$ rpki-client -vvf rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/C3AD861C82C211EBBB08B280C4F9AE02.roa File: C3AD861C82C211EBBB08B280C4F9AE02.roa (raw, json) Hash identifier: ExeORiGRCNK8jvuw56sySZxqK+GOSBQ3JY3+3QQDiXc= Subject key identifier: 72:BD:2F:F5:CA:21:7D:AF:AF:22:00:36:0E:03:76:61:02:1E:57:27 Certificate issuer: /CN=A91790C3/serialNumber=5487B63F44D691D435688AFE3C8AC27BFD9112AD Certificate serial: 060E Authority key identifier: 54:87:B6:3F:44:D6:91:D4:35:68:8A:FE:3C:8A:C2:7B:FD:91:12:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VIe2P0TWkdQ1aIr-PIrCe_2REq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/C3AD861C82C211EBBB08B280C4F9AE02.roa Signing time: Sat 02 Nov 2024 22:21:31 +0000 ROA not before: Sat 02 Nov 2024 22:21:31 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 137549 IP address blocks: 103.143.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/VIe2P0TWkdQ1aIr-PIrCe_2REq0.crl rsync://rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/VIe2P0TWkdQ1aIr-PIrCe_2REq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VIe2P0TWkdQ1aIr-PIrCe_2REq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1550 (0x60e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91790C3/serialNumber=5487B63F44D691D435688AFE3C8AC27BFD9112AD Validity Not Before: Nov 2 22:21:31 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6726a5eb-c41d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:27:e2:a9:ce:39:a3:04:29:ab:5b:11:6f:3c: 46:d0:2c:af:e2:05:17:c7:83:a9:81:82:36:2c:2a: 98:93:00:f4:73:63:58:d0:6e:55:77:dc:cd:ae:b3: 1e:ac:03:9a:ed:50:82:fa:9b:ca:05:7c:41:e3:8f: 31:a7:9b:11:85:bb:42:56:38:43:d4:72:38:45:7c: 5c:b1:c3:f3:8e:82:27:c7:4d:49:c5:15:8c:e7:c0: cf:42:ca:2f:a6:0e:37:b4:cb:67:67:50:88:1e:7b: f1:f9:a0:b4:0b:48:9e:79:bf:89:85:9a:0f:61:98: b4:6c:47:65:e7:5a:39:9e:3f:1a:e9:f2:79:f6:50: b1:bc:06:97:d5:95:bb:7b:6e:c0:06:ee:d1:e1:dc: d3:11:b7:f2:ca:34:82:c2:e4:c1:c9:5a:19:8a:b9: 2d:0a:92:87:4d:89:79:e1:57:d6:a4:4e:7f:34:9f: 85:8c:a1:b4:51:a4:d4:de:cd:79:34:dd:36:8e:a8: 89:df:f3:1f:c1:ff:d2:5c:6d:3f:ed:1c:87:1a:17: 0d:86:f3:46:8c:d2:21:80:ca:7d:2f:7c:4f:77:e3: 71:7c:7c:b0:43:a0:5d:81:46:f8:f2:47:46:87:24: 80:1d:66:5b:cb:5c:a4:ba:f5:37:b5:31:f3:a2:be: 43:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:BD:2F:F5:CA:21:7D:AF:AF:22:00:36:0E:03:76:61:02:1E:57:27 X509v3 Authority Key Identifier: keyid:54:87:B6:3F:44:D6:91:D4:35:68:8A:FE:3C:8A:C2:7B:FD:91:12:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/VIe2P0TWkdQ1aIr-PIrCe_2REq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VIe2P0TWkdQ1aIr-PIrCe_2REq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/C3AD861C82C211EBBB08B280C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.143.185.0/24 Signature Algorithm: sha256WithRSAEncryption 00:6b:c9:ba:9a:1e:8c:e3:c8:6e:72:e5:97:aa:39:bd:2c:78: c6:4f:c9:bf:44:f9:7e:ae:56:09:11:c7:ee:b5:ad:81:4f:2a: da:f4:8b:80:8a:04:b8:a6:e1:4a:96:2c:4e:64:f3:4c:bb:27: d2:20:1d:15:7f:15:e2:2d:25:34:a5:6b:46:35:cf:a4:1e:60: 9b:55:75:c9:24:0d:48:f9:42:a6:08:8d:72:d6:05:6d:f9:f2: ab:dc:f3:0f:c6:13:6d:f3:3b:fe:55:14:4e:01:e2:f9:f3:dc: 2f:31:68:1c:4d:32:57:6f:35:e0:fa:b9:91:4c:dc:79:aa:d0: aa:9e:46:04:dc:cf:17:ef:01:59:eb:e0:c7:8e:f2:8b:0e:b8: b1:2a:14:bc:d6:eb:5f:c7:20:b4:8f:a5:81:8f:b4:27:86:5c: 8a:ef:0d:b9:a0:33:fc:b4:61:c7:d0:3f:17:67:fb:35:7e:ce: 10:57:31:fd:2f:fe:86:f7:1e:26:09:4d:15:5e:15:c6:01:f1: ee:4b:32:59:ec:cf:34:cb:0c:11:3d:61:cd:bb:7d:a5:26:42: 1d:3b:72:fb:22:8a:93:00:4b:d4:df:a5:cc:6c:9d:35:b4:db: cf:4c:23:d0:d1:29:80:5c:19:9d:a8:0b:d1:96:94:15:fe:95: c2:3d:e9:b7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBg4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzkwQzMxMTAvBgNVBAUTKDU0ODdCNjNGNDRENjkxRDQzNTY4OEFGRTNDOEFDMjdC RkQ5MTEyQUQwHhcNMjQxMTAyMjIyMTMxWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2YTVlYi1jNDFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmCfiqc45owQpq1sRbzxG0Cyv4gUXx4OpgYI2LCqYkwD0c2NY0G5Vd9zNrrMe rAOa7VCC+pvKBXxB448xp5sRhbtCVjhD1HI4RXxcscPzjoInx01JxRWM58DPQsov pg43tMtnZ1CIHnvx+aC0C0ieeb+JhZoPYZi0bEdl51o5nj8a6fJ59lCxvAaX1ZW7 e27ABu7R4dzTEbfyyjSCwuTByVoZirktCpKHTYl54VfWpE5/NJ+FjKG0UaTU3s15 NN02jqiJ3/Mfwf/SXG0/7RyHGhcNhvNGjNIhgMp9L3xPd+NxfHywQ6BdgUb48kdG hySAHWZby1ykuvU3tTHzor5DJwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHK9L/XK IX2vryIANg4DdmECHlcnMB8GA1UdIwQYMBaAFFSHtj9E1pHUNWiK/jyKwnv9kRKt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTBDMy84NTUzMDVFMjgy QzAxMUVCQkFDRTJBN0JDNEY5QUUwMi9WSWUyUDBUV2tkUTFhSXItUElyQ2VfMlJF cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZJZTJQMFRXa2RRMWFJci1QSXJDZV8yUkVxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzkwQzMvODU1MzA1RTI4MkMwMTFFQkJBQ0UyQTdCQzRGOUFFMDIvQzNBRDg2MUM4 MkMyMTFFQkJCMDhCMjgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnj7kwDQYJKoZIhvcNAQELBQADggEBAABrybqaHozjyG5y 5ZeqOb0seMZPyb9E+X6uVgkRx+61rYFPKtr0i4CKBLim4UqWLE5k80y7J9IgHRV/ FeItJTSla0Y1z6QeYJtVdckkDUj5QqYIjXLWBW358qvc8w/GE23zO/5VFE4B4vnz 3C8xaBxNMldvNeD6uZFM3Hmq0KqeRgTczxfvAVnr4MeO8osOuLEqFLzW61/HILSP pYGPtCeGXIrvDbmgM/y0YcfQPxdn+zV+zhBXMf0v/ob3HiYJTRVeFcYB8e5LMlns zzTLDBE9Yc27faUmQh07cvsiipMAS9TfpcxsnTW0289MI9DRKYBcGZ2oC9GWlBX+ lcI96bc= -----END CERTIFICATE-----Generated at Wed Nov 20 23:11:45 2024 by rpki-client on console-fra.rpki-client.org