$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0AC/6EA39C06942F11EAB164527EC4F9AE02/1584607CF14511ECA1AE5F4EC4F9AE02.roa File: 1584607CF14511ECA1AE5F4EC4F9AE02.roa (raw, json) Hash identifier: fDW0xK38wNoRy+xNO++3QFj+gKi2Fx9Gapxzp38OmUQ= Subject key identifier: 98:2C:1A:5B:73:4C:AD:8F:86:A8:CD:19:64:EC:C6:74:DF:36:A2:1A Certificate issuer: /CN=A917E0AC/serialNumber=18D5CFC8AAF517B076D1FC9C2E65F691435D3A5F Certificate serial: 08EB Authority key identifier: 18:D5:CF:C8:AA:F5:17:B0:76:D1:FC:9C:2E:65:F6:91:43:5D:3A:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GNXPyKr1F7B20fycLmX2kUNdOl8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0AC/6EA39C06942F11EAB164527EC4F9AE02/1584607CF14511ECA1AE5F4EC4F9AE02.roa Signing time: Wed 04 Sep 2024 21:09:34 +0000 ROA not before: Wed 04 Sep 2024 21:09:34 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 136933 IP address blocks: 103.142.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0AC/6EA39C06942F11EAB164527EC4F9AE02/GNXPyKr1F7B20fycLmX2kUNdOl8.crl rsync://rpki.apnic.net/member_repository/A917E0AC/6EA39C06942F11EAB164527EC4F9AE02/GNXPyKr1F7B20fycLmX2kUNdOl8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GNXPyKr1F7B20fycLmX2kUNdOl8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2283 (0x8eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0AC/serialNumber=18D5CFC8AAF517B076D1FC9C2E65F691435D3A5F Validity Not Before: Sep 4 21:09:34 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66d8cc8e-d953 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:3f:d6:cc:f6:68:f0:31:45:de:08:af:ab:4d: 26:0c:b6:91:11:94:d1:01:b9:48:92:3b:33:18:85: 10:88:60:fe:05:44:b7:da:78:0f:e2:e0:83:50:c3: 47:02:ac:d2:d3:a6:c9:1b:6a:67:ed:84:7b:9a:59: bf:d4:6c:19:e2:1b:51:49:28:39:ff:56:eb:70:1e: 4f:97:f8:3d:13:0e:84:70:75:71:1a:03:3f:76:57: 40:f0:3f:d2:12:27:23:6a:03:3d:4a:bc:48:81:9f: e3:8e:de:f6:16:0e:d4:2f:cb:b2:2e:37:53:70:2b: 8c:3d:5c:6f:8b:54:66:60:46:aa:0d:0d:3a:e8:44: 76:29:41:59:ec:4a:d1:b8:40:c0:75:fb:f8:9d:9f: 4d:a4:e4:6e:a5:26:f6:00:8f:22:8c:b3:9d:8f:d2: 63:67:c3:31:f7:0e:fd:00:48:5e:72:22:a7:7d:5c: 37:a2:4d:33:8e:3f:4d:8c:e4:c5:92:2e:94:67:a0: b1:4c:52:01:19:c5:56:23:39:99:be:dc:53:8a:25: 1e:bf:98:c2:e3:c5:f2:50:90:e8:41:b3:0a:e0:c0: 0d:2e:15:50:c3:4a:73:d8:9e:fa:0d:0c:e4:56:b4: e8:84:11:36:73:81:b3:f0:48:df:a4:59:79:52:1a: 3c:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:2C:1A:5B:73:4C:AD:8F:86:A8:CD:19:64:EC:C6:74:DF:36:A2:1A X509v3 Authority Key Identifier: keyid:18:D5:CF:C8:AA:F5:17:B0:76:D1:FC:9C:2E:65:F6:91:43:5D:3A:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0AC/6EA39C06942F11EAB164527EC4F9AE02/GNXPyKr1F7B20fycLmX2kUNdOl8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GNXPyKr1F7B20fycLmX2kUNdOl8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0AC/6EA39C06942F11EAB164527EC4F9AE02/1584607CF14511ECA1AE5F4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.101.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:0e:ef:64:09:b5:7c:2e:09:bc:2f:26:86:f6:da:c7:ec:cd: 76:73:1b:75:19:34:c5:1d:0b:9b:05:94:3a:ed:24:ee:12:33: 01:41:e2:77:09:64:2d:8a:59:ef:a2:0d:f7:96:a5:ab:df:19: 91:19:b3:9c:c4:aa:68:d9:47:b7:54:67:43:d2:0d:78:3e:22: 48:6d:9b:a2:99:85:6e:17:62:1b:e2:78:db:c7:ac:96:d3:4a: 6f:ef:ec:ae:61:10:f1:de:cf:14:aa:36:ce:20:4d:1d:a5:e1: 0e:ee:1d:1a:e3:bb:c6:ad:bb:b5:98:c0:b5:71:90:74:57:74: 28:7b:a9:f3:ac:10:d5:27:a0:6e:65:02:71:66:0b:09:ea:29: 34:d9:ed:57:0d:11:de:2b:c1:3a:f0:ce:81:5b:0c:ca:d9:ad: 59:42:32:96:ad:02:74:4c:d4:69:98:17:18:c5:37:17:d0:00: 51:22:5f:5a:3f:c8:e2:e9:de:d5:ac:b5:a8:c1:20:5b:f3:70: 25:5b:d4:65:7a:db:21:52:4f:28:c3:17:30:2a:23:b6:84:a9: 17:ac:06:24:00:a3:9c:04:4a:86:a9:fd:9c:93:a3:fa:c5:13: 6c:a7:0e:12:fe:13:24:a4:03:39:69:2c:c3:11:5f:50:3a:33: d7:7b:79:fa -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQUMxMTAvBgNVBAUTKDE4RDVDRkM4QUFGNTE3QjA3NkQxRkM5QzJFNjVGNjkx NDM1RDNBNUYwHhcNMjQwOTA0MjEwOTM0WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ4Y2M4ZS1kOTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuj/WzPZo8DFF3givq00mDLaREZTRAblIkjszGIUQiGD+BUS32ngP4uCDUMNH AqzS06bJG2pn7YR7mlm/1GwZ4htRSSg5/1brcB5Pl/g9Ew6EcHVxGgM/dldA8D/S EicjagM9SrxIgZ/jjt72Fg7UL8uyLjdTcCuMPVxvi1RmYEaqDQ066ER2KUFZ7ErR uEDAdfv4nZ9NpORupSb2AI8ijLOdj9JjZ8Mx9w79AEheciKnfVw3ok0zjj9NjOTF ki6UZ6CxTFIBGcVWIzmZvtxTiiUev5jC48XyUJDoQbMK4MANLhVQw0pz2J76DQzk VrTohBE2c4Gz8EjfpFl5Uho8hQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJgsGltz TK2PhqjNGWTsxnTfNqIaMB8GA1UdIwQYMBaAFBjVz8iq9RewdtH8nC5l9pFDXTpf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBQy82RUEzOUMwNjk0 MkYxMUVBQjE2NDUyN0VDNEY5QUUwMi9HTlhQeUtyMUY3QjIwZnljTG1YMmtVTmRP bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dOWFB5S3IxRjdCMjBmeWNMbVgya1VOZE9sOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0UwQUMvNkVBMzlDMDY5NDJGMTFFQUIxNjQ1MjdFQzRGOUFFMDIvMTU4NDYwN0NG MTQ1MTFFQ0ExQUU1RjRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnjmUwDQYJKoZIhvcNAQELBQADggEBAC8O72QJtXwuCbwv Job22sfszXZzG3UZNMUdC5sFlDrtJO4SMwFB4ncJZC2KWe+iDfeWpavfGZEZs5zE qmjZR7dUZ0PSDXg+Ikhtm6KZhW4XYhvieNvHrJbTSm/v7K5hEPHezxSqNs4gTR2l 4Q7uHRrju8atu7WYwLVxkHRXdCh7qfOsENUnoG5lAnFmCwnqKTTZ7VcNEd4rwTrw zoFbDMrZrVlCMpatAnRM1GmYFxjFNxfQAFEiX1o/yOLp3tWstajBIFvzcCVb1GV6 2yFSTyjDFzAqI7aEqResBiQAo5wESoap/ZyTo/rFE2ynDhL+EySkAzlpLMMRX1A6 M9d7efo= -----END CERTIFICATE-----Generated at Sun Nov 24 20:58:12 2024 by rpki-client on console-fra.rpki-client.org