$ rpki-client -vvf rpki.apnic.net/member_repository/A91789F9/FD806BA2CC1311EC827A2687C4F9AE02/41789B66CC1611EC80603209C4F9AE02.roa File: 41789B66CC1611EC80603209C4F9AE02.roa (raw, json) Hash identifier: aQPXBLkKXQRYudRraxZx4K6XPZ1KAKtrkSRU5qsrVkU= Subject key identifier: 79:90:EB:11:AA:A3:86:8E:46:8A:4E:64:04:46:20:0F:D1:44:32:E0 Certificate issuer: /CN=A91789F9/serialNumber=5BA8D05DC99A9310462C63C5D0269F5E885E489D Certificate serial: 02AD Authority key identifier: 5B:A8:D0:5D:C9:9A:93:10:46:2C:63:C5:D0:26:9F:5E:88:5E:48:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W6jQXcmakxBGLGPF0CafXoheSJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91789F9/FD806BA2CC1311EC827A2687C4F9AE02/41789B66CC1611EC80603209C4F9AE02.roa Signing time: Sat 05 Oct 2024 02:05:14 +0000 ROA not before: Sat 05 Oct 2024 02:05:14 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 58606 IP address blocks: 103.196.68.0/24 maxlen: 24 103.196.69.0/24 maxlen: 24 103.196.70.0/24 maxlen: 24 103.196.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91789F9/FD806BA2CC1311EC827A2687C4F9AE02/W6jQXcmakxBGLGPF0CafXoheSJ0.crl rsync://rpki.apnic.net/member_repository/A91789F9/FD806BA2CC1311EC827A2687C4F9AE02/W6jQXcmakxBGLGPF0CafXoheSJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W6jQXcmakxBGLGPF0CafXoheSJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 685 (0x2ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91789F9/serialNumber=5BA8D05DC99A9310462C63C5D0269F5E885E489D Validity Not Before: Oct 5 02:05:14 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67009eda-6b58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:a8:35:b9:fd:ea:22:0d:9b:ab:e5:df:a5:52: 4a:2f:08:5f:1a:ff:c0:64:31:39:e7:7a:f7:72:8a: cf:bd:1c:60:0e:ee:a7:a6:88:88:39:49:bc:52:c4: 28:9e:f6:7b:45:fe:78:04:96:9f:bb:7a:3b:bc:9e: f7:c3:cd:79:a7:ca:8c:bd:1b:4b:38:c7:c8:3f:43: d3:7b:2d:ae:08:6e:a0:87:86:37:ec:4c:84:17:4c: 72:e4:6f:b7:0b:e1:9d:c1:6c:d9:b0:79:30:84:8b: 2c:d9:80:5d:10:b7:78:5f:06:29:39:66:e9:29:da: 76:3f:4b:4c:8f:59:97:49:21:ca:ea:5b:2f:b8:6a: c6:77:ec:b8:b3:41:f4:28:f7:c9:9d:78:c7:3a:71: fc:d6:e7:77:01:c6:72:d7:5e:c6:31:55:1e:2f:d0: ee:69:fc:cb:db:3b:83:4e:d2:a3:f7:84:84:06:0f: 99:35:64:5e:84:58:b7:b8:ae:11:9c:44:cc:7b:61: 96:69:19:cc:65:69:fb:73:01:f4:d3:64:05:48:a9: a0:17:78:e7:6e:29:3d:9d:95:fa:68:23:ac:63:c6: 17:a3:37:39:18:1d:c3:d5:13:b3:5e:e1:66:6b:00: 09:e0:67:56:84:42:ac:2b:06:10:3d:fb:22:80:c1: d7:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:90:EB:11:AA:A3:86:8E:46:8A:4E:64:04:46:20:0F:D1:44:32:E0 X509v3 Authority Key Identifier: keyid:5B:A8:D0:5D:C9:9A:93:10:46:2C:63:C5:D0:26:9F:5E:88:5E:48:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91789F9/FD806BA2CC1311EC827A2687C4F9AE02/W6jQXcmakxBGLGPF0CafXoheSJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W6jQXcmakxBGLGPF0CafXoheSJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91789F9/FD806BA2CC1311EC827A2687C4F9AE02/41789B66CC1611EC80603209C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.196.68.0/22 Signature Algorithm: sha256WithRSAEncryption 2a:ca:ea:ab:c9:03:9b:c7:f6:8a:4e:3e:04:5b:e7:f1:97:d4: 46:88:11:44:66:c1:8f:24:09:51:d3:11:5a:a6:2d:a4:b8:5c: 49:38:cb:84:d0:ed:61:e7:51:19:95:9c:20:8d:26:64:5f:3d: 51:0b:3f:25:63:94:6c:08:f7:f2:97:0c:e3:a7:75:ac:78:d7: cf:a8:63:9a:1d:99:45:f8:8f:27:f2:7a:a3:e2:56:c1:e9:f8: 10:62:b0:aa:16:c2:02:30:a4:32:0d:62:8b:2e:95:50:68:67: 1f:b6:63:47:cb:3a:88:2b:95:54:b6:f3:f8:d9:52:50:f4:3d: 79:cc:a9:d8:aa:14:c5:b8:4d:8e:05:a3:38:7e:58:e8:50:99: cc:14:55:11:f1:14:27:73:c7:9d:d8:5f:25:c0:52:35:c5:80: 98:8d:22:d6:dd:d5:63:75:79:ad:05:0e:ea:de:1e:51:00:52: a0:26:c6:7c:a9:d4:75:38:bc:a3:95:97:e9:48:64:2a:5a:8c: 74:5e:9f:1f:68:e3:0b:81:4e:1e:71:33:8c:b0:d4:de:09:65: e2:5a:b3:b4:51:ba:b3:e4:88:74:d3:f9:8a:fe:f8:f7:91:44: 60:d8:e4:2e:19:34:5c:94:92:ad:9c:1a:cc:2c:e2:4c:4f:ac: 40:ea:f3:82 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAq0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzg5RjkxMTAvBgNVBAUTKDVCQThEMDVEQzk5QTkzMTA0NjJDNjNDNUQwMjY5RjVF ODg1RTQ4OUQwHhcNMjQxMDA1MDIwNTE0WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzAwOWVkYS02YjU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxqg1uf3qIg2bq+XfpVJKLwhfGv/AZDE553r3corPvRxgDu6npoiIOUm8UsQo nvZ7Rf54BJafu3o7vJ73w815p8qMvRtLOMfIP0PTey2uCG6gh4Y37EyEF0xy5G+3 C+GdwWzZsHkwhIss2YBdELd4XwYpOWbpKdp2P0tMj1mXSSHK6lsvuGrGd+y4s0H0 KPfJnXjHOnH81ud3AcZy117GMVUeL9DuafzL2zuDTtKj94SEBg+ZNWRehFi3uK4R nETMe2GWaRnMZWn7cwH002QFSKmgF3jnbik9nZX6aCOsY8YXozc5GB3D1ROzXuFm awAJ4GdWhEKsKwYQPfsigMHX7QIDAQABo4IClTCCApEwHQYDVR0OBBYEFHmQ6xGq o4aORopOZARGIA/RRDLgMB8GA1UdIwQYMBaAFFuo0F3JmpMQRixjxdAmn16IXkid MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3ODlGOS9GRDgwNkJBMkND MTMxMUVDODI3QTI2ODdDNEY5QUUwMi9XNmpRWGNtYWt4QkdMR1BGMENhZlhvaGVT SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1c2alFYY21ha3hCR0xHUEYwQ2FmWG9oZVNKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Nzg5RjkvRkQ4MDZCQTJDQzEzMTFFQzgyN0EyNjg3QzRGOUFFMDIvNDE3ODlCNjZD QzE2MTFFQzgwNjAzMjA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnxEQwDQYJKoZIhvcNAQELBQADggEBACrK6qvJA5vH9opO PgRb5/GX1EaIEURmwY8kCVHTEVqmLaS4XEk4y4TQ7WHnURmVnCCNJmRfPVELPyVj lGwI9/KXDOOndax418+oY5odmUX4jyfyeqPiVsHp+BBisKoWwgIwpDINYosulVBo Zx+2Y0fLOogrlVS28/jZUlD0PXnMqdiqFMW4TY4Fozh+WOhQmcwUVRHxFCdzx53Y XyXAUjXFgJiNItbd1WN1ea0FDureHlEAUqAmxnyp1HU4vKOVl+lIZCpajHRenx9o 4wuBTh5xM4yw1N4JZeJas7RRurPkiHTT+Yr++PeRRGDY5C4ZNFyUkq2cGsws4kxP rEDq84I= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:39 2024 by rpki-client on console-fra.rpki-client.org