$ rpki-client -vvf rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/A58B9338AD4A11EBA6B48687C4F9AE02.roa File: A58B9338AD4A11EBA6B48687C4F9AE02.roa (raw, json) Hash identifier: 9S3WJERMTtwQwqkFdyQh2FAfBQXuWIoDgdAQjyhftzk= Subject key identifier: 12:5E:D9:C8:7F:D4:5B:50:40:01:F6:13:C0:20:B7:72:BC:41:5F:BE Certificate issuer: /CN=A91452AC/serialNumber=36D77E9243ABBA2FD5496A291830B7D38B0BCBC4 Certificate serial: 0860 Authority key identifier: 36:D7:7E:92:43:AB:BA:2F:D5:49:6A:29:18:30:B7:D3:8B:0B:CB:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ntd-kkOrui_VSWopGDC304sLy8Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/A58B9338AD4A11EBA6B48687C4F9AE02.roa Signing time: Wed 06 Nov 2024 20:39:42 +0000 ROA not before: Wed 06 Nov 2024 20:39:42 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 133744 IP address blocks: 103.43.162.0/24 maxlen: 24 202.43.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/Ntd-kkOrui_VSWopGDC304sLy8Q.crl rsync://rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/Ntd-kkOrui_VSWopGDC304sLy8Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ntd-kkOrui_VSWopGDC304sLy8Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:28:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2144 (0x860) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91452AC/serialNumber=36D77E9243ABBA2FD5496A291830B7D38B0BCBC4 Validity Not Before: Nov 6 20:39:42 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=672bd40e-bc09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:5e:0c:c2:dd:3c:eb:cb:2d:7f:10:3b:8b:4f: 3d:f9:cd:66:6d:8f:dd:05:f5:f9:03:51:9d:be:9a: 6c:08:56:ba:89:b6:05:58:9a:1e:f6:d3:64:91:90: 0d:4f:77:18:86:5c:fa:49:f3:6d:4e:0a:44:97:8d: 57:9e:07:af:35:8f:89:4e:86:99:ac:d8:51:6d:f4: bb:2a:eb:8e:ec:ad:1c:27:a0:5e:1c:73:2e:80:05: 01:b7:dd:64:10:29:10:8e:b3:0f:de:7c:b0:b6:6d: 65:d8:57:ff:f9:78:3b:31:fb:85:a2:ce:76:26:6a: 0a:26:1d:ba:00:03:78:6f:85:7e:3d:11:93:e6:f4: 31:2a:20:21:30:01:42:49:e6:a4:ee:06:70:00:cc: 1f:03:70:59:a9:44:34:72:95:ad:b6:be:a4:9b:cb: c7:6d:70:09:44:bd:cb:a3:dd:25:c7:f3:2b:dd:df: 7e:b5:e9:40:71:83:1f:07:3a:e7:89:08:12:b9:c9: 2f:09:4e:c9:f4:e3:b9:f5:a7:d8:e4:6b:4f:f4:3c: 03:83:f9:f1:95:fd:cd:96:2a:b8:e4:9a:49:d6:63: 07:8d:93:c0:38:1a:dc:2e:a7:e7:33:60:85:4a:9d: 8f:2a:a4:79:32:68:c3:e7:18:a5:2f:0b:98:ef:db: cd:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:5E:D9:C8:7F:D4:5B:50:40:01:F6:13:C0:20:B7:72:BC:41:5F:BE X509v3 Authority Key Identifier: keyid:36:D7:7E:92:43:AB:BA:2F:D5:49:6A:29:18:30:B7:D3:8B:0B:CB:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/Ntd-kkOrui_VSWopGDC304sLy8Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ntd-kkOrui_VSWopGDC304sLy8Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91452AC/A48D5966BB3E11EAA29EE321C4F9AE02/A58B9338AD4A11EBA6B48687C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.43.162.0/24 202.43.239.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:55:fa:fa:14:be:c6:25:6e:04:d3:ae:0a:d5:25:2c:f6:ec: ad:04:65:71:2c:94:e0:8d:40:06:22:45:82:80:18:48:31:4e: a2:65:0b:c9:ef:fb:63:1a:4a:13:b6:c2:09:94:f6:10:33:a4: f1:74:4e:e0:c2:40:ac:16:f9:d2:31:5c:d9:9e:d7:c8:12:02: 55:bd:77:6c:55:48:75:e9:75:21:f6:08:09:cd:d8:09:cf:b2: c2:ee:c2:e7:90:c6:e4:bb:32:ac:90:1d:b3:e4:e2:2e:ef:b0: 4c:af:e6:a3:c9:d8:00:be:c1:be:c3:cd:14:aa:40:9e:0b:ab: 33:5c:24:4b:d1:30:4f:7b:4a:25:f9:45:dd:ed:b3:49:3c:b9: e2:ae:b9:a5:81:68:4e:6e:0b:a8:08:0d:fd:09:2a:d2:23:d4: 6e:04:66:67:9e:5f:c1:77:3b:04:a6:d2:80:3a:34:90:b1:ab: 3c:2c:7d:22:43:cb:00:29:19:aa:9d:b1:21:ed:70:a2:07:26: e7:fe:00:cd:f5:e9:5e:e0:81:58:b3:6d:25:6c:0d:17:e8:60: 62:84:32:bd:0c:b1:5e:9f:5f:1d:27:95:2a:82:db:08:62:b4: d4:c0:31:5f:cc:c2:49:1d:8a:4d:04:1e:26:50:8c:79:7e:02: 58:32:2d:ec -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCGAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDUyQUMxMTAvBgNVBAUTKDM2RDc3RTkyNDNBQkJBMkZENTQ5NkEyOTE4MzBCN0Qz OEIwQkNCQzQwHhcNMjQxMTA2MjAzOTQyWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJiZDQwZS1iYzA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8V4Mwt0868stfxA7i089+c1mbY/dBfX5A1GdvppsCFa6ibYFWJoe9tNkkZAN T3cYhlz6SfNtTgpEl41XngevNY+JToaZrNhRbfS7KuuO7K0cJ6BeHHMugAUBt91k ECkQjrMP3nywtm1l2Ff/+Xg7MfuFos52JmoKJh26AAN4b4V+PRGT5vQxKiAhMAFC Seak7gZwAMwfA3BZqUQ0cpWttr6km8vHbXAJRL3Lo90lx/Mr3d9+telAcYMfBzrn iQgSuckvCU7J9OO59afY5GtP9DwDg/nxlf3Nliq45JpJ1mMHjZPAOBrcLqfnM2CF Sp2PKqR5MmjD5xilLwuY79vNPwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBJe2ch/ 1FtQQAH2E8Agt3K8QV++MB8GA1UdIwQYMBaAFDbXfpJDq7ov1UlqKRgwt9OLC8vE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTJBQy9BNDhENTk2NkJC M0UxMUVBQTI5RUUzMjFDNEY5QUUwMi9OdGQta2tPcnVpX1ZTV29wR0RDMzA0c0x5 OFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL050ZC1ra09ydWlfVlNXb3BHREMzMDRzTHk4US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDUyQUMvQTQ4RDU5NjZCQjNFMTFFQUEyOUVFMzIxQzRGOUFFMDIvQTU4QjkzMzhB RDRBMTFFQkE2QjQ4Njg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnK6IDBADKK+8wDQYJKoZIhvcNAQELBQADggEBAExV+voU vsYlbgTTrgrVJSz27K0EZXEslOCNQAYiRYKAGEgxTqJlC8nv+2MaShO2wgmU9hAz pPF0TuDCQKwW+dIxXNme18gSAlW9d2xVSHXpdSH2CAnN2AnPssLuwueQxuS7MqyQ HbPk4i7vsEyv5qPJ2AC+wb7DzRSqQJ4LqzNcJEvRME97SiX5Rd3ts0k8ueKuuaWB aE5uC6gIDf0JKtIj1G4EZmeeX8F3OwSm0oA6NJCxqzwsfSJDywApGaqdsSHtcKIH Juf+AM316V7ggVizbSVsDRfoYGKEMr0MsV6fXx0nlSqC2whitNTAMV/Mwkkdik0E HiZQjHl+AlgyLew= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:07 2024 by rpki-client on console-fra.rpki-client.org