$ rpki-client -vvf rpki.apnic.net/member_repository/A91693D7/1878EE0C553C11EB9BCADC70C4F9AE02/0F28A28037CA11EDB8E79257C4F9AE02.roa File: 0F28A28037CA11EDB8E79257C4F9AE02.roa (raw, json) Hash identifier: KlCucW2FiDPV58tEeR0AcW5El3RO9eFYo5EmLciz/tg= Subject key identifier: 76:73:F1:3D:23:B6:70:1B:03:49:21:5E:74:75:11:B0:09:6E:15:32 Certificate issuer: /CN=A91693D7/serialNumber=5F6051873B81506E2578AC58B3268F01DFF26ECC Certificate serial: 05CC Authority key identifier: 5F:60:51:87:3B:81:50:6E:25:78:AC:58:B3:26:8F:01:DF:F2:6E:CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2BRhzuBUG4leKxYsyaPAd_ybsw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91693D7/1878EE0C553C11EB9BCADC70C4F9AE02/0F28A28037CA11EDB8E79257C4F9AE02.roa Signing time: Sat 16 Dec 2023 23:31:40 +0000 ROA not before: Sat 16 Dec 2023 23:31:40 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 9381 IP address blocks: 103.30.100.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91693D7/1878EE0C553C11EB9BCADC70C4F9AE02/X2BRhzuBUG4leKxYsyaPAd_ybsw.crl rsync://rpki.apnic.net/member_repository/A91693D7/1878EE0C553C11EB9BCADC70C4F9AE02/X2BRhzuBUG4leKxYsyaPAd_ybsw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2BRhzuBUG4leKxYsyaPAd_ybsw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1484 (0x5cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91693D7/serialNumber=5F6051873B81506E2578AC58B3268F01DFF26ECC Validity Not Before: Dec 16 23:31:40 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=657e335c-b4e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:e3:d6:af:59:19:e2:6d:be:4d:41:f5:ed:39: 49:05:be:e6:b0:35:26:47:c5:ef:aa:d8:e0:5f:1b: 10:1e:56:63:da:f4:e8:54:00:9f:77:97:10:73:53: 09:6c:b5:02:a0:ef:47:f8:19:88:c4:69:67:86:f7: 87:96:c1:77:65:08:9f:a7:89:c4:c8:61:c9:0a:a0: e4:27:6b:12:f9:bb:23:8e:00:d0:a0:21:9d:7a:ef: 88:8e:ad:e7:7b:fa:b7:fa:9d:28:a7:a5:e1:8d:47: c3:9d:f3:ac:d9:bc:b0:ea:92:90:00:b6:62:4e:2f: f3:05:82:77:8f:1b:91:05:23:9e:18:61:54:4a:ea: 3c:fa:94:f7:16:45:8c:f3:17:06:8a:4e:52:9f:b1: 24:51:25:20:80:94:1f:6f:e3:7f:49:76:77:88:50: a5:ee:b7:18:79:2f:ec:28:2b:65:b5:fd:21:fe:b2: c1:3b:3c:84:74:96:79:de:58:a0:91:24:b0:e5:b1: b2:0c:27:45:12:b2:f7:44:2a:bc:62:20:6f:81:36: 34:1f:78:fb:5e:c4:51:8a:fe:b6:01:a2:d8:05:b5: 68:b3:46:47:07:93:f1:2a:ec:b0:e0:86:3b:63:2a: f7:50:81:17:ce:ee:e6:18:e5:f4:7d:0f:7d:d0:31: b3:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:73:F1:3D:23:B6:70:1B:03:49:21:5E:74:75:11:B0:09:6E:15:32 X509v3 Authority Key Identifier: keyid:5F:60:51:87:3B:81:50:6E:25:78:AC:58:B3:26:8F:01:DF:F2:6E:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91693D7/1878EE0C553C11EB9BCADC70C4F9AE02/X2BRhzuBUG4leKxYsyaPAd_ybsw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2BRhzuBUG4leKxYsyaPAd_ybsw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91693D7/1878EE0C553C11EB9BCADC70C4F9AE02/0F28A28037CA11EDB8E79257C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.30.100.0/22 Signature Algorithm: sha256WithRSAEncryption 6c:24:a2:d1:fc:06:47:c5:4e:f6:40:53:05:73:2f:a7:06:dc: 12:24:49:52:7e:93:a5:3e:31:4e:c1:af:94:50:23:a6:79:2d: 64:e8:7a:f0:44:9b:68:6b:82:44:05:31:b2:43:e2:d5:20:ba: ce:37:42:bb:b0:3b:d2:81:db:a8:93:64:2e:8e:77:2b:64:b9: 58:25:48:68:6b:09:7f:41:fd:af:8c:12:45:01:14:30:ca:ed: 4e:7a:f8:03:9a:fd:48:c9:6e:91:fe:4e:34:39:ed:4f:c9:2f: b9:b7:37:82:99:65:4f:ae:37:44:71:e5:d6:43:ed:33:8d:c1: 2d:f5:b5:0a:f2:3e:f9:e6:a5:07:67:4c:02:2c:38:bc:68:0b: 1b:5b:23:25:f2:9a:f5:50:2b:6c:bf:0f:d1:c7:32:3c:9d:27: 9d:21:42:de:d5:9f:b5:6d:12:58:a6:0d:d7:f4:5d:cf:62:9a: 7a:b5:77:dc:37:f3:bd:67:59:18:4c:f6:0b:cd:bd:bc:25:09: 4d:ac:c8:13:7f:df:d9:61:89:75:46:2a:80:71:43:cb:0a:bb: 36:91:82:c0:c9:49:e1:2d:fe:8d:ed:68:55:3a:a8:46:7d:9f: 9e:e8:ae:ee:46:3f:24:24:d4:93:70:7a:31:4b:c8:d0:e3:9b: 74:43:bf:0a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBcwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjkzRDcxMTAvBgNVBAUTKDVGNjA1MTg3M0I4MTUwNkUyNTc4QUM1OEIzMjY4RjAx REZGMjZFQ0MwHhcNMjMxMjE2MjMzMTQwWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTdlMzM1Yy1iNGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1OPWr1kZ4m2+TUH17TlJBb7msDUmR8XvqtjgXxsQHlZj2vToVACfd5cQc1MJ bLUCoO9H+BmIxGlnhveHlsF3ZQifp4nEyGHJCqDkJ2sS+bsjjgDQoCGdeu+Ijq3n e/q3+p0op6XhjUfDnfOs2byw6pKQALZiTi/zBYJ3jxuRBSOeGGFUSuo8+pT3FkWM 8xcGik5Sn7EkUSUggJQfb+N/SXZ3iFCl7rcYeS/sKCtltf0h/rLBOzyEdJZ53lig kSSw5bGyDCdFErL3RCq8YiBvgTY0H3j7XsRRiv62AaLYBbVos0ZHB5PxKuyw4IY7 Yyr3UIEXzu7mGOX0fQ990DGzTwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHZz8T0j tnAbA0khXnR1EbAJbhUyMB8GA1UdIwQYMBaAFF9gUYc7gVBuJXisWLMmjwHf8m7M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTNENy8xODc4RUUwQzU1 M0MxMUVCOUJDQURDNzBDNEY5QUUwMi9YMkJSaHp1QlVHNGxlS3hZc3lhUEFkX3li c3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gyQlJoenVCVUc0bGVLeFlzeWFQQWRfeWJzdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjkzRDcvMTg3OEVFMEM1NTNDMTFFQjlCQ0FEQzcwQzRGOUFFMDIvMEYyOEEyODAz N0NBMTFFREI4RTc5MjU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnHmQwDQYJKoZIhvcNAQELBQADggEBAGwkotH8BkfFTvZA UwVzL6cG3BIkSVJ+k6U+MU7Br5RQI6Z5LWToevBEm2hrgkQFMbJD4tUgus43Qruw O9KB26iTZC6OdytkuVglSGhrCX9B/a+MEkUBFDDK7U56+AOa/UjJbpH+TjQ57U/J L7m3N4KZZU+uN0Rx5dZD7TONwS31tQryPvnmpQdnTAIsOLxoCxtbIyXymvVQK2y/ D9HHMjydJ50hQt7Vn7VtElimDdf0Xc9imnq1d9w3871nWRhM9gvNvbwlCU2syBN/ 39lhiXVGKoBxQ8sKuzaRgsDJSeEt/o3taFU6qEZ9n57oru5GPyQk1JNwejFLyNDj m3RDvwo= -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:27 2024 by rpki-client on console-fra.rpki-client.org