$ rpki-client -vvf rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/0D5812C4B2E711EB8A61B44EC4F9AE02.roa File: 0D5812C4B2E711EB8A61B44EC4F9AE02.roa (raw, json) Hash identifier: 9tQnJbgHn9CXIDaZmtJ4XxjigORNQV18RL9rnYpJw1M= Subject key identifier: F6:4D:98:0C:5C:8C:A1:CA:25:A8:A8:48:EF:3F:E0:3F:4E:C1:37:4D Certificate issuer: /CN=A91442DE/serialNumber=6A1A46E80368880698EF30424205B9779BE8B1E0 Certificate serial: 0540 Authority key identifier: 6A:1A:46:E8:03:68:88:06:98:EF:30:42:42:05:B9:77:9B:E8:B1:E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahpG6ANoiAaY7zBCQgW5d5voseA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/0D5812C4B2E711EB8A61B44EC4F9AE02.roa Signing time: Wed 03 Jul 2024 00:23:15 +0000 ROA not before: Wed 03 Jul 2024 00:23:15 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 31898 IP address blocks: 103.167.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.crl rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahpG6ANoiAaY7zBCQgW5d5voseA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1344 (0x540) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91442DE/serialNumber=6A1A46E80368880698EF30424205B9779BE8B1E0 Validity Not Before: Jul 3 00:23:15 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=668499f2-563d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:39:a0:ce:b4:83:3d:b2:16:91:f5:5a:9e:1f: a9:de:dc:8f:81:7b:f7:96:ec:74:2e:2c:4d:36:a3: 58:4e:0b:e0:2b:c4:7e:37:d7:a6:23:93:9b:22:c7: 16:39:cc:e4:a8:d6:55:d0:9d:fb:10:49:da:39:47: 4e:59:2e:30:55:67:7f:2a:e2:41:2d:17:ac:a6:73: 2a:d6:d6:5b:c7:92:fe:60:c5:1a:a0:b1:0b:dd:4e: 95:fd:ef:f9:f6:09:0f:f7:ee:7c:aa:86:82:c7:f5: 97:bf:af:dc:82:d2:87:29:8b:58:0b:38:89:47:a6: 85:87:61:a1:07:4b:6a:2a:7b:bd:cd:4c:57:7f:a7: 17:17:ea:aa:12:c9:0e:93:8a:89:ea:9e:61:3b:2d: d1:10:76:28:0a:10:ad:e2:df:52:e2:a9:b9:1f:18: ea:02:6f:5a:37:66:4c:ee:6f:85:8a:59:f1:fe:92: 8d:7f:19:b3:90:e5:df:ef:20:c1:a7:5d:39:96:fe: 04:f2:1c:8f:a0:18:f6:89:4e:59:2f:f3:ca:60:5f: d5:59:a6:e4:23:82:ca:1b:df:c9:d8:65:01:dc:d1: 5c:53:07:76:31:54:e0:df:9b:19:a2:42:33:9e:40: ba:65:79:d5:e3:9a:ae:f9:f5:3b:bc:0b:d4:49:5e: 62:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:4D:98:0C:5C:8C:A1:CA:25:A8:A8:48:EF:3F:E0:3F:4E:C1:37:4D X509v3 Authority Key Identifier: keyid:6A:1A:46:E8:03:68:88:06:98:EF:30:42:42:05:B9:77:9B:E8:B1:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/ahpG6ANoiAaY7zBCQgW5d5voseA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ahpG6ANoiAaY7zBCQgW5d5voseA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91442DE/52043414B23A11EB9074774AC4F9AE02/0D5812C4B2E711EB8A61B44EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.28.0/24 Signature Algorithm: sha256WithRSAEncryption 57:52:26:3a:38:1e:96:92:6a:80:65:84:a2:a2:17:87:62:67: 8b:7d:e0:f5:2a:db:07:c7:c1:15:74:3b:2d:1b:19:f8:47:d6: b1:5d:de:1d:4b:25:7d:4e:f2:ba:42:4e:71:0b:b6:3f:31:c6: 04:74:5f:41:e3:6a:85:0f:d6:b6:65:34:c0:d6:7f:66:0e:a6: ae:6d:78:22:46:9b:83:da:ad:5c:6e:08:34:07:47:f3:b1:f1: fb:45:2e:27:96:6d:7d:d9:b0:79:1b:07:a0:79:8b:61:6e:c2: 7e:79:44:17:e0:a6:62:7d:2f:5c:83:0a:c6:ac:0d:b4:77:e5: 2e:d6:26:4b:97:06:4d:25:de:77:d6:89:6c:88:ca:67:1d:9e: cd:88:d8:2b:02:c7:d2:a2:3a:21:35:70:20:ca:88:3d:cf:6a: 95:cc:87:c5:b5:eb:6c:73:05:e4:70:f3:eb:d4:11:b9:1f:a8: 63:6c:0f:9c:5f:56:9c:58:9c:0d:00:c4:06:19:51:ec:38:86: 54:13:0a:2c:c7:e6:6d:06:f8:09:87:23:94:ca:de:1d:c2:f8: 25:d3:e8:64:14:e7:6a:6e:09:aa:ff:40:42:60:09:50:06:1e: 06:89:57:19:94:64:3f:b4:9c:87:7d:e7:30:89:f1:3e:e7:e5: 49:43:0c:ef -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBUAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQyREUxMTAvBgNVBAUTKDZBMUE0NkU4MDM2ODg4MDY5OEVGMzA0MjQyMDVCOTc3 OUJFOEIxRTAwHhcNMjQwNzAzMDAyMzE1WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg0OTlmMi01NjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuzmgzrSDPbIWkfVanh+p3tyPgXv3lux0LixNNqNYTgvgK8R+N9emI5ObIscW OczkqNZV0J37EEnaOUdOWS4wVWd/KuJBLRespnMq1tZbx5L+YMUaoLEL3U6V/e/5 9gkP9+58qoaCx/WXv6/cgtKHKYtYCziJR6aFh2GhB0tqKnu9zUxXf6cXF+qqEskO k4qJ6p5hOy3REHYoChCt4t9S4qm5HxjqAm9aN2ZM7m+Filnx/pKNfxmzkOXf7yDB p105lv4E8hyPoBj2iU5ZL/PKYF/VWabkI4LKG9/J2GUB3NFcUwd2MVTg35sZokIz nkC6ZXnV45qu+fU7vAvUSV5iCwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPZNmAxc jKHKJaioSO8/4D9OwTdNMB8GA1UdIwQYMBaAFGoaRugDaIgGmO8wQkIFuXeb6LHg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDJERS81MjA0MzQxNEIy M0ExMUVCOTA3NDc3NEFDNEY5QUUwMi9haHBHNkFOb2lBYVk3ekJDUWdXNWQ1dm9z ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FocEc2QU5vaUFhWTd6QkNRZ1c1ZDV2b3NlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDQyREUvNTIwNDM0MTRCMjNBMTFFQjkwNzQ3NzRBQzRGOUFFMDIvMEQ1ODEyQzRC MkU3MTFFQjhBNjFCNDRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnpxwwDQYJKoZIhvcNAQELBQADggEBAFdSJjo4HpaSaoBl hKKiF4diZ4t94PUq2wfHwRV0Oy0bGfhH1rFd3h1LJX1O8rpCTnELtj8xxgR0X0Hj aoUP1rZlNMDWf2YOpq5teCJGm4ParVxuCDQHR/Ox8ftFLieWbX3ZsHkbB6B5i2Fu wn55RBfgpmJ9L1yDCsasDbR35S7WJkuXBk0l3nfWiWyIymcdns2I2CsCx9KiOiE1 cCDKiD3PapXMh8W162xzBeRw8+vUEbkfqGNsD5xfVpxYnA0AxAYZUew4hlQTCizH 5m0G+AmHI5TK3h3C+CXT6GQU52puCar/QEJgCVAGHgaJVxmUZD+0nId95zCJ8T7n 5UlDDO8= -----END CERTIFICATE-----Generated at Thu Nov 21 00:21:20 2024 by rpki-client on console-fra.rpki-client.org