$ rpki-client -vvf rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/9C3B0AB8911A11EFB0F2DB5DC4F9AE02.roa File: 9C3B0AB8911A11EFB0F2DB5DC4F9AE02.roa (raw, json) Hash identifier: 1ZwXIYT8WEQ8AXmik6kQ0iyXkhUrX8a9G8G1OnokxHI= Subject key identifier: 85:70:C5:28:99:DC:64:22:50:6C:AB:A5:41:E6:38:33:FB:32:09:4D Certificate issuer: /CN=A91688D4/serialNumber=9C8AE3DC7B05B385396790CA7323D3A0906FED82 Certificate serial: 0453 Authority key identifier: 9C:8A:E3:DC:7B:05:B3:85:39:67:90:CA:73:23:D3:A0:90:6F:ED:82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIrj3HsFs4U5Z5DKcyPToJBv7YI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/9C3B0AB8911A11EFB0F2DB5DC4F9AE02.roa Signing time: Wed 23 Oct 2024 08:41:35 +0000 ROA not before: Wed 23 Oct 2024 08:41:35 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 151704 IP address blocks: 103.73.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/nIrj3HsFs4U5Z5DKcyPToJBv7YI.crl rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/nIrj3HsFs4U5Z5DKcyPToJBv7YI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIrj3HsFs4U5Z5DKcyPToJBv7YI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1107 (0x453) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91688D4/serialNumber=9C8AE3DC7B05B385396790CA7323D3A0906FED82 Validity Not Before: Oct 23 08:41:35 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=6718b6bf-42e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:e3:5d:6f:e8:d8:ee:7f:98:77:27:4a:fb:19: 3d:f0:e4:17:56:fd:2d:86:65:af:c3:24:04:e6:b7: c5:32:96:43:f3:c9:cc:e1:b5:c2:61:02:37:0f:c4: 09:83:22:27:a3:d9:9f:a3:8b:bf:05:02:7b:a0:25: b3:88:fc:b4:15:49:af:f6:09:a7:19:aa:ba:85:c5: 0a:28:31:66:1f:c1:69:d7:b2:d5:44:d0:2a:36:2b: e3:cd:93:04:5c:7e:4b:11:29:0a:6c:58:f2:4b:d0: d9:2e:f4:85:57:c0:33:1a:2a:a0:0b:c1:06:b4:c9: 3d:86:39:78:b1:cb:6c:ab:fc:b7:31:12:ab:8f:ea: a4:ad:c4:5a:4d:d8:da:68:8b:f7:58:e9:3b:e5:7a: bc:d9:12:2b:f6:5a:44:4a:4c:4b:8b:10:83:9a:fe: 11:7e:99:0e:a2:93:1f:f7:93:fe:e5:15:e7:39:25: b1:9a:36:76:d1:50:3b:7c:90:48:45:73:52:f0:e1: 08:a3:9f:47:22:65:c5:b1:1c:bc:0f:e5:cf:a9:5a: 2d:f2:a3:cd:11:53:96:74:8c:23:b0:1b:55:e6:e5: fb:44:c6:7b:0b:b5:c0:cd:1e:d1:ea:7f:87:9b:e9: 52:c4:26:17:1f:86:d9:9c:d3:31:99:76:1a:b2:c2: 7d:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:70:C5:28:99:DC:64:22:50:6C:AB:A5:41:E6:38:33:FB:32:09:4D X509v3 Authority Key Identifier: keyid:9C:8A:E3:DC:7B:05:B3:85:39:67:90:CA:73:23:D3:A0:90:6F:ED:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/nIrj3HsFs4U5Z5DKcyPToJBv7YI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIrj3HsFs4U5Z5DKcyPToJBv7YI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/9C3B0AB8911A11EFB0F2DB5DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.73.223.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:41:0d:a5:e3:67:2a:0c:55:99:cf:c2:79:31:11:60:6c:c5: 4a:dc:60:0c:f5:21:5c:d4:57:2b:ec:6c:17:26:3b:98:72:93: cc:59:0e:8f:14:04:ab:ad:be:e8:73:1f:cf:28:55:d2:85:57: d6:4e:ff:e5:81:75:f8:08:72:5c:ab:f8:1b:e3:56:bc:ba:be: 5b:99:d4:1e:9d:62:f2:b9:a7:2f:14:3a:a8:ec:79:ab:56:2b: f3:e1:3f:6b:4f:e1:2c:e3:46:61:f4:96:a7:c2:6b:6c:b9:e1: bb:13:42:d6:ff:11:3f:c0:5c:8f:d1:e2:f7:c2:28:f6:e5:f9: db:66:e8:3c:5b:be:ae:17:6c:db:33:65:4a:51:4a:e5:98:92: c4:da:d1:3e:0a:3e:fc:98:1c:4a:32:d6:18:3c:68:3a:ec:db: 19:de:6b:9c:c2:bd:a8:23:de:18:c9:2e:0c:08:a3:d3:44:53: e0:0e:24:d5:4c:b5:ea:e3:be:98:3f:1b:42:db:30:4c:23:d2: f7:16:f8:8d:5c:f5:16:ee:63:a5:4f:1d:5c:35:95:09:71:3b: c8:90:da:47:31:0e:41:c7:05:48:6e:8e:58:9f:b4:b1:7e:8e: 74:89:fe:14:c7:c7:88:3b:0a:eb:29:09:d1:97:54:32:1e:63: e4:4e:e3:b8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBFMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg4RDQxMTAvBgNVBAUTKDlDOEFFM0RDN0IwNUIzODUzOTY3OTBDQTczMjNEM0Ew OTA2RkVEODIwHhcNMjQxMDIzMDg0MTM1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzE4YjZiZi00MmU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoONdb+jY7n+YdydK+xk98OQXVv0thmWvwyQE5rfFMpZD88nM4bXCYQI3D8QJ gyIno9mfo4u/BQJ7oCWziPy0FUmv9gmnGaq6hcUKKDFmH8Fp17LVRNAqNivjzZME XH5LESkKbFjyS9DZLvSFV8AzGiqgC8EGtMk9hjl4sctsq/y3MRKrj+qkrcRaTdja aIv3WOk75Xq82RIr9lpESkxLixCDmv4RfpkOopMf95P+5RXnOSWxmjZ20VA7fJBI RXNS8OEIo59HImXFsRy8D+XPqVot8qPNEVOWdIwjsBtV5uX7RMZ7C7XAzR7R6n+H m+lSxCYXH4bZnNMxmXYassJ9cwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIVwxSiZ 3GQiUGyrpUHmODP7MglNMB8GA1UdIwQYMBaAFJyK49x7BbOFOWeQynMj06CQb+2C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODhENC8yRjU4RTQ3MjJF NTAxMUVDQTA0QjZDMjVDNEY5QUUwMi9uSXJqM0hzRnM0VTVaNURLY3lQVG9KQnY3 WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25JcmozSHNGczRVNVo1REtjeVBUb0pCdjdZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njg4RDQvMkY1OEU0NzIyRTUwMTFFQ0EwNEI2QzI1QzRGOUFFMDIvOUMzQjBBQjg5 MTFBMTFFRkIwRjJEQjVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnSd8wDQYJKoZIhvcNAQELBQADggEBAExBDaXjZyoMVZnP wnkxEWBsxUrcYAz1IVzUVyvsbBcmO5hyk8xZDo8UBKutvuhzH88oVdKFV9ZO/+WB dfgIclyr+BvjVry6vluZ1B6dYvK5py8UOqjseatWK/PhP2tP4SzjRmH0lqfCa2y5 4bsTQtb/ET/AXI/R4vfCKPbl+dtm6Dxbvq4XbNszZUpRSuWYksTa0T4KPvyYHEoy 1hg8aDrs2xnea5zCvagj3hjJLgwIo9NEU+AOJNVMterjvpg/G0LbMEwj0vcW+I1c 9RbuY6VPHVw1lQlxO8iQ2kcxDkHHBUhujliftLF+jnSJ/hTHx4g7CuspCdGXVDIe Y+RO47g= -----END CERTIFICATE-----Generated at Thu Nov 21 01:31:54 2024 by rpki-client on console-fra.rpki-client.org