$ rpki-client -vvf rpki.apnic.net/member_repository/A9136AF7/7B0B6F72F27311E9AE257640C4F9AE02/E73FF93CF27411E99E67A342C4F9AE02.roa File: E73FF93CF27411E99E67A342C4F9AE02.roa (raw, json) Hash identifier: waKC3XDUVxJ9NfsFSQr2/Kcb9rARuPIn5lSsXa8DYwE= Subject key identifier: 0F:44:AF:18:79:A0:C7:F8:94:79:C9:75:74:A0:DC:ED:1F:7E:55:2F Certificate issuer: /CN=A9136AF7/serialNumber=28FBADF1C0B5A425B5D21D7CF45C40CAA44EDCE1 Certificate serial: 0BF8 Authority key identifier: 28:FB:AD:F1:C0:B5:A4:25:B5:D2:1D:7C:F4:5C:40:CA:A4:4E:DC:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPut8cC1pCW10h189FxAyqRO3OE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136AF7/7B0B6F72F27311E9AE257640C4F9AE02/E73FF93CF27411E99E67A342C4F9AE02.roa Signing time: Sun 02 Jun 2024 19:42:53 +0000 ROA not before: Sun 02 Jun 2024 19:42:53 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 133429 IP address blocks: 103.93.232.0/24 maxlen: 24 2401:31c0:ffff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136AF7/7B0B6F72F27311E9AE257640C4F9AE02/KPut8cC1pCW10h189FxAyqRO3OE.crl rsync://rpki.apnic.net/member_repository/A9136AF7/7B0B6F72F27311E9AE257640C4F9AE02/KPut8cC1pCW10h189FxAyqRO3OE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPut8cC1pCW10h189FxAyqRO3OE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:10:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3064 (0xbf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136AF7/serialNumber=28FBADF1C0B5A425B5D21D7CF45C40CAA44EDCE1 Validity Not Before: Jun 2 19:42:53 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=665ccb3d-b2c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:0e:d0:15:73:97:f3:b1:9d:45:08:b8:8d:9b: 84:ec:b4:8b:0f:b4:f9:60:fc:3f:13:91:11:39:a1: 32:c9:e3:26:1e:69:fc:2e:24:7e:23:3f:26:7c:21: 05:44:47:76:04:e3:12:27:4b:a5:2c:d9:d7:68:3e: 55:59:89:13:b5:b3:2c:58:21:56:6c:f3:3b:b2:82: a0:86:f7:5e:57:22:30:a7:74:3f:16:d7:e5:4e:33: d4:81:eb:13:b7:29:9f:6c:89:6d:de:d2:b1:84:80: a8:40:28:bd:97:69:bd:33:e4:41:d5:95:d6:1c:10: f3:76:f5:24:52:da:46:04:e7:1a:c5:43:25:4d:65: fa:ab:be:be:3a:d8:12:64:a3:80:c1:ae:99:7b:b7: 72:76:34:a1:ea:1d:ac:6e:49:4f:f1:c4:21:2b:95: 7c:f8:34:2f:c7:b7:a8:44:f5:8d:89:c0:1f:3e:63: a1:67:17:40:b0:65:f6:7b:2d:e9:95:d1:93:dc:94: c4:e2:a2:bf:0a:dd:2e:b2:ed:44:06:11:36:95:33: 95:55:cd:da:27:eb:61:1b:99:7b:77:ef:81:65:ae: ff:15:2d:ac:61:b7:00:c3:d1:ae:9f:4c:f1:58:dd: 62:de:1e:0a:6d:bb:71:53:7e:93:f0:5b:8a:a6:56: fe:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:44:AF:18:79:A0:C7:F8:94:79:C9:75:74:A0:DC:ED:1F:7E:55:2F X509v3 Authority Key Identifier: keyid:28:FB:AD:F1:C0:B5:A4:25:B5:D2:1D:7C:F4:5C:40:CA:A4:4E:DC:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136AF7/7B0B6F72F27311E9AE257640C4F9AE02/KPut8cC1pCW10h189FxAyqRO3OE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPut8cC1pCW10h189FxAyqRO3OE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136AF7/7B0B6F72F27311E9AE257640C4F9AE02/E73FF93CF27411E99E67A342C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.93.232.0/24 IPv6: 2401:31c0:ffff::/48 Signature Algorithm: sha256WithRSAEncryption 3b:fa:2e:dd:83:3a:9d:36:12:99:ff:70:47:75:28:75:57:72: ce:22:79:88:f2:ef:f8:8f:1e:4c:93:ba:5c:8e:25:bf:12:d1: d6:13:61:e3:43:d6:07:cf:c1:b8:15:aa:ef:4e:59:ca:be:de: b0:19:30:c8:9b:62:2d:57:c4:89:75:72:a5:cb:4a:37:3b:69: bf:eb:b7:ca:62:c8:e0:27:ff:48:f4:75:ba:01:31:a4:b0:d6: 90:d8:c9:45:91:a0:83:9c:8a:c9:eb:25:81:e1:f1:bb:2c:05: 68:6e:70:9d:30:73:18:89:63:04:a4:24:9e:fc:e3:e4:c4:3a: 92:f7:c4:e5:a8:be:6d:ee:e0:a8:bd:79:9f:ec:88:b4:ca:d4: ab:3d:c2:b7:e4:00:b4:5d:a3:07:9e:24:11:eb:dd:25:e4:5c: d6:41:96:41:c1:13:e0:0b:6b:00:19:4f:62:11:ff:84:d8:c3: 16:82:7d:dd:e3:88:b4:c1:7e:ad:62:6a:7c:89:a1:f5:07:f0: 70:c2:e1:ee:30:db:c1:06:53:83:21:a5:4d:ae:45:4e:c0:4e: 2c:d3:f3:c9:18:bf:91:b2:04:78:4e:46:bc:b1:43:7a:b4:46: e7:13:25:b2:17:5a:35:aa:c8:b5:86:57:44:20:c2:c3:08:cd: 4d:d9:ec:2e -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICC/gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZBRjcxMTAvBgNVBAUTKDI4RkJBREYxQzBCNUE0MjVCNUQyMUQ3Q0Y0NUM0MENB QTQ0RURDRTEwHhcNMjQwNjAyMTk0MjUzWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVjY2IzZC1iMmM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArQ7QFXOX87GdRQi4jZuE7LSLD7T5YPw/E5EROaEyyeMmHmn8LiR+Iz8mfCEF REd2BOMSJ0ulLNnXaD5VWYkTtbMsWCFWbPM7soKghvdeVyIwp3Q/FtflTjPUgesT tymfbIlt3tKxhICoQCi9l2m9M+RB1ZXWHBDzdvUkUtpGBOcaxUMlTWX6q76+OtgS ZKOAwa6Ze7dydjSh6h2sbklP8cQhK5V8+DQvx7eoRPWNicAfPmOhZxdAsGX2ey3p ldGT3JTE4qK/Ct0usu1EBhE2lTOVVc3aJ+thG5l7d++BZa7/FS2sYbcAw9Gun0zx WN1i3h4KbbtxU36T8FuKplb+1wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFA9Erxh5 oMf4lHnJdXSg3O0fflUvMB8GA1UdIwQYMBaAFCj7rfHAtaQltdIdfPRcQMqkTtzh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkFGNy83QjBCNkY3MkYy NzMxMUU5QUUyNTc2NDBDNEY5QUUwMi9LUHV0OGNDMXBDVzEwaDE4OUZ4QXlxUk8z T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQdXQ4Y0MxcENXMTBoMTg5RnhBeXFSTzNPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzZBRjcvN0IwQjZGNzJGMjczMTFFOUFFMjU3NjQwQzRGOUFFMDIvRTczRkY5M0NG Mjc0MTFFOTlFNjdBMzQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnXegwDwQCAAIwCQMHACQBMcD//zANBgkqhkiG9w0BAQsF AAOCAQEAO/ou3YM6nTYSmf9wR3UodVdyziJ5iPLv+I8eTJO6XI4lvxLR1hNh40PW B8/BuBWq705Zyr7esBkwyJtiLVfEiXVypctKNztpv+u3ymLI4Cf/SPR1ugExpLDW kNjJRZGgg5yKyeslgeHxuywFaG5wnTBzGIljBKQknvzj5MQ6kvfE5ai+be7gqL15 n+yItMrUqz3Ct+QAtF2jB54kEevdJeRc1kGWQcET4AtrABlPYhH/hNjDFoJ93eOI tMF+rWJqfImh9QfwcMLh7jDbwQZTgyGlTa5FTsBOLNPzyRi/kbIEeE5GvLFDerRG 5xMlshdaNarItYZXRCDCwwjNTdnsLg== -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:57 2024 by rpki-client on console-fra.rpki-client.org