$ rpki-client -vvf rpki.apnic.net/member_repository/A913E23F/C64CAAA43E5211EDAAD4B64FC4F9AE02/D9F1B3C036DA11EEA0D3EE61C4F9AE02.roa File: D9F1B3C036DA11EEA0D3EE61C4F9AE02.roa (raw, json) Hash identifier: IhgTSFQXOA9FXL9H0ErI6IsYaAMceNv3flW3IvKbv4A= Subject key identifier: 96:F1:96:DE:90:E0:76:66:18:BB:91:AE:81:59:11:FB:DF:46:54:C3 Certificate issuer: /CN=A913E23F/serialNumber=020B606DD9E8898A7D5DF5EA1CA3D996028E75D9 Certificate serial: 01AB Authority key identifier: 02:0B:60:6D:D9:E8:89:8A:7D:5D:F5:EA:1C:A3:D9:96:02:8E:75:D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AgtgbdnoiYp9XfXqHKPZlgKOddk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E23F/C64CAAA43E5211EDAAD4B64FC4F9AE02/D9F1B3C036DA11EEA0D3EE61C4F9AE02.roa Signing time: Thu 21 Nov 2024 01:55:20 +0000 ROA not before: Thu 21 Nov 2024 01:55:20 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 136141 IP address blocks: 103.13.192.0/24 maxlen: 24 103.13.193.0/24 maxlen: 24 2001:df1:53c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E23F/C64CAAA43E5211EDAAD4B64FC4F9AE02/AgtgbdnoiYp9XfXqHKPZlgKOddk.crl rsync://rpki.apnic.net/member_repository/A913E23F/C64CAAA43E5211EDAAD4B64FC4F9AE02/AgtgbdnoiYp9XfXqHKPZlgKOddk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AgtgbdnoiYp9XfXqHKPZlgKOddk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 427 (0x1ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E23F/serialNumber=020B606DD9E8898A7D5DF5EA1CA3D996028E75D9 Validity Not Before: Nov 21 01:55:20 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=673e9308-bdbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:1b:52:1b:9c:a4:60:e9:44:b5:03:9b:5a:d7: eb:30:af:29:4b:33:b2:54:96:0c:f5:ed:82:3b:23: 2f:18:19:12:5f:4c:75:7c:40:19:ce:be:b4:b1:d6: 9a:97:50:b2:4f:54:b3:da:12:4d:18:c6:5f:36:b3: ae:c7:59:3c:a1:f2:e3:07:50:b9:a5:df:33:a9:db: 88:46:87:a2:bb:34:c0:60:0b:de:72:b4:72:76:41: 9e:da:1a:30:f7:95:da:0a:3b:8f:bd:6a:70:f9:83: c4:8a:d2:47:3b:36:76:a9:30:70:fa:0c:e6:b3:a6: 91:d4:d9:ac:23:6a:67:ef:64:4c:9f:b7:42:1a:6b: f3:f0:55:4e:1a:5c:77:10:5c:47:52:83:cd:23:fb: be:28:88:c1:9d:85:59:ab:ba:90:b2:44:ea:9f:98: 90:ac:0f:ae:85:bc:fc:c2:86:bc:21:15:82:9f:60: d7:ea:1e:34:7f:d9:30:fe:94:b4:c7:39:8f:a8:7e: e6:7e:4a:42:e6:67:37:82:3b:f5:e7:d8:b7:4f:f2: 52:a6:56:d0:eb:33:f6:d7:aa:3d:36:cc:8b:b1:c5: c2:c5:b1:45:28:4c:90:d7:fb:08:fc:6e:b1:83:4e: 56:ad:7d:ba:27:27:2e:0f:75:4f:16:c0:f7:48:34: 59:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:F1:96:DE:90:E0:76:66:18:BB:91:AE:81:59:11:FB:DF:46:54:C3 X509v3 Authority Key Identifier: keyid:02:0B:60:6D:D9:E8:89:8A:7D:5D:F5:EA:1C:A3:D9:96:02:8E:75:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E23F/C64CAAA43E5211EDAAD4B64FC4F9AE02/AgtgbdnoiYp9XfXqHKPZlgKOddk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AgtgbdnoiYp9XfXqHKPZlgKOddk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E23F/C64CAAA43E5211EDAAD4B64FC4F9AE02/D9F1B3C036DA11EEA0D3EE61C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.13.192.0/23 IPv6: 2001:df1:53c0::/48 Signature Algorithm: sha256WithRSAEncryption 1c:b7:9d:c8:c7:3c:8d:8a:f4:ad:42:08:a8:11:f6:01:19:82: a5:bb:bc:c9:10:37:82:21:df:c7:bf:d2:d8:70:6a:d9:3f:5e: 6a:a4:be:4c:e6:be:59:85:b9:54:82:e8:5b:cc:3f:a0:af:e7: 74:5b:e5:50:4f:c8:0d:c0:76:41:09:84:13:79:de:dd:c0:f8: d3:ca:a1:56:69:9a:69:f3:4e:f1:a8:7c:e8:59:df:60:53:b0: 7a:c5:e9:ce:78:74:5b:ec:24:e1:3c:1d:d4:6b:83:51:3b:d2: 71:82:96:c1:13:16:88:74:cd:2e:04:bd:20:35:1f:bf:7a:80: a3:02:b4:f7:d7:29:d0:01:f0:8d:82:f1:04:1c:cc:ba:d7:0e: ca:ec:74:49:3c:ed:d9:d8:5e:65:63:3a:1a:6b:4d:4c:ba:91: 8f:fc:e1:a1:fd:67:23:a7:99:5e:49:fd:d5:d0:a9:0a:e9:aa: 1c:d9:8c:af:ce:b7:b0:d4:a6:0b:c0:35:78:bc:20:71:20:17: 94:9c:d6:b5:0b:5c:ba:60:35:38:b0:a3:92:69:10:49:4a:ca: 13:9e:f3:0a:42:75:ef:10:a6:46:7f:f7:23:0a:3c:93:15:3c: 24:3e:45:7b:c4:f4:02:7d:69:ac:ae:0b:f5:fb:4c:13:88:e0: 61:97:2d:c5 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0UyM0YxMTAvBgNVBAUTKDAyMEI2MDZERDlFODg5OEE3RDVERjVFQTFDQTNEOTk2 MDI4RTc1RDkwHhcNMjQxMTIxMDE1NTIwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzNlOTMwOC1iZGJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqRtSG5ykYOlEtQObWtfrMK8pSzOyVJYM9e2COyMvGBkSX0x1fEAZzr60sdaa l1CyT1Sz2hJNGMZfNrOux1k8ofLjB1C5pd8zqduIRoeiuzTAYAvecrRydkGe2how 95XaCjuPvWpw+YPEitJHOzZ2qTBw+gzms6aR1NmsI2pn72RMn7dCGmvz8FVOGlx3 EFxHUoPNI/u+KIjBnYVZq7qQskTqn5iQrA+uhbz8woa8IRWCn2DX6h40f9kw/pS0 xzmPqH7mfkpC5mc3gjv159i3T/JSplbQ6zP216o9NsyLscXCxbFFKEyQ1/sI/G6x g05WrX26JycuD3VPFsD3SDRZyQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJbxlt6Q 4HZmGLuRroFZEfvfRlTDMB8GA1UdIwQYMBaAFAILYG3Z6ImKfV316hyj2ZYCjnXZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTIzRi9DNjRDQUFBNDNF NTIxMUVEQUFENEI2NEZDNEY5QUUwMi9BZ3RnYmRub2lZcDlYZlhxSEtQWmxnS09k ZGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FndGdiZG5vaVlwOVhmWHFIS1BabGdLT2Rkay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0UyM0YvQzY0Q0FBQTQzRTUyMTFFREFBRDRCNjRGQzRGOUFFMDIvRDlGMUIzQzAz NkRBMTFFRUEwRDNFRTYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnDcAwDwQCAAIwCQMHACABDfFTwDANBgkqhkiG9w0BAQsF AAOCAQEAHLedyMc8jYr0rUIIqBH2ARmCpbu8yRA3giHfx7/S2HBq2T9eaqS+TOa+ WYW5VILoW8w/oK/ndFvlUE/IDcB2QQmEE3ne3cD408qhVmmaafNO8ah86FnfYFOw esXpznh0W+wk4Twd1GuDUTvScYKWwRMWiHTNLgS9IDUfv3qAowK099cp0AHwjYLx BBzMutcOyux0STzt2dheZWM6GmtNTLqRj/zhof1nI6eZXkn91dCpCumqHNmMr863 sNSmC8A1eLwgcSAXlJzWtQtcumA1OLCjkmkQSUrKE57zCkJ17xCmRn/3Iwo8kxU8 JD5Fe8T0An1prK4L9ftME4jgYZctxQ== -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:34 2024 by rpki-client on console-fra.rpki-client.org