:b8:c9:d2:ff:d6:39:d5:78:6a:ed:f7:42:3f: 44:2c:f7:70:57:c0:05:15:d5:4b:3b:26:af:fd:18:18:77:f2: 23:70:4e:0c:c6:1d:4d:46:4b:e4:f6:ef:fe:87:06:d3:4d:c4: 30:ef:7b:c0:06:70:c8:ec:7b:78:16:61:5c:81:be:54:a8:97: 75:26:c1:8d:76:f6:f3:f6:e5:12:f4:db:92:de:c2:0a:a3:f7: 2a:35:b2:25:22:8e:87:37:f5:91:f3:a7:3e:93:bd:d2:ab:a9: df:b4:0f:cd:02:f8:eb:68:cf:dd:cc:05:11:0e:11:c8:96:c0: dc:e7:bf:39:96:c4:13:fd:45:00:b3:e0:87:be:39:71:b0:40: d8:ba:77:23:a3:7a:b0:84:db:a7:ca:ce:63:cc:2e:11:eb:95: 99:86:45:57:c6:01:b6:7b:21:09:91:b2:a5:50:0a:4e:c4:fc: 49:45:f8:ab:1b:2a:1a:7a:97:1c:69:35:2c:27:04:fb:c4:45: 77:06:36:e3 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICFyQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkFEMkUxMTAvBgNVBAUTKEJCQjg0MEIwNTM5MzRENUUxRkVERDQwREQwMjNFRjdB RjQyOEJBRTAwHhcNMjQwNzIwMTcwNDMyWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjliZWUyMC1jMjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtW+kzCSW9ayMTvUNDuchsHvcggP5Tj35LUlmDuex5Lz2JHuZgYS/i26GlBSw DF0vg0W8/ec1jE6JTSXeYyqRYm4WEmzFvTgx6WDSvGXOSwi6DnfcbeZEsvzGV41s cBJk/5/iCtf1kuIUDiXrs+/EMQcnwikLaYSndfce4gWpUxJ8mC2gBp8RX3XatPx+ 3KhuHRTnZpoAH6KTO19m3IRXvtD/RGD6rhGxDaIQEiuZBDM20eUlmPYr7AHbpFtQ UWokZbdj8e7CRXFpFBmospRXT20oLQOgCT6rn1fO/ikdna33bwo6ORw0UBCzHZMB KXTdKM3Zd5vsY2D20Eom58FGMwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFB/+nnp0 5tfgmZcYMsRPW6g+awCSMB8GA1UdIwQYMBaAFLu4QLBTk01eH+3UDdAj73r0KLrg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQUQyRS8wNzhDNjJBQUM1 MzMxMUU3QTExREJCNEFDNEY5QUUwMi91N2hBc0ZPVFRWNGY3ZFFOMENQdmV2UW91 dUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U3aEFzRk9UVFY0ZjdkUU4wQ1B2ZXZRb3V1QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkFEMkUvMDc4QzYyQUFDNTMzMTFFN0ExMURCQjRBQzRGOUFFMDIvRTNENUE2RjQ0 MjI0MTFFODgwNERCQzNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnYBwwDwQCAAIwCQMHACABDfHNADANBgkqhkiG9w0BAQsF AAOCAQEAf8TZH6ULfYhiI83p+My+88F5Cg6fi+xc/ZvfyaS38Ow/+DGo2TaL+UQd 2ilt4xtLs4jJNxqkUeLUWfC4ydL/1jnVeGrt90I/RCz3cFfABRXVSzsmr/0YGHfy I3BODMYdTUZL5Pbv/ocG003EMO97wAZwyOx7eBZhXIG+VKiXdSbBjXb28/blEvTb kt7CCqP3KjWyJSKOhzf1kfOnPpO90qup37QPzQL462jP3cwFEQ4RyJbA3Oe/OZbE E/1FALPgh745cbBA2Lp3I6N6sITbp8rOY8wuEeuVmYZFV8YBtnshCZGypVAKTsT8 SUX4qxsqGnqXHGk1LCcE+8RFdwY24w== -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:40 2024 by rpki-client on console-fra.rpki-client.org