$ rpki-client -vvf rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/4C7C3EA8E8F511EDBC11CF6BC4F9AE02.roa File: 4C7C3EA8E8F511EDBC11CF6BC4F9AE02.roa (raw, json) Hash identifier: voNhvFt+rl48+RXxjQWaNEIjDq7tMEczadZRVwJF374= Subject key identifier: CB:74:FE:D6:38:DC:A1:7E:56:0A:54:58:9D:E4:2D:37:60:CD:D7:69 Certificate issuer: /CN=A917BAC5/serialNumber=E1088187F64094263DDA6749A95F73AA6C1AB063 Certificate serial: 0210 Authority key identifier: E1:08:81:87:F6:40:94:26:3D:DA:67:49:A9:5F:73:AA:6C:1A:B0:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QiBh_ZAlCY92mdJqV9zqmwasGM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/4C7C3EA8E8F511EDBC11CF6BC4F9AE02.roa Signing time: Sat 03 Aug 2024 03:54:57 +0000 ROA not before: Sat 03 Aug 2024 03:54:57 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 38136 IP address blocks: 103.190.178.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/4QiBh_ZAlCY92mdJqV9zqmwasGM.crl rsync://rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/4QiBh_ZAlCY92mdJqV9zqmwasGM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QiBh_ZAlCY92mdJqV9zqmwasGM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 528 (0x210) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BAC5/serialNumber=E1088187F64094263DDA6749A95F73AA6C1AB063 Validity Not Before: Aug 3 03:54:57 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66adaa11-f654 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:e1:fa:5a:9a:14:66:8a:5f:fa:60:7d:30:b0: 77:0b:71:b7:84:c6:12:88:7c:49:91:48:04:7f:99: e2:b0:6b:e1:aa:3a:7d:24:35:5c:66:c3:23:fc:30: 78:03:b4:e0:82:cd:d6:a5:3e:c1:74:98:78:01:db: b2:a1:ca:40:a7:5a:ed:d5:c3:13:26:f4:26:24:c9: 0b:80:61:08:58:ae:85:6c:a9:27:33:de:49:57:19: 94:c7:ad:75:77:bf:76:af:ab:84:9a:82:ae:7c:7f: 4b:e6:13:c7:a7:ae:b4:fe:24:2a:6e:b4:7c:77:ef: 87:df:73:1e:e3:2f:9a:63:0f:d2:ee:eb:2d:49:bf: e6:89:23:37:5a:80:1d:4c:00:10:8e:4f:5d:d3:c1: a7:35:85:ea:2f:61:bb:26:21:16:1a:70:d6:d1:01: ae:0f:5c:f4:0f:96:a3:db:de:9f:52:f0:df:1a:73: d8:ce:58:cc:de:a8:bb:9b:7d:2e:ef:f7:2c:fb:51: 32:41:f8:84:9f:b7:67:94:df:a6:fc:7b:fe:3b:31: 0e:5d:ae:b2:db:62:49:57:7f:8f:c7:05:59:98:2f: 1d:a8:2c:70:51:79:61:c8:5b:e9:b3:ee:4f:4e:41: e3:07:fb:a0:d7:d7:af:84:36:57:5e:ce:44:45:23: 38:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:74:FE:D6:38:DC:A1:7E:56:0A:54:58:9D:E4:2D:37:60:CD:D7:69 X509v3 Authority Key Identifier: keyid:E1:08:81:87:F6:40:94:26:3D:DA:67:49:A9:5F:73:AA:6C:1A:B0:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/4QiBh_ZAlCY92mdJqV9zqmwasGM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QiBh_ZAlCY92mdJqV9zqmwasGM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/4C7C3EA8E8F511EDBC11CF6BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.190.178.0/23 Signature Algorithm: sha256WithRSAEncryption 9c:73:86:a9:27:71:eb:49:7b:69:2e:0e:33:95:ae:11:1e:83: ce:8d:50:39:d2:13:4f:5c:26:58:56:cf:17:f4:00:10:a3:1c: d4:a4:ad:c8:dc:cf:2c:3d:5f:5b:c4:3d:69:27:8a:76:af:af: f1:db:12:b2:a1:85:d2:bf:db:5d:16:40:6c:73:aa:a1:d9:0a: 81:f0:af:e8:58:fa:32:fd:d9:8a:10:ac:ca:c4:13:31:44:d7: b7:c8:ab:e0:e3:d3:db:d0:66:63:6f:b0:47:ba:1a:c1:43:1a: 29:66:2d:00:a9:33:b9:7d:89:91:c8:0f:fe:7f:9b:2d:75:6e: 42:41:b4:91:c3:ce:b3:23:e5:32:8c:34:54:6d:07:0e:28:4c: f5:68:86:f8:50:f3:80:3a:3e:ba:d3:2a:b1:6d:bd:8e:6e:f6: f9:7f:96:65:49:9c:2b:7c:43:33:78:6b:42:dc:fd:b6:19:3a: c2:3c:11:33:8d:cb:f6:3e:ac:40:7a:2a:fb:46:35:6a:4d:e0: f4:fe:24:98:2d:d7:9a:3a:d6:52:a1:44:fe:67:db:2e:19:87: 31:d5:67:56:3e:47:fd:8e:fa:fd:8d:13:40:49:a3:9b:5c:ac: 6a:68:1d:56:80:0f:3c:65:47:89:dc:f0:35:9b:b5:db:67:7e: 27:3a:f5:fa -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAhAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JBQzUxMTAvBgNVBAUTKEUxMDg4MTg3RjY0MDk0MjYzRERBNjc0OUE5NUY3M0FB NkMxQUIwNjMwHhcNMjQwODAzMDM1NDU3WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFkYWExMS1mNjU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAquH6WpoUZopf+mB9MLB3C3G3hMYSiHxJkUgEf5nisGvhqjp9JDVcZsMj/DB4 A7Tggs3WpT7BdJh4AduyocpAp1rt1cMTJvQmJMkLgGEIWK6FbKknM95JVxmUx611 d792r6uEmoKufH9L5hPHp660/iQqbrR8d++H33Me4y+aYw/S7ustSb/miSM3WoAd TAAQjk9d08GnNYXqL2G7JiEWGnDW0QGuD1z0D5aj296fUvDfGnPYzljM3qi7m30u 7/cs+1EyQfiEn7dnlN+m/Hv+OzEOXa6y22JJV3+PxwVZmC8dqCxwUXlhyFvps+5P TkHjB/ug19evhDZXXs5ERSM45QIDAQABo4IClTCCApEwHQYDVR0OBBYEFMt0/tY4 3KF+VgpUWJ3kLTdgzddpMB8GA1UdIwQYMBaAFOEIgYf2QJQmPdpnSalfc6psGrBj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkFDNS80NzBBNjIwNDE1 MzAxMUVEQkFBM0QwMjdDNEY5QUUwMi80UWlCaF9aQWxDWTkybWRKcVY5enFtd2Fz R00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRRaUJoX1pBbENZOTJtZEpxVjl6cW13YXNHTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0JBQzUvNDcwQTYyMDQxNTMwMTFFREJBQTNEMDI3QzRGOUFFMDIvNEM3QzNFQThF OEY1MTFFREJDMTFDRjZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnvrIwDQYJKoZIhvcNAQELBQADggEBAJxzhqkncetJe2ku DjOVrhEeg86NUDnSE09cJlhWzxf0ABCjHNSkrcjczyw9X1vEPWkninavr/HbErKh hdK/210WQGxzqqHZCoHwr+hY+jL92YoQrMrEEzFE17fIq+Dj09vQZmNvsEe6GsFD GilmLQCpM7l9iZHID/5/my11bkJBtJHDzrMj5TKMNFRtBw4oTPVohvhQ84A6PrrT KrFtvY5u9vl/lmVJnCt8QzN4a0Lc/bYZOsI8ETONy/Y+rEB6KvtGNWpN4PT+JJgt 15o61lKhRP5n2y4ZhzHVZ1Y+R/2O+v2NE0BJo5tcrGpoHVaADzxlR4nc8DWbtdtn fic69fo= -----END CERTIFICATE-----Generated at Thu Nov 21 03:11:59 2024 by rpki-client on console-fra.rpki-client.org