$ rpki-client -vvf rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/E747402C940211EFAAB77C3DC4F9AE02.roa File: E747402C940211EFAAB77C3DC4F9AE02.roa (raw, json) Hash identifier: V4kNzC9BCFB4bEAtUd+qwvHLEbfnpMX9a/DaKQbhUdI= Subject key identifier: 6D:5E:D6:F0:AB:61:12:1D:14:36:5B:2E:B3:B6:57:AA:A7:DA:05:E6 Certificate issuer: /CN=A91688D4/serialNumber=9C8AE3DC7B05B385396790CA7323D3A0906FED82 Certificate serial: 045A Authority key identifier: 9C:8A:E3:DC:7B:05:B3:85:39:67:90:CA:73:23:D3:A0:90:6F:ED:82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIrj3HsFs4U5Z5DKcyPToJBv7YI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/E747402C940211EFAAB77C3DC4F9AE02.roa Signing time: Sun 27 Oct 2024 01:29:27 +0000 ROA not before: Sun 27 Oct 2024 01:29:26 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 151106 IP address blocks: 103.73.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/nIrj3HsFs4U5Z5DKcyPToJBv7YI.crl rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/nIrj3HsFs4U5Z5DKcyPToJBv7YI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIrj3HsFs4U5Z5DKcyPToJBv7YI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 23:34:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1114 (0x45a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91688D4/serialNumber=9C8AE3DC7B05B385396790CA7323D3A0906FED82 Validity Not Before: Oct 27 01:29:26 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=671d9776-bc85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a5:e0:47:bf:b2:d0:6e:94:e7:ed:f2:1a:f7: 45:36:c4:85:44:ec:47:0a:bd:7f:8b:42:cc:eb:a7: 94:19:cb:74:3d:96:1f:8e:be:b9:69:6c:d3:50:f4: 15:ce:3f:38:10:9a:1f:74:3d:4f:3e:be:e4:e8:81: 73:d7:d4:7c:89:1d:38:ce:3d:03:1c:7d:b5:54:28: cb:de:1f:09:65:a1:35:c1:d1:fd:3e:5b:bf:5f:11: 09:b3:b5:ec:93:0f:01:c5:f7:0f:46:47:45:10:a9: ae:99:7c:ed:d7:7f:87:0e:e6:6f:d5:3a:e2:b9:b4: 54:ae:b5:f0:c0:66:40:00:fe:d4:99:aa:05:d3:32: d1:eb:20:72:75:ba:15:a2:cd:1c:26:fa:70:47:2d: e2:09:3b:ee:79:4f:a0:f4:6a:ab:d9:b5:87:3e:98: 85:31:e1:be:14:3d:66:a9:0a:c7:ab:00:e1:de:e8: 48:07:09:80:b4:35:15:98:f0:f5:33:10:7b:72:fd: ab:7f:06:a5:d2:be:11:45:6a:33:a5:36:e0:07:fb: 19:42:f9:8c:52:43:74:2a:36:9b:30:57:23:0e:d8: 99:60:b7:cc:69:7e:a6:b2:3a:80:c1:2b:d6:0a:d8: d4:fa:6b:82:61:aa:38:7e:6b:57:d2:4f:e1:ea:f8: 38:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:5E:D6:F0:AB:61:12:1D:14:36:5B:2E:B3:B6:57:AA:A7:DA:05:E6 X509v3 Authority Key Identifier: keyid:9C:8A:E3:DC:7B:05:B3:85:39:67:90:CA:73:23:D3:A0:90:6F:ED:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/nIrj3HsFs4U5Z5DKcyPToJBv7YI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nIrj3HsFs4U5Z5DKcyPToJBv7YI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91688D4/2F58E4722E5011ECA04B6C25C4F9AE02/E747402C940211EFAAB77C3DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.73.221.0/24 Signature Algorithm: sha256WithRSAEncryption 58:38:74:fa:24:4e:f8:0c:58:76:29:41:4b:27:df:33:26:7c: 6b:d2:98:fd:a5:25:07:01:bd:51:15:ff:a9:b4:bc:c5:9a:4c: 2d:1b:ae:24:fe:ea:ab:35:a3:3b:c3:b7:6a:80:98:c8:54:f1: 3f:46:97:e3:6e:9c:e7:90:27:95:78:1e:2c:00:21:7e:8a:e1: 23:9f:bd:7e:8c:20:01:a6:ea:47:34:3d:8f:1e:49:62:ca:2d: b9:7c:60:bd:b3:1a:9c:44:4f:8e:9b:c9:c2:f4:8e:cf:5a:b4: 08:7b:f0:a1:ca:d7:39:63:be:d3:3d:7f:c0:b2:5c:d7:e6:73: c9:fb:59:d4:2b:03:37:2f:f6:4a:1c:5f:37:f9:94:93:fb:48: f0:61:2a:58:88:02:e9:85:f3:b3:6f:fb:53:64:35:2b:59:99: 57:7b:14:bf:04:96:8a:1c:99:0c:e4:51:1e:af:03:08:22:30: 5d:cc:ea:08:c5:b4:78:c7:8f:6d:25:2c:d1:15:fd:3d:a9:69: 13:b2:35:95:9c:2a:7a:7a:82:e1:5e:27:e0:f6:95:11:c4:e1: 1a:ba:8b:b3:1f:20:50:29:d0:1b:0b:e8:28:32:e9:64:27:76: 4e:5d:55:20:be:84:b7:f1:9c:b7:37:f8:34:72:7e:23:9e:f9: 4a:a5:d8:42 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBFowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg4RDQxMTAvBgNVBAUTKDlDOEFFM0RDN0IwNUIzODUzOTY3OTBDQTczMjNEM0Ew OTA2RkVEODIwHhcNMjQxMDI3MDEyOTI2WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFkOTc3Ni1iYzg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsKXgR7+y0G6U5+3yGvdFNsSFROxHCr1/i0LM66eUGct0PZYfjr65aWzTUPQV zj84EJofdD1PPr7k6IFz19R8iR04zj0DHH21VCjL3h8JZaE1wdH9Plu/XxEJs7Xs kw8BxfcPRkdFEKmumXzt13+HDuZv1TriubRUrrXwwGZAAP7UmaoF0zLR6yBydboV os0cJvpwRy3iCTvueU+g9Gqr2bWHPpiFMeG+FD1mqQrHqwDh3uhIBwmAtDUVmPD1 MxB7cv2rfwal0r4RRWozpTbgB/sZQvmMUkN0KjabMFcjDtiZYLfMaX6msjqAwSvW CtjU+muCYao4fmtX0k/h6vg4lwIDAQABo4IClTCCApEwHQYDVR0OBBYEFG1e1vCr YRIdFDZbLrO2V6qn2gXmMB8GA1UdIwQYMBaAFJyK49x7BbOFOWeQynMj06CQb+2C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODhENC8yRjU4RTQ3MjJF NTAxMUVDQTA0QjZDMjVDNEY5QUUwMi9uSXJqM0hzRnM0VTVaNURLY3lQVG9KQnY3 WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25JcmozSHNGczRVNVo1REtjeVBUb0pCdjdZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njg4RDQvMkY1OEU0NzIyRTUwMTFFQ0EwNEI2QzI1QzRGOUFFMDIvRTc0NzQwMkM5 NDAyMTFFRkFBQjc3QzNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnSd0wDQYJKoZIhvcNAQELBQADggEBAFg4dPokTvgMWHYp QUsn3zMmfGvSmP2lJQcBvVEV/6m0vMWaTC0briT+6qs1ozvDt2qAmMhU8T9Gl+Nu nOeQJ5V4HiwAIX6K4SOfvX6MIAGm6kc0PY8eSWLKLbl8YL2zGpxET46bycL0js9a tAh78KHK1zljvtM9f8CyXNfmc8n7WdQrAzcv9kocXzf5lJP7SPBhKliIAumF87Nv +1NkNStZmVd7FL8EloocmQzkUR6vAwgiMF3M6gjFtHjHj20lLNEV/T2paROyNZWc Knp6guFeJ+D2lRHE4Rq6i7MfIFAp0BsL6Cgy6WQndk5dVSC+hLfxnLc3+DRyfiOe +Uql2EI= -----END CERTIFICATE-----Generated at Mon Nov 25 01:15:28 2024 by rpki-client on console-fra.rpki-client.org