$ rpki-client -vvf rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/B59E671A5F9911EE8FA1D64AC4F9AE02.roa File: B59E671A5F9911EE8FA1D64AC4F9AE02.roa (raw, json) Hash identifier: Qc+nYdvwH1914ikzLOp7YV49vDPfD537XTFdFqd0rqw= Subject key identifier: CB:92:6E:7F:78:13:D3:F1:E2:6D:A4:25:5D:B0:E4:0D:D4:07:D2:3E Certificate issuer: /CN=A91462B5/serialNumber=6483198A5054D4AB7A0161CD6391FA6C14B00208 Certificate serial: 0298 Authority key identifier: 64:83:19:8A:50:54:D4:AB:7A:01:61:CD:63:91:FA:6C:14:B0:02:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/B59E671A5F9911EE8FA1D64AC4F9AE02.roa Signing time: Sat 11 May 2024 04:10:53 +0000 ROA not before: Sat 11 May 2024 04:10:53 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 64021 IP address blocks: 103.215.124.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.crl rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 664 (0x298) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91462B5/serialNumber=6483198A5054D4AB7A0161CD6391FA6C14B00208 Validity Not Before: May 11 04:10:53 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=663eefcd-8ea3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:e2:45:73:b0:65:53:e0:36:f4:ba:da:da:75: 11:3b:65:f1:ec:c1:f6:68:76:49:64:96:8c:20:04: 37:42:fc:49:2e:e9:e1:79:23:cf:08:3d:ba:c1:8e: 1f:c5:02:43:0d:59:6d:20:a7:e6:50:04:85:49:0e: ab:7a:6f:fb:a3:c7:85:89:8f:12:24:81:e5:dc:e1: 99:90:da:83:ed:a3:5c:0f:9d:3b:99:54:31:5b:03: 95:4c:a1:5c:1f:25:e6:ea:87:2c:fb:b3:0a:91:53: 67:ac:e8:6e:c8:70:d5:47:ab:36:b5:6f:3b:31:44: ba:e7:ae:23:77:91:11:00:4b:1a:18:45:e5:9c:8c: 4d:b8:c7:12:90:71:dc:53:f6:25:41:d5:79:db:87: 64:99:d8:f0:39:0a:c1:98:5d:57:24:6e:1d:5f:f2: 05:b4:29:ba:b0:0d:10:e9:a1:69:f6:a1:d9:b8:a4: 07:fd:f8:e5:67:96:16:4b:68:87:0f:7a:f3:f5:0f: d3:1c:1d:15:f4:cd:81:a0:44:02:27:9e:77:c5:56: 5d:0b:85:1b:d9:49:95:df:ce:6e:58:56:30:9a:d6: 87:c7:1b:13:e0:27:36:7e:23:40:be:10:14:5d:49: 7b:8e:7a:9e:3b:85:75:0b:4f:82:00:0d:fa:fd:22: a4:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:92:6E:7F:78:13:D3:F1:E2:6D:A4:25:5D:B0:E4:0D:D4:07:D2:3E X509v3 Authority Key Identifier: keyid:64:83:19:8A:50:54:D4:AB:7A:01:61:CD:63:91:FA:6C:14:B0:02:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/B59E671A5F9911EE8FA1D64AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.215.124.0/24 Signature Algorithm: sha256WithRSAEncryption 30:b6:da:5c:bd:0a:f6:75:27:10:78:6d:e5:fd:42:c5:c6:7c: 92:d5:91:e1:46:aa:f6:77:6c:6f:c1:db:69:79:93:ea:6c:9d: 0a:f7:36:cd:e5:76:1c:b1:07:af:8b:6f:2d:d0:a7:d6:1a:7d: 98:89:d6:ed:fa:0a:77:92:3e:bd:d3:23:9c:e5:54:2b:46:31: 26:c2:b5:56:65:9c:de:c0:63:8b:88:88:05:b2:34:fe:89:a0: 40:e0:d3:41:b3:7d:01:9b:32:95:6d:5b:26:c7:d7:6f:b3:20: 7c:b1:e4:d8:15:d1:28:98:6a:d7:99:be:5b:2f:4f:f8:61:8e: ae:8f:a0:aa:85:9a:52:56:78:45:6c:f7:e9:84:e1:5d:f6:65: 64:73:c2:c5:94:b3:d2:a8:3d:cd:6e:99:da:96:bd:9a:03:2a: 8d:05:a5:3d:e8:a5:d8:1d:02:94:66:26:f2:5a:60:1e:4e:80: 1e:38:72:70:b4:65:83:ce:50:65:3e:a1:2e:56:f3:d8:30:90: b3:ab:ad:a2:e7:fe:7d:01:93:12:fa:1c:b6:a1:51:45:84:49: 23:1a:91:50:65:8d:ee:8c:d8:12:49:5a:b0:07:40:e2:de:0d: 61:7f:e8:1e:76:36:fb:59:1c:bd:b7:b3:cf:7e:62:48:34:59: 0a:2c:40:3d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICApgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDYyQjUxMTAvBgNVBAUTKDY0ODMxOThBNTA1NEQ0QUI3QTAxNjFDRDYzOTFGQTZD MTRCMDAyMDgwHhcNMjQwNTExMDQxMDUzWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjNlZWZjZC04ZWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz+JFc7BlU+A29Lra2nURO2Xx7MH2aHZJZJaMIAQ3QvxJLunheSPPCD26wY4f xQJDDVltIKfmUASFSQ6rem/7o8eFiY8SJIHl3OGZkNqD7aNcD507mVQxWwOVTKFc HyXm6ocs+7MKkVNnrOhuyHDVR6s2tW87MUS6564jd5ERAEsaGEXlnIxNuMcSkHHc U/YlQdV524dkmdjwOQrBmF1XJG4dX/IFtCm6sA0Q6aFp9qHZuKQH/fjlZ5YWS2iH D3rz9Q/THB0V9M2BoEQCJ553xVZdC4Ub2UmV385uWFYwmtaHxxsT4Cc2fiNAvhAU XUl7jnqeO4V1C0+CAA36/SKkSwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMuSbn94 E9Px4m2kJV2w5A3UB9I+MB8GA1UdIwQYMBaAFGSDGYpQVNSregFhzWOR+mwUsAII MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjJCNS82RDVGRUQ5MkND MkYxMUVDODU1MzgwMzdDNEY5QUUwMi9aSU1aaWxCVTFLdDZBV0hOWTVINmJCU3dB Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pJTVppbEJVMUt0NkFXSE5ZNUg2YkJTd0FnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDYyQjUvNkQ1RkVEOTJDQzJGMTFFQzg1NTM4MDM3QzRGOUFFMDIvQjU5RTY3MUE1 Rjk5MTFFRThGQTFENjRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn13wwDQYJKoZIhvcNAQELBQADggEBADC22ly9CvZ1JxB4 beX9QsXGfJLVkeFGqvZ3bG/B22l5k+psnQr3Ns3ldhyxB6+Lby3Qp9YafZiJ1u36 CneSPr3TI5zlVCtGMSbCtVZlnN7AY4uIiAWyNP6JoEDg00GzfQGbMpVtWybH12+z IHyx5NgV0SiYateZvlsvT/hhjq6PoKqFmlJWeEVs9+mE4V32ZWRzwsWUs9KoPc1u mdqWvZoDKo0FpT3opdgdApRmJvJaYB5OgB44cnC0ZYPOUGU+oS5W89gwkLOrraLn /n0BkxL6HLahUUWESSMakVBlje6M2BJJWrAHQOLeDWF/6B52NvtZHL23s89+Ykg0 WQosQD0= -----END CERTIFICATE-----Generated at Thu Nov 21 03:11:54 2024 by rpki-client on console-fra.rpki-client.org