$ rpki-client -vvf rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/7338235CC06011EE882BC34AC4F9AE02.roa File: 7338235CC06011EE882BC34AC4F9AE02.roa (raw, json) Hash identifier: TWXvucCGMfhPPvjqC193EzTyiJ5yNyDGkBN+BrgCKlo= Subject key identifier: 72:56:11:1C:C7:63:F0:E1:BF:72:8F:CF:F4:B7:A3:03:04:E3:52:3F Certificate issuer: /CN=A91301D5/serialNumber=448BD971A306AB036399E716DC221CA338F58B59 Certificate serial: 1497 Authority key identifier: 44:8B:D9:71:A3:06:AB:03:63:99:E7:16:DC:22:1C:A3:38:F5:8B:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RIvZcaMGqwNjmecW3CIcozj1i1k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/7338235CC06011EE882BC34AC4F9AE02.roa Signing time: Fri 18 Oct 2024 17:24:59 +0000 ROA not before: Fri 18 Oct 2024 17:24:59 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 135106 IP address blocks: 103.209.124.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.crl rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RIvZcaMGqwNjmecW3CIcozj1i1k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5271 (0x1497) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91301D5/serialNumber=448BD971A306AB036399E716DC221CA338F58B59 Validity Not Before: Oct 18 17:24:59 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=671299eb-48c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:6f:56:00:40:21:81:45:8f:7f:89:3c:1c:6c: c8:08:47:54:d8:09:1b:e7:46:8e:04:dc:f9:52:ee: 03:ac:a7:2c:27:a2:f2:66:75:e6:38:f8:d6:6d:f8: a9:c2:d4:c3:39:ea:6a:13:b0:72:74:1b:a7:23:56: 67:e6:5d:4b:a3:0c:3c:96:a5:2b:b1:d1:97:6b:ac: ca:f5:fa:10:a9:31:1e:af:b7:ca:f5:23:91:c5:8e: 4f:e8:5a:f3:6a:12:44:0a:b7:77:07:fc:40:5d:30: 84:2c:1e:f2:ab:ba:c0:75:6b:aa:6f:3c:a4:09:22: 55:2f:40:8c:5c:3d:4a:e5:bf:0c:db:00:73:4e:22: d8:82:c1:42:5b:78:20:0a:47:ca:6e:f7:bd:9c:bf: b8:ff:34:e0:6b:02:80:b9:ee:9a:8b:66:b3:17:c1: c5:5a:4d:97:96:59:03:1c:a4:9f:87:7b:d6:01:b7: 45:9e:32:9c:f9:d0:39:7f:dc:65:33:97:e7:d8:74: ea:24:5e:01:9f:0a:8b:de:40:da:ff:a6:06:ae:c3: 79:c2:e8:69:88:ba:cc:ab:52:2b:03:06:37:dd:d1: aa:4b:dd:1c:4a:0d:22:46:d3:65:df:b9:19:2a:81: a3:6d:1a:db:e1:2c:fe:00:46:c2:8c:fb:37:b0:e2: 4a:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:56:11:1C:C7:63:F0:E1:BF:72:8F:CF:F4:B7:A3:03:04:E3:52:3F X509v3 Authority Key Identifier: keyid:44:8B:D9:71:A3:06:AB:03:63:99:E7:16:DC:22:1C:A3:38:F5:8B:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RIvZcaMGqwNjmecW3CIcozj1i1k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/7338235CC06011EE882BC34AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.209.124.0/24 Signature Algorithm: sha256WithRSAEncryption cc:43:fd:36:9d:53:e9:a8:6e:dc:33:4f:c8:9a:c4:85:3d:bf: f9:10:09:f6:df:bb:3c:ea:b6:1b:f2:ce:0d:9d:29:1c:13:91: 1e:84:45:03:eb:ac:7d:af:f9:e5:de:5a:80:39:c7:b3:15:7e: 1f:06:f5:a1:9e:d6:96:e2:07:f4:79:1f:bc:05:c4:35:eb:e1: 05:9b:a8:6a:ea:4e:4e:36:81:0e:57:b8:18:c1:31:66:21:ce: 02:a4:0d:a2:a8:85:85:ce:4a:ad:7b:e4:b7:1f:b6:5b:b7:ba: 37:fe:9b:7d:4c:15:fd:72:ef:73:b1:bb:7d:5d:e7:c3:b2:33: d6:8a:0e:68:88:94:e3:ab:64:ed:51:0a:5b:16:8c:22:0d:16: 57:31:d3:dd:c3:d9:24:c1:13:11:11:6f:3c:6d:85:90:6d:15: 39:a6:17:a6:75:37:26:65:7b:e8:4b:02:d1:2e:8a:26:23:51: fd:6b:47:0e:c8:6f:33:9e:20:70:7f:e7:57:af:f2:26:6d:3e: f7:e1:d0:f5:f8:41:c9:11:f4:a4:91:7f:b0:7d:f0:9b:87:77: a1:ed:a8:30:ba:50:57:87:08:8a:d9:e9:04:58:e1:3b:d5:37: d7:21:03:3d:bb:fd:ea:e2:16:de:67:9d:4a:e8:a4:79:bc:75: 92:c3:9b:ba -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICFJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzAxRDUxMTAvBgNVBAUTKDQ0OEJEOTcxQTMwNkFCMDM2Mzk5RTcxNkRDMjIxQ0Ez MzhGNThCNTkwHhcNMjQxMDE4MTcyNDU5WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzEyOTllYi00OGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsG9WAEAhgUWPf4k8HGzICEdU2Akb50aOBNz5Uu4DrKcsJ6LyZnXmOPjWbfip wtTDOepqE7BydBunI1Zn5l1Loww8lqUrsdGXa6zK9foQqTEer7fK9SORxY5P6Frz ahJECrd3B/xAXTCELB7yq7rAdWuqbzykCSJVL0CMXD1K5b8M2wBzTiLYgsFCW3gg CkfKbve9nL+4/zTgawKAue6ai2azF8HFWk2XllkDHKSfh3vWAbdFnjKc+dA5f9xl M5fn2HTqJF4BnwqL3kDa/6YGrsN5wuhpiLrMq1IrAwY33dGqS90cSg0iRtNl37kZ KoGjbRrb4Sz+AEbCjPs3sOJKtwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHJWERzH Y/Dhv3KPz/S3owME41I/MB8GA1UdIwQYMBaAFESL2XGjBqsDY5nnFtwiHKM49YtZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDFENS9ENEJFMDBENDYz RTUxMUU4QjVDRkU0MUFDNEY5QUUwMi9SSXZaY2FNR3F3TmptZWNXM0NJY296ajFp MWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JJdlpjYU1HcXdOam1lY1czQ0ljb3pqMWkxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzAxRDUvRDRCRTAwRDQ2M0U1MTFFOEI1Q0ZFNDFBQzRGOUFFMDIvNzMzODIzNUND MDYwMTFFRTg4MkJDMzRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn0XwwDQYJKoZIhvcNAQELBQADggEBAMxD/TadU+mobtwz T8iaxIU9v/kQCfbfuzzqthvyzg2dKRwTkR6ERQPrrH2v+eXeWoA5x7MVfh8G9aGe 1pbiB/R5H7wFxDXr4QWbqGrqTk42gQ5XuBjBMWYhzgKkDaKohYXOSq175Lcftlu3 ujf+m31MFf1y73Oxu31d58OyM9aKDmiIlOOrZO1RClsWjCINFlcx093D2STBExER bzxthZBtFTmmF6Z1NyZle+hLAtEuiiYjUf1rRw7IbzOeIHB/51ev8iZtPvfh0PX4 QckR9KSRf7B98JuHd6HtqDC6UFeHCIrZ6QRY4TvVN9chAz27/eriFt5nnUropHm8 dZLDm7o= -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:40 2024 by rpki-client on console-fra.rpki-client.org