$ rpki-client -vvf rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/75FC6CC2753711EC9091CB62C4F9AE02.roa File: 75FC6CC2753711EC9091CB62C4F9AE02.roa (raw, json) Hash identifier: GmAluyp1SMa2XHtQwLg3qsZiugrvAjRv/8qqPdWoOr4= Subject key identifier: 92:83:E9:BF:16:97:41:9E:A5:6D:C6:99:CD:25:DA:1E:91:AF:A6:14 Certificate issuer: /CN=A91716DE/serialNumber=4CC904E94C5C9B93A44A4F65EFB20A800D6DD7E7 Certificate serial: 0396 Authority key identifier: 4C:C9:04:E9:4C:5C:9B:93:A4:4A:4F:65:EF:B2:0A:80:0D:6D:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TMkE6Uxcm5OkSk9l77IKgA1t1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/75FC6CC2753711EC9091CB62C4F9AE02.roa Signing time: Fri 25 Oct 2024 01:14:37 +0000 ROA not before: Fri 25 Oct 2024 01:14:37 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 132742 IP address blocks: 43.243.44.0/22 maxlen: 24 103.38.156.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.crl rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TMkE6Uxcm5OkSk9l77IKgA1t1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 918 (0x396) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91716DE/serialNumber=4CC904E94C5C9B93A44A4F65EFB20A800D6DD7E7 Validity Not Before: Oct 25 01:14:37 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671af0fd-ec23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:ec:8c:e8:05:94:0f:aa:75:bb:74:44:e9:d8: 99:60:b7:c4:2c:b5:72:fe:17:12:1c:06:2a:8c:86: 71:aa:36:49:5f:eb:2c:7d:a7:c3:a1:ae:59:b5:83: b0:56:bf:66:9a:f7:dc:4d:88:c9:4d:94:93:a3:e0: eb:ee:56:03:b8:9f:87:6b:0d:79:ce:65:b4:19:bc: d1:46:66:c3:0a:dc:6a:bf:87:a0:58:96:1a:3e:6f: de:5c:c0:bc:00:2b:13:8a:c3:b4:8a:5a:63:5f:8b: 26:35:7e:d8:ef:82:3c:e8:44:71:b1:89:a3:13:7e: 1e:9d:b9:4d:f4:95:83:f2:fb:36:b8:12:50:f9:f9: 03:82:4e:af:8c:f5:fc:a1:de:35:cc:87:8d:1c:00: b3:f4:51:fb:ee:be:c3:f4:d7:76:5a:0e:5b:4f:c9: 88:bf:3f:03:12:bb:70:34:e2:fb:6b:90:ff:90:b3: 5b:55:80:39:eb:28:50:a2:67:91:b5:71:15:c2:6e: 10:2b:e9:e8:10:32:5c:36:88:48:05:9b:83:07:4f: e5:75:4c:86:8e:a6:2b:1c:6a:5c:d3:1c:d5:ba:da: 43:0f:35:50:4a:49:9e:5b:aa:6e:22:f8:94:3d:63: 5c:bf:7a:98:7e:b7:1f:61:c2:a1:f4:90:cd:d6:3b: 32:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:83:E9:BF:16:97:41:9E:A5:6D:C6:99:CD:25:DA:1E:91:AF:A6:14 X509v3 Authority Key Identifier: keyid:4C:C9:04:E9:4C:5C:9B:93:A4:4A:4F:65:EF:B2:0A:80:0D:6D:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TMkE6Uxcm5OkSk9l77IKgA1t1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/75FC6CC2753711EC9091CB62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.243.44.0/22 103.38.156.0/22 Signature Algorithm: sha256WithRSAEncryption 12:5b:1a:61:ea:2f:13:74:25:7e:b4:c3:a5:2a:f8:52:ad:93: 47:9a:cd:b3:e2:dd:ba:b7:b6:26:29:71:47:42:72:8a:96:50: 74:69:aa:cf:7c:d2:51:2e:65:50:ba:ac:4f:c8:f4:d7:6e:56: 53:74:3a:48:a1:9a:d7:a9:04:d8:8a:57:99:6b:26:6b:f5:e1: ff:3c:88:71:91:c8:1d:60:83:bb:91:8c:7b:ef:4f:48:03:58: cc:e0:31:1e:49:6c:ff:55:53:e9:07:07:4b:72:32:ac:1f:24: c2:ca:9e:12:e8:e7:d3:73:04:1f:dc:4b:af:50:13:aa:b0:fc: 28:06:bc:b2:c6:16:71:e0:79:08:ab:e4:fe:5e:c1:be:91:aa: 52:1b:c2:73:23:d3:c6:99:bc:f3:3d:bf:18:9d:f9:22:70:2b: 8d:83:50:e7:bd:c9:43:86:7f:39:6d:ce:c4:c1:09:4b:3d:c4: 6e:c9:fd:00:3a:2c:62:b1:71:58:40:21:d5:06:5b:45:15:da: 0a:13:01:b8:5a:45:fe:c7:bf:61:ae:8d:15:3c:55:0c:c4:10: 43:e3:d4:be:b8:4b:6f:68:c7:fb:77:09:e8:09:11:da:f4:7f: c5:30:37:a5:92:31:5c:87:42:8b:df:23:0a:3c:04:c7:11:b1: a8:ed:05:2c -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICA5YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE2REUxMTAvBgNVBAUTKDRDQzkwNEU5NEM1QzlCOTNBNDRBNEY2NUVGQjIwQTgw MEQ2REQ3RTcwHhcNMjQxMDI1MDExNDM3WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFhZjBmZC1lYzIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7OyM6AWUD6p1u3RE6diZYLfELLVy/hcSHAYqjIZxqjZJX+ssfafDoa5ZtYOw Vr9mmvfcTYjJTZSTo+Dr7lYDuJ+Haw15zmW0GbzRRmbDCtxqv4egWJYaPm/eXMC8 ACsTisO0ilpjX4smNX7Y74I86ERxsYmjE34enblN9JWD8vs2uBJQ+fkDgk6vjPX8 od41zIeNHACz9FH77r7D9Nd2Wg5bT8mIvz8DErtwNOL7a5D/kLNbVYA56yhQomeR tXEVwm4QK+noEDJcNohIBZuDB0/ldUyGjqYrHGpc0xzVutpDDzVQSkmeW6puIviU PWNcv3qYfrcfYcKh9JDN1jsyPwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJKD6b8W l0GepW3Gmc0l2h6Rr6YUMB8GA1UdIwQYMBaAFEzJBOlMXJuTpEpPZe+yCoANbdfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTZERS84RjM0MEREMDc1 MkQxMUVDOUM3NDhENTRDNEY5QUUwMi9UTWtFNlV4Y201T2tTazlsNzdJS2dBMXQx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RNa0U2VXhjbTVPa1NrOWw3N0lLZ0ExdDEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzE2REUvOEYzNDBERDA3NTJEMTFFQzlDNzQ4RDU0QzRGOUFFMDIvNzVGQzZDQzI3 NTM3MTFFQzkwOTFDQjYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr8ywDBAJnJpwwDQYJKoZIhvcNAQELBQADggEBABJbGmHq LxN0JX60w6Uq+FKtk0eazbPi3bq3tiYpcUdCcoqWUHRpqs980lEuZVC6rE/I9Ndu VlN0OkihmtepBNiKV5lrJmv14f88iHGRyB1gg7uRjHvvT0gDWMzgMR5JbP9VU+kH B0tyMqwfJMLKnhLo59NzBB/cS69QE6qw/CgGvLLGFnHgeQir5P5ewb6RqlIbwnMj 08aZvPM9vxid+SJwK42DUOe9yUOGfzltzsTBCUs9xG7J/QA6LGKxcVhAIdUGW0UV 2goTAbhaRf7Hv2GujRU8VQzEEEPj1L64S29ox/t3CegJEdr0f8UwN6WSMVyHQovf Iwo8BMcRsajtBSw= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:39 2024 by rpki-client on console-fra.rpki-client.org