$ rpki-client -vvf rpki.apnic.net/member_repository/A916A39E/D64481F8EE4111EDB9545A16C4F9AE02/AF01BB42EE4B11EDA0FDF350C4F9AE02.roa File: AF01BB42EE4B11EDA0FDF350C4F9AE02.roa (raw, json) Hash identifier: XG0ognbrHuDFVvw75BGHMdtpiHu/beUvd7TsChbHkCg= Subject key identifier: F3:81:AF:15:34:42:F6:3B:38:9F:AF:2F:D3:6D:4E:63:F3:AC:D5:EB Certificate issuer: /CN=A916A39E/serialNumber=724D84100B2599931903869AB05220776C8BAC42 Certificate serial: 010B Authority key identifier: 72:4D:84:10:0B:25:99:93:19:03:86:9A:B0:52:20:77:6C:8B:AC:42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck2EEAslmZMZA4aasFIgd2yLrEI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A39E/D64481F8EE4111EDB9545A16C4F9AE02/AF01BB42EE4B11EDA0FDF350C4F9AE02.roa Signing time: Fri 27 Sep 2024 03:57:41 +0000 ROA not before: Fri 27 Sep 2024 03:57:41 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 132685 IP address blocks: 103.73.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A39E/D64481F8EE4111EDB9545A16C4F9AE02/ck2EEAslmZMZA4aasFIgd2yLrEI.crl rsync://rpki.apnic.net/member_repository/A916A39E/D64481F8EE4111EDB9545A16C4F9AE02/ck2EEAslmZMZA4aasFIgd2yLrEI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck2EEAslmZMZA4aasFIgd2yLrEI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 267 (0x10b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A39E/serialNumber=724D84100B2599931903869AB05220776C8BAC42 Validity Not Before: Sep 27 03:57:41 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f62d35-588f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d0:ad:c7:bb:d6:45:f4:b7:f0:17:9a:26:0f: 92:d9:5b:ea:26:98:05:a2:b1:d6:f3:76:bc:9b:57: f7:b6:27:d8:fa:f1:25:7c:36:16:92:00:d5:61:2b: 41:ef:e9:87:4c:06:9c:86:7c:87:0c:3d:7a:66:93: 1b:36:fe:d9:dc:38:52:a7:c5:eb:6d:39:58:55:c4: c9:9e:f2:2f:51:7c:03:ec:34:03:e9:54:80:25:11: db:4e:23:d7:9e:ac:48:13:4f:c7:95:0e:65:b4:b0: c5:3d:7e:99:8d:ae:95:97:14:e5:12:2b:24:8c:67: 73:2f:47:d8:12:b3:33:08:77:a8:aa:b0:c1:40:26: fd:60:3a:3b:31:c6:63:29:db:41:7c:a9:6f:4b:df: f8:92:39:56:a3:4b:2e:b7:45:30:f0:a9:42:47:16: 0b:fb:23:dd:e6:06:2a:be:09:9d:40:a3:26:65:ae: 24:92:a6:d5:fc:22:d3:9b:45:fd:ec:c2:d2:ad:db: 46:6d:32:2c:2d:01:51:56:36:8e:4a:64:5f:75:97: 53:94:41:af:a9:0b:50:5c:58:c6:bf:1b:03:ea:b6: d5:ba:3e:9d:e2:98:a9:7c:50:32:cd:26:0a:1b:e3: 5c:04:21:9d:dd:99:a3:3f:a2:f0:73:fe:07:7c:e1: bf:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:81:AF:15:34:42:F6:3B:38:9F:AF:2F:D3:6D:4E:63:F3:AC:D5:EB X509v3 Authority Key Identifier: keyid:72:4D:84:10:0B:25:99:93:19:03:86:9A:B0:52:20:77:6C:8B:AC:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A39E/D64481F8EE4111EDB9545A16C4F9AE02/ck2EEAslmZMZA4aasFIgd2yLrEI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck2EEAslmZMZA4aasFIgd2yLrEI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A39E/D64481F8EE4111EDB9545A16C4F9AE02/AF01BB42EE4B11EDA0FDF350C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.73.195.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:a4:d6:c8:1e:d7:b2:46:c5:88:d7:5a:49:d0:7e:1c:e3:9b: c3:7b:f5:03:6a:68:09:30:5d:1c:2f:1f:5a:cf:2c:0b:dd:ea: c7:c5:f7:54:c7:01:43:4e:e1:18:40:a5:aa:df:6a:81:80:c8: e6:62:9c:e7:92:9c:c2:af:25:55:f8:4a:ff:1b:aa:4e:97:6d: b2:29:87:8b:eb:96:96:6c:ad:b5:c7:bc:11:8f:4a:81:ed:c9: 27:89:79:c8:d6:26:5b:1c:e8:9c:90:59:75:ad:54:be:35:ad: 27:83:de:e4:08:e4:b4:50:01:b6:4b:dd:fc:a3:71:fb:d0:cb: 0f:cc:7d:6d:3e:a8:ec:1a:c5:88:c5:83:42:79:b3:eb:1e:ac: 31:28:d1:84:c9:b0:43:1a:96:a0:70:e4:e4:8e:70:0c:38:72: a2:1d:67:58:39:12:96:e7:ef:7f:3c:fc:5e:4b:02:4b:83:c3: e6:fb:38:42:1f:07:b9:f2:33:3e:4c:c9:d4:31:ff:ec:cf:7e: 12:49:90:19:8f:b3:8a:a2:dd:76:f7:72:42:85:44:82:5b:18: b7:67:0e:39:ae:d2:97:e9:b4:68:3a:56:bb:02:10:4c:5e:96: f3:4d:a7:fe:12:40:fe:e0:48:47:56:e1:d5:3a:a0:1d:94:e2: f6:c1:15:6d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzOUUxMTAvBgNVBAUTKDcyNEQ4NDEwMEIyNTk5OTMxOTAzODY5QUIwNTIyMDc3 NkM4QkFDNDIwHhcNMjQwOTI3MDM1NzQxWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmY2MmQzNS01ODhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArNCtx7vWRfS38BeaJg+S2VvqJpgForHW83a8m1f3tifY+vElfDYWkgDVYStB 7+mHTAachnyHDD16ZpMbNv7Z3DhSp8XrbTlYVcTJnvIvUXwD7DQD6VSAJRHbTiPX nqxIE0/HlQ5ltLDFPX6Zja6VlxTlEiskjGdzL0fYErMzCHeoqrDBQCb9YDo7McZj KdtBfKlvS9/4kjlWo0sut0Uw8KlCRxYL+yPd5gYqvgmdQKMmZa4kkqbV/CLTm0X9 7MLSrdtGbTIsLQFRVjaOSmRfdZdTlEGvqQtQXFjGvxsD6rbVuj6d4pipfFAyzSYK G+NcBCGd3ZmjP6Lwc/4HfOG/pQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPOBrxU0 QvY7OJ+vL9NtTmPzrNXrMB8GA1UdIwQYMBaAFHJNhBALJZmTGQOGmrBSIHdsi6xC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTM5RS9ENjQ0ODFGOEVF NDExMUVEQjk1NDVBMTZDNEY5QUUwMi9jazJFRUFzbG1aTVpBNGFhc0ZJZ2QyeUxy RUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NrMkVFQXNsbVpNWkE0YWFzRklnZDJ5THJFSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkEzOUUvRDY0NDgxRjhFRTQxMTFFREI5NTQ1QTE2QzRGOUFFMDIvQUYwMUJCNDJF RTRCMTFFREEwRkRGMzUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnScMwDQYJKoZIhvcNAQELBQADggEBAJuk1sge17JGxYjX WknQfhzjm8N79QNqaAkwXRwvH1rPLAvd6sfF91THAUNO4RhAparfaoGAyOZinOeS nMKvJVX4Sv8bqk6XbbIph4vrlpZsrbXHvBGPSoHtySeJecjWJlsc6JyQWXWtVL41 rSeD3uQI5LRQAbZL3fyjcfvQyw/MfW0+qOwaxYjFg0J5s+serDEo0YTJsEMalqBw 5OSOcAw4cqIdZ1g5Epbn7388/F5LAkuDw+b7OEIfB7nyMz5MydQx/+zPfhJJkBmP s4qi3Xb3ckKFRIJbGLdnDjmu0pfptGg6VrsCEExelvNNp/4SQP7gSEdW4dU6oB2U 4vbBFW0= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:50 2024 by rpki-client on console-fra.rpki-client.org