$ rpki-client -vvf rpki.apnic.net/member_repository/A91789F9/FD806BA2CC1311EC827A2687C4F9AE02/40C76F3ACC1611EC80603209C4F9AE02.roa File: 40C76F3ACC1611EC80603209C4F9AE02.roa (raw, json) Hash identifier: funaLOdihXHnoiN/MAj0kYq33Ii2xz4Wv3dJLCj94AQ= Subject key identifier: E8:51:22:87:78:B8:B7:DA:5B:04:BF:99:F4:F6:6B:A0:FC:17:1E:D3 Certificate issuer: /CN=A91789F9/serialNumber=5BA8D05DC99A9310462C63C5D0269F5E885E489D Certificate serial: 02AC Authority key identifier: 5B:A8:D0:5D:C9:9A:93:10:46:2C:63:C5:D0:26:9F:5E:88:5E:48:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W6jQXcmakxBGLGPF0CafXoheSJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91789F9/FD806BA2CC1311EC827A2687C4F9AE02/40C76F3ACC1611EC80603209C4F9AE02.roa Signing time: Sat 05 Oct 2024 02:05:13 +0000 ROA not before: Sat 05 Oct 2024 02:05:13 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 38549 IP address blocks: 103.196.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91789F9/FD806BA2CC1311EC827A2687C4F9AE02/W6jQXcmakxBGLGPF0CafXoheSJ0.crl rsync://rpki.apnic.net/member_repository/A91789F9/FD806BA2CC1311EC827A2687C4F9AE02/W6jQXcmakxBGLGPF0CafXoheSJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W6jQXcmakxBGLGPF0CafXoheSJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 684 (0x2ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91789F9/serialNumber=5BA8D05DC99A9310462C63C5D0269F5E885E489D Validity Not Before: Oct 5 02:05:13 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67009ed9-bf4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:32:91:d8:3e:89:f1:e5:d4:a2:d1:a6:c0:b0: 35:40:09:4f:b3:3c:11:d7:20:53:d1:70:62:a1:f9: 8c:7a:6d:f5:dd:95:8d:83:9f:57:e3:22:e7:04:c8: 7b:f5:11:be:35:f9:c1:d6:09:88:b0:10:10:06:06: a6:29:be:8d:b2:93:e5:bb:f3:06:df:0a:0a:69:3c: f9:31:66:35:cc:18:a6:8d:41:c6:03:82:88:28:96: 65:1e:12:52:e9:e2:2d:69:c4:8b:b2:e8:2d:4a:0f: f5:7e:a7:e2:ee:e1:10:01:53:93:88:d8:9e:af:20: 8e:e5:53:94:4b:48:59:9b:9f:8d:19:53:e6:8b:fb: 75:b3:21:6e:ea:ce:1b:38:db:ac:4c:1e:74:a0:b8: 7b:2b:ec:ae:ff:0a:73:c5:c9:a2:06:12:01:64:fc: 61:ca:f4:2c:ca:82:b2:e7:8c:7e:7e:cd:f6:42:09: b5:2e:3e:32:d2:14:4a:09:60:5d:2d:13:d6:1f:f9: ef:f8:2d:c0:c4:b4:17:7c:af:77:16:2b:52:a8:2d: 7e:67:6e:50:12:37:90:5b:0c:51:4a:b2:5b:16:f4: 49:16:96:d1:75:af:98:ac:3a:63:a2:c0:cc:6d:dd: 16:d2:a5:03:b1:79:85:1d:44:d4:a0:ec:3f:d5:1d: 8b:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:51:22:87:78:B8:B7:DA:5B:04:BF:99:F4:F6:6B:A0:FC:17:1E:D3 X509v3 Authority Key Identifier: keyid:5B:A8:D0:5D:C9:9A:93:10:46:2C:63:C5:D0:26:9F:5E:88:5E:48:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91789F9/FD806BA2CC1311EC827A2687C4F9AE02/W6jQXcmakxBGLGPF0CafXoheSJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W6jQXcmakxBGLGPF0CafXoheSJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91789F9/FD806BA2CC1311EC827A2687C4F9AE02/40C76F3ACC1611EC80603209C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.196.68.0/24 Signature Algorithm: sha256WithRSAEncryption 34:dc:dd:d7:3e:a3:5b:6d:52:0e:20:30:b8:d3:69:8a:09:ec: 05:4f:98:13:e7:34:a9:9d:a4:2c:c7:b8:cb:42:f0:db:20:f4: db:eb:c8:c9:f6:f1:df:bb:c5:29:dc:c0:1c:c2:43:d4:50:b8: cc:cd:70:2e:d2:6a:3e:de:31:f9:22:3a:76:ba:e4:51:d1:36: fb:b1:bd:36:2e:45:d8:ac:60:2e:ff:69:fa:bc:f3:ef:83:ea: f3:93:a3:08:21:d5:4e:09:ce:2e:00:3b:cd:1f:59:76:ab:6b: e0:5c:8a:f0:2c:16:b9:05:28:b4:21:17:d4:60:94:9a:93:40: 5c:b6:8b:ed:47:89:cc:fc:51:d4:24:13:3f:8f:9d:88:d9:6d: 61:7a:4a:c2:1d:2c:65:2f:40:ad:9a:8f:4f:d2:2b:d2:92:25: c0:5f:56:55:06:c0:a8:c1:d7:fa:71:79:1d:bd:43:65:d2:48: 15:ab:32:1d:a7:4f:d4:6f:1d:4b:2f:bb:9e:22:a3:d4:ef:aa: 96:c2:2e:4c:ad:18:ef:54:c1:a1:87:25:88:50:53:65:7c:4a: 4c:e5:3c:f3:1a:d3:96:0b:f7:b3:5d:97:ce:57:25:ef:97:a1: dc:82:df:e1:ce:b4:50:59:bf:65:ad:85:c2:04:72:7b:30:63: 6b:06:41:94 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAqwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzg5RjkxMTAvBgNVBAUTKDVCQThEMDVEQzk5QTkzMTA0NjJDNjNDNUQwMjY5RjVF ODg1RTQ4OUQwHhcNMjQxMDA1MDIwNTEzWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzAwOWVkOS1iZjRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0DKR2D6J8eXUotGmwLA1QAlPszwR1yBT0XBiofmMem313ZWNg59X4yLnBMh7 9RG+NfnB1gmIsBAQBgamKb6NspPlu/MG3woKaTz5MWY1zBimjUHGA4KIKJZlHhJS 6eItacSLsugtSg/1fqfi7uEQAVOTiNieryCO5VOUS0hZm5+NGVPmi/t1syFu6s4b ONusTB50oLh7K+yu/wpzxcmiBhIBZPxhyvQsyoKy54x+fs32Qgm1Lj4y0hRKCWBd LRPWH/nv+C3AxLQXfK93FitSqC1+Z25QEjeQWwxRSrJbFvRJFpbRda+YrDpjosDM bd0W0qUDsXmFHUTUoOw/1R2LFwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOhRIod4 uLfaWwS/mfT2a6D8Fx7TMB8GA1UdIwQYMBaAFFuo0F3JmpMQRixjxdAmn16IXkid MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3ODlGOS9GRDgwNkJBMkND MTMxMUVDODI3QTI2ODdDNEY5QUUwMi9XNmpRWGNtYWt4QkdMR1BGMENhZlhvaGVT SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1c2alFYY21ha3hCR0xHUEYwQ2FmWG9oZVNKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Nzg5RjkvRkQ4MDZCQTJDQzEzMTFFQzgyN0EyNjg3QzRGOUFFMDIvNDBDNzZGM0FD QzE2MTFFQzgwNjAzMjA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnxEQwDQYJKoZIhvcNAQELBQADggEBADTc3dc+o1ttUg4g MLjTaYoJ7AVPmBPnNKmdpCzHuMtC8Nsg9NvryMn28d+7xSncwBzCQ9RQuMzNcC7S aj7eMfkiOna65FHRNvuxvTYuRdisYC7/afq88++D6vOTowgh1U4Jzi4AO80fWXar a+BcivAsFrkFKLQhF9RglJqTQFy2i+1Hicz8UdQkEz+PnYjZbWF6SsIdLGUvQK2a j0/SK9KSJcBfVlUGwKjB1/pxeR29Q2XSSBWrMh2nT9RvHUsvu54io9TvqpbCLkyt GO9UwaGHJYhQU2V8SkzlPPMa05YL97Ndl85XJe+XodyC3+HOtFBZv2WthcIEcnsw Y2sGQZQ= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:39 2024 by rpki-client on console-fra.rpki-client.org