$ rpki-client -vvf rpki.apnic.net/member_repository/A91359CD/185FFC2882DB11EAAC2CD60AC4F9AE02/8F467E0082DD11EABD325010C4F9AE02.roa File: 8F467E0082DD11EABD325010C4F9AE02.roa (raw, json) Hash identifier: 8UoETv43NCbg359unaKa056KSfIsJT8AiDvuudbYvko= Subject key identifier: DC:7E:C0:2C:29:90:91:85:3F:DD:93:99:41:ED:E4:BA:F3:28:39:81 Certificate issuer: /CN=A91359CD/serialNumber=6B9B5D141818958D7304582F254EA175D843E3FD Certificate serial: 08F0 Authority key identifier: 6B:9B:5D:14:18:18:95:8D:73:04:58:2F:25:4E:A1:75:D8:43:E3:FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a5tdFBgYlY1zBFgvJU6hddhD4_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91359CD/185FFC2882DB11EAAC2CD60AC4F9AE02/8F467E0082DD11EABD325010C4F9AE02.roa Signing time: Wed 10 Apr 2024 21:30:04 +0000 ROA not before: Wed 10 Apr 2024 21:30:04 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 4657 IP address blocks: 103.149.23.0/24 maxlen: 24 2001:df3:a80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91359CD/185FFC2882DB11EAAC2CD60AC4F9AE02/a5tdFBgYlY1zBFgvJU6hddhD4_0.crl rsync://rpki.apnic.net/member_repository/A91359CD/185FFC2882DB11EAAC2CD60AC4F9AE02/a5tdFBgYlY1zBFgvJU6hddhD4_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a5tdFBgYlY1zBFgvJU6hddhD4_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:55:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2288 (0x8f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91359CD/serialNumber=6B9B5D141818958D7304582F254EA175D843E3FD Validity Not Before: Apr 10 21:30:04 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=661704dc-6c3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:f1:df:e0:ac:54:12:86:9d:2c:1e:fb:79:d2: 25:99:5b:38:c4:6c:70:10:c7:03:c0:0d:2e:24:4a: cf:61:d2:53:80:3d:1b:9a:31:b6:5c:64:ed:e7:e4: b6:40:94:9e:9a:20:d9:1a:09:f7:6e:7f:19:39:aa: 00:a7:d7:0f:74:97:32:1c:d1:09:5c:c2:bd:a4:86: 38:80:1b:bb:33:97:82:f7:49:5c:ea:d6:ff:b5:bc: e9:10:f5:6e:62:4f:3e:e9:5f:76:21:21:86:63:1b: 52:a6:50:fa:9d:2a:32:ad:09:f4:80:ac:5b:03:dc: 25:03:9b:63:eb:e0:bc:c3:fd:93:79:06:39:ad:a1: e5:42:67:78:a8:6d:39:d0:32:d0:20:cc:11:5e:5b: f0:73:e7:7a:43:a5:6d:8e:1d:b9:bf:75:80:5d:3a: eb:c3:7f:b9:96:38:91:43:e6:a0:7c:a8:13:19:aa: ab:54:87:4e:74:04:76:53:62:4f:4e:32:d2:99:62: dc:1d:79:f9:18:ba:b2:05:46:82:29:81:b7:3e:78: b6:b8:87:a5:56:86:60:04:77:40:4c:93:60:af:76: e9:71:2e:35:1b:d6:db:7c:ad:6c:8f:d2:f0:8f:e4: 8c:48:9e:5e:f3:a8:44:d0:b1:d6:fd:73:b1:ac:45: 79:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:7E:C0:2C:29:90:91:85:3F:DD:93:99:41:ED:E4:BA:F3:28:39:81 X509v3 Authority Key Identifier: keyid:6B:9B:5D:14:18:18:95:8D:73:04:58:2F:25:4E:A1:75:D8:43:E3:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91359CD/185FFC2882DB11EAAC2CD60AC4F9AE02/a5tdFBgYlY1zBFgvJU6hddhD4_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a5tdFBgYlY1zBFgvJU6hddhD4_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91359CD/185FFC2882DB11EAAC2CD60AC4F9AE02/8F467E0082DD11EABD325010C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.149.23.0/24 IPv6: 2001:df3:a80::/48 Signature Algorithm: sha256WithRSAEncryption 19:6d:3c:5b:2c:78:01:17:77:0d:3e:b9:a5:7f:fb:2c:c7:d4: 15:2e:54:bb:39:41:04:92:39:52:b4:11:d9:ba:4e:fb:98:28: a9:fc:db:8d:a4:28:26:8f:12:3d:f1:6d:e9:e3:8c:81:b8:b0: 1a:e4:eb:b9:2a:c2:2c:4c:0d:27:cb:3d:14:d7:e3:ba:87:e1: 12:6c:b9:16:ca:b5:aa:79:48:d4:7d:3f:9d:b6:48:a8:80:4e: c6:79:3a:ea:0c:19:f6:63:8e:ed:c3:2c:35:41:e7:21:8b:0d: 2d:0e:92:76:23:f8:89:80:05:22:9f:fd:d1:58:22:81:2e:44: a1:bf:e0:e4:77:ae:d4:33:1f:af:f3:cd:e2:71:cd:12:c9:4d: ba:64:05:68:54:64:a1:94:11:24:e6:2e:0a:15:87:b3:56:00: b7:66:5d:db:f1:60:d7:7c:02:0d:68:7e:17:06:64:c2:f6:45: c2:f4:b7:1b:2b:d9:3f:5c:41:3f:1c:aa:f6:98:46:c0:bf:a3: c6:df:98:c3:fc:76:be:57:c0:8d:c6:38:b0:c8:b0:b7:45:71: 35:dc:9e:cd:2f:cc:36:57:03:f2:81:6f:ec:13:7b:47:f3:40: a7:54:a1:29:dd:73:32:d8:28:37:99:03:3a:8f:30:e3:ee:9c: 3f:c8:a9:1d -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU5Q0QxMTAvBgNVBAUTKDZCOUI1RDE0MTgxODk1OEQ3MzA0NTgyRjI1NEVBMTc1 RDg0M0UzRkQwHhcNMjQwNDEwMjEzMDA0WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjE3MDRkYy02YzNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5PHf4KxUEoadLB77edIlmVs4xGxwEMcDwA0uJErPYdJTgD0bmjG2XGTt5+S2 QJSemiDZGgn3bn8ZOaoAp9cPdJcyHNEJXMK9pIY4gBu7M5eC90lc6tb/tbzpEPVu Yk8+6V92ISGGYxtSplD6nSoyrQn0gKxbA9wlA5tj6+C8w/2TeQY5raHlQmd4qG05 0DLQIMwRXlvwc+d6Q6Vtjh25v3WAXTrrw3+5ljiRQ+agfKgTGaqrVIdOdAR2U2JP TjLSmWLcHXn5GLqyBUaCKYG3Pni2uIelVoZgBHdATJNgr3bpcS41G9bbfK1sj9Lw j+SMSJ5e86hE0LHW/XOxrEV5VwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFNx+wCwp kJGFP92TmUHt5LrzKDmBMB8GA1UdIwQYMBaAFGubXRQYGJWNcwRYLyVOoXXYQ+P9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTlDRC8xODVGRkMyODgy REIxMUVBQUMyQ0Q2MEFDNEY5QUUwMi9hNXRkRkJnWWxZMXpCRmd2SlU2aGRkaEQ0 XzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2E1dGRGQmdZbFkxekJGZ3ZKVTZoZGRoRDRfMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzU5Q0QvMTg1RkZDMjg4MkRCMTFFQUFDMkNENjBBQzRGOUFFMDIvOEY0NjdFMDA4 MkREMTFFQUJEMzI1MDEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnlRcwDwQCAAIwCQMHACABDfMKgDANBgkqhkiG9w0BAQsF AAOCAQEAGW08Wyx4ARd3DT65pX/7LMfUFS5UuzlBBJI5UrQR2bpO+5goqfzbjaQo Jo8SPfFt6eOMgbiwGuTruSrCLEwNJ8s9FNfjuofhEmy5Fsq1qnlI1H0/nbZIqIBO xnk66gwZ9mOO7cMsNUHnIYsNLQ6SdiP4iYAFIp/90VgigS5Eob/g5Heu1DMfr/PN 4nHNEslNumQFaFRkoZQRJOYuChWHs1YAt2Zd2/Fg13wCDWh+FwZkwvZFwvS3GyvZ P1xBPxyq9phGwL+jxt+Yw/x2vlfAjcY4sMiwt0VxNdyezS/MNlcD8oFv7BN7R/NA p1ShKd1zMtgoN5kDOo8w4+6cP8ipHQ== -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:27 2024 by rpki-client on console-fra.rpki-client.org