$ rpki-client -vvf rpki.apnic.net/member_repository/A91380B5/69463D04CA3D11EC91AC426DC4F9AE02/121437B45ABB11EF8C696E58C4F9AE02.roa File: 121437B45ABB11EF8C696E58C4F9AE02.roa (raw, json) Hash identifier: yw2dprXJ+Wd0U2flQJqRV1cZ3b2Y4dIHp3h8Ll68faw= Subject key identifier: F7:E4:39:8E:48:6B:96:D2:7C:93:E0:86:2C:96:18:01:C7:BA:66:54 Certificate issuer: /CN=A91380B5/serialNumber=7E65C58FA343A10C534350AB497FD090CEEFBFBB Certificate serial: 02A3 Authority key identifier: 7E:65:C5:8F:A3:43:A1:0C:53:43:50:AB:49:7F:D0:90:CE:EF:BF:BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fmXFj6NDoQxTQ1CrSX_QkM7vv7s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91380B5/69463D04CA3D11EC91AC426DC4F9AE02/121437B45ABB11EF8C696E58C4F9AE02.roa Signing time: Thu 15 Aug 2024 04:01:38 +0000 ROA not before: Thu 15 Aug 2024 04:01:38 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 133929 IP address blocks: 103.180.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91380B5/69463D04CA3D11EC91AC426DC4F9AE02/fmXFj6NDoQxTQ1CrSX_QkM7vv7s.crl rsync://rpki.apnic.net/member_repository/A91380B5/69463D04CA3D11EC91AC426DC4F9AE02/fmXFj6NDoQxTQ1CrSX_QkM7vv7s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fmXFj6NDoQxTQ1CrSX_QkM7vv7s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 675 (0x2a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91380B5/serialNumber=7E65C58FA343A10C534350AB497FD090CEEFBFBB Validity Not Before: Aug 15 04:01:38 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=66bd7da2-8de1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:92:73:56:2e:b9:28:f4:39:ae:c9:82:d4:44: cc:25:42:16:79:b7:42:90:1c:b6:93:7d:56:9a:62: af:f2:dc:66:50:e8:97:cd:0e:d7:fe:64:87:06:f8: e1:ea:be:ee:a7:df:8c:ac:f7:8c:ff:38:dd:81:ae: bd:d7:c9:8b:b4:6d:86:6e:c1:8a:dd:cf:69:d4:22: cb:4f:37:bf:31:2a:92:9e:a5:79:1d:d6:53:f1:08: 54:57:ad:81:f2:ce:8a:b8:e6:d0:0c:5e:dc:2a:d3: 63:ca:3f:06:6a:7a:c2:98:5e:fb:28:49:0f:1b:fc: 53:20:c4:9e:1c:3f:f4:9f:31:83:36:1b:c0:02:48: 9a:45:fd:7b:82:63:b6:98:24:59:aa:b2:29:1d:59: 61:75:d0:e8:26:d5:2d:3a:78:9a:c3:78:c6:06:ba: c2:68:48:f8:52:96:d4:e9:b9:4b:fe:21:87:7f:e3: d0:ed:a5:f0:dd:d0:1a:86:eb:64:68:b3:40:6d:52: 10:d3:67:c2:3c:f6:35:24:ac:90:10:3d:74:4a:89: d1:5e:8b:bf:09:f0:a3:b0:36:5b:ad:19:28:50:0d: b3:ff:fe:95:88:53:d1:9d:e9:7e:ed:0b:62:a1:a0: 67:c4:a4:f7:8b:09:45:1c:ce:9d:da:b3:bb:40:af: 9f:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:E4:39:8E:48:6B:96:D2:7C:93:E0:86:2C:96:18:01:C7:BA:66:54 X509v3 Authority Key Identifier: keyid:7E:65:C5:8F:A3:43:A1:0C:53:43:50:AB:49:7F:D0:90:CE:EF:BF:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91380B5/69463D04CA3D11EC91AC426DC4F9AE02/fmXFj6NDoQxTQ1CrSX_QkM7vv7s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fmXFj6NDoQxTQ1CrSX_QkM7vv7s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91380B5/69463D04CA3D11EC91AC426DC4F9AE02/121437B45ABB11EF8C696E58C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.180.24.0/24 Signature Algorithm: sha256WithRSAEncryption 17:54:2c:b5:46:ec:09:dc:b2:65:e0:ff:a1:5d:ae:cb:84:89: eb:12:70:b2:2a:d5:b5:42:f0:01:1d:ea:54:6f:66:e0:49:e4: b9:09:61:92:41:de:bb:92:bb:37:8c:a8:6b:b5:ef:a1:22:e0: 54:5d:ab:96:4a:fb:ae:bf:1d:31:f5:e0:5d:74:ea:01:de:fe: 2b:02:87:b6:24:13:e9:66:8d:40:2a:5c:ff:75:aa:88:59:97: 31:43:61:a5:b8:cc:a9:7e:d8:0e:73:e7:d5:8a:61:2e:5e:93: b5:37:bb:d1:38:2e:d1:5b:65:45:ef:84:53:e4:4a:72:d2:db: 3b:b4:b6:9a:53:17:a2:ca:91:71:ac:d6:4d:96:db:47:84:eb: 4f:e7:c1:c6:75:02:39:23:d5:30:2d:7d:ff:22:f6:13:f6:88: 15:45:84:ad:29:dc:ae:10:69:15:14:95:2e:65:5a:32:c2:3c: 60:df:b7:72:1b:2f:9a:2d:26:04:92:83:d3:f2:79:84:76:5b: 65:24:6b:6b:bc:bd:f1:a4:64:c3:2e:36:03:91:5f:5e:8a:1d: 76:90:9e:3d:1d:41:de:c8:c3:08:8f:f5:ec:cd:19:21:6e:7d: 8f:93:cc:25:5e:b5:51:59:a4:d7:76:5e:b9:13:4f:4b:1b:ec: 91:6e:ad:a1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAqMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgwQjUxMTAvBgNVBAUTKDdFNjVDNThGQTM0M0ExMEM1MzQzNTBBQjQ5N0ZEMDkw Q0VFRkJGQkIwHhcNMjQwODE1MDQwMTM4WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJkN2RhMi04ZGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1pJzVi65KPQ5rsmC1ETMJUIWebdCkBy2k31WmmKv8txmUOiXzQ7X/mSHBvjh 6r7up9+MrPeM/zjdga6918mLtG2GbsGK3c9p1CLLTze/MSqSnqV5HdZT8QhUV62B 8s6KuObQDF7cKtNjyj8GanrCmF77KEkPG/xTIMSeHD/0nzGDNhvAAkiaRf17gmO2 mCRZqrIpHVlhddDoJtUtOniaw3jGBrrCaEj4UpbU6blL/iGHf+PQ7aXw3dAahutk aLNAbVIQ02fCPPY1JKyQED10SonRXou/CfCjsDZbrRkoUA2z//6ViFPRnel+7Qti oaBnxKT3iwlFHM6d2rO7QK+fYQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPfkOY5I a5bSfJPghiyWGAHHumZUMB8GA1UdIwQYMBaAFH5lxY+jQ6EMU0NQq0l/0JDO77+7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODBCNS82OTQ2M0QwNENB M0QxMUVDOTFBQzQyNkRDNEY5QUUwMi9mbVhGajZORG9ReFRRMUNyU1hfUWtNN3Z2 N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZtWEZqNk5Eb1F4VFExQ3JTWF9Ra003dnY3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzgwQjUvNjk0NjNEMDRDQTNEMTFFQzkxQUM0MjZEQzRGOUFFMDIvMTIxNDM3QjQ1 QUJCMTFFRjhDNjk2RTU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABntBgwDQYJKoZIhvcNAQELBQADggEBABdULLVG7AncsmXg /6FdrsuEiesScLIq1bVC8AEd6lRvZuBJ5LkJYZJB3ruSuzeMqGu176Ei4FRdq5ZK +66/HTH14F106gHe/isCh7YkE+lmjUAqXP91qohZlzFDYaW4zKl+2A5z59WKYS5e k7U3u9E4LtFbZUXvhFPkSnLS2zu0tppTF6LKkXGs1k2W20eE60/nwcZ1Ajkj1TAt ff8i9hP2iBVFhK0p3K4QaRUUlS5lWjLCPGDft3IbL5otJgSSg9PyeYR2W2Uka2u8 vfGkZMMuNgORX16KHXaQnj0dQd7IwwiP9ezNGSFufY+TzCVetVFZpNd2XrkTT0sb 7JFuraE= -----END CERTIFICATE-----Generated at Thu Nov 21 03:11:53 2024 by rpki-client on console-fra.rpki-client.org