$ rpki-client -vvf rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/D0F245E0D76711EE99C72C29C4F9AE02.roa File: D0F245E0D76711EE99C72C29C4F9AE02.roa (raw, json) Hash identifier: JK0bPzT8yakMMRyYc7JiDFGO+FB67qkctv2hOGSnM1U= Subject key identifier: 22:EF:0E:31:4F:BE:62:6F:6F:84:61:B1:49:20:4B:E7:C1:A2:6B:33 Certificate issuer: /CN=A91650EA/serialNumber=4B25B14720F0444BB3D668F963584354F7FAC213 Certificate serial: 02 Authority key identifier: 4B:25:B1:47:20:F0:44:4B:B3:D6:68:F9:63:58:43:54:F7:FA:C2:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SyWxRyDwREuz1mj5Y1hDVPf6whM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/D0F245E0D76711EE99C72C29C4F9AE02.roa Signing time: Fri 01 Mar 2024 01:05:38 +0000 ROA not before: Fri 01 Mar 2024 01:05:38 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 149018 IP address blocks: 103.88.89.0/24 maxlen: 24 103.176.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/SyWxRyDwREuz1mj5Y1hDVPf6whM.crl rsync://rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/SyWxRyDwREuz1mj5Y1hDVPf6whM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SyWxRyDwREuz1mj5Y1hDVPf6whM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91650EA/serialNumber=4B25B14720F0444BB3D668F963584354F7FAC213 Validity Not Before: Mar 1 01:05:38 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65e129e2-e224 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ee:26:76:a0:3d:9a:bb:44:84:82:e8:39:77: ef:2d:a5:eb:5a:a2:5b:40:10:a5:0b:09:1c:5f:5b: 79:30:0a:49:b3:5b:53:24:23:64:a4:0c:cf:94:d6: f0:f6:3d:d3:d5:00:ad:1d:c8:64:08:a8:14:b3:8a: c0:ed:00:61:bb:1b:a3:07:78:65:4e:01:0e:42:2f: 9f:4a:a1:bd:c4:5a:d2:7e:70:56:fc:38:91:c0:da: 2d:92:cd:8d:99:a7:61:7d:67:ed:5c:a0:84:f8:79: ed:d3:9e:79:26:dd:86:97:25:54:28:ee:0d:eb:06: a4:e8:ed:d8:4b:52:8d:64:08:e3:6f:65:53:b2:13: f8:4f:06:72:b2:ba:5d:0d:ff:3d:bf:a2:84:b6:b5: 8d:ee:9a:62:2f:03:bd:82:b6:9e:af:7c:d4:ee:22: 2f:1b:af:ad:61:66:9d:71:8a:4a:0a:09:9c:a9:c8: d9:ce:a2:fe:fa:6f:ad:f9:36:e2:30:27:6c:33:8e: 69:36:6c:58:0d:1e:d0:cf:f3:30:cf:c1:92:e5:ce: 59:12:4c:79:a6:32:b7:d2:9b:87:d0:77:ef:59:05: d5:3d:b7:06:f2:a4:e6:79:7b:f7:34:17:ec:3b:9a: b1:54:c7:ff:ad:c7:09:d9:e2:ca:0a:6c:a2:c8:f1: 3e:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:EF:0E:31:4F:BE:62:6F:6F:84:61:B1:49:20:4B:E7:C1:A2:6B:33 X509v3 Authority Key Identifier: keyid:4B:25:B1:47:20:F0:44:4B:B3:D6:68:F9:63:58:43:54:F7:FA:C2:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/SyWxRyDwREuz1mj5Y1hDVPf6whM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SyWxRyDwREuz1mj5Y1hDVPf6whM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/D0F245E0D76711EE99C72C29C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.88.89.0/24 103.176.118.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:7f:ef:6d:27:ce:ec:a9:0a:e7:e7:7b:5b:a7:46:6d:a6:73: 1e:8c:e2:0b:2f:6c:f5:c1:66:a1:08:da:75:ea:ab:b9:4b:cb: 90:84:19:d7:9f:ff:8e:36:4b:2b:f5:d3:2b:c4:42:f3:f8:b4: af:8a:2e:06:8b:78:11:a1:a1:80:61:cd:94:23:e6:16:48:e2: e0:d8:cc:54:2e:45:e6:c5:6a:63:53:dc:80:8f:3f:c4:b6:81: 04:37:77:58:1e:65:a2:68:db:79:1b:18:df:ac:37:d0:c4:82: 72:6b:fd:87:b5:0e:5c:46:8b:67:04:e5:22:4d:83:1f:6a:65: 04:56:0a:6c:fd:73:35:e0:db:fb:5e:3e:f8:2b:f4:eb:f1:78: 89:6c:c0:dd:14:ca:b2:a0:22:bb:76:4e:0d:68:9a:6e:3a:66: ad:44:1e:0b:86:76:46:ec:6c:f5:cd:53:d5:58:04:31:aa:3c: e9:7e:98:9d:a7:2b:11:0b:ef:9b:aa:c8:2f:0a:b6:67:a9:50: 42:3f:53:aa:e6:c9:d0:04:38:76:d5:66:bf:99:e3:9e:fd:43: a5:6b:d2:63:c6:97:cf:fb:9c:12:d9:42:47:ff:59:ca:62:6b: 7b:3d:08:5b:88:08:47:c9:ce:9f:d2:ed:ca:60:6d:32:d6:05: fc:57:ea:7d -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NTBFQTExMC8GA1UEBRMoNEIyNUIxNDcyMEYwNDQ0QkIzRDY2OEY5NjM1ODQzNTRG N0ZBQzIxMzAeFw0yNDAzMDEwMTA1MzhaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZTEyOWUyLWUyMjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCm7iZ2oD2au0SEgug5d+8tpetaoltAEKULCRxfW3kwCkmzW1MkI2SkDM+U1vD2 PdPVAK0dyGQIqBSzisDtAGG7G6MHeGVOAQ5CL59Kob3EWtJ+cFb8OJHA2i2SzY2Z p2F9Z+1coIT4ee3Tnnkm3YaXJVQo7g3rBqTo7dhLUo1kCONvZVOyE/hPBnKyul0N /z2/ooS2tY3ummIvA72Ctp6vfNTuIi8br61hZp1xikoKCZypyNnOov76b635NuIw J2wzjmk2bFgNHtDP8zDPwZLlzlkSTHmmMrfSm4fQd+9ZBdU9twbypOZ5e/c0F+w7 mrFUx/+txwnZ4soKbKLI8T5VAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUIu8OMU++ Ym9vhGGxSSBL58GiazMwHwYDVR0jBBgwFoAUSyWxRyDwREuz1mj5Y1hDVPf6whMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1MEVBLzUyMUQxQUQ4RDc2 NzExRUVBRjIyQzA2NkM0RjlBRTAyL1N5V3hSeUR3UkV1ejFtajVZMWhEVlBmNndo TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvU3lXeFJ5RHdSRXV6MW1qNVkxaERWUGY2d2hNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTBFQS81MjFEMUFEOEQ3NjcxMUVFQUYyMkMwNjZDNEY5QUUwMi9EMEYyNDVFMEQ3 NjcxMUVFOTlDNzJDMjlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAGdYWQMEAGewdjANBgkqhkiG9w0BAQsFAAOCAQEAH3/vbSfO 7KkK5+d7W6dGbaZzHoziCy9s9cFmoQjadeqruUvLkIQZ15//jjZLK/XTK8RC8/i0 r4ouBot4EaGhgGHNlCPmFkji4NjMVC5F5sVqY1PcgI8/xLaBBDd3WB5lomjbeRsY 36w30MSCcmv9h7UOXEaLZwTlIk2DH2plBFYKbP1zNeDb+14++Cv06/F4iWzA3RTK sqAiu3ZODWiabjpmrUQeC4Z2Ruxs9c1T1VgEMao86X6YnacrEQvvm6rILwq2Z6lQ Qj9TqubJ0AQ4dtVmv5njnv1DpWvSY8aXz/ucEtlCR/9ZymJrez0IW4gIR8nOn9Lt ymBtMtYF/FfqfQ== -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:25 2024 by rpki-client on console-fra.rpki-client.org